Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

XP runs super slow malbytes found infected files [Solved]


  • This topic is locked This topic is locked

#16
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
sorry for all the questions just want to be sure im doing this right but should i download the install before i uninstall service pack 3 will i still be able to access the internet after i uninstall to download the new install,
  • 0

Advertisements


#17
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 19,991 posts

sorry for all the questions just want to be sure im doing this right but should i download the install before i uninstall service pack 3 will i still be able to access the internet after i uninstall to download the new install,


I would download it first. Then uninstall your existing SP3. After that, run the one you downloaded to install it. You should have access to the internet throughout. :)
  • 0

#18
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
okay i unistalled and reinstalled xp service pack 3 still takes a little longer to boot up than it used too and the audio is still skipping crackling. mozzilla seems to be quicker and there was no script error when accessing the website this morning. also when i open process explorer it shows my cpu usage really high and like 90 interupts and when the interupts are high is when everything seems to lag. is there something i can do about that. thankyou for all the help with this its greatly appreciated
  • 0

#19
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 19,991 posts

audio is still skipping crackling


My guess is that, that is a driver issue.

The link below gives you some information on how to update your sound card driver:

http://support.microsoft.com/kb/166774

Tell me if that makes a difference.

Also did you run the defrag utility? see post #13
  • 0

#20
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
okay i ran the disk defrag the computer runs a little quicker but i cant get internet explorer to work at all. i reinstalled it and it still doesnt work theres no icon to open internet explorer even in the IE folder. the audio is still terrible it seems like playing audio is to much for the comp to do it lags and the audio skips. in process explorer it still shows alot of interupts whenever i do anything open a new program or try to play music. before any of this a week ago i was able to surf the web on multiple sites and listen to i tunes without a problem. i dont know what happened. everything youve done has helped and it keeps getting a little better each time. so if there is anything else you could try i would greatly appreciate it things a tight right now and i dont really want to take it to a computer repair place and a new laptop is not in the picture either. i still get the script errors on mozzila when i access this site also.
  • 0

#21
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 19,991 posts
I wonder if there is something hidden that we havn't found.

Let's do this:

Download aswMBR.exe to your desktop.

Double click the aswMBR.exe to run it.

Posted ImageClick the "Scan" button to start scan

Posted Image

On completion of the scan click save log, save it to your desktop and post in your next reply

After that

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (e.g. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.
So when you return please post
  • aswMBR log
  • TDSSKiller log

  • 0

#22
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2014-01-19 16:56:46
-----------------------------
16:56:46.890 OS Version: Windows 5.1.2600 Service Pack 3
16:56:46.890 Number of processors: 1 586 0xE08
16:56:46.890 ComputerName: MITCH-PC UserName: Mitch
16:56:51.140 Initialize success
16:56:54.703 AVAST engine defs: 14011900
16:57:34.328 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
16:57:34.328 Disk 0 Vendor: WDC_WD1200BEVS-08UST0 02.01A02 Size: 114473MB BusType: 3
16:57:34.609 Disk 0 MBR read successfully
16:57:34.609 Disk 0 MBR scan
16:57:34.609 Disk 0 Windows XP default MBR code
16:57:34.609 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 114463 MB offset 63
16:57:34.703 Disk 0 scanning sectors +234420480
16:57:34.968 Disk 0 scanning C:\WINDOWS\system32\drivers
16:58:16.718 Service scanning
16:59:19.703 Modules scanning
16:59:52.437 Disk 0 trace - called modules:
16:59:52.453 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys
16:59:52.453 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a6faab8]
16:59:52.796 3 CLASSPNP.SYS[ba108fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8a6f2940]
16:59:56.359 AVAST engine scan C:\WINDOWS
17:00:23.062 AVAST engine scan C:\WINDOWS\system32
17:11:13.328 AVAST engine scan C:\WINDOWS\system32\drivers
17:12:07.906 AVAST engine scan C:\Documents and Settings\Mitch
17:23:27.234 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Mitch\Desktop\MBR.dat"
17:23:27.484 The log file has been saved successfully to "C:\Documents and Settings\Mitch\Desktop\aswMBR.txt"


tds found no threats
  • 0

#23
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 19,991 posts
Download Windows Repair (all in one) from here.

Install the program then run
Posted Image

Posted Image

On the start repairs tab click start -
Select items 01,02,03,06,09,22 and the items ticked in the image below. Tick restart system when finished
Posted Image

Click Go and post the result (Result.txt) back here. A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
  • 0

#24
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
okay i ran the program but its not showing me a result log when i go to the log folder it made there is 18 repair logs do you want me to post them or did i manage to do something wrong

Attached Files


  • 0

#25
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 19,991 posts
Looks to me that all went well. Some things can't be attended to because of one reason or another.

Now

I believe Avast can conflict on some systems.

Please disable the Avast Online Security addon within IE and tell me if that makes a difference.
  • 0

Advertisements


#26
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
well i cant open IE at all should i just uninstall avast and use another anti virus program. and i think i may still have a problem cause its still alot slower than it was two weeks ago. i used to be able to click on a program or load a website quick no its like a minute or two to open mozzila or load a website. and i dont know what to do with my sound its still crappy if i run windows media player i can listen to music as long as i dont try to do anything else if i open something it starts skipping and lagging and the cpu spikes. i can only do one thing at a time and it really slows me down when im trying to use my works online manuals and run the scan tool program at the same time. i forgot to mention before i started with you i ran malwarebytes and it found threats and i just deleted them thinking it would fix it here are the logs it found.

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.10.08

Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Mitch :: MITCH-PC [administrator]

1/10/2014 5:04:25 PM
mbam-log-2014-01-10 (17-04-25).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 202135
Time elapsed: 27 minute(s), 59 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 12
HKCR\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\esrv.BabylonESrvc.1 (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\esrv.BabylonESrvc (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\b (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\Typelib\{6E8BF012-2C85-4834-B10A-1B31AF173D70} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\BabylonToolbar (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 1
C:\Documents and Settings\Mitch\Application Data\Babylon (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.

Files Detected: 3
C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mitch\Application Data\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.

(end)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.10.08

Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Mitch :: MITCH-PC [administrator]

1/10/2014 6:28:00 PM
mbam-log-2014-01-10 (18-28-00).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 264957
Time elapsed: 3 hour(s), 18 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 9
HKCR\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\bbylnApp.appCore.1 (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\bbylnApp.appCore (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\Babylon.dskBnd.1 (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCR\Babylon.dskBnd (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Data: Babylon Toolbar -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 6
C:\Documents and Settings\Mitch\My Documents\My Music\iLividSetupV1.exe (PUP.Optional.Bandoo) -> Quarantined and deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\uninstall.exe (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{03D8848D-A03D-4B1B-8673-56B51666EAF4}\RP254\A0126711.exe (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{03D8848D-A03D-4B1B-8673-56B51666EAF4}\RP254\A0126712.dll (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.

(end)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.10.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Mitch :: MITCH-PC [administrator]

1/11/2014 3:13:26 PM
mbam-log-2014-01-11 (15-13-26).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 32417
Time elapsed: 21 minute(s), 15 second(s) [aborted]

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.10.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Mitch :: MITCH-PC [administrator]

1/12/2014 3:43:48 PM
mbam-log-2014-01-12 (15-43-48).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 255824
Time elapsed: 3 hour(s), 7 minute(s), 13 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\System Volume Information\_restore{03D8848D-A03D-4B1B-8673-56B51666EAF4}\RP254\A0127720.dll (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{03D8848D-A03D-4B1B-8673-56B51666EAF4}\RP254\A0127719.dll (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{03D8848D-A03D-4B1B-8673-56B51666EAF4}\RP254\A0127721.exe (PUP.Optional.BabylonToolBar.A) -> Quarantined and deleted successfully.

(end)
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.10.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Mitch :: MITCH-PC [administrator]

1/15/2014 10:53:40 AM
mbam-log-2014-01-15 (10-53-40).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200147
Time elapsed: 28 minute(s), 31 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
  • 0

#27
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 19,991 posts

i ran malwarebytes and it found threats and i just deleted them thinking it would fix it here are the logs it found.


Those logs look old... see date 1/10/2014 and this one 1/11/2014

This log, run on 1/15/2014 shows clean. Could be the date and time clock on your machine is wrong but your earlier logs seemed to have been run on the right date.

Unless I am missing something then those were reports from past runs. Hopefully we have already dealt with Babylon but we will check again to be sure. ;)

Now

Please download zoek.exe and save it to your desktop (Firefox users right click and Save Link As...).

  • Close any open browsers.
  • Temporarily disable your AntiVirus program. (If necessary)
  • Double click zoek.zip
  • Double click on zoek.exe to run.
  • Please wait while the tool starts. It will appear to be doing nothing and may take a few seconds to come up.
  • Copy the text below and paste it into the large window in the zoek tool:

StandardSearch;
iedefaults;

  • Click on Run script button
  • Please wait patiently (it may take a few minutes) until a log report will open (this may be after reboot, if required)
  • Copy (Ctrl +C) and paste (Ctrl +V) the contents of the opened entire report back here.
Note: It will also create a log in the C:\ directory named "zoek-results.log"
  • 0

#28
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
yes those logs were old from before i contacted you i just wasnt sure if i removed them properly or if i just made your job harder. here the log from the latest scan you asked for.


Zoek.exe v5.0.0.0 Updated 20-Januari-2014
Tool run by Mitch on Mon 01/20/2014 at 20:27:34.14.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Mitch\Desktop\zoek\zoek.com [Scan all users] [Script inserted]

==== System Restore Info ======================

1/20/2014 8:29:45 PM Zoek.exe System Restore Point Created Succesfully.

==== Running Processes ======================

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Common Files\Teradyne\TDSNetSetup.exe
C:\Program Files\Ford Motor Company\IDS\Runtime\TDSNetConfig.exe
C:\Program Files\Ford Motor Company\IDS\Runtime\XMLRegistryD.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\ISUSPM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Ford Motor Company\IDS\Runtime\CodeserveD.exe
C:\Program Files\Ford Motor Company\IDS\Runtime\DetectionManager.exe
C:\Program Files\Ford Motor Company\IDS\Runtime\Starburst.exe
C:\Program Files\Ford Motor Company\IDS\Runtime\ProbeTickHandler.exe
C:\Program Files\Ford Motor Company\IDS\Runtime\EngineeringFeedback.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc

==== System Specs ======================

Operating System: Microsoft Windows XP Professional 5.1.2600 Service Pack 3
Manufacturer: Dell Inc. - Model: MP061
Install Date: 8/10/2012 9:36:30 AM
Last Boot: 1/20/2014 4:13:11 PM
Processor: Genuine Intel® CPU T1300 @ 1.66GHz
Number of Processors: 1
Work Station
Bootmode: Normal boot
Total RAM: 2038 MB ( - 0)
Computername: MITCH-PC
Domain: WORKGROUP
User: Mitch (Administrator account)
Local Disk: C:\ - NTFS - 111 GB (free 61 GB)
CD \ DVD Drive: D:\
Bootdevice: \Device\HarddiskVolume1
Windows update: 2014-01-20 20:31:12
Country: United States
Language: ENU

==== System Specs (Software) ======================

Anti-Virus: avast! Antivirus On-access scanning disabled (Updated)
Default Browser: Firefox 26.0
Internet Explorer version: 8.0.6001.18702
Mozilla Firefox version: 26.0 (x86 en-US)
Adobe Reader version: 10.0.0.396
Sun Java version: 1.7.0_51 (32-bit)
Flash Player version: 11.9.900.170

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
2014-01-20 13:25:00 A283E768FA12EF33087F07B01F82D6DD 181064 ----a-w- C:\WINDOWS\PSEXESVC.EXE
2014-01-18 05:32:36 224A97EA5029845D2F5D1A6D85BBC798 32866 ----a-w- C:\WINDOWS\slrundll.exe
2014-01-18 05:03:30 8737F6F4C8EC1E2A9EA5516F1B3AE1AD 19569 ----a-w- C:\WINDOWS\002920_.tmp
2014-01-17 23:17:17 EB6FBB9A14244234F246AF81137D36E1 1374 ----a-w- C:\WINDOWS\imsins.BAK
2014-01-16 23:13:23 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\WINDOWS\PEV.exe
2014-01-16 23:13:23 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\WINDOWS\grep.exe
2014-01-16 23:13:23 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\WINDOWS\zip.exe
2014-01-16 23:13:23 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\WINDOWS\SWSC.exe
2014-01-16 23:13:23 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\WINDOWS\MBR.exe
2014-01-14 13:42:46 4D5FD79A075B9BD9ACEFD6FAA753318A 43152 ----a-w- C:\WINDOWS\avastSS.scr
====== C:\DOCUME~1\Mitch\LOCALS~1\Temp ====
====== Java Cache =====
2014-01-14 20:04:17 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\12\eef218c-7965a7a4
2014-01-14 21:53:41 7C156CF04AC358091234300F16E6AB0E 433605 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\17\3e1afa11-5b8c5cbe
2014-01-14 20:03:09 0D3B2BF658B7425259079E06E1EFCA02 99 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\17\49a00451-6.0.lap
2014-01-14 20:03:09 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\17\49a00451-75d670be
2014-01-14 20:03:08 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\19\3d7894d3-4b967da3
2014-01-14 20:03:10 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\43\1ca2666b-50e7ec61
2014-01-14 21:53:31 DA95971CBE2A7C7A1CECD1B04142DCFD 86 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\46\1bc5372e-6.0.lap
2014-01-14 21:48:57 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-7a4b41ad
====== C:\WINDOWS\system32 =====
2014-01-18 05:35:59 89AFA12F6A1AD5837377E0B01C11E40E 79872 ----a-w- C:\WINDOWS\System32\msxml6r.dll
2014-01-18 05:35:58 9EFBB3055B3EECE5B0FC7BAED07A6EE9 1371648 ----a-w- C:\WINDOWS\System32\msxml6.dll
2014-01-18 05:33:52 5B431DCAC4A76276CEB8A1AB0C1C11F2 9728 ----a-w- C:\WINDOWS\System32\comsdupd.exe
2014-01-18 05:33:51 F22ED2CD5E26514C6E8D21B5DA4572A3 10752 ----a-w- C:\WINDOWS\System32\smtpapi.dll
2014-01-18 05:33:51 5D55DEFB3AB92BC43C4DFD06935FA0F1 9728 ----a-w- C:\WINDOWS\System32\rwnh.dll
2014-01-18 05:33:26 B0C23B6813A9FCBAE18370247BE594CE 136192 ----a-w- C:\WINDOWS\System32\aaclient.dll
2014-01-18 05:33:25 B90394A426FEA378CAC90FBDD74701E2 229376 ----a-w- C:\WINDOWS\System32\ati2cqag.dll
2014-01-18 05:33:25 2C15B4A5E8AB5BB8CFBEB375750AC05C 377984 ----a-w- C:\WINDOWS\System32\ati2dvaa.dll
2014-01-18 05:33:25 20A00BD20152E0342BC9E46C30CC687A 201728 ----a-w- C:\WINDOWS\System32\ati2dvag.dll
2014-01-18 05:33:24 1B874ADE4C19D65D6557527189B8A968 870784 ----a-w- C:\WINDOWS\System32\ati3d1ag.dll
2014-01-18 05:33:22 CFA86E49AFB5C9AD8839CE4A1F2E532F 516768 ----a-w- C:\WINDOWS\System32\ativvaxx.dll
2014-01-18 05:33:22 B896F27ECCBF2616800B9AA33D59898D 1888992 ----a-w- C:\WINDOWS\System32\ati3duag.dll
2014-01-18 05:33:22 994F947386C9A17BBA19569DC3A92B2C 32768 ----a-w- C:\WINDOWS\System32\ativtmxx.dll
2014-01-18 05:33:22 96FF2C80DC7962D1B5016B85558109B4 9728 ----a-w- C:\WINDOWS\System32\ativdaxx.ax
2014-01-18 05:33:22 481A805B5ABC92363CF901CFCF1EE68D 23040 ----a-w- C:\WINDOWS\System32\ativmvxx.ax
2014-01-18 05:33:21 97AE3A4180CAB360F44F7F03E5E0F409 7168 ----a-w- C:\WINDOWS\System32\bitsprx4.dll
2014-01-18 05:33:21 5B6245518D71A6108BC385C4A8348218 233472 ----a-w- C:\WINDOWS\System32\azroles.dll
2014-01-18 05:33:20 8E20D83D04076A3682706A2BE1BBA80E 12800 ----a-w- C:\WINDOWS\System32\credssp.dll
2014-01-18 05:33:18 F69189EB97B118B690ACCA93760AD738 39936 ----a-w- C:\WINDOWS\System32\dot3gpclnt.dll
2014-01-18 05:33:18 EA39DA293C8BBAA0F89419BA64734CC7 56320 ----a-w- C:\WINDOWS\System32\dot3msm.dll
2014-01-18 05:33:18 E85FD6ABA80BD637AA2AA9D93308D355 57856 ----a-w- C:\WINDOWS\System32\dot3cfg.dll
2014-01-18 05:33:18 E2092F0A1D7ABC243F9C2362483D150D 19456 ----a-w- C:\WINDOWS\System32\dimsntfy.dll
2014-01-18 05:33:18 8E2CC37BA87D8F681066E0E9C8A19F73 26112 ----a-w- C:\WINDOWS\System32\dot3api.dll
2014-01-18 05:33:18 4E8F3230BAC8C1CAADF01A8C728E1C5C 9216 ----a-w- C:\WINDOWS\System32\dot3dlg.dll
2014-01-18 05:33:18 11F4A22796CB652BD574D8CB03B9874C 39936 ----a-w- C:\WINDOWS\System32\dimsroam.dll
2014-01-18 05:33:18 11A9E0581F6441876FFBF331D294C10A 48640 ----a-w- C:\WINDOWS\System32\dhcpqec.dll
2014-01-18 05:33:17 F21A712EB2B656CD86FCC057446F9C34 650752 ----a-w- C:\WINDOWS\System32\dot3ui.dll
2014-01-18 05:33:17 0F0F6E687E5E15579EF4DA8DD6945814 132096 ----a-w- C:\WINDOWS\System32\dot3svc.dll
2014-01-18 05:33:15 E6EF7BC927D9F8F9BA1584BFC39E0C6F 30720 ----a-w- C:\WINDOWS\System32\eapolqec.dll
2014-01-18 05:33:15 7954A8B0657676E947403F0AC0F21755 184832 ----a-w- C:\WINDOWS\System32\eapp3hst.dll
2014-01-18 05:33:15 5DB625E7D095604010CF84DE2D8ACFA6 126976 ----a-w- C:\WINDOWS\System32\eappcfg.dll
2014-01-18 05:33:14 ABC4206543450C0666D152F4B65833B8 40960 ----a-w- C:\WINDOWS\System32\eappprxy.dll
2014-01-18 05:33:14 3B06CDD1A41618944A906589C052F2B3 59392 ----a-w- C:\WINDOWS\System32\eapqec.dll
2014-01-18 05:33:14 395FD41D69C1AB8CE91FEABD2168097E 94208 ----a-w- C:\WINDOWS\System32\eappgnui.dll
2014-01-18 05:33:14 2187855A7703ADEF0CEF9EE4285182CC 33792 ----a-w- C:\WINDOWS\System32\eapsvc.dll
2014-01-18 05:33:14 0BCB0EBC1B08FA384EC68F253C7253EF 180224 ----a-w- C:\WINDOWS\System32\eapphost.dll
2014-01-18 05:33:12 5B6EDB1DD780D8256CB301E58B4BC690 32285 ----a-w- C:\WINDOWS\System32\hsfcisp2.dll
2014-01-18 05:33:08 F0874563D668EEC633AC52F8B6167ACD 6144 ----a-w- C:\WINDOWS\System32\kbdbhc.dll
2014-01-18 05:33:07 A445F7BE8100EFB90161E4868A643E34 6144 ----a-w- C:\WINDOWS\System32\kbdnepr.dll
2014-01-18 05:33:07 9FE65E81B4C27D967DB6646271AB242F 6144 ----a-w- C:\WINDOWS\System32\kbdpash.dll
2014-01-18 05:33:07 82FDD74B54E27D9BB2A486B1181EC7A9 6144 ----a-w- C:\WINDOWS\System32\kbdiultn.dll
2014-01-18 05:33:06 8878BD685E490239777BFE51320B88E9 61440 ----a-w- C:\WINDOWS\System32\kmsvc.dll
2014-01-18 05:33:06 3879D931FBB110292A16C8A3A11D7ED4 37376 ----a-w- C:\WINDOWS\System32\l2gpstore.dll
2014-01-18 05:33:04 DDB011875BCC78C4EFE4AF17994FF53F 86016 ----a-w- C:\WINDOWS\System32\mdmxsdk.dll
2014-01-18 05:33:04 9A425D4F1C1ED0DA1A35B25DE5632378 184320 ----a-w- C:\WINDOWS\System32\microsoft.managementconsole.dll
2014-01-18 05:33:03 4BD42056A26567FF609902DC2840BFEC 106496 ----a-w- C:\WINDOWS\System32\mmcfxcommon.dll
2014-01-18 05:33:03 3F8C2784BD466834FA87F973D0FBB120 33792 ----a-w- C:\WINDOWS\System32\mmcperf.exe
2014-01-18 05:33:03 308EC3363A4784EDF02100D597111F2D 397312 ----a-w- C:\WINDOWS\System32\mmcex.dll
2014-01-18 05:33:01 F7BBAA9485F04E46A053E147CDFAD079 155136 ----a-w- C:\WINDOWS\System32\mssha.dll
2014-01-18 05:33:01 568B07313D95BD82BF7C9089FBAB1118 76800 ----a-w- C:\WINDOWS\System32\msshavmsg.dll
2014-01-18 05:32:59 87906187B3AF89582380D156DA601F68 30208 ----a-w- C:\WINDOWS\System32\napipsec.dll
2014-01-18 05:32:59 5099188F965E8C3DA76281E9CBCB0E7F 193024 ----a-w- C:\WINDOWS\System32\napmontr.dll
2014-01-18 05:32:59 3EF3363283E118A9F460E31BB17A702A 1737856 ----a-w- C:\WINDOWS\System32\mtxparhd.dll
2014-01-18 05:32:59 3AF52290B3C5F21E25F1C582A60CEBF2 176640 ----a-w- C:\WINDOWS\System32\napstat.exe
2014-01-18 05:32:55 CA04959077AFE36369D37B3504740C87 144384 ----a-w- C:\WINDOWS\System32\onex.dll
2014-01-18 05:32:55 66C217ADC165BE397788EBC24BF21D2C 4274816 ----a-w- C:\WINDOWS\System32\nv4_disp.dll
2014-01-18 05:32:53 BA71647BD0BF68A3A127E061FA816E9B 412160 ----a-w- C:\WINDOWS\System32\photometadatahandler.dll
2014-01-18 05:32:52 FB8E05CEDB3EF65C80FEBD2698C80998 150528 ----a-w- C:\WINDOWS\System32\qagent.dll
2014-01-18 05:32:52 A655C88AA555BB8EF8957BD29408827F 61952 ----a-w- C:\WINDOWS\System32\rasqec.dll
2014-01-18 05:32:52 8AE93AACC648921BAACB8602991AC4B3 76800 ----a-w- C:\WINDOWS\System32\qutil.dll
2014-01-18 05:32:52 492D127C533F328380F0BD1C2C59B44B 62464 ----a-w- C:\WINDOWS\System32\qcliprov.dll
2014-01-18 05:32:52 0102140028FAD045756796E1C685D695 291328 ----a-w- C:\WINDOWS\System32\qagentrt.dll
2014-01-18 05:32:51 28D9646A6B8DE72980B683AF06D9D981 290304 ----a-w- C:\WINDOWS\System32\rhttpaa.dll
2014-01-18 05:32:51 1144070C67CC7F3E673EBB124F1B06AA 397056 ----a-w- C:\WINDOWS\System32\s3gnb.dll
2014-01-18 05:32:50 D8DBD3FF60BDAC98ACD115F8F0A3B161 73832 ----a-w- C:\WINDOWS\System32\slcoinst.dll
2014-01-18 05:32:50 B726ACE88025433615F2918B0FD07F9C 32768 ----a-w- C:\WINDOWS\System32\setupn.exe
2014-01-18 05:32:49 F41358AD08C811F6B28FBC45600D1F49 286792 ----a-w- C:\WINDOWS\System32\slextspk.dll
2014-01-18 05:32:49 E23C2933A53B4459482E84BB56D24681 50688 ----a-w- C:\WINDOWS\System32\tspkg.dll
2014-01-18 05:32:49 224A97EA5029845D2F5D1A6D85BBC798 32866 ----a-w- C:\WINDOWS\System32\slrundll.exe
2014-01-18 05:32:49 1396F781364754123E5180074FC3CB85 53248 ----a-w- C:\WINDOWS\System32\tsgqec.dll
2014-01-18 05:32:49 10485BD94D0C8B0C9DE0A4A05D19EBA0 188508 ----a-w- C:\WINDOWS\System32\slgen.dll
2014-01-18 05:32:49 054177EFA4EA208003DD88637B02BA2B 73796 ----a-w- C:\WINDOWS\System32\slserv.exe
2014-01-18 05:32:48 94BA90C6AF5C50FF5F7A6392514C4642 28672 ----a-w- C:\WINDOWS\System32\vidcap.ax
2014-01-18 05:32:48 91790D6749EBED90E2C40479C0A91879 28672 ----a-w- C:\WINDOWS\System32\verclsid.exe
2014-01-18 05:32:48 2248F303CCFF449FC5DEA712C92D4B2E 60416 ----a-w- C:\WINDOWS\System32\tzchange.exe
2014-01-18 05:32:46 EB2D2E05E471208CD651DDCDF77904BF 346112 ----a-w- C:\WINDOWS\System32\windowscodecsext.dll
2014-01-18 05:32:46 5F63E2B2A72E1E6448123E0920D31530 712704 ----a-w- C:\WINDOWS\System32\windowscodecs.dll
2014-01-18 05:32:44 EF3EC9DCFEECE43A1F69C8A95505E47A 276992 ----a-w- C:\WINDOWS\System32\wmphoto.dll
2014-01-18 05:32:44 9EEFE69139FDBB4A3C327630F8EB993A 69120 ----a-w- C:\WINDOWS\System32\wlanapi.dll
2014-01-18 05:32:39 D1E18F4AE94FFEC7270BE0A10C0B295E 121856 ----a-w- C:\WINDOWS\System32\xmllite.dll
2014-01-18 04:22:13 C5B41140DBDA488A02E8D33B5FF95686 221184 ----a-w- C:\WINDOWS\System32\wmpns.dll
2014-01-18 04:19:32 6D6F4B1886E91EB37ABCCAD19C561EE0 16832 ----a-w- C:\WINDOWS\System32\amcompat.tlb
2014-01-14 20:01:15 C94EC0201AD94C0A25461F1073F60493 145408 ----a-w- C:\WINDOWS\System32\javacpl.cpl
2014-01-14 20:01:15 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\System32\javaws.exe
2014-01-14 20:00:48 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
2014-01-14 20:00:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\System32\javaw.exe
2014-01-14 20:00:48 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\System32\java.exe
2014-01-14 13:42:58 A46118A8987612525FC548AE33222DE4 270240 ----a-w- C:\WINDOWS\System32\aswBoot.exe
====== C:\WINDOWS\system32\drivers =====
2014-01-18 05:33:52 4F9694BDEFC1F0629704A1E2B7B96A66 46848 ----a-w- C:\WINDOWS\System32\drivers\irbus.sys
2014-01-18 05:09:35 E2FB83E16D003E973C0A6F25CA39A281 3615 ----a-w- C:\WINDOWS\System32\drivers\adv05nt5.dll
2014-01-18 05:09:35 DB6D4CBF4DEBFA810A83035952EEC707 3775 ----a-w- C:\WINDOWS\System32\drivers\adv11nt5.dll
2014-01-18 05:09:35 CB08AED0DE2DD889A8A820CD8082D83C 42752 ----a-w- C:\WINDOWS\System32\drivers\alim1541.sys
2014-01-18 05:09:35 9FD9797D7E74AEA57915C726D82697F4 3135 ----a-w- C:\WINDOWS\System32\drivers\adv08nt5.dll
2014-01-18 05:09:35 9A193E5B5416E800B1FEDD7A4C5425C9 3967 ----a-w- C:\WINDOWS\System32\drivers\adv02nt5.dll
2014-01-18 05:09:35 76DEC026845C0C7679C194BF3FAD81F0 3711 ----a-w- C:\WINDOWS\System32\drivers\adv09nt5.dll
2014-01-18 05:09:35 23C8D06EBE70CA5D8364818AD6342BDA 3647 ----a-w- C:\WINDOWS\System32\drivers\adv07nt5.dll
2014-01-18 05:09:35 1A7DDD37DEB481A9C25BBE705D63966B 4255 ----a-w- C:\WINDOWS\System32\drivers\adv01nt5.dll
2014-01-18 05:09:35 08FD04AA961BDC77FB983F328334E3D7 42368 ----a-w- C:\WINDOWS\System32\drivers\agp440.sys
2014-01-18 05:09:35 03A7E0922ACFE1B07D5DB2EEB0773063 44928 ----a-w- C:\WINDOWS\System32\drivers\agpcpq.sys
2014-01-18 05:09:34 DAC7D785CF62F5BD41441E9D6F5A6EFE 26367 ----a-w- C:\WINDOWS\System32\drivers\ati1snxx.sys
2014-01-18 05:09:34 D649C57DA6FA762C64013747E5D7D2D6 56623 ----a-w- C:\WINDOWS\System32\drivers\ati1btxx.sys
2014-01-18 05:09:34 BCAF267B10620F8C93F6E87AB726E145 63663 ----a-w- C:\WINDOWS\System32\drivers\ati1rvxx.sys
2014-01-18 05:09:34 9D318099BF3876A4AF4BC75966D27603 30671 ----a-w- C:\WINDOWS\System32\drivers\ati1raxx.sys
2014-01-18 05:09:34 95B4FB835E28AA1336CEEB07FD5B9398 43008 ----a-w- C:\WINDOWS\System32\drivers\amdagp.sys
2014-01-18 05:09:34 6FDC61E8E8E17F6ECC2D9A10FA8DF347 12047 ----a-w- C:\WINDOWS\System32\drivers\ati1pdxx.sys
2014-01-18 05:09:34 60B6AA2DC1521DA343F781B70EB7895A 11615 ----a-w- C:\WINDOWS\System32\drivers\ati1mdxx.sys
2014-01-18 05:09:33 F7706DAE7D101F1B19CE552D772EBFCE 21343 ----a-w- C:\WINDOWS\System32\drivers\ati1ttxx.sys
2014-01-18 05:09:33 6F714B4720DD80FFA9F8D2731594EA4C 36463 ----a-w- C:\WINDOWS\System32\drivers\ati1tuxx.sys
2014-01-18 05:09:33 67FFBC158DD4D27BA3FC92C6ACD87F73 29455 ----a-w- C:\WINDOWS\System32\drivers\ati1xbxx.sys
2014-01-18 05:09:33 2D030C2F6B036CA0BC243E1B16D924D1 327040 ----a-w- C:\WINDOWS\System32\drivers\ati2mtaa.sys
2014-01-18 05:09:33 0D8CAB1F08F7D3C4DE228B49E12E596A 34735 ----a-w- C:\WINDOWS\System32\drivers\ati1xsxx.sys
2014-01-18 05:09:32 ED4C2BF8403F4437987C0BA09CF48716 13824 ----a-w- C:\WINDOWS\System32\drivers\atinmdxx.sys
2014-01-18 05:09:32 E90AC2B14E98F1A4372E5891B4278784 14336 ----a-w- C:\WINDOWS\System32\drivers\atinpdxx.sys
2014-01-18 05:09:32 993E7BD6438FE989E328C6B4BCA246A9 57856 ----a-w- C:\WINDOWS\System32\drivers\atinbtxx.sys
2014-01-18 05:09:32 8759322FFC1A50569C1E5528EE8026B7 701440 ----a-w- C:\WINDOWS\System32\drivers\ati2mtag.sys
2014-01-18 05:09:31 EDD66332608D27F4FD5069BCD0BC5164 73216 ----a-w- C:\WINDOWS\System32\drivers\atintuxx.sys
2014-01-18 05:09:31 DA36687D701C833430605A298731410B 52224 ----a-w- C:\WINDOWS\System32\drivers\atinraxx.sys
2014-01-18 05:09:31 D80A8F6C0A717446496C3A06D33B0D9C 13824 ----a-w- C:\WINDOWS\System32\drivers\atinttxx.sys
2014-01-18 05:09:31 CEDDEE2E0591894D19654D458FD3B9BE 28672 ----a-w- C:\WINDOWS\System32\drivers\atinsnxx.sys
2014-01-18 05:09:31 A7A01B907DB63898D40B0A14248FF9A2 104960 ----a-w- C:\WINDOWS\System32\drivers\atinrvxx.sys
2014-01-18 05:09:31 77B575D7AAB35D5908AE6CE681608D62 63488 ----a-w- C:\WINDOWS\System32\drivers\atinxsxx.sys
2014-01-18 05:09:31 3E7D485CBD0B0D9F6EA2AD9442411831 31744 ----a-w- C:\WINDOWS\System32\drivers\atinxbxx.sys
2014-01-18 05:09:30 FCA6F069597B62D42495191ACE3FC6C1 37888 ----a-w- C:\WINDOWS\System32\drivers\bthmodem.sys
2014-01-18 05:09:30 B279426E3C0C344893ED78A613A73BDE 17024 ----a-w- C:\WINDOWS\System32\drivers\bthenum.sys
2014-01-18 05:09:30 AA4F39968C3C48F44AC93C19C74531AC 17279 ----a-w- C:\WINDOWS\System32\drivers\atv10nt5.dll
2014-01-18 05:09:30 99265584139E0361156AF8AAFB9F05FD 11359 ----a-w- C:\WINDOWS\System32\drivers\atv02nt5.dll
2014-01-18 05:09:30 8E59F9BE251C8AE32A1CEB068B3F96B1 64352 ----a-w- C:\WINDOWS\System32\drivers\ativmc20.cod
2014-01-18 05:09:30 80602B8746D3738F5886CE3D67EF06B6 101120 ----a-w- C:\WINDOWS\System32\drivers\bthpan.sys
2014-01-18 05:09:30 4CCDEF76BC20B56037C24D39E5C0E4EA 14143 ----a-w- C:\WINDOWS\System32\drivers\atv06nt5.dll
2014-01-18 05:09:30 379F31C68379519C15A2B7BF66F8A80E 25471 ----a-w- C:\WINDOWS\System32\drivers\atv04nt5.dll
2014-01-18 05:09:30 1532382086A0B61982E69FEFFBA77469 21183 ----a-w- C:\WINDOWS\System32\drivers\atv01nt5.dll
2014-01-18 05:09:29 BB68CEBFFD181E18A26112D1B9F90F3D 36480 ----a-w- C:\WINDOWS\System32\drivers\bthprint.sys
2014-01-18 05:09:29 662BFD909447DD9CC15B1A1C366583B4 272128 ----a-w- C:\WINDOWS\System32\drivers\bthport.sys
2014-01-18 05:09:29 61ED91FDC8BDC432C9E51DDCB3D66FEE 15423 ----a-w- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
2014-01-18 05:09:29 61364CD71EF63B0F038B7E9DF00F1EFA 18944 ----a-w- C:\WINDOWS\System32\drivers\bthusb.sys
2014-01-18 05:09:29 3194C32E8A2403073B812183355E25C6 129045 ----a-w- C:\WINDOWS\System32\drivers\cxthsfs2.cty
2014-01-18 05:09:28 BB1A6FB7D35A91E599973FA74A619056 19200 ----a-w- C:\WINDOWS\System32\drivers\hidir.sys
2014-01-18 05:09:28 970178E8E003EB1481293830069624B9 220032 ----a-w- C:\WINDOWS\System32\drivers\hsfbs2s2.sys
2014-01-18 05:09:28 7BD2DE4C85EB4241EED57672B16A7D8D 25600 ----a-w- C:\WINDOWS\System32\drivers\hidbth.sys
2014-01-18 05:09:28 573C7D0A32852B48F3058CFD8026F511 144384 ----a-w- C:\WINDOWS\System32\drivers\hdaudbus.sys
2014-01-18 05:09:28 3A74C423CF6BCCA6982715878F450A3B 46464 ----a-w- C:\WINDOWS\System32\drivers\gagp30kx.sys
2014-01-18 05:09:27 1225EBEA76AAC3C84DF6C54FE5E5D8BE 685056 ----a-w- C:\WINDOWS\System32\drivers\hsfcxts2.sys
2014-01-18 05:09:26 EBB354438A4C5A3327FB97306260714A 1041536 ----a-w- C:\WINDOWS\System32\drivers\hsfdpsp2.sys
2014-01-18 05:09:25 E246A32C445056996074A397DA56E815 12544 ----a-w- C:\WINDOWS\System32\drivers\mdmxsdk.sys
2014-01-18 05:09:24 C53775780148884AC87C455489A0C070 126686 ----a-w- C:\WINDOWS\System32\drivers\mtlmnt5.sys
2014-01-18 05:09:23 54886A652BF5685192141DF304E923FD 1309184 ----a-w- C:\WINDOWS\System32\drivers\mtlstrm.sys
2014-01-18 05:09:22 B538DCD9816EA35FA4F637CFC261AAA8 12672 ----a-w- C:\WINDOWS\System32\drivers\mutohpen.sys
2014-01-18 05:09:22 905CB655E93D39C97E078A3C4C884F31 67866 ----a-w- C:\WINDOWS\System32\drivers\netwlan5.img
2014-01-18 05:09:22 6DDA78A0BE692B61B668FAB860F276CF 452736 ----a-w- C:\WINDOWS\System32\drivers\mtxparhm.sys
2014-01-18 05:09:22 576B34CEAE5B7E5D9FD2775E93B3DB53 180360 ----a-w- C:\WINDOWS\System32\drivers\ntmtlfax.sys
2014-01-18 05:09:19 2B298519EDBFCF451D43E0F1E8F1006D 1897408 ----a-w- C:\WINDOWS\System32\drivers\nv4_mini.sys
2014-01-18 05:09:18 E9AAA0092D74A9D371659C4C38882E12 13776 ----a-w- C:\WINDOWS\System32\drivers\recagent.sys
2014-01-18 05:09:18 851C30DF2807FCFA21E4C681A7D6440E 59136 ----a-w- C:\WINDOWS\System32\drivers\rfcomm.sys
2014-01-18 05:09:18 726548542AFECA56257FF01EB13BB6D7 30592 ----a-w- C:\WINDOWS\System32\drivers\rndismpx.sys
2014-01-18 05:09:18 0DBCC071A268E0340A2BA6BDD98BACE4 166912 ----a-w- C:\WINDOWS\System32\drivers\s3gnbm.sys
2014-01-18 05:09:17 D9673011648A71ED1E1F77B831BC85E6 129535 ----a-w- C:\WINDOWS\System32\drivers\slnt7554.sys
2014-01-18 05:09:17 D66D22D76878BF3483A6BE30183FB648 10240 ----a-w- C:\WINDOWS\System32\drivers\sffp_mmc.sys
2014-01-18 05:09:17 6B910A4F9FD45CAE6579564DA22D69AE 3901 ----a-w- C:\WINDOWS\System32\drivers\siint5.dll
2014-01-18 05:09:17 6B33D0EBD30DB32E27D1D78FE946A754 40960 ----a-w- C:\WINDOWS\System32\drivers\sisagp.sys
2014-01-18 05:09:16 F9B8E30E82EE95CF3E1D3E495599B99C 95424 ----a-w- C:\WINDOWS\System32\drivers\slnthal.sys
2014-01-18 05:09:16 DB56BB2C55723815CF549D7FC50CFCEB 13240 ----a-w- C:\WINDOWS\System32\drivers\slwdmsup.sys
2014-01-18 05:09:16 D85938F272D1BCF3DB3A31FC0A048928 44672 ----a-w- C:\WINDOWS\System32\drivers\uagp35.sys
2014-01-18 05:09:16 895BE38A993B9BD5ABBE570D63D88A2E 5888 ----a-w- C:\WINDOWS\System32\drivers\smbali.sys
2014-01-18 05:09:16 2C1779C0FEB1F4A6033600305EBA623A 404990 ----a-w- C:\WINDOWS\System32\drivers\slntamr.sys
2014-01-18 05:09:15 B4D7B7AD8A9F7C063C5CC3E2C1A0724E 12928 ----a-w- C:\WINDOWS\System32\drivers\usb8023x.sys
2014-01-18 05:09:15 813236B1183CFCF289E367BD5DE6E29E 123008 ----a-w- C:\WINDOWS\System32\drivers\usbvideo.sys
2014-01-18 05:09:15 754292CE5848B3738281B4F3607EAEF4 42240 ----a-w- C:\WINDOWS\System32\drivers\viaagp.sys
2014-01-18 05:09:15 5E9313B8BFB6025E7C38E9A0BF185303 11325 ----a-w- C:\WINDOWS\System32\drivers\vchnt5.dll
2014-01-18 05:09:14 ACED8C149B30F8496C237BCBA3727B48 14208 ----a-w- C:\WINDOWS\System32\drivers\wacompen.sys
2014-01-18 05:09:14 7BB3AA595E4507A788DE1CDC63F4C8C4 11871 ----a-w- C:\WINDOWS\System32\drivers\wadv09nt.sys
2014-01-18 05:09:14 791CC45DE6E50445BE72E8AD6401FF45 25471 ----a-w- C:\WINDOWS\System32\drivers\watv10nt.sys
2014-01-18 05:09:14 714038A8AA5DE08E12062202CD7EAEB5 11295 ----a-w- C:\WINDOWS\System32\drivers\wadv08nt.sys
2014-01-18 05:09:14 36E6C405B6143D09687F4056FD9A0D10 11935 ----a-w- C:\WINDOWS\System32\drivers\wadv11nt.sys
2014-01-18 05:09:14 352FA0E98BC461CE1CE5D41F64DB558D 22271 ----a-w- C:\WINDOWS\System32\drivers\watv06nt.sys
2014-01-18 05:09:14 0308AEF61941E4AF478FA1A0F83812F5 11807 ----a-w- C:\WINDOWS\System32\drivers\wadv07nt.sys
2014-01-14 13:43:19 875D2B1054F2ECD8F575D6CBE78DD7BA 57672 ----a-w- C:\WINDOWS\System32\drivers\aswTdi.sys
2014-01-14 13:43:18 1B0662514A68C3A42E60D240C5ABEF28 180248 ----a-w- C:\WINDOWS\System32\drivers\aswVmm.sys
2014-01-14 13:43:17 7BA7543EA7936A7ADA615F6DE7C95494 410528 ----a-w- C:\WINDOWS\System32\drivers\aswSP.sys
2014-01-14 13:43:17 0F639D0526820BA7872C963813E0EB8D 775952 ----a-w- C:\WINDOWS\System32\drivers\aswSnx.sys
2014-01-14 13:43:16 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\WINDOWS\System32\drivers\aswRvrt.sys
2014-01-14 13:43:15 B269C41DF93EFF71DF0986BD982D1C46 54832 ----a-w- C:\WINDOWS\System32\drivers\aswRdr.sys
2014-01-14 13:43:15 6F1505608202BBD179095A6A150D103F 67824 ----a-w- C:\WINDOWS\System32\drivers\aswMonFlt.sys
2014-01-10 22:00:25 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys
====== C:\WINDOWS\Tasks ======
2014-01-14 13:44:11 EA25802A429670C7D04E5D139C58B3DA 362 ---ha-w- C:\WINDOWS\Tasks\avast! Emergency Update.job
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-01-17 21:56:49 -------- d-----w- C:\Program Files\Mozilla Maintenance Service
2014-01-14 23:10:08 -------- d-----w- C:\Program Files\SystemRequirementsLab
2014-01-14 20:01:23 -------- d-----w- C:\Program Files\Common Files\Java
2014-01-14 19:58:48 -------- d-----w- C:\Program Files\Java
2014-01-14 19:42:19 -------- d-----w- C:\Program Files\Probit Software
2014-01-11 15:56:10 -------- d-----w- C:\Program Files\ESET
======= C: =====
2014-01-16 23:30:01 FA579938B0733B87066546AFE951082C 211 ----a-w- C:\Boot.bak
2014-01-16 23:29:54 94E5450C43E4CF78E1D3AD4816966909 260272 --sha-r- C:\cmldr
====== C:\Documents and Settings\Mitch\Application Data ======
2014-01-20 16:24:58 -------- d-----w- C:\Documents and Settings\Mitch\Start Menu\Programs\Accessories\Entertainment
2014-01-20 13:58:29 -------- d-----w- C:\Documents and Settings\LocalService\Start Menu\Programs\Accessories
2014-01-20 13:58:29 -------- d-----w- C:\Documents and Settings\LocalService\Start Menu\Programs
2014-01-20 13:55:48 -------- d-----w- C:\Documents and Settings\Mitch\Start Menu\Programs\Accessories
2014-01-19 15:04:14 -------- d-----w- C:\Documents and Settings\Mitch\Application Data\ElevatedDiagnostics
2014-01-16 23:02:23 -------- d-----r- C:\Documents and Settings\Mitch\Start Menu\Programs\Administrative Tools
2014-01-15 16:30:44 -------- d-----w- C:\Documents and Settings\Mitch\Start Menu\Programs\Startup
2014-01-15 16:30:44 -------- d-----r- C:\Documents and Settings\Mitch\Start Menu\Programs
2014-01-14 21:54:07 -------- d-----w- C:\Documents and Settings\Mitch\Application Data\SystemRequirementsLab
2014-01-14 20:03:06 -------- d-----w- C:\Documents and Settings\Mitch\Local Settings\Application Data\Sun
2014-01-14 19:54:54 -------- d-----w- C:\Documents and Settings\Mitch\Application Data\Sun
2014-01-11 20:11:24 -------- d-----w- C:\Documents and Settings\Mitch\Local Settings\Application Data\AVG Secure Search
====== C:\Documents and Settings\Mitch ======
2014-01-20 13:58:29 -------- d-----w- C:\Documents and Settings\LocalService\Start Menu
2014-01-19 22:26:31 C9560BBB239E0EA21EF4BEA39DD85F69 4121952 ----a-w- C:\Documents and Settings\Mitch\Desktop\tdsskiller.exe
2014-01-19 21:52:46 AEDB6AA9598337DA300942DEF6B5EFC5 4745728 ----a-w- C:\Documents and Settings\Mitch\Desktop\aswmbr.exe
2014-01-18 09:23:06 -------- d-s---w- C:\WINDOWS\system32\config\systemprofile\Cookies
2014-01-17 13:01:12 -------- d-sh--w- C:\Documents and Settings\NetworkService\Cookies
2014-01-15 15:36:47 -------- d--h--r- C:\Documents and Settings\Mitch\Recent

====== C: exe-files ==
2014-01-19 22:26:31 C9560BBB239E0EA21EF4BEA39DD85F69 4121952 ----a-w- C:\Documents and Settings\Mitch\Desktop\tdsskiller.exe
2014-01-19 21:52:46 AEDB6AA9598337DA300942DEF6B5EFC5 4745728 ----a-w- C:\Documents and Settings\Mitch\Desktop\aswmbr.exe
2014-01-19 14:45:04 A0844C730F1091B491A8737404F4C914 347816 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\MicrosoftFixit.AudioPlayback.LB.1631356987629282.1.1.Run.exe
2014-01-18 21:10:36 17C90B287476B5E2C9ECA9757317A94C 5744392 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\disk-defrag-setup.exe
2014-01-18 13:08:46 616C2E8B12AAA349CD3ACB38BF581700 16883056 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\IE8-WindowsXP-x86-ENU(4).exe
2014-01-16 23:29:53 A38C1A7D8D8F4428CD8E96F3F2B6E046 580608 ----a-w- C:\cmdcons\autofmt.exe
2014-01-16 23:29:51 23043C91A0F9DFB4B9E9F87B680863B4 588800 ----a-w- C:\cmdcons\autochk.exe
2014-01-16 13:29:59 F87BAAE8C4209EE98D2C5F2F4B7D7B51 1221120 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\FRST(1).exe
2014-01-16 13:13:49 F87BAAE8C4209EE98D2C5F2F4B7D7B51 1221120 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\FRST.exe
2014-01-15 14:55:10 90B4989B832A57D261F0AB51F143E97A 4645232 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\ccsetup409.exe
2014-01-14 19:56:31 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- C:\Documents and Settings\Mitch\Application Data\Sun\Java\jre1.7.0_51\lzma.exe
2014-01-14 19:54:39 D6A3D61864E8F9565550548865D7522C 921000 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\jxpiinstall.exe
2014-01-14 19:41:19 D1CD3DFF4C38F18DA206585C2D647B27 654672 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\EasyDriverPro.exe
2014-01-14 13:01:50 0AC21125A1438B1B5AE8886CE491D159 91412976 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\avast_free_antivirus_setup(1).exe
=== C: other files ==
2014-01-21 01:30:32 A29030FB93B2E48EDD124749881406CE 943211 ----a-w- C:\Documents and Settings\Mitch\Local Settings\Temp\sysspec\SysSpec.zip
2014-01-20 13:15:54 90C85FB61E98625A3E3607659FCE3508 2903255 ----a-w- C:\Documents and Settings\Mitch\Desktop\tweaking.com_windows_repair_aio.zip
2014-01-19 09:32:48 F80A415EF82CD06FFAF0D971528EAD38 265728 -c--a-w- C:\WINDOWS\system32\dllcache\http.sys
2014-01-18 12:43:46 0109C4F3850DFBAB279542515386AE22 10496 -c--a-w- C:\WINDOWS\system32\dllcache\ndistapi.sys
2014-01-18 12:39:35 96F7A9A7BF0C9C0440A967440065D33C 203136 -c--a-w- C:\WINDOWS\system32\dllcache\rmcast.sys
2014-01-18 12:39:31 B4D7B7AD8A9F7C063C5CC3E2C1A0724E 12928 -c--a-w- C:\WINDOWS\system32\dllcache\usb8023x.sys
2014-01-18 12:39:31 2A7A8AD9D39A2FAF9D9293B5DAFF3A4B 12928 -c--a-w- C:\WINDOWS\system32\dllcache\usb8023.sys
2014-01-18 12:36:54 43AF5212BD8FB5BA6EED9754358BD8F7 139784 -c--a-w- C:\WINDOWS\system32\dllcache\rdpwd.sys
2014-01-18 12:36:39 662BFD909447DD9CC15B1A1C366583B4 272128 -c--a-w- C:\WINDOWS\system32\dllcache\bthport.sys
2014-01-18 12:33:14 DE6A75F5C270E756C5508D94B6CF68F5 105472 -c--a-w- C:\WINDOWS\system32\dllcache\mup.sys
2014-01-18 12:26:19 2F597BB467E05B1FE3830EABD821B8E0 40960 -c--a-w- C:\WINDOWS\system32\dllcache\ndproxy.sys
2014-01-18 12:23:25 813236B1183CFCF289E367BD5DE6E29E 123008 -c--a-w- C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-01-18 12:23:25 4F9694BDEFC1F0629704A1E2B7B96A66 46848 -c--a-w- C:\WINDOWS\system32\dllcache\irbus.sys
2014-01-18 12:22:45 4BAC8DF07F1D8434FC640E677A62204E 30336 -c--a-w- C:\WINDOWS\system32\dllcache\usbehci.sys
2014-01-18 05:35:23 D0AB9975792977E620A5E42B3B88A4F1 403 -c--a-w- C:\WINDOWS\system32\dllcache\npdrmv2.zip
2014-01-18 05:35:23 C1A05574369B552F87898FDC6124AA74 22060 -c--a-w- C:\WINDOWS\system32\dllcache\npds.zip
2014-01-18 05:33:52 4F9694BDEFC1F0629704A1E2B7B96A66 46848 ----a-w- C:\WINDOWS\system32\drivers\irbus.sys
2014-01-18 05:30:02 70C14F5CCA5CF73F8A645C73A01D8726 92544 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mqac.sys
2014-01-18 05:29:04 51FDC510F49A49A2B09B4B8BC00ACF06 85813 ----a-w- C:\WINDOWS\ServicePackFiles\i386\adsutil.vbs
2014-01-18 05:28:56 36B9B950E3D2E100970A48D8BAD86740 163584 ----a-w- C:\WINDOWS\ServicePackFiles\i386\nwrdr.sys
2014-01-18 05:28:34 B43B36B382AEA10861F7C7A37F9D4AE2 46592 ----a-w- C:\WINDOWS\ServicePackFiles\i386\irbus.sys
2014-01-18 05:28:25 BB68CEBFFD181E18A26112D1B9F90F3D 36480 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bthprint.sys
2014-01-18 05:28:25 72FE2BEA6863D4EB93442A1C4FB5CA48 59136 ----a-w- C:\WINDOWS\ServicePackFiles\i386\gckernel.sys
2014-01-18 05:28:25 03A7E0922ACFE1B07D5DB2EEB0773063 44928 ----a-w- C:\WINDOWS\ServicePackFiles\i386\agpcpq.sys
2014-01-18 05:28:22 D80A8F6C0A717446496C3A06D33B0D9C 13824 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinttxx.sys
2014-01-18 05:28:22 9EE18A5A45552673A67532EA37370377 606684 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ltmdmnt.sys
2014-01-18 05:28:20 C740D0CB238670629AF1B740414A8F3C 17664 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ppa3.sys
2014-01-18 05:28:19 95C6432151CCFF8617352F8E616A1AA4 22016 ----a-w- C:\WINDOWS\ServicePackFiles\i386\msircomm.sys
2014-01-18 05:28:18 92CDD60B6730B9F50F6A1A0C1F8CDC81 27392 ----a-w- C:\WINDOWS\ServicePackFiles\i386\fdc.sys
2014-01-18 05:28:16 173F317CE0DB8E21322E71B7E60A27E8 32128 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbccgp.sys
2014-01-18 05:28:13 9EF487A186DEA361AA06913A75B3FA99 14592 ----a-w- C:\WINDOWS\ServicePackFiles\i386\kbdhid.sys
2014-01-18 05:28:13 7BB3AA595E4507A788DE1CDC63F4C8C4 11871 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wadv09nt.sys
2014-01-18 05:28:13 5252605079810904E31C332E241CD59B 334848 ----a-w- C:\WINDOWS\ServicePackFiles\i386\srv.sys
2014-01-18 05:28:11 E90AC2B14E98F1A4372E5891B4278784 14336 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinpdxx.sys
2014-01-18 05:28:10 DCA17912A1926AE427537648FC0E74D5 154624 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wlluc48.sys
2014-01-18 05:28:06 7FF1F1FD8609C149AA432F95A8163D97 10880 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ndisip.sys
2014-01-18 05:28:04 754292CE5848B3738281B4F3607EAEF4 42240 ----a-w- C:\WINDOWS\ServicePackFiles\i386\viaagp.sys
2014-01-18 05:28:04 67FFBC158DD4D27BA3FC92C6ACD87F73 29455 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1xbxx.sys
2014-01-18 05:28:02 B5B8A80875C1DEDEDA8B02765642C32F 60800 ----a-w- C:\WINDOWS\ServicePackFiles\i386\arp1394.sys
2014-01-18 05:28:01 93EA8D04EC73A85DB02EB8805988F733 361344 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
2014-01-18 05:28:00 D9673011648A71ED1E1F77B831BC85E6 129535 ----a-w- C:\WINDOWS\ServicePackFiles\i386\slnt7554.sys
2014-01-18 05:28:00 6B56CEB3C6F9D5CD7293DBD9FE23B311 34560 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ntio804.sys
2014-01-18 05:27:59 7AD224AD1A1437FE28D89CF22B17780A 175744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rdbss.sys
2014-01-18 05:27:58 3E5D89099DED9E86E5639F411693218F 49408 ----a-w- C:\WINDOWS\ServicePackFiles\i386\stream.sys
2014-01-18 05:27:56 8F5FCFF8E8848AFAC920905FBD9D33C8 2944 ----a-w- C:\WINDOWS\ServicePackFiles\i386\drmkaud.sys
2014-01-18 05:27:53 2E9B23EB1C2F16838F48B553CC07F8A7 29502 ----a-w- C:\WINDOWS\ServicePackFiles\i386\pca200e.sys
2014-01-18 05:27:48 F828DD7E1419B6653894A8F97A0094C5 57600 ----a-w- C:\WINDOWS\ServicePackFiles\i386\redbook.sys
2014-01-18 05:27:48 DAC7D785CF62F5BD41441E9D6F5A6EFE 26367 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1snxx.sys
2014-01-18 05:27:48 8733A00B08F8CF05D50A5B8F61758A93 8832 ----a-w- C:\WINDOWS\ServicePackFiles\i386\powerfil.sys
2014-01-18 05:27:47 40B5AC2E4E9066D77F097C6C6FAA778A 48640 ----a-w- C:\WINDOWS\ServicePackFiles\i386\cwrwdm.sys
2014-01-18 05:27:45 65FEF13327D25BC33AF78178365C1412 137088 ----a-w- C:\WINDOWS\ServicePackFiles\i386\essm2e.sys
2014-01-18 05:27:42 4C8FCB5CC53AAB716D810740FE59D025 52352 ----a-w- C:\WINDOWS\ServicePackFiles\i386\volsnap.sys
2014-01-18 05:27:41 8F861EDA21C05857EB8197300A92501C 12288 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tunmp.sys
2014-01-18 05:27:41 3182D64AE053D6FB034F44B6DEF8034A 30848 ----a-w- C:\WINDOWS\ServicePackFiles\i386\npfs.sys
2014-01-18 05:27:40 ED4C2BF8403F4437987C0BA09CF48716 13824 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinmdxx.sys
2014-01-18 05:27:39 80602B8746D3738F5886CE3D67EF06B6 101120 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bthpan.sys
2014-01-18 05:27:38 4C0B8EF721783F52F8E531FBDC4B1F74 31744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wceusbsh.sys
2014-01-18 05:27:38 0BE5AEF125BE881C4F854C554F2B025C 17024 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ccdecode.sys
2014-01-18 05:27:34 C0F8E0C2C3C0437CF37C6781896DC3EC 15232 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mpe.sys
2014-01-18 05:27:31 A717C8721046828520C9EDF31288FC00 25856 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbprint.sys
2014-01-18 05:27:31 8FCE268CDBDD83B23419D1F35F42C7B1 37760 ----a-w- C:\WINDOWS\ServicePackFiles\i386\amdk7.sys
2014-01-18 05:27:30 68755F0FF16070178B54674FE5B847B0 456576 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mrxsmb.sys
2014-01-18 05:27:30 290913DC4F1125E5A82DE52579A44C43 15872 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbintel.sys
2014-01-18 05:27:22 8C953733D8F36EB2133F5BB58808B66B 36352 ----a-w- C:\WINDOWS\ServicePackFiles\i386\intelppm.sys
2014-01-18 05:27:21 9F3A2F5AA6875C72BF062C712CFA2674 96512 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
2014-01-18 05:27:18 E65E2353A5D74EA89971CB918EEEB2F6 14208 ----a-w- C:\WINDOWS\ServicePackFiles\i386\diskdump.sys
2014-01-18 05:27:16 32F322CE525831C105E4BA7989ACA184 7552 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sonyait.sys
2014-01-18 05:27:15 EBB354438A4C5A3327FB97306260714A 1041536 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hsfdpsp2.sys
2014-01-18 05:27:14 A7DA20AB18A1BDAE28B0F349E57DA0D1 63744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mf.sys
2014-01-18 05:27:07 BCAF267B10620F8C93F6E87AB726E145 63663 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1rvxx.sys
2014-01-18 05:27:06 7C824CF7BBDE77D95C08005717A95F6F 153344 ----a-w- C:\WINDOWS\ServicePackFiles\i386\dmio.sys
2014-01-18 05:27:05 1DF7F42665C94B825322FAE71721130D 182656 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
2014-01-18 05:26:59 EFEEC01B1D3CF84F16DDD24D9D9D8F99 48384 ----a-w- C:\WINDOWS\ServicePackFiles\i386\raspptp.sys
2014-01-18 05:26:59 D738273F218A224C1DDAC04203F27A84 33599 ----a-w- C:\WINDOWS\ServicePackFiles\i386\watv04nt.sys
2014-01-18 05:26:56 DE01D79A607C7B9AE7FF88E934D0FFB2 1845632 ----a-w- C:\WINDOWS\ServicePackFiles\i386\win32k.sys
2014-01-18 05:26:55 F7706DAE7D101F1B19CE552D772EBFCE 21343 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1ttxx.sys
2014-01-18 05:26:53 8A7EB56BF52FEED03495C7AB2C718A55 16000 ----a-w- C:\WINDOWS\ServicePackFiles\i386\smbbatt.sys
2014-01-18 05:26:53 6CB08593487F5701D2D2254E693EAFCE 60160 ----a-w- C:\WINDOWS\ServicePackFiles\i386\drmk.sys
2014-01-18 05:26:50 A23675760DEC131B9F799B6FB038A1F0 10880 ----a-w- C:\WINDOWS\ServicePackFiles\i386\admjoy.sys
2014-01-18 05:26:49 F934D1B230F84E1D19DD00AC5A7A83ED 71552 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bridge.sys
2014-01-18 05:26:49 F50D9BDBB25CCE075E514DC07472A22F 36736 ----a-w- C:\WINDOWS\ServicePackFiles\i386\crusoe.sys
2014-01-18 05:26:49 0052D118995CBAB152DAABE6106D1442 23615 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wch7xxnt.sys
2014-01-18 05:26:48 0A02C63C8B144BD8C86B103DEE7C86A2 35072 ----a-w- C:\WINDOWS\ServicePackFiles\i386\msgpc.sys
2014-01-18 05:26:47 C885B02847F5D2FD45A24E219ED93B32 63744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\cdfs.sys
2014-01-18 05:26:44 C941EA2454BA8350021D774DAF0F1027 19072 ----a-w- C:\WINDOWS\ServicePackFiles\i386\msfs.sys
2014-01-18 05:26:39 3BB22519A194418D5FEC05D800A19AD0 36608 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ip6fw.sys
2014-01-18 05:26:38 AB8B92451ECB048A4D1DE7C3FFCB4A9F 6272 ----a-w- C:\WINDOWS\ServicePackFiles\i386\splitter.sys
2014-01-18 05:26:38 6FDC61E8E8E17F6ECC2D9A10FA8DF347 12047 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1pdxx.sys
2014-01-18 05:26:37 8D04819A3CE51B9EB47E5689B44D43C4 79232 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sdbus.sys
2014-01-18 05:26:34 FD79193A9E7352B19DB02630E00F7B6A 27904 ----a-w- C:\WINDOWS\ServicePackFiles\i386\perm2.sys
2014-01-18 05:26:33 C42584FD66CE9E17403AEBCA199F7BDB 8832 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wmiacpi.sys
2014-01-18 05:26:33 BAD59648BA099DA4A17680B39730CB3D 4992 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mspqm.sys
2014-01-18 05:26:33 0A38F11C446ADA33CAFA1B415AF568E2 12800 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tree.com
2014-01-18 05:26:30 F0F5C4C4BF6018414B066A3600799C77 26112 ----a-w- C:\WINDOWS\ServicePackFiles\i386\memstpci.sys
2014-01-18 05:26:30 56B7F78228CC41FFA1F5BDF3AF799D19 11776 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bdasup.sys
2014-01-18 05:26:29 ECFF394D65671EFDE5A872EB9EF4F2D5 202624 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rmcast.sys
2014-01-18 05:26:27 714038A8AA5DE08E12062202CD7EAEB5 11295 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wadv08nt.sys
2014-01-18 05:26:25 AD363B8456AB92C88E33B8F544D9D07E 13801 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tscuinst.vbs
2014-01-18 05:26:24 C93C9FF7B04D772627A3646D89F7BF89 11264 ----a-w- C:\WINDOWS\ServicePackFiles\i386\irenum.sys
2014-01-18 05:26:19 8B8B1BE2DBA4025DA6786C645F77F123 88320 ----a-w- C:\WINDOWS\ServicePackFiles\i386\nwlnkipx.sys
2014-01-18 05:26:19 1C888B000C2F9492F4B15B5B6B84873E 26112 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbser.sys
2014-01-18 05:26:19 044452051F3E02E7963599FC8F4F3E25 36352 ----a-w- C:\WINDOWS\ServicePackFiles\i386\disk.sys
2014-01-18 05:26:17 130C6F199E953AAC3807F6844B61A8D5 63547 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sla30nd5.sys
2014-01-18 05:26:16 DA36687D701C833430605A298731410B 52224 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinraxx.sys
2014-01-18 05:26:16 5D81CF9A2F1A3A756B66CF684911CDF0 34688 ----a-w- C:\WINDOWS\ServicePackFiles\i386\netbios.sys
2014-01-18 05:26:15 BEE793D4A059CAEA55D6AC20E19B3A8F 12800 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usb8023.sys
2014-01-18 05:26:15 3941D127AEF12E93ADDF6FE6EE027E0F 4352 ----a-w- C:\WINDOWS\ServicePackFiles\i386\swenum.sys
2014-01-18 05:26:13 CB08AED0DE2DD889A8A820CD8082D83C 42752 ----a-w- C:\WINDOWS\ServicePackFiles\i386\alim1541.sys
2014-01-18 05:26:09 1AF592532532A402ED7C060F6954004F 36864 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hidclass.sys
2014-01-18 05:26:07 8B83F3ED0F1688B4958F77CD6D2BF290 60800 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sysaudio.sys
2014-01-18 05:26:05 63BBFCA7F390F4C49ED4B96BFB1633E0 121984 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbvideo.sys
2014-01-18 05:26:01 B1E4EC35BD16D7FAF0B090A74FFD284C 2247 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tscdsbl.bat
2014-01-18 05:25:59 FBBCFEC1379C5C02D88A361993EDF1B8 42537 ----a-w- C:\WINDOWS\ServicePackFiles\i386\keyboard.sys
2014-01-18 05:25:59 692BCF44383D056AED41B045A323D378 172416 ----a-w- C:\WINDOWS\ServicePackFiles\i386\kmixer.sys
2014-01-18 05:25:58 1C1A47B40C23358245AA8D0443B6935E 25600 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbcamd.sys
2014-01-18 05:25:57 791CC45DE6E50445BE72E8AD6401FF45 25471 ----a-w- C:\WINDOWS\ServicePackFiles\i386\watv10nt.sys
2014-01-18 05:25:56 60B6AA2DC1521DA343F781B70EB7895A 11615 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1mdxx.sys
2014-01-18 05:25:56 089870DAB7AA277585C475AE09EE4C63 11520 ----a-w- C:\WINDOWS\ServicePackFiles\i386\scsiscan.sys
2014-01-18 05:25:54 AE76348A2605FB197FA8FF1D6F547836 55808 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atmlane.sys
2014-01-18 05:25:52 D66D22D76878BF3483A6BE30183FB648 10240 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sffp_mmc.sys
2014-01-18 05:25:51 76C465F570E90C28942D52CCB2580A10 96384 ----a-w- C:\WINDOWS\ServicePackFiles\i386\scsiport.sys
2014-01-18 05:25:46 B244960E5A1DB8E9D5D17086DE37C1E4 43904 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sbp2port.sys
2014-01-18 05:25:46 A80B9A0BAD1B73637DBCBBA7DF72D3FD 42368 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mountmgr.sys
2014-01-18 05:25:42 C56B6D0402371CF3700EB322EF3AAF61 21896 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tdtcp.sys
2014-01-18 05:25:39 6B33D0EBD30DB32E27D1D78FE946A754 40960 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sisagp.sys
2014-01-18 05:25:39 0D3A8FAFCEACD8B7625CD549757A7DF1 20992 ----a-w- C:\WINDOWS\ServicePackFiles\i386\vga.sys
2014-01-18 05:25:36 BEB3BA25197665D82EC7065B724171C6 19712 ----a-w- C:\WINDOWS\ServicePackFiles\i386\partmgr.sys
2014-01-18 05:25:36 3E4B043F8BC6BE1D4820CC6C9C500306 206976 ----a-w- C:\WINDOWS\ServicePackFiles\i386\dot4.sys
2014-01-18 05:25:35 AC7280566A7BB85CB3291F04DDC1198E 71168 ----a-w- C:\WINDOWS\ServicePackFiles\i386\dxg.sys
2014-01-18 05:25:32 FCA6F069597B62D42495191ACE3FC6C1 37888 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bthmodem.sys
2014-01-18 05:25:29 11D42BB6206F33FBB3BA0288D3EF81BD 180608 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mrxdav.sys
2014-01-18 05:25:24 826BDEEF30E4392F5F868ECDF606C29F 28288 ----a-w- C:\WINDOWS\ServicePackFiles\i386\grserial.sys
2014-01-18 05:25:22 8842837C4D8311BF8E72BEE8CCC42217 35424 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ntio412.sys
2014-01-18 05:25:22 0DBCC071A268E0340A2BA6BDD98BACE4 166912 ----a-w- C:\WINDOWS\ServicePackFiles\i386\s3gnbm.sys
2014-01-18 05:25:18 A8FE41A339CEB3B517321A7FF0ED67C5 20864 ----a-w- C:\WINDOWS\ServicePackFiles\i386\lwadihid.sys
2014-01-18 05:25:18 38D332A6D56AF32635675F132548343E 143744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\fastfat.sys
2014-01-18 05:25:17 EB631AD8B3E8DCE20CEF046B6D602B98 20736 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ramdisk.sys
2014-01-18 05:25:16 B94D57F1D16BB5A66F6083140346B4AA 34173 ----a-w- C:\WINDOWS\ServicePackFiles\i386\forehe.sys
2014-01-18 05:25:16 6DDA78A0BE692B61B668FAB860F276CF 452736 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mtxparhm.sys
2014-01-18 05:25:15 0539D5E53587F82D1B4FD74C5BE205CF 19072 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tdi.sys
2014-01-18 05:25:14 A32BEBAF723557681BFC6BD93E98BD26 35840 ----a-w- C:\WINDOWS\ServicePackFiles\i386\processr.sys
2014-01-18 05:25:14 895BE38A993B9BD5ABBE570D63D88A2E 5888 ----a-w- C:\WINDOWS\ServicePackFiles\i386\smbali.sys
2014-01-18 05:25:03 726548542AFECA56257FF01EB13BB6D7 30592 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rndismpx.sys
2014-01-18 05:24:56 0F6C187D38D98F8DF904589A5F94D411 13952 ----a-w- C:\WINDOWS\ServicePackFiles\i386\cmbatt.sys
2014-01-18 05:24:49 88155247177638048422893737429D9E 40840 ----a-w- C:\WINDOWS\ServicePackFiles\i386\termdd.sys
2014-01-18 05:24:49 748031FF4FE45CCC47546294905FEAB8 20352 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hidbatt.sys
2014-01-18 05:24:49 6728E45B66F93C08F11DE2E316FC70DD 139656 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rdpwd.sys
2014-01-18 05:24:48 77813007BA6265C4B6098187E6ED79D2 15232 ----a-w- C:\WINDOWS\ServicePackFiles\i386\streamip.sys
2014-01-18 05:24:47 8CE882BCC6CF8A62F2B2323D95CB3D01 56576 ----a-w- C:\WINDOWS\ServicePackFiles\i386\swmidi.sys
2014-01-18 05:24:42 9D318099BF3876A4AF4BC75966D27603 30671 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1raxx.sys
2014-01-18 05:24:41 F6AACF5BCE2893E0C1754AFEB672E5C9 264832 ----a-w- C:\WINDOWS\ServicePackFiles\i386\http.sys
2014-01-18 05:24:41 77B575D7AAB35D5908AE6CE681608D62 63488 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinxsxx.sys
2014-01-18 05:24:40 589C2BCDB5BD602BF7B63D210407EF8C 19455 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wvchntxx.sys
2014-01-18 05:24:38 F9B8E30E82EE95CF3E1D3E495599B99C 95424 ----a-w- C:\WINDOWS\ServicePackFiles\i386\slnthal.sys
2014-01-18 05:24:38 0308AEF61941E4AF478FA1A0F83812F5 11807 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wadv07nt.sys
2014-01-18 05:24:36 914A9709FC3BF419AD2F85547F2A4832 48128 ----a-w- C:\WINDOWS\ServicePackFiles\i386\61883.sys
2014-01-18 05:24:36 61364CD71EF63B0F038B7E9DF00F1EFA 18944 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bthusb.sys
2014-01-18 05:24:31 EB1F6BAB6C22EDE0BA551B527475F7E9 12127 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wadv02nt.sys
2014-01-18 05:24:30 B87AB476DCF76E72010632B5550955F5 20864 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ipinip.sys
2014-01-18 05:24:30 5BC962F2654137C9909C3D4603587DEE 41472 ----a-w- C:\WINDOWS\ServicePackFiles\i386\raspppoe.sys
2014-01-18 05:24:23 C98B39829C2BBD34E454150633C62C78 19200 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wstcodec.sys
2014-01-18 05:24:23 866D538EBE33709A5C9F5C62B73B7D14 11136 ----a-w- C:\WINDOWS\ServicePackFiles\i386\slip.sys
2014-01-18 05:24:22 B153AFFAC761E7F5FCFA822B9C4E97BC 14336 ----a-w- C:\WINDOWS\ServicePackFiles\i386\asyncmac.sys
2014-01-18 05:24:22 463C1EC80CD17420A542B7F36A36F128 24576 ----a-w- C:\WINDOWS\ServicePackFiles\i386\kbdclass.sys
2014-01-18 05:24:21 2D030C2F6B036CA0BC243E1B16D924D1 327040 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati2mtaa.sys
2014-01-18 05:24:13 D45926117EB9FA946A6AF572FBE1CAA3 44544 ----a-w- C:\WINDOWS\ServicePackFiles\i386\fips.sys
2014-01-18 05:24:11 D507C1400284176573224903819FFDA3 20992 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rtl8139.sys
2014-01-18 05:24:11 9D27E7B80BFCDF1CDD9B555862D5E7F0 20480 ----a-w- C:\WINDOWS\ServicePackFiles\i386\flpydisk.sys
2014-01-18 05:24:11 52E60F29221D0D1AC16737E8DBF7C3E9 24960 ----a-w- C:\WINDOWS\ServicePackFiles\i386\pciidex.sys
2014-01-18 05:24:11 05A299EC56E52649B1CF2FC52D20F2D7 37248 ----a-w- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
2014-01-18 05:24:10 E625773D7B950842D582F713656859C0 13696 ----a-w- C:\WINDOWS\ServicePackFiles\i386\avcstrm.sys
2014-01-18 05:24:09 402DDC88356B1BAC0EE3DD1580C76A31 384768 ----a-w- C:\WINDOWS\ServicePackFiles\i386\update.sys
2014-01-18 05:24:07 1AB3D00C991AB086E69DB84B6C0ED78F 10112 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ndistapi.sys
2014-01-18 05:24:06 9916C1225104BA14794209CFA8012159 59904 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atmarpc.sys
2014-01-18 05:24:05 AA7A55536096D646DC7AB0AC5641E9E8 225664 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tcpip6.sys
2014-01-18 05:24:05 592B9D0FB93647C35B6F6883C988D225 169984 ----a-w- C:\WINDOWS\ServicePackFiles\i386\pcx500.sys
2014-01-18 05:24:04 2C1779C0FEB1F4A6033600305EBA623A 404990 ----a-w- C:\WINDOWS\ServicePackFiles\i386\slntamr.sys
2014-01-18 05:24:03 E20B95BAEDB550F32DD489265C1DA1F6 34560 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wanarp.sys
2014-01-18 05:24:02 083A052659F5310DD8B6A6CB05EDCF8E 42112 ----a-w- C:\WINDOWS\ServicePackFiles\i386\imapi.sys
2014-01-18 05:24:00 993E7BD6438FE989E328C6B4BCA246A9 57856 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinbtxx.sys
2014-01-18 05:23:58 6E4C9F21F0FAE8940661144F41B13203 10240 ----a-w- C:\WINDOWS\ServicePackFiles\i386\compbatt.sys
2014-01-18 05:23:56 B2CF4B0786F8212CB92ED2B50C6DB6B0 129792 ----a-w- C:\WINDOWS\ServicePackFiles\i386\fltmgr.sys
2014-01-18 05:23:56 576B34CEAE5B7E5D9FD2775E93B3DB53 180360 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ntmtlfax.sys
2014-01-18 05:23:56 11B4A627BC9614B885C4969BFA5FF8A6 51328 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rasl2tp.sys
2014-01-18 05:23:56 0D93976F7801B7FCD8135CC77257BBD0 14208 ----a-w- C:\WINDOWS\ServicePackFiles\i386\battc.sys
2014-01-18 05:23:55 7BD2DE4C85EB4241EED57672B16A7D8D 25600 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hidbth.sys
2014-01-18 05:23:55 1F4260CC5B42272D71F79E570A27A4FE 62976 ----a-w- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
2014-01-18 05:23:55 116BFF96077A4A724E0AAB800525CEB5 36224 ----a-w- C:\WINDOWS\ServicePackFiles\i386\an983.sys
2014-01-18 05:23:51 ACA5E7B54409F9CB5EED97ED0C81120E 88192 ----a-w- C:\WINDOWS\ServicePackFiles\i386\irda.sys
2014-01-18 05:23:45 85417255965DBD930311AC30A07780CC 7040 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ltotape.sys
2014-01-18 05:23:44 CC748EA12C6EFFDE940EE98098BF96BB 152832 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ipnat.sys
2014-01-18 05:23:41 6471A66807F5E104E4885F5B67349397 12040 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tdpipe.sys
2014-01-18 05:23:37 C53775780148884AC87C455489A0C070 126686 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mtlmnt5.sys
2014-01-18 05:23:37 B279426E3C0C344893ED78A613A73BDE 17024 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bthenum.sys
2014-01-18 05:23:37 24BB6CA00ED8C91DAE2FD13E5F6EEC39 32384 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usb101et.sys
2014-01-18 05:23:37 01B3E28A153D49F8F6DF82BF9E5900FC 18917 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tscinst.vbs
2014-01-18 05:23:36 C17C331E435ED8737525C86A7557B3AC 11008 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sffp_sd.sys
2014-01-18 05:23:36 8BED39E3C35D6A489438B8141717A557 142592 ----a-w- C:\WINDOWS\ServicePackFiles\i386\aec.sys
2014-01-18 05:23:36 1E421A6BCF2203CC61B821ADA9DE878B 40320 ----a-w- C:\WINDOWS\ServicePackFiles\i386\nmnt.sys
2014-01-18 05:23:33 ED968D23354DAA0D7C621580C012A1F6 19551 ----a-w- C:\WINDOWS\ServicePackFiles\i386\watv02nt.sys
2014-01-18 05:23:33 E82A496C3961EFC6828B508C310CE98F 146048 ----a-w- C:\WINDOWS\ServicePackFiles\i386\portcls.sys
2014-01-18 05:23:28 7E14BAD6CBC8EE6857902E33128E6DF2 12288 ----a-w- C:\WINDOWS\ServicePackFiles\i386\4mmdat.sys
2014-01-18 05:23:28 2B298519EDBFCF451D43E0F1E8F1006D 1897408 ----a-w- C:\WINDOWS\ServicePackFiles\i386\nv4_mini.sys
2014-01-18 05:23:27 AF5F4F3F14A8EA2C26DE30F7A1E17136 15488 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mssmbios.sys
2014-01-18 05:23:27 819BF44085104BE6527B86A88ACF856B 84480 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ac97via.sys
2014-01-18 05:23:19 A0F70EDB428EAB4422B665B1943626DD 29696 ----a-w- C:\WINDOWS\ServicePackFiles\i386\format.com
2014-01-18 05:23:19 A0B8CF9DEB1184FBDD20784A58FA75D4 15104 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbscan.sys
2014-01-18 05:23:19 1AB3CDDE553B6E064D2E754EFE20285C 59520 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbhub.sys
2014-01-18 05:23:19 0FA803C64DF0914B41F807EA276BF2A6 11904 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sffdisk.sys
2014-01-18 05:23:19 0D8CAB1F08F7D3C4DE228B49E12E596A 34735 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1xsxx.sys
2014-01-18 05:23:18 D7701D7E72243286CC88C9973D891057 37376 ----a-w- C:\WINDOWS\ServicePackFiles\i386\amdk6.sys
2014-01-18 05:23:10 15CABD0F7C00C47C70124907916AF3F1 196224 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rdpdr.sys
2014-01-18 05:23:07 9E89EF60E9EE05E3F2EEF2DA7397F1C1 120192 ----a-w- C:\WINDOWS\ServicePackFiles\i386\pcmcia.sys
2014-01-18 05:23:07 791912E524CC2CC6F50B5F2B52D1EB71 143872 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbport.sys
2014-01-18 05:23:04 E9AAA0092D74A9D371659C4C38882E12 13776 ----a-w- C:\WINDOWS\ServicePackFiles\i386\recagent.sys
2014-01-18 05:23:04 35C9E97194C8CFB8430125F8DBC34D04 23040 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mouclass.sys
2014-01-18 05:23:04 26496F9DEE2D787FC3E61AD54821FFE6 20608 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbuhci.sys
2014-01-18 05:23:03 C1536905AD2067812A238BCE998F4BFF 53376 ----a-w- C:\WINDOWS\ServicePackFiles\i386\1394bus.sys
2014-01-18 05:23:00 EDC1531A49C80614B2CFDA43CA8659AB 91520 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ndiswan.sys
2014-01-18 05:23:00 08FD04AA961BDC77FB983F328334E3D7 42368 ----a-w- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
2014-01-18 05:22:59 601844CBCF617FF8C868130CA5B2039D 30592 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rndismp.sys
2014-01-18 05:22:57 BB1A6FB7D35A91E599973FA74A619056 19200 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hidir.sys
2014-01-18 05:22:56 83F0E06A7F6FC3833BC534AFB0F833CE 6912 ----a-w- C:\WINDOWS\ServicePackFiles\i386\smbclass.sys
2014-01-18 05:22:56 6215023940CFD3702B46ABC304E1D45A 40576 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ndproxy.sys
2014-01-18 05:22:52 A219903CCF74233761D92BEF471A07B1 68224 ----a-w- C:\WINDOWS\ServicePackFiles\i386\pci.sys
2014-01-18 05:22:52 6768ACF64B18196494413695F0C3A00F 83072 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wdmaud.sys
2014-01-18 05:22:52 322D0E36693D6E24A2398BEE62A268CD 138112 ----a-w- C:\WINDOWS\ServicePackFiles\i386\afd.sys
2014-01-18 05:22:46 8A208DFCF89792A484E76C40E5F50B45 52864 ----a-w- C:\WINDOWS\ServicePackFiles\i386\dmusic.sys
2014-01-18 05:22:45 5B50F1B2A2ED47D560577B221DA734DB 85248 ----a-w- C:\WINDOWS\ServicePackFiles\i386\nabtsfec.sys
2014-01-18 05:22:44 7B5B44EFE5EB9DADFB8EE29700885D23 12415 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wadv01nt.sys
2014-01-18 05:22:43 4A0B06AA8943C1E332520F7440C0AA30 52480 ----a-w- C:\WINDOWS\ServicePackFiles\i386\i8042prt.sys
2014-01-18 05:22:43 23C74D75E36E7158768DD63D92789A91 75264 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ipsec.sys
2014-01-18 05:22:42 7384EA15B591C7E889F5CD127BDB3D57 420992 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ltmdmntt.sys
2014-01-18 05:22:41 FE47DD8FE6D7768FF94EBEC6C74B2719 49536 ----a-w- C:\WINDOWS\ServicePackFiles\i386\classpnp.sys
2014-01-18 05:22:39 8759322FFC1A50569C1E5528EE8026B7 701440 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati2mtag.sys
2014-01-18 05:22:38 C90018BAFDC7098619A4A95B046B30F3 42752 ----a-w- C:\WINDOWS\ServicePackFiles\i386\p3.sys
2014-01-18 05:22:38 AF19B57573AB7697B3AC6481DA138682 8320 ----a-w- C:\WINDOWS\ServicePackFiles\i386\dlttape.sys
2014-01-18 05:22:38 06B7EF73BA5F302EECC294CDF7E19702 161020 ----a-w- C:\WINDOWS\ServicePackFiles\i386\i81xnt5.sys
2014-01-18 05:22:36 CA33832DF41AFB202EE7AEB05145922F 61696 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ohci1394.sys
2014-01-18 05:22:36 2F625D11385B1A94360BFC70AAEFDEE1 105344 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mup.sys
2014-01-18 05:22:31 5787B80C2E3C5E2F56C2A233D91FA2C9 66048 ----a-w- C:\WINDOWS\ServicePackFiles\i386\udfs.sys
2014-01-18 05:22:31 065639773D8B03F33577F6CDAEA21063 10624 ----a-w- C:\WINDOWS\ServicePackFiles\i386\gameenum.sys
2014-01-18 05:22:29 E53736A9E30C45FA9E7B5EAC55056D1D 5504 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mstee.sys
2014-01-18 05:22:26 D649C57DA6FA762C64013747E5D7D2D6 56623 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1btxx.sys
2014-01-18 05:22:21 5575FAF8F97CE5E713D108C2A58D7C7C 80128 ----a-w- C:\WINDOWS\ServicePackFiles\i386\parport.sys
2014-01-18 05:22:20 9A6A0193C0F6A79F191171816976FC73 132695 ----a-w- C:\WINDOWS\ServicePackFiles\i386\netwlan5.sys
2014-01-18 05:22:19 2EF8C49FD0FCBEE4A94B47D3E1F36C86 16896 ----a-w- C:\WINDOWS\ServicePackFiles\i386\more.com
2014-01-18 05:22:18 90A3935D05B494A5A39D37E71F09A677 20480 ----a-w- C:\WINDOWS\ServicePackFiles\i386\secdrv.sys
2014-01-18 05:22:17 D1575E71568F4D9E14CA56B7B0453BF1 7552 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mskssrv.sys
2014-01-18 05:22:16 1477849772712BAC69C144DCF2C9CE81 51200 ----a-w- C:\WINDOWS\ServicePackFiles\i386\msdv.sys
2014-01-18 05:22:16 0F29512CCD6BEAD730039FB4BD2C85CE 15744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\serenum.sys
2014-01-18 05:22:13 065A6D38A79216592DE03F3525D6296E 231552 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ac97ali.sys
2014-01-18 05:22:09 3A74C423CF6BCCA6982715878F450A3B 46464 ----a-w- C:\WINDOWS\ServicePackFiles\i386\gagp30kx.sys
2014-01-18 05:22:08 95B4FB835E28AA1336CEEB07FD5B9398 43008 ----a-w- C:\WINDOWS\ServicePackFiles\i386\amdagp.sys
2014-01-18 05:22:08 8E6B8C671615D126FDC553D1E2DE5562 11392 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sfloppy.sys
2014-01-18 05:22:05 F8E6956A614F15A0860474C5E2A7DE6B 38912 ----a-w- C:\WINDOWS\ServicePackFiles\i386\avc.sys
2014-01-18 05:22:03 65DCF09D0E37D4C6B11B5B0B76D470A7 30208 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbehci.sys
2014-01-18 05:21:57 67039D04A17CD772986821B23A48DA4F 28032 ----a-w- C:\WINDOWS\ServicePackFiles\i386\perm3.sys
2014-01-18 05:21:56 970178E8E003EB1481293830069624B9 220032 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hsfbs2s2.sys
2014-01-18 05:21:50 352FA0E98BC461CE1CE5D41F64DB558D 22271 ----a-w- C:\WINDOWS\ServicePackFiles\i386\watv06nt.sys
2014-01-18 05:21:48 E919708DB44ED8543A7C017953148330 60032 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbaudio.sys
2014-01-18 05:21:46 76BB022C2FB6902FD5BDD4F78FC13A5D 73472 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sr.sys
2014-01-18 05:21:46 254C1B277248D74F3ECD2E468F0927A7 79104 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rocket.sys
2014-01-18 05:21:43 D83BDD5C059667A2F647A6BE5703A4D2 29311 ----a-w- C:\WINDOWS\ServicePackFiles\i386\watv01nt.sys
2014-01-18 05:21:43 489703624DAC94ED943C2ABDA022A1CD 25344 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sonydcam.sys
2014-01-18 05:21:39 23168BA9E0B079461B9F2A6CFE57A84C 6016 ----a-w- C:\WINDOWS\ServicePackFiles\i386\qic157.sys
2014-01-18 05:21:36 F10863BF1CCC290BABD1A09188AE49E0 18560 ----a-w- C:\WINDOWS\ServicePackFiles\i386\i2omp.sys
2014-01-18 05:21:36 CCA207A8896D4C6A0C9CE29A4AE411A7 64512 ----a-w- C:\WINDOWS\ServicePackFiles\i386\serial.sys
2014-01-18 05:21:35 0DAECCE65366EA32B162F85F07C6753B 17152 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbohci.sys
2014-01-18 05:21:31 4FE09F868CE65B334B42862C372C69CC 33840 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ntio.sys
2014-01-18 05:21:29 B538DCD9816EA35FA4F637CFC261AAA8 12672 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mutohpen.sys
2014-01-18 05:21:28 2A5815CA6FFF24B688C01F828B96819C 8192 ----a-w- C:\WINDOWS\ServicePackFiles\i386\changer.sys
2014-01-18 05:21:26 EDD66332608D27F4FD5069BCD0BC5164 73216 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atintuxx.sys
2014-01-18 05:21:19 10B85171B90C449F8DA71C2640B797E9 273024 ----a-w- C:\WINDOWS\ServicePackFiles\i386\bthport.sys
2014-01-18 05:21:18 0FDD5E69C1FF3B58043D44F2CC743D45 35648 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ntio411.sys
2014-01-18 05:21:16 A32426D9B14A089EAA1D922E0C5801A9 26368 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbstor.sys
2014-01-18 05:21:15 D9D5E4CA72270E9F3ECA97DA0983AB87 149376 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tffsport.sys
2014-01-18 05:21:15 74B2B2F5BEA5E9A3DC021D685551BD3D 162816 ----a-w- C:\WINDOWS\ServicePackFiles\i386\netbt.sys
2014-01-18 05:21:13 96ECCF28FDBF1B2CC12725818A63628D 24960 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hidparse.sys
2014-01-18 05:21:11 03CE989D846C1AA81145CB22FCB86D06 11775 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wadv05nt.sys
2014-01-18 05:20:53 B5466A9250342A7AA0CD1FBA13420678 5504 ----a-w- C:\WINDOWS\ServicePackFiles\i386\intelide.sys
2014-01-18 05:20:53 5C3F9BDF4DB23B75306388FC26A0A8E5 49024 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mstape.sys
2014-01-18 05:20:50 CE97845D2E3F0D274B8BAC1ED07C6149 25728 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usbcamd2.sys
2014-01-18 05:20:49 325BB26842FC7CCC1FCCE2C457317F3E 5376 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mspclock.sys
2014-01-18 05:20:48 3FBB6EF8B5A71A2FA11F5F461BB73219 32768 ----a-w- C:\WINDOWS\ServicePackFiles\i386\sisnic.sys
2014-01-18 05:20:46 D85938F272D1BCF3DB3A31FC0A048928 44672 ----a-w- C:\WINDOWS\ServicePackFiles\i386\uagp35.sys
2014-01-18 05:20:46 54886A652BF5685192141DF304E923FD 1309184 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mtlstrm.sys
2014-01-18 05:20:45 8FD99680A539792A30E97944FDAECF17 187776 ----a-w- C:\WINDOWS\ServicePackFiles\i386\acpi.sys
2014-01-18 05:20:42 E9E47CFB2D461FA0FC75B7A74C6383EA 61824 ----a-w- C:\WINDOWS\ServicePackFiles\i386\nic1394.sys
2014-01-18 05:20:41 6F73F50162DEF60C84B725C18CD9140F 34560 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ntio404.sys
2014-01-18 05:20:40 3E7D485CBD0B0D9F6EA2AD9442411831 31744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinxbxx.sys
2014-01-18 05:20:39 F927A4434C5028758A842943EF1A3849 14592 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ndisuio.sys
2014-01-18 05:19:46 195741AEE20369980796B557358CD774 11868 ----a-w- C:\WINDOWS\ServicePackFiles\i386\mdmxsdk.sys
2014-01-18 05:19:45 9368670BD426EBEA5E8B18A62416EC28 8576 ----a-w- C:\WINDOWS\ServicePackFiles\i386\i2omgmt.sys
2014-01-18 05:19:43 CEDDEE2E0591894D19654D458FD3B9BE 28672 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinsnxx.sys
2014-01-18 05:19:43 ACED8C149B30F8496C237BCBA3727B48 14208 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wacompen.sys
2014-01-18 05:19:42 406598827A1B5F77954DE11DDE115CED 34688 ----a-w- C:\WINDOWS\ServicePackFiles\i386\lbrtfdc.sys
2014-01-18 05:19:38 525849B4469DE021D5D61B4DB9BE3A9D 12063 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wsiintxx.sys
2014-01-18 05:19:35 FD6093E3DECD925F1CFFC8A0DD539D72 14976 ----a-w- C:\WINDOWS\ServicePackFiles\i386\tape.sys
2014-01-18 05:19:35 D992FE1274BDE0F84AD826ACAE022A41 799744 ----a-w- C:\WINDOWS\ServicePackFiles\i386\dmboot.sys
2014-01-18 05:19:31 9A10AACBFDC4922715375FB4065EC930 17664 ----a-w- C:\WINDOWS\ServicePackFiles\i386\watchdog.sys
2014-01-18 05:19:29 1225EBEA76AAC3C84DF6C54FE5E5D8BE 685056 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hsfcxts2.sys
2014-01-18 05:19:27 CCF82C5EC8A7326C3066DE870C06DAF1 10368 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hidusb.sys
2014-01-18 05:19:26 36E6C405B6143D09687F4056FD9A0D10 11935 ----a-w- C:\WINDOWS\ServicePackFiles\i386\wadv11nt.sys
2014-01-18 05:19:22 E28726B72C46821A28830E077D39A55B 81664 ----a-w- C:\WINDOWS\ServicePackFiles\i386\videoprt.sys
2014-01-18 05:19:22 DFCBAD3CEC1C5F964962AE10E0BCC8E1 30080 ----a-w- C:\WINDOWS\ServicePackFiles\i386\modem.sys
2014-01-18 05:19:22 B6CC50279D6CD28E090A5D33244ADC9A 12800 ----a-w- C:\WINDOWS\ServicePackFiles\i386\usb8023x.sys
2014-01-18 05:19:22 3B3EFCDA263B8AC14FDF9CBDD0791B2E 5376 ----a-w- C:\WINDOWS\ServicePackFiles\i386\viaide.sys
2014-01-18 05:19:15 6F714B4720DD80FFA9F8D2731594EA4C 36463 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ati1tuxx.sys
2014-01-18 05:19:14 573C7D0A32852B48F3058CFD8026F511 144384 ----a-w- C:\WINDOWS\ServicePackFiles\i386\hdaudbus.sys
2014-01-18 05:19:13 2ADC0CA9945C65284B3D19BC18765974 28672 ----a-w- C:\WINDOWS\ServicePackFiles\i386\nscirda.sys
2014-01-18 05:19:09 09298EC810B07E5D582CB3A3F9255424 69120 ----a-w- C:\WINDOWS\ServicePackFiles\i386\psched.sys
2014-01-18 05:19:08 DB56BB2C55723815CF549D7FC50CFCEB 13240 ----a-w- C:\WINDOWS\ServicePackFiles\i386\slwdmsup.sys
2014-01-18 05:19:08 A7A01B907DB63898D40B0A14248FF9A2 104960 ----a-w- C:\WINDOWS\ServicePackFiles\i386\atinrvxx.sys
2014-01-18 05:19:08 851C30DF2807FCFA21E4C681A7D6440E 59136 ----a-w- C:\WINDOWS\ServicePackFiles\i386\rfcomm.sys
2014-01-18 05:19:08 0753515F78DF7F271A5E61C20BCD36A1 141056 ----a-w- C:\WINDOWS\ServicePackFiles\i386\ks.sys
2014-01-18 05:09:35 CB08AED0DE2DD889A8A820CD8082D83C 42752 ----a-w- C:\WINDOWS\system32\drivers\alim1541.sys
2014-01-18 05:09:35 08FD04AA961BDC77FB983F328334E3D7 42368 ----a-w- C:\WINDOWS\system32\drivers\agp440.sys
2014-01-18 05:09:35 03A7E0922ACFE1B07D5DB2EEB0773063 44928 ----a-w- C:\WINDOWS\system32\drivers\agpcpq.sys
2014-01-18 05:09:34 DAC7D785CF62F5BD41441E9D6F5A6EFE 26367 ----a-w- C:\WINDOWS\system32\drivers\ati1snxx.sys
2014-01-18 05:09:34 D649C57DA6FA762C64013747E5D7D2D6 56623 ----a-w- C:\WINDOWS\system32\drivers\ati1btxx.sys
2014-01-18 05:09:34 BCAF267B10620F8C93F6E87AB726E145 63663 ----a-w- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2014-01-18 05:09:34 9D318099BF3876A4AF4BC75966D27603 30671 ----a-w- C:\WINDOWS\system32\drivers\ati1raxx.sys
2014-01-18 05:09:34 95B4FB835E28AA1336CEEB07FD5B9398 43008 ----a-w- C:\WINDOWS\system32\drivers\amdagp.sys
2014-01-18 05:09:34 6FDC61E8E8E17F6ECC2D9A10FA8DF347 12047 ----a-w- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2014-01-18 05:09:34 60B6AA2DC1521DA343F781B70EB7895A 11615 ----a-w- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2014-01-18 05:09:33 F7706DAE7D101F1B19CE552D772EBFCE 21343 ----a-w- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2014-01-18 05:09:33 6F714B4720DD80FFA9F8D2731594EA4C 36463 ----a-w- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2014-01-18 05:09:33 67FFBC158DD4D27BA3FC92C6ACD87F73 29455 ----a-w- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2014-01-18 05:09:33 2D030C2F6B036CA0BC243E1B16D924D1 327040 ----a-w- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2014-01-18 05:09:33 0D8CAB1F08F7D3C4DE228B49E12E596A 34735 ----a-w- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2014-01-18 05:09:32 ED4C2BF8403F4437987C0BA09CF48716 13824 ----a-w- C:\WINDOWS\system32\drivers\atinmdxx.sys
2014-01-18 05:09:32 E90AC2B14E98F1A4372E5891B4278784 14336 ----a-w- C:\WINDOWS\system32\drivers\atinpdxx.sys
2014-01-18 05:09:32 993E7BD6438FE989E328C6B4BCA246A9 57856 ----a-w- C:\WINDOWS\system32\drivers\atinbtxx.sys
2014-01-18 05:09:32 8759322FFC1A50569C1E5528EE8026B7 701440 ----a-w- C:\WINDOWS\system32\drivers\ati2mtag.sys
2014-01-18 05:09:31 EDD66332608D27F4FD5069BCD0BC5164 73216 ----a-w- C:\WINDOWS\system32\drivers\atintuxx.sys
2014-01-18 05:09:31 DA36687D701C833430605A298731410B 52224 ----a-w- C:\WINDOWS\system32\drivers\atinraxx.sys
2014-01-18 05:09:31 D80A8F6C0A717446496C3A06D33B0D9C 13824 ----a-w- C:\WINDOWS\system32\drivers\atinttxx.sys
2014-01-18 05:09:31 CEDDEE2E0591894D19654D458FD3B9BE 28672 ----a-w- C:\WINDOWS\system32\drivers\atinsnxx.sys
2014-01-18 05:09:31 A7A01B907DB63898D40B0A14248FF9A2 104960 ----a-w- C:\WINDOWS\system32\drivers\atinrvxx.sys
2014-01-18 05:09:31 77B575D7AAB35D5908AE6CE681608D62 63488 ----a-w- C:\WINDOWS\system32\drivers\atinxsxx.sys
2014-01-18 05:09:31 3E7D485CBD0B0D9F6EA2AD9442411831 31744 ----a-w- C:\WINDOWS\system32\drivers\atinxbxx.sys
2014-01-18 05:09:30 FCA6F069597B62D42495191ACE3FC6C1 37888 ----a-w- C:\WINDOWS\system32\drivers\bthmodem.sys
2014-01-18 05:09:30 B279426E3C0C344893ED78A613A73BDE 17024 ----a-w- C:\WINDOWS\system32\drivers\bthenum.sys
2014-01-18 05:09:30 80602B8746D3738F5886CE3D67EF06B6 101120 ----a-w- C:\WINDOWS\system32\drivers\bthpan.sys
2014-01-18 05:09:29 BB68CEBFFD181E18A26112D1B9F90F3D 36480 ----a-w- C:\WINDOWS\system32\drivers\bthprint.sys
2014-01-18 05:09:29 662BFD909447DD9CC15B1A1C366583B4 272128 ----a-w- C:\WINDOWS\system32\drivers\bthport.sys
2014-01-18 05:09:29 61364CD71EF63B0F038B7E9DF00F1EFA 18944 ----a-w- C:\WINDOWS\system32\drivers\bthusb.sys
2014-01-18 05:09:28 BB1A6FB7D35A91E599973FA74A619056 19200 ----a-w- C:\WINDOWS\system32\drivers\hidir.sys
2014-01-18 05:09:28 970178E8E003EB1481293830069624B9 220032 ----a-w- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2014-01-18 05:09:28 7BD2DE4C85EB4241EED57672B16A7D8D 25600 ----a-w- C:\WINDOWS\system32\drivers\hidbth.sys
2014-01-18 05:09:28 573C7D0A32852B48F3058CFD8026F511 144384 ----a-w- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-01-18 05:09:28 3A74C423CF6BCCA6982715878F450A3B 46464 ----a-w- C:\WINDOWS\system32\drivers\gagp30kx.sys
2014-01-18 05:09:27 1225EBEA76AAC3C84DF6C54FE5E5D8BE 685056 ----a-w- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2014-01-18 05:09:26 EBB354438A4C5A3327FB97306260714A 1041536 ----a-w- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2014-01-18 05:09:25 E246A32C445056996074A397DA56E815 12544 ----a-w- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2014-01-18 05:09:24 C53775780148884AC87C455489A0C070 126686 ----a-w- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2014-01-18 05:09:23 54886A652BF5685192141DF304E923FD 1309184 ----a-w- C:\WINDOWS\system32\drivers\mtlstrm.sys
2014-01-18 05:09:22 B538DCD9816EA35FA4F637CFC261AAA8 12672 ----a-w- C:\WINDOWS\system32\drivers\mutohpen.sys
2014-01-18 05:09:22 6DDA78A0BE692B61B668FAB860F276CF 452736 ----a-w- C:\WINDOWS\system32\drivers\mtxparhm.sys
2014-01-18 05:09:22 576B34CEAE5B7E5D9FD2775E93B3DB53 180360 ----a-w- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2014-01-18 05:09:19 2B298519EDBFCF451D43E0F1E8F1006D 1897408 ----a-w- C:\WINDOWS\system32\drivers\nv4_mini.sys
2014-01-18 05:09:18 E9AAA0092D74A9D371659C4C38882E12 13776 ----a-w- C:\WINDOWS\system32\drivers\recagent.sys
2014-01-18 05:09:18 851C30DF2807FCFA21E4C681A7D6440E 59136 ----a-w- C:\WINDOWS\system32\drivers\rfcomm.sys
2014-01-18 05:09:18 726548542AFECA56257FF01EB13BB6D7 30592 ----a-w- C:\WINDOWS\system32\drivers\rndismpx.sys
2014-01-18 05:09:18 0DBCC071A268E0340A2BA6BDD98BACE4 166912 ----a-w- C:\WINDOWS\system32\drivers\s3gnbm.sys
2014-01-18 05:09:17 D9673011648A71ED1E1F77B831BC85E6 129535 ----a-w- C:\WINDOWS\system32\drivers\slnt7554.sys
2014-01-18 05:09:17 D66D22D76878BF3483A6BE30183FB648 10240 ----a-w- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2014-01-18 05:09:17 6B33D0EBD30DB32E27D1D78FE946A754 40960 ----a-w- C:\WINDOWS\system32\drivers\sisagp.sys
2014-01-18 05:09:16 F9B8E30E82EE95CF3E1D3E495599B99C 95424 ----a-w- C:\WINDOWS\system32\drivers\slnthal.sys
2014-01-18 05:09:16 DB56BB2C55723815CF549D7FC50CFCEB 13240 ----a-w- C:\WINDOWS\system32\drivers\slwdmsup.sys
2014-01-18 05:09:16 D85938F272D1BCF3DB3A31FC0A048928 44672 ----a-w- C:\WINDOWS\system32\drivers\uagp35.sys
2014-01-18 05:09:16 895BE38A993B9BD5ABBE570D63D88A2E 5888 ----a-w- C:\WINDOWS\system32\drivers\smbali.sys
2014-01-18 05:09:16 2C1779C0FEB1F4A6033600305EBA623A 404990 ----a-w- C:\WINDOWS\system32\drivers\slntamr.sys
2014-01-18 05:09:15 B4D7B7AD8A9F7C063C5CC3E2C1A0724E 12928 ----a-w- C:\WINDOWS\system32\drivers\usb8023x.sys
2014-01-18 05:09:15 813236B1183CFCF289E367BD5DE6E29E 123008 ----a-w- C:\WINDOWS\system32\drivers\usbvideo.sys
2014-01-18 05:09:15 754292CE5848B3738281B4F3607EAEF4 42240 ----a-w- C:\WINDOWS\system32\drivers\viaagp.sys
2014-01-18 05:09:14 ACED8C149B30F8496C237BCBA3727B48 14208 ----a-w- C:\WINDOWS\system32\drivers\wacompen.sys
2014-01-18 05:09:14 7BB3AA595E4507A788DE1CDC63F4C8C4 11871 ----a-w- C:\WINDOWS\system32\drivers\wadv09nt.sys
2014-01-18 05:09:14 791CC45DE6E50445BE72E8AD6401FF45 25471 ----a-w- C:\WINDOWS\system32\drivers\watv10nt.sys
2014-01-18 05:09:14 714038A8AA5DE08E12062202CD7EAEB5 11295 ----a-w- C:\WINDOWS\system32\drivers\wadv08nt.sys
2014-01-18 05:09:14 36E6C405B6143D09687F4056FD9A0D10 11935 ----a-w- C:\WINDOWS\system32\drivers\wadv11nt.sys
2014-01-18 05:09:14 352FA0E98BC461CE1CE5D41F64DB558D 22271 ----a-w- C:\WINDOWS\system32\drivers\watv06nt.sys
2014-01-18 05:09:14 0308AEF61941E4AF478FA1A0F83812F5 11807 ----a-w- C:\WINDOWS\system32\drivers\wadv07nt.sys
2014-01-18 05:03:14 02FC71B020EC8700EE8A46C58BC6F276 67584 ----a-w- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\sdbus.sys
2014-01-18 05:03:08 279FB78702454DFF2BB445F238C048D2 36096 ----a-w- C:\WINDOWS\system32\ReinstallBackups\0014\DriverFiles\i386\intelppm.sys
2014-01-18 04:59:29 C19B522A9AE0BBC3293397F3055E80A1 263040 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\http.sys
2014-01-18 04:59:29 680AD1C1BB16239E28D8F33A54A7A3C7 37376 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\amdk7.sys
2014-01-18 04:59:29 469541F8BFD2B32659D5D463A6714BCE 15488 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mssmbios.sys
2014-01-18 04:59:29 279FB78702454DFF2BB445F238C048D2 36096 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\intelppm.sys
2014-01-18 04:59:28 87A0E9E18C10A9E454238E3330E2A26D 12416 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tunmp.sys
2014-01-18 04:59:28 586499FD312FFD7F78553F408E71682E 10240 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\sffp_sd.sys
2014-01-18 04:59:28 1D9F1BEC651815741F088A8FB88E17EE 11136 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\sffdisk.sys
2014-01-18 04:59:28 15E993BA2F6946B2BFBBFCD30398621E 26624 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbehci.sys
2014-01-18 04:59:28 02FC71B020EC8700EE8A46C58BC6F276 67584 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\sdbus.sys
2014-01-18 04:58:23 4448006B6BC60E6C027932CFC38D6855 29056 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ip6fw.sys
2014-01-18 04:58:20 7F78371E0AF2609EA3A95D8843B076F8 20736 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ramdisk.sys
2014-01-18 04:58:15 157754F0DF355A9E0A6F54721914F9C6 124800 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\fltmgr.sys
2014-01-18 04:57:55 DB07B0088CDFD20C2A22E675120EDE34 72960 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mqac.sys
2014-01-18 04:57:53 03373A79440473062C6F3AEDEC6A49C8 163584 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\nwrdr.sys
2014-01-18 04:55:39 3998593E148DA03A4359FDE9FE2102E6 15872 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\more.com
2014-01-18 04:54:38 108F5B9CFAE8D11ADD7EFEE91D8112C3 11264 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tree.com
2014-01-18 04:54:31 C9BF2F12C4E6C12F8A85FBA4B6BC6208 17664 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\watchdog.sys
2014-01-18 04:54:17 739A53AB0955D58B15B66F277F9CCBF8 25600 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\format.com
2014-01-18 04:54:10 F0D692B0BFFB46E30EB3CEA168BBC49F 60800 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\arp1394.sys
2014-01-18 04:54:10 DAD16A9D5C873E7219E6B43802ED316A 36992 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\amdk6.sys
2014-01-18 04:54:10 B74C69A810949E7A54DC688CAE662206 1835904 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\win32k.sys
2014-01-18 04:54:10 A10C7534F7223F4A73A948967D00E69B 187776 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\acpi.sys
2014-01-18 04:54:10 5AC495F4CB807B2B98AD2AD591E6D92E 138496 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\afd.sys
2014-01-18 04:54:10 02000ABF34AF4C218C35D257024807D6 14336 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\asyncmac.sys
2014-01-18 04:54:10 009927DB8019C54477DABF6F9D795053 53248 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\1394bus.sys
2014-01-18 04:54:08 EC88DA854AB7D7752EC8BE11A741BB7F 59904 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\atmarpc.sys
2014-01-18 04:54:08 EA22EDADF90C0ABA8319454B2A07B700 14080 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\battc.sys
2014-01-18 04:54:08 E4E6A0922E3D983728C9AD4E8D466954 71552 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\bridge.sys
2014-01-18 04:54:08 D86173B401470F06D9810F7962969DDF 49664 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\classpnp.sys
2014-01-18 04:54:08 CDFE4411A69C224BD1D11B2DA92DAC51 95360 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
2014-01-18 04:54:08 CD7D5152DF32B47F4E36F710B35AAE02 63744 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\cdfs.sys
2014-01-18 04:54:08 AF9C19B3100FE010496B1A27181FBF72 49536 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
2014-01-18 04:54:08 4266BE808F85826AEDF3C64C1E240203 14080 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\cmbatt.sys
2014-01-18 04:54:08 0128E78FE835F074E469F03DB681CA9E 55936 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\atmlane.sys
2014-01-18 04:54:07 F8AA320C6A0409C0380E5D8A99D76EC6 41856 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\imapi.sys
2014-01-18 04:54:07 F5E7B358A732D09F4BCF2824B88B9E28 153344 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\dmio.sys
2014-01-18 04:54:07 E1EC7F5DA720B640CD8FB8424F1B14BB 20992 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ipinip.sys
2014-01-18 04:54:07 E153AB8A11DE5452BCF5AC7652DBF3ED 34944 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\fips.sys
2014-01-18 04:54:07 DF1B1A24BF52D0EBC01ED4ECE8979F50 9344 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\compbatt.sys
2014-01-18 04:54:07 D3DAC8432110AAD0B02A58B4459AB835 71040 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\dxg.sys
2014-01-18 04:54:07 D16C81677A9BE399C63CD2EA486472A5 14208 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\diskdump.sys
2014-01-18 04:54:07 CED2E8396A8838E59D8FD529C680E02C 27392 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\fdc.sys
2014-01-18 04:54:07 C0FBB516E06E243F0CF31F597E7EBF7D 799744 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\dmboot.sys
2014-01-18 04:54:07 B5A8E215AC29D24D60B4D1250EF05ACE 134912 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ipnat.sys
2014-01-18 04:54:07 6AF1684CCAAC3F7EF4EE9BA65EB0677A 36480 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\crusoe.sys
2014-01-18 04:54:07 64537AA5C003A6AFEEE1DF819062D0D1 74752 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ipsec.sys
2014-01-18 04:54:07 5FFF41CD5108E9051D255C37825AF697 24960 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\hidparse.sys
2014-01-18 04:54:07 5502B58EEF7486EE6F93F3F164DCB808 52736 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\i8042prt.sys
2014-01-18 04:54:07 378055AB8DDA86228683C697C4E11685 36224 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\hidclass.sys
2014-01-18 04:54:07 3117F595E9615E04F05A54FC15A03B20 143360 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\fastfat.sys
2014-01-18 04:54:07 0DD1DE43115B93F4D85E889D7A86F548 20480 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\flpydisk.sys
2014-01-18 04:54:07 00CA44E4534865F8A3B64F7C0984BFF0 36352 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
2014-01-18 04:54:06 EBDEE8A2EE5393890A1ACEE971C4C246 24576 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\kbdclass.sys
2014-01-18 04:54:06 EB7FFE87FD367EA8FCA0506F74A87FBB 92032 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ksecdd.sys
2014-01-18 04:54:06 E504F706CCB699C2596E9A3DA1596E87 35840 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
2014-01-18 04:54:06 B9540E258F952650DE8DEC68719A5C97 140928 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ks.sys
2014-01-18 04:54:06 729D83E56C29C510258A6E9E79FFDDC3 63744 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mf.sys
2014-01-18 04:54:06 6FC6F9D7ACC36DCA9B914565A3AEDA05 30080 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\modem.sys
2014-01-18 04:54:06 65653F3B4477F3C63E68A9659F85EE2E 42240 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mountmgr.sys
2014-01-18 04:54:06 50708DAA1B1CBB7D6AC1CF8F56A24410 11264 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\irenum.sys
2014-01-18 04:54:06 46EDCC8F2DB2F322C24F48785CB46366 181248 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mrxdav.sys
2014-01-18 04:54:06 34E1F0031153E491910E12551400192C 23040 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mouclass.sys
2014-01-18 04:54:04 1FD607FC67F7F7C633C3DA65BFC53D18 451456 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mrxsmb.sys
2014-01-18 04:54:01 C0F1D4A21DE5A415DF8170616703DEBF 35072 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\msgpc.sys
2014-01-18 04:54:01 82035E0F41C2DD05AE41D27FE6CF7DE1 107904 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\mup.sys
2014-01-18 04:54:01 59FC3FB44D2669BC144FD87826BB571F 38016 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ndproxy.sys
2014-01-18 04:54:01 561B3A4333CA2DBDBA28B5B956822519 19072 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\msfs.sys
2014-01-18 04:54:01 558635D3AF1C7546D26067D5D9B6959E 182912 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
2014-01-18 04:54:01 3A2ACA8FC1D7786902CA434998D7CEB4 34560 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\netbios.sys
2014-01-18 04:54:01 34D6CD56409DA9A7ED573E1C90A308BF 12928 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ndisuio.sys
2014-01-18 04:54:01 0C80E410CD2F47134407EE7DD19CC86B 162816 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\netbt.sys
2014-01-18 04:54:01 0B90E255A9490166AB368CD55A529893 91776 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ndiswan.sys
2014-01-18 04:54:01 08D43BBDACDF23F34D79E44ED35C1B4C 9600 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ndistapi.sys
2014-01-18 04:54:00 B78BE402C3F63DD55521F73876951CDD 574592 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys
2014-01-18 04:54:00 82A087207DECEC8456FBE8537947D579 119936 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\pcmcia.sys
2014-01-18 04:54:00 8086D9979234B603AD5BC2F5D890B234 68224 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\pci.sys
2014-01-18 04:54:00 79EA3FCDA7067977625B3363A2657C80 88448 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\nwlnkipx.sys
2014-01-18 04:54:00 60CF8C7192B3614F240838DDBAA4A245 40320 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\nmnt.sys
2014-01-18 04:54:00 5C5C53DB4FEF16CF87B9911C7E8C6FBC 61824 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\nic1394.sys
2014-01-18 04:54:00 520B91AB011456B940D9B05FC91108FF 25088 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\pciidex.sys
2014-01-18 04:54:00 4F601BCB8F64EA3AC0994F98FED03F8E 30848 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\npfs.sys
2014-01-18 04:54:00 3E16EFF2A6FED2D8D7F5A66DFE65D183 42496 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\p3.sys
2014-01-18 04:54:00 3334430C29DC338092F79C38EF7B4CD0 18688 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\partmgr.sys
2014-01-18 04:54:00 29744EB4CE659DFE3B4122DEB45BC478 80128 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\parport.sys
2014-01-18 04:54:00 0951DB8E5823EA366B0E408D71E1BA2A 61056 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\ohci1394.sys
2014-01-18 04:53:59 D7FD0FF761E28AC0EA35AD71E0CD67E9 96256 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\scsiport.sys
2014-01-18 04:53:59 D4F5643D7714EF499AE9527FDCD50894 139400 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\rdpwd.sys
2014-01-18 04:53:59 B31B4588E4086D8D84ADBF9845C2402B 57472 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\redbook.sys
2014-01-18 04:53:59 A2CAE2C60BC37E0751EF9DDA7CEAF4AD 196864 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\rdpdr.sys
2014-01-18 04:53:59 98FAEB4A4DCF812BA1C6FCA4AA3E115C 51328 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\rasl2tp.sys
2014-01-18 04:53:59 7CE8B277F3207EA82D7D22AD348BEFC6 30080 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\rndismp.sys
2014-01-18 04:53:59 7306EEED8895454CBED4669BE9F79FAA 41472 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\raspppoe.sys
2014-01-18 04:53:59 48671F327553DCF1D27F6197F622A668 69120 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\psched.sys
2014-01-18 04:53:59 35E81B908AE4E97FC7BDF4607C516FF4 200064 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\rmcast.sys
2014-01-18 04:53:59 29D66245ADBA878FFF574CD66ABD2884 176512 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\rdbss.sys
2014-01-18 04:53:59 1C5CC65AAC0783C344F16353E60B72AC 48384 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\raspptp.sys
2014-01-18 04:53:59 0D97D88720A4087EC93AF7DBB303B30A 35328 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\processr.sys
2014-01-18 04:53:58 F8FD1400092E23C8F2F31406EF06167B 20480 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbuhci.sys
2014-01-18 04:53:58 EE4660083DEBA849FF6C485D944B379B 52352 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\volsnap.sys
2014-01-18 04:53:58 ED0580AF02502D00AD8C4C066B156BE9 21896 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tdtcp.sys
2014-01-18 04:53:58 E41B6D037D6CD08461470AF04500DC24 73472 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\sr.sys
2014-01-18 04:53:58 D5A9D123F5ED7C9965A481BD20CF66D8 79744 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\videoprt.sys
2014-01-18 04:53:58 D26E26EA516450AF9D072635C60387F4 27440 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\secdrv.sys
2014-01-18 04:53:58 CD9404D115A00D249F70A371B46D5A26 64896 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\serial.sys
2014-01-18 04:53:58 C72F40947F92CEA56A8FB532EDF025F1 57600 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbhub.sys
2014-01-18 04:53:58 C43356072EB3E88CD62958DB10CEAD47 48640 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\stream.sys
2014-01-18 04:53:58 AFF2E5045961BBC0A602BB6F95EB1345 209408 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\update.sys
2014-01-18 04:53:58 AF090265EC388BAB320F1FF7E7A7D5EA 12672 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usb8023.sys
2014-01-18 04:53:58 ADDC9E4757A68AB60562AD3CB9C288D6 25472 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\sonydcam.sys
2014-01-18 04:53:58 A540A99C281D933F3D69D55E48727F47 40840 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\termdd.sys
2014-01-18 04:53:58 A2D868AEEFF612E70E213C451A70CAFB 15488 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\serenum.sys
2014-01-18 04:53:58 A2A9CA0D1A9AC1FF54220AA0789FE5CF 14976 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tape.sys
2014-01-18 04:53:58 9F4B36614A0FC234525BA224957DE55C 359040 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
2014-01-18 04:53:58 984EF0B9788ABF89974CFED4BFBAACBC 34560 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\wanarp.sys
2014-01-18 04:53:58 8A60EDD72B4EA5AEA8202DAF0E427925 20992 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\vga.sys
2014-01-18 04:53:58 6CD7B22193718F1D17A47A1CD6D37E75 26496 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbstor.sys
2014-01-18 04:53:58 6891B74AB9A016064E82A419388D0601 18560 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tdi.sys
2014-01-18 04:53:58 61018BA9DF6B63E51D9753C980E73EC2 23936 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbcamd2.sys
2014-01-18 04:53:58 4D58BB1AE8841AAFD8790AD7E1E3B8EA 223616 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tcpip6.sys
2014-01-18 04:53:58 38D437CF2D98965F239B0ABCD66DCB0F 12040 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\tdpipe.sys
2014-01-18 04:53:58 2853FD4C4489E0F8BFCF78EFCDB7E998 16000 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbintel.sys
2014-01-18 04:53:58 2654EECC6FB13603EBDDCD5C8EA943D1 23808 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbcamd.sys
2014-01-18 04:53:58 20B7E396720353E4117D64D9DCB926CA 336256 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\srv.sys
2014-01-18 04:53:58 2034CA78F9C6E787B4B76D81AC888351 142976 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\usbport.sys
2014-01-18 04:53:58 12F70256F140CD7D52C58C7048FDE657 66176 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\udfs.sys
2014-01-18 04:53:58 0D13B6DF6E9E101013A7AFB0CE629FE0 11392 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\sfloppy.sys
2014-01-18 04:53:58 03C1BAE4766E2450219D20B993D6E046 4352 -c--a-w- C:\WINDOWS\$NtServicePackUninstall$\swenum.sys
2014-01-16 23:15:22 BB9E381E1DD8377C7539A0BF9314B8D5 7091 ----a-w- C:\Qoobox\BackEnv\SetPath.bat
2014-01-14 22:51:41 E80BAE2DE16CEFB980DBB8954882C440 1191834 ----a-w- C:\Documents and Settings\Mitch\My Documents\Downloads\ProcessExplorer.zip
2014-01-14 19:59:47 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
2014-01-14 13:43:19 875D2B1054F2ECD8F575D6CBE78DD7BA 57672 ----a-w- C:\WINDOWS\system32\drivers\aswTdi.sys
2014-01-14 13:43:18 1B0662514A68C3A42E60D240C5ABEF28 180248 ----a-w- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-01-14 13:43:17 7BA7543EA7936A7ADA615F6DE7C95494 410528 ----a-w- C:\WINDOWS\system32\drivers\aswSP.sys
2014-01-14 13:43:17 0F639D0526820BA7872C963813E0EB8D 775952 ----a-w- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-01-14 13:43:16 F385467DF95D0A73775CB3B076B8B969 49944 ----a-w- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-01-14 13:43:15 B269C41DF93EFF71DF0986BD982D1C46 54832 ----a-w- C:\WINDOWS\system32\drivers\aswRdr.sys
2014-01-14 13:43:15 6F1505608202BBD179095A6A150D103F 67824 ----a-w- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-01-14 13:14:42 F8EDE2B6928970DCE3D5614C27D9E7F6 14976 ----a-w- C:\WINDOWS\Driver Cache\i386\usbscan.sys
2014-01-14 13:14:42 C569EF030B11F896E123A30AC92678DB 25088 -c--a-w- C:\WINDOWS\system32\dllcache\hidparse.sys
2014-01-14 13:14:42 C569EF030B11F896E123A30AC92678DB 25088 ----a-w- C:\WINDOWS\Driver Cache\i386\hidparse.sys
2014-01-14 13:08:46 813236B1183CFCF289E367BD5DE6E29E 123008 ----a-w- C:\WINDOWS\Driver Cache\i386\usbvideo.sys
2014-01-14 13:08:46 65898A183FBF1D1F7759D5CCB364DCD4 60160 -c--a-w- C:\WINDOWS\system32\dllcache\usbaudio.sys
2014-01-14 13:08:46 65898A183FBF1D1F7759D5CCB364DCD4 60160 ----a-w- C:\WINDOWS\Driver Cache\i386\usbaudio.sys
2014-01-14 13:08:46 4F9694BDEFC1F0629704A1E2B7B96A66 46848 ----a-w- C:\WINDOWS\Driver Cache\i386\irbus.sys
2014-01-14 13:02:23 6DF35CA139C3BC15CC74390ABB114EFE 144128 ----a-w- C:\WINDOWS\Driver Cache\i386\usbport.sys
2014-01-14 13:02:23 4BAC8DF07F1D8434FC640E677A62204E 30336 ----a-w- C:\WINDOWS\Driver Cache\i386\usbehci.sys
2014-01-14 13:02:23 1B611611C28D2DF25BC057D79C6F13FC 32384 ----a-w- C:\WINDOWS\Driver Cache\i386\usbccgp.sys
2014-01-14 13:02:23 04FE5EF6ED4818EC4839EA5C611A6310 5376 -c--a-w- C:\WINDOWS\system32\dllcache\usbd.sys
2014-01-14 13:02:23 04FE5EF6ED4818EC4839EA5C611A6310 5376 ----a-w- C:\WINDOWS\Driver Cache\i386\usbd.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t"

[HKEY_USERS\S-1-5-21-1614895754-115176313-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="C:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\ISUSPM.exe -scheduler"
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe -t"

[HKEY_USERS\S-1-5-21-1614895754-115176313-682003330-1003\Software\Microsoft\Windows\CurrentVersion\runonce]
"FlashPlayerUpdate"="C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe -update plugin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelZeroConfig"="C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
"IntelWireless"="C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless"
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe"
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe"
"Persistence"="C:\WINDOWS\system32\igfxpers.exe"
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TDSReanimator"="C:\Program Files\Common Files\Teradyne\TDSReanimator.exe"
"ISUSPM"="C:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\\isuspm.exe -scheduler"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"SigmatelSysTrayApp"="%ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="C:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\ISUSPM.exe -scheduler"
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"="C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe -update plugin"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [12/11/2013 10:43 AM]
C:\WINDOWS\tasks\AppleSoftwareUpdate.job --a------ [Undetermined Task]
C:\WINDOWS\tasks\avast\Undetermined Task.exe []

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [01/14/2014 11:11 AM]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\Mitch\Application Data\Mozilla\Firefox\Profiles\jye5nhyy.default
- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
- IE Tab - %ProfilePath%\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\Mitch\Application Data\Mozilla\Firefox\Profiles\jye5nhyy.default
A9191AE22A8F1287B5E2DF33E3A57253 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java™ Platform SE 7 U51
9B10927CFD0F7AD39E40C0E34005B1AD - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.510.13
F891089A6AB9E12FEDEBCC5EC0F40D66 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll - Shockwave Flash
EC4656A202D861D3637DC1EE6A6D6794 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
270EE43CC00609B9937AAF94E1E970D4 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
AC05C6E4465BFBE6EF41FD6DD46E5B59 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
28000D7EEB2FD95A36E1A7539F599C3B - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
5D41BCD19A3D90E4EBB58A6BFB79E4F7 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
8B6884E3E1E5F8ABA5FA0C6A2B13181D - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft..../?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/...ox&FORM=IE8SRC"

==== HijackThis Entries ======================

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: TM_BHO Class - {60EC89B7-367D-402B-8C55-30FAEB32A705} - C:\Program Files\Ford Motor Company\IDS\Runtime\TMCtrlBHO.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [TDSReanimator] "C:\Program Files\Common Files\Teradyne\TDSReanimator.exe"
O4 - HKLM\..\Run: [ISUSPM] C:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\\isuspm.exe -scheduler
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Documents and Settings\All Users\Application Data\FLEXnet\Connect\11\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe -update plugin
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Global Startup: J2534 Config App (Ford-VCM-II).lnk = C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford-VCM-II)\J2534 Configuration\J2534ConfigApp.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Switch To Firefox - C:\Documents and Settings\Mitch\Application Data\Mozilla\Firefox\Profiles\jye5nhyy.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}\plugins\switchback.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://www.fordtechs...rconnection.com
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.syste...el_4.5.15.0.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1776E74E-4CCB-4E96-A5FE-7AAEBAC6F83C}: NameServer = 64.7.11.2,66.80.130.23
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: DetectionManager - Bosch Automotive Service Solutions - C:\Program Files\Ford Motor Company\IDS\Runtime\DetectionManager.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: TDSNetSetup - Unknown owner - C:\Program Files\Common Files\Teradyne\TDSNetSetup.exe
O23 - Service: Intel® PROSet/Wireless SSO Service (WLANKEEPER) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Mon 01/20/2014 at 20:38:42.85 ======================
  • 0

#29
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 19,991 posts
Hello mj12687,

  • Close any open browsers.
  • Temporarily disable your AntiVirus program. (If necessary)
  • Double click on zoek.exe to run.
  • Please wait while the tool starts. It will appear to be doing nothing and may take a few seconds to come up
  • Copy the text below and paste it into the large window in the zoek tool:

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "AVG_UI"=-;r
    C:\Program Files\AVG\AVG2013\avgui.exe;f
    C:\Program Files\AVG;f
    C:\Documents and Settings\Mitch\Local Settings\Application Data\AVG Secure Search;f
    autoclean;

  • Click on Run script button
  • Please wait patiently (it may take a few minutes) until a log report will open (this may be after reboot, if required)
  • Copy (Ctrl +C) and paste (Ctrl +V) the contents of the opened entire report back here.
Note: It will also create a log in the C:\ directory named "zoek-results.log"
  • 0

#30
mj12687

mj12687

    Member

  • Topic Starter
  • Member
  • PipPip
  • 39 posts
here is the latest log from zoek



Zoek.exe v5.0.0.0 Updated 20-Januari-2014
Tool run by Mitch on Tue 01/21/2014 at 9:21:06.67.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Mitch\Desktop\zoek\zoek.com [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-01-21-013842.log 103330 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

"C:\Program Files\AVG\AVG2013\avgui.exe" not found
"C:\Program Files\AVG" not found
C:\Program Files\Mozilla Firefox\user.js deleted
C:\Program Files\Common Files\AVG Secure Search deleted
C:\Documents and Settings\Mitch\Application Data\BabylonToolbar deleted
C:\Documents and Settings\Mitch\Application Data\YourFileDownloader deleted
C:\Documents and Settings\All Users\Application Data\Babylon deleted
C:\Documents and Settings\Mitch\Local Settings\Application Data\AVG Secure Search deleted
C:\Documents and Settings\Mitch\Local Settings\Application Data\AVG SafeGuard toolbar deleted
C:\WINDOWS\002920_.tmp deleted
C:\user.js deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [01/14/2014 11:11 AM]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\Mitch\Application Data\Mozilla\Firefox\Profiles\jye5nhyy.default
- avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
- IE Tab - %ProfilePath%\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\Mitch\Application Data\Mozilla\Firefox\Profiles\jye5nhyy.default
A9191AE22A8F1287B5E2DF33E3A57253 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java™ Platform SE 7 U51
9B10927CFD0F7AD39E40C0E34005B1AD - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.510.13
F891089A6AB9E12FEDEBCC5EC0F40D66 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll - Shockwave Flash
EC4656A202D861D3637DC1EE6A6D6794 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
270EE43CC00609B9937AAF94E1E970D4 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
AC05C6E4465BFBE6EF41FD6DD46E5B59 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat
AB87EEFFD18F2BAAFC274E7075EA6C67 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation
28000D7EEB2FD95A36E1A7539F599C3B - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
5D41BCD19A3D90E4EBB58A6BFB79E4F7 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
8B6884E3E1E5F8ABA5FA0C6A2B13181D - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft..../?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft..../?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/...ox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.co...ge={startPage}"

==== Empty IE Cache ======================

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Mitch\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Documents and Settings\Mitch\Local Settings\Application Data\Mozilla\Firefox\Profiles\jye5nhyy.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=64 folders=52 35015052 bytes)

==== Empty Temp Folders ======================

C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully
C:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp emptied successfully
C:\Documents and Settings\Mitch\Local Settings\Temp will be emptied at reboot
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Mitch\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\Mitch\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on Tue 01/21/2014 at 9:38:35.31 ======================
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP