TheDarkKnight

Good afternoon kingtaoist, Antivirus programs use databases, so they do not all contain the same entries. Tools are different too. ComboFix and MBAM look for different things, and also have different databases and detection methods, which is why they didn't find this infection. ESET is renowned for being able to detect file replicating infections. Unfortunately Ramnit is very hard to disinfect. It tends to infect executable files, and even after disinfection if we miss a single one then it can replicate as soon as it is triggered. Reformatting is the best way to deal with file infectors and replicators. How would you like to proceed?

Good afternoon camarograna2, A little housekeeping to uninstall ComboFix: Please click Start>Run and copy/paste the following text, including the space between "ComboFix and "/uninstall", into the Run box and click OK: ComboFix /uninstall To remove all of the tools we used and the files and folders they created do the following: Double click OTL.exe. Click the CleanUp button. Select Yes when the "Begin cleanup Process?" prompt appears. If you are prompted to reboot during the cleanup, select Yes. The tool will delete itself once it finishes. Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually. Right-click the Recycle Bin and please select Empty Recycle Bin. ===== Please consider using these ideas to help secure your computer. While there is no way to guarantee safety when you use a computer, these steps will make it much less likely that you will need to endure another infection. While we really like to help people, we would rather help you protect yourself so that you won't need that help in the future. :thumbup: IMPORTANT: Please enable Automatic Updates under Start > Control Panel > Automatic Updates to ensure your Windows updates regularly. This is extremely important in ensuring you remain protected against vulnerabilities and infections. This is a crucial security measure. As a minimum, you need at least an antivirus, firewall and some type of anti-spyware program. Please consider installing and running the following program (there is a free version available): SpywareBlaster A tutorial on using SpywareBlaster to prevent malware from ever installing on your computer may be found here. Please keep these programs up-to-date and run them whenever you suspect a problem to prevent malware problems. A number of programs have resident protection and it is a good idea to run the resident protection of one of each type of program to maintain protection. However, it is important to run only one resident program of each type since they can conflict and become less effective. That means only one antivirus, firewall and scanning anti-spyware program at a time. Passive protectors, like SpywareBlaster, can be run with any of them. Note that there are a lot of rogue programs out there that want to scare you into giving them your money and some malware actually claims to be security programs. If you get a popup for a security program that you did not install yourself, do NOT click on it and ask for help immediately. It is very important to run an antivirus and firewall, but you can't always rely on reviews and ads for information. Ask in a security forum that you trust if you are not sure. If you are unsure and looking for anti-spyware programs, you may be able to find out if it is a rogue here: http://www.spywarewarrior.com/rogue_anti-spyware.htm A similar category of programs is now called "scareware." Scareware programs are active infections that will pop-up on your computer and tell you that you are infected. If you look closely, it will usually have a name that looks like it might be legitimate, but it is NOT one of the programs you installed. It tells you to click and install it right away. If you click on any part of it, including the 'X' to close it, you may actually help it infect your computer further. Keeping protection updated and running resident protection can help prevent these infections. If it happens anyway, get offline as quickly as you can. Pull the internet connection cable or shut down the computer if you have to. Contact someone to help by using another computer if possible. These programs are also sometimes called 'rogues', but they are different than the older version of rogues mentioned above. Please consider using an alternate browser. Mozilla's Firefox browser is a very good alternative. In addition to being generally more secure than Internet Explorer, it has a very good built-in popup blocker and Add-ons, like Adblock Plus and NoScript, can make it even more secure. To avoid dangerous sites Web of Trust or McAfee SiteAdvisor can be installed. Google Chrome or Opera are other good options. Two useful programs for keeping your programs up-to-date are FileHippo or Secunia PSI. Running one of these regularly will help you obtain the latest program updates. Please also read Tony Klein's excellent article: How did I get infected in the first place. Hopefully these steps will help to keep you error free. If you run into more difficulty, we will certainly do what we can to help.

Hello preconmanager, In terms of running tools and scans we have exhausted pretty much the majority. Anything else is unlikely to turn up something else I'm afraid. Definitely reformatting will remove the issue unless it is a hardware issue.

Good morning QubicComputers. Please run this tool. Please download OTL.exe by OldTimer to your Desktop. Close all windows and double click OTL.exe. In the "Custom Scans/Fixes" window (under the light green bar) paste the following in bold: netsvcs drivers32 %SYSTEMDRIVE%\*.* %systemroot%\*. /mp /s CREATERESTOREPOINT HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs Click Run Scan and let the program run uninterrupted. When the scan completes, it will open two Notepad windows. OTL.txt and Extras.txt. These are saved in the same location as OTL. Post both logs in this thread. You may need to use two posts to get it all.

Good morning aryama, Please boot into Safe Mode (restart and tap F8 repeatedly). Try running ComboFix. Please post the contents of its log in your reply.

Hello davejjj, OK let me know how you go please.

The bak refers to it being a backup. This is often done by HOSTS editors, and Windows. So that is why it is unlikely that the driver is bad.

Hello kingtaoist, What issues are you experiencing on your computer? The ESET scan is a final scan.

Howdy aryama, Please run OTL.exe. Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy): :files C:\WINDOWS\system32\wcjohrw.dll :Commands [EmptyTemp] Return to OTL.exe, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste. Click the red Run Fix button. A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply. Close OTL.exe If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. Do the issues remain?

Howdy kingtaoist, Please run a free online scan with the ESET Online Scanner. Note: You can use Internet Explorer or Mozilla Firefox for this scan. Tick the box next to YES, I accept the Terms of Use. Click Start. When asked, allow the ActiveX control to install. Click Start. Make sure that the option Remove found threats is unchecked and the option Scan unwanted applications is checked. Click Scan. Wait for the scan to finish. Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt. Copy and paste that log as a reply to this topic.

Which drivers are you referring to?

Those drivers are fine. There are various reasons why they might be unsigned so don't worry about them. Have you updated Windows Media Centre?

I am TheDarkKnight and will be assisting you. Please ask questions if anything is unclear. Well you certainly seem to have the motherlode of infections here. Do you have your Windows disc handy? Some of those infections are backdoors and could have compromised your computer. ===== Please follow these instructions to run ComboFix.exe. Please visit this webpage for download links and instructions for running this tool: http://www.bleepingcomputer.com/combofix/how-to-use-combofix * Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix (CF). Please go here to see a list of programs that need to be disabled. **Note: Do not mouseclick ComboFix's window while it's running. That may cause it to stall.** **Note 2: If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.** Please include the C:\ComboFix.txt in your next reply for further review. ===== Also, please download Malwarebytes Anti-Rootkit here. Unzip the contents to a folder on the Desktop. Open the folder where the contents were unzipped and run mbar.exe ( right-click and select Run as administrator for Vista and Windows 7). Follow the instructions in the wizard to update and allow the program to scan your computer for threats. Click on the Cleanup button to remove any threats and reboot if prompted to do so. Wait while the system shuts down and the cleanup process is performed. Please post the two logs produced. Please note: This tool is still in BETA mode, so please ensure you have backed up any important files. ===== In your reply please provide the contents of the following: ComboFix.txt. Both MBAR logs.

Hello fishtaco254, For x32 (x86) bit systems please download the Farbar Recovery Scan Tool 32-Bit and save it to a flash drive. For x64 bit systems please download the Farbar Recovery Scan Tool 64-Bit and save it to a flash drive. Plug the flashdrive into the infected PC. Enter System Recovery Options. To enter System Recovery Options from the Advanced Boot Options: Restart the computer. As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears. Use the arrow keys to select the Repair your computer menu item. Select US as the keyboard language settings, and then click Next. Select the operating system you want to repair, and then click Next. Select your user account and click Next. To enter System Recovery Options by using the Windows installation disc: Insert the installation disc. Restart your computer. If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings. Click Repair your computer. Select US as the keyboard language settings, and then click Next. Select the operating system you want to repair, and then click Next. Select your user account and click Next. On the System Recovery Options menu you will get the following options: Startup Repair System Restore Windows Complete PC Restore Windows Memory Diagnostic Tool Command Prompt [*]Select Command Prompt. [*]In the command window type in notepad and press Enter. [*]The notepad opens. Under File menu select Open. [*]Select Computer, find your flash drive letter and close the notepad. [*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter. Note: Replace letter e with the drive letter of your flash drive. [*]The tool will start to run. [*]When the tool opens click Yes to the disclaimer. [*]Press the Scan button. [*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it in your reply.

Hey kingtaoist, Please re-run RogueKiller. Click on the Delete button. The report has been created on the Desktop. Please post it in your reply. ===== Also, please run a fresh scan with MBAM and provide its log in your reply, along with the new log from RogueKiller.

Hello camarograna2, Your version of Java is out of date. It's important to remove older versions of Java since it does not do so automatically and older versions can leave you vulnerable. Please follow the instructions below to update Java: Please go to the below link and download the latest Windows 7 version: http://www.java.com/en/download/manual.jsp Save it to your Desktop. Please go to Start>Control Panel>Programs. Navigate to any versions of Java (J2SE Runtime Environment) you have installed. They will have this icon next to them: Select Uninstall. Please double-click the installer and follow the prompts to install the latest version once all the previous versions have been successfully removed.

Hello QubicComputers, OK please avoid ComboFix for now. Please do the following to re-run AdwCleaner: Please close all open programs and internet browsers. Double click on adwcleaner.exe to run the tool. Click on Delete. Confirm each time with OK. Your computer will be rebooted automatically. A text file will open after the restart. Please post the content of that logfile in your reply. You can find the logfile at C:\AdwCleaner[s1].txt as well. Note: If you get a message that you must reboot the computer before starting deletion, please do. At reboot, only AdwCleaner will run and you can only click on the Delete button. When the deletion is done, AdwCleaner will reboot the computer again and open the logfile. ===== For x32 (x86) bit systems please download the Farbar Recovery Scan Tool 32-Bit and save it to a flash drive. For x64 bit systems please download the Farbar Recovery Scan Tool 64-Bit and save it to a flash drive. Plug the flashdrive into the infected PC. Enter System Recovery Options. To enter System Recovery Options from the Advanced Boot Options: Restart the computer. As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears. Use the arrow keys to select the Repair your computer menu item. Select US as the keyboard language settings, and then click Next. Select the operating system you want to repair, and then click Next. Select your user account and click Next. To enter System Recovery Options by using the Windows installation disc: Insert the installation disc. Restart your computer. If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings. Click Repair your computer. Select US as the keyboard language settings, and then click Next. Select the operating system you want to repair, and then click Next. Select your user account and click Next. On the System Recovery Options menu you will get the following options: Startup Repair System Restore Windows Complete PC Restore Windows Memory Diagnostic Tool Command Prompt [*]Select Command Prompt. [*]In the command window type in notepad and press Enter. [*]The notepad opens. Under File menu select Open. [*]Select Computer, find your flash drive letter and close the notepad. [*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter. Note: Replace letter e with the drive letter of your flash drive. [*]The tool will start to run. [*]When the tool opens click Yes to the disclaimer. [*]Press the Scan button. [*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it in your reply. ===== In your reply please provide the following: AdwCleaner[s1].txt. FRST.txt.

That is just part of your HOSTS file. You can always run it through VirusTotal to be sure.

Good morning aryama, I notice that you have Conduit installed. It is often present when other infections are and does act suspiciously. I strongly recommend removing this program. Please go to Start>Control Panel> Add or Remove Programs and remove the following (if present): Conduit Conduit Engine Please restart your computer after these program removals. ===== Please post the contents of the logs, as malware writers would like nothing more than to infect the computers of helpers, such as myself. Thanks! Next, please run OTL.exe. Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy): :OTL O4 - HKLM..\Run: [GEST] m‘|Pë File not found :Commands [EmptyTemp] Return to OTL.exe, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste. Click the red Run Fix button. A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply. Close OTL.exe If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. ===== Finally, please go to http://www.virustotal.com, click on Choose File, and upload the following file for analysis: You will only be able to have one file scanned at a time. C:\WINDOWS\system32\wcjohrw.dll Then click Scan It!. Allow the file to be scanned, and then please copy/paste the results here for me to see. Note: If a message appears saying the file has already been analysed, please resend the file. ===== Please provide the results from OTL and VirusTotal in your reply.

[2013/01/12 14:01:18 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2013/01/12 14:01:17 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013/01/12 14:01:17 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll [2013/01/12 14:01:17 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll [2013/01/12 14:01:17 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll [2013/01/12 14:01:17 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll [2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll [2013/01/12 14:01:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll [2013/01/12 14:01:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe [2013/01/12 14:01:16 | 002,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll [2013/01/12 14:01:16 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll [2013/01/12 14:01:16 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe [2013/01/12 14:01:15 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll [2013/01/12 14:01:15 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll [2013/01/12 14:01:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe [2013/01/12 14:01:15 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe [2013/01/12 14:01:15 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll [2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe [2013/01/12 14:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll [2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll [2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll [2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll [2013/01/12 14:01:13 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll [2013/01/12 14:01:13 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll [2013/01/12 14:01:13 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll [2013/01/12 14:01:13 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll [2013/01/12 14:01:13 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe [2013/01/12 14:01:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe [2013/01/12 14:01:12 | 000,561,179 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll [2013/01/12 14:01:12 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll [2013/01/12 14:01:12 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe [2013/01/12 14:01:12 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe [2013/01/12 14:01:12 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll [2013/01/12 14:01:11 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll [2013/01/12 14:01:11 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll [2013/01/12 14:01:11 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll [2013/01/12 14:01:11 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll [2013/01/12 14:01:11 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll [2013/01/12 14:01:11 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll [2013/01/12 14:01:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll [2013/01/12 14:01:11 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll [2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll [2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll [2013/01/12 14:01:10 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013/01/12 14:01:10 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013/01/12 14:01:10 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013/01/12 14:01:10 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll [2013/01/12 14:01:10 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll [2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll [2013/01/12 14:01:10 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll [2013/01/12 14:01:09 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013/01/12 14:01:09 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll [2013/01/12 14:01:09 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll [2013/01/12 14:01:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013/01/12 14:01:09 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll [2013/01/12 14:01:09 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll [2013/01/12 14:01:09 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll [2013/01/12 14:01:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll [2013/01/12 14:01:09 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll [2013/01/12 14:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2013/01/12 14:01:08 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2013/01/12 14:01:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2013/01/12 14:01:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe [2013/01/12 14:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2013/01/12 14:01:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Pictures [2013/01/12 14:00:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Games [2013/01/12 14:00:43 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2013/01/12 14:00:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2013/01/12 14:00:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Administrative Tools [2013/01/12 14:00:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Music [2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services [2013/01/12 14:00:24 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2013/01/12 14:00:24 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2013/01/12 14:00:23 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2013/01/12 14:00:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2013/01/12 14:00:23 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2013/01/12 14:00:23 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2013/01/12 14:00:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2013/01/12 14:00:22 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2013/01/12 14:00:22 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2013/01/12 14:00:22 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2013/01/12 14:00:22 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2013/01/12 14:00:22 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2013/01/12 14:00:22 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2013/01/12 14:00:22 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2013/01/12 14:00:22 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2013/01/12 14:00:21 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2013/01/12 14:00:21 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2013/01/12 14:00:21 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2013/01/12 14:00:21 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2013/01/12 14:00:21 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2013/01/12 14:00:21 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2013/01/12 14:00:20 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2013/01/12 14:00:20 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2013/01/12 14:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2013/01/12 14:00:10 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2013/01/12 14:00:10 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll [2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll [2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll [2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll [2013/01/12 13:59:58 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe [2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe [2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll [2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll [2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll [2013/01/12 13:59:57 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2013/01/12 13:59:54 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2013/01/12 13:59:54 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2013/01/12 13:59:54 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2013/01/12 13:59:53 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2013/01/12 13:59:53 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2013/01/12 13:59:53 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2013/01/12 13:59:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2013/01/12 13:59:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2013/01/12 13:59:53 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2013/01/12 13:59:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2013/01/12 13:59:52 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2013/01/12 13:59:52 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2013/01/12 13:59:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2013/01/12 13:59:52 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2013/01/12 13:59:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSN [2013/01/12 13:59:38 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe [2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe [2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl [2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2013/01/12 13:59:37 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe [2013/01/12 13:59:37 | 000,345,088 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013/01/12 13:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe [2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe [2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2013/01/12 13:59:36 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys [2013/01/12 13:59:36 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys [2013/01/12 13:59:35 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll [2013/01/12 13:59:35 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe [2013/01/12 13:59:35 | 000,139,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll [2013/01/12 13:59:35 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll [2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe [2013/01/12 13:59:34 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll [2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll [2013/01/12 13:59:34 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe [2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll [2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe [2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe [2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe [2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll [2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013/01/12 13:59:33 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll [2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe [2013/01/12 13:59:33 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll [2013/01/12 13:59:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll [2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll [2013/01/12 13:59:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe [2013/01/12 13:59:31 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll [2013/01/12 13:59:31 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll [2013/01/12 13:59:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe [2013/01/12 13:59:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2013/01/12 13:59:30 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll [2013/01/12 13:59:30 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll [2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll [2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll [2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2013/01/12 13:59:29 | 001,251,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll [2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll [2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2013/01/12 13:59:28 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll [2013/01/12 13:59:26 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe [2013/01/12 13:59:26 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe [2013/01/12 13:59:26 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll [2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll [2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll [2013/01/12 13:59:26 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll [2013/01/12 13:59:26 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll [2013/01/12 13:59:26 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe [2013/01/12 13:59:26 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll [2013/01/12 13:59:26 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll [2013/01/12 13:59:26 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll [2013/01/12 13:59:26 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll [2013/01/12 13:59:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll [2013/01/12 13:59:26 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll [2013/01/12 13:59:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll [2013/01/12 13:59:25 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll [2013/01/12 13:59:25 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll [2013/01/12 13:59:25 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll [2013/01/12 13:59:25 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll [2013/01/12 13:59:25 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll [2013/01/12 13:59:25 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll [2013/01/12 13:59:25 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll [2013/01/12 13:59:25 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe [2013/01/12 13:59:25 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll [2013/01/12 13:59:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll [2013/01/12 13:59:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll [2013/01/12 13:59:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll [2013/01/12 13:59:24 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll [2013/01/12 13:59:24 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll [2013/01/12 13:59:24 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll [2013/01/12 13:59:24 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll [2013/01/12 13:59:24 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll [2013/01/12 13:59:24 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll [2013/01/12 13:59:24 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe [2013/01/12 13:59:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe [2013/01/12 13:59:23 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll [2013/01/12 13:59:23 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll [2013/01/12 13:59:22 | 001,352,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll [2013/01/12 13:59:22 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll [2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll [2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll [2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll [2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll [2013/01/12 13:59:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Videos [2013/01/12 13:58:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Accessories [2013/01/12 12:53:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2013/01/12 05:55:24 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2013/01/12 05:54:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll [2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2013/01/12 05:54:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2013/01/12 05:54:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2013/01/12 05:54:21 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2013/01/12 05:54:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2013/01/12 05:54:17 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2013/01/12 05:54:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2013/01/12 05:54:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2013/01/12 05:54:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2013/01/12 05:54:15 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll [2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll [2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll [2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2013/01/12 05:54:13 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2013/01/12 05:54:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll [2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll [2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2013/01/12 05:54:10 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2013/01/12 05:54:10 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2013/01/12 05:54:10 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2013/01/12 05:54:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2013/01/12 05:54:10 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2013/01/12 05:54:10 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2013/01/12 05:54:10 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2013/01/12 05:54:10 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2013/01/12 05:54:09 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2013/01/12 05:54:09 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2013/01/12 05:54:09 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2013/01/12 05:54:09 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2013/01/12 05:54:09 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2013/01/12 05:54:09 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2013/01/12 05:54:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2013/01/12 05:54:09 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2013/01/12 05:54:09 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2013/01/12 05:54:09 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2013/01/12 05:54:09 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2013/01/12 05:54:08 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2013/01/12 05:54:08 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2013/01/12 05:54:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys [2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll [2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2013/01/12 05:54:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV [2013/01/12 05:54:07 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2013/01/12 05:54:07 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup [2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu [2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents [2013/01/12 05:54:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Templates [2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Favorites [2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Desktop [2013/01/12 05:53:43 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft [2013/01/12 05:53:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data [2013/01/12 05:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\AdobeUM [2013/01/12 05:44:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Adobe [2013/01/12 05:44:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\My eBooks [2013/01/12 05:43:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Adobe [2013/01/12 05:43:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013/01/12 05:41:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\vlc [2013/01/12 05:39:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\VideoLAN [2013/01/12 05:35:11 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2013/01/12 05:14:23 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2013/01/12 05:14:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2013/01/12 05:14:21 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2013/01/12 05:14:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2013/01/12 05:14:19 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2013/01/12 05:14:18 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll [2013/01/12 05:14:18 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl [2013/01/12 05:14:18 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2013/01/12 05:14:18 | 000,000,000 | R--D | C] -- C:\Program Files [2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2013/01/12 05:13:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2013/01/12 05:13:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013/01/12 05:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\Downloads [2013/01/12 05:03:28 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2013/01/12 05:03:28 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2013/01/12 05:03:28 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2013/01/12 05:03:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2013/01/12 04:58:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Mozilla [2013/01/12 04:58:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Mozilla [2013/01/12 04:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013/01/12 02:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\PrintMe Internet Printing [2013/01/12 02:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe [2013/01/12 02:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013/01/12 02:52:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache [2013/01/12 02:00:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013/01/12 01:55:41 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013/01/12 01:55:40 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013/01/12 01:55:40 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013/01/12 01:55:39 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013/01/12 01:55:38 | 000,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013/01/12 01:55:37 | 000,171,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013/01/12 01:55:37 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013/01/12 01:55:36 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013/01/12 01:55:35 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013/01/12 01:55:35 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013/01/12 01:55:33 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013/01/12 01:55:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013/01/12 01:55:23 | 000,290,816 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013/01/12 01:55:23 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013/01/12 01:55:22 | 001,200,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013/01/12 01:55:22 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013/01/12 01:55:22 | 000,104,992 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013/01/12 01:55:22 | 000,034,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstXP.dll [2013/01/12 01:55:20 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013/01/12 01:55:19 | 004,959,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013/01/12 01:55:13 | 002,168,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013/01/12 01:55:13 | 001,389,056 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013/01/12 01:55:09 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013/01/12 01:55:09 | 000,057,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013/01/12 01:55:08 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013/01/12 01:55:08 | 000,278,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013/01/12 01:55:08 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013/01/12 01:55:02 | 000,528,384 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013/01/12 01:54:35 | 000,023,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2013/01/12 01:54:22 | 000,033,792 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdPPM.sys [2013/01/12 01:54:21 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2013/01/12 01:54:21 | 000,000,000 | ---D | C] -- C:\Program Files\AMD [2013/01/12 01:53:23 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe [2013/01/12 01:53:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2013/01/12 01:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013/02/04 22:41:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe [2013/02/04 22:30:09 | 000,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2013/02/04 22:30:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini [2013/02/03 22:46:32 | 005,029,877 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\ComboFix.exe [2013/02/03 22:41:08 | 000,000,452 | ---- | M] () -- C:\Documents and Settings\abc\My Documents\spider.sav [2013/02/02 20:44:08 | 000,688,992 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.com [2013/02/02 20:43:36 | 000,688,992 | ---- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.scr [2013/02/02 18:03:01 | 005,257,020 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3 [2013/02/02 17:58:57 | 005,748,900 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3 [2013/02/01 23:57:38 | 000,116,189 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat [2013/02/01 23:57:38 | 000,098,168 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat [2013/02/01 23:29:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013/02/01 23:27:40 | 000,016,608 | ---- | M] (Windows ® 2000 DDK provider) -- C:\WINDOWS\gdrv.sys [2013/01/29 23:56:50 | 000,095,526 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg [2013/01/29 22:14:50 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/01/25 17:46:52 | 004,109,156 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG [2013/01/21 11:23:36 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk [2013/01/20 12:53:03 | 000,000,005 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan [2013/01/20 09:14:17 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk [2013/01/19 02:18:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2013/01/13 04:31:50 | 000,001,841 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk [2013/01/13 03:01:25 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013/01/13 02:59:17 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2013/01/13 02:53:10 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2013/01/13 01:32:29 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013/01/13 01:32:29 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013/01/12 14:08:28 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2013/01/12 14:08:28 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2013/01/12 14:06:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2013/01/12 14:06:40 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013/01/12 14:05:51 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2013/01/12 14:03:36 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2013/01/12 14:03:33 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2013/01/12 14:03:33 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2013/01/12 14:03:23 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2013/01/12 14:00:51 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2013/01/12 04:52:32 | 000,000,580 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk [2013/01/12 04:43:57 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2013/01/12 02:53:32 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk [2013/01/12 02:04:27 | 000,311,934 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013/01/12 02:04:27 | 000,040,196 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013/01/12 02:00:29 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2013/01/12 02:00:29 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2013/02/03 23:02:20 | 000,000,223 | ---- | C] () -- C:\Boot.bak [2013/02/03 23:02:18 | 000,260,272 | RHS- | C] () -- C:\cmldr [2013/02/03 22:57:38 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2013/02/03 22:57:38 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2013/02/03 22:57:38 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2013/02/03 22:57:38 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2013/02/03 22:57:38 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2013/02/03 22:41:08 | 000,000,452 | ---- | C] () -- C:\Documents and Settings\abc\My Documents\spider.sav [2013/02/02 18:00:04 | 005,257,020 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3 [2013/02/02 17:54:32 | 005,748,900 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3 [2013/01/29 23:56:49 | 000,095,526 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg [2013/01/25 09:32:41 | 004,109,156 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG [2013/01/21 11:23:36 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk [2013/01/20 12:53:03 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan [2013/01/20 09:14:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox.lnk [2013/01/20 09:14:17 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk [2013/01/19 02:18:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2013/01/13 04:31:50 | 000,001,841 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk [2013/01/13 02:53:10 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2013/01/12 14:37:12 | 000,001,570 | ---- | C] () -- C:\WINDOWS\System32\nvide.nvu [2013/01/12 14:37:02 | 000,003,903 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu [2013/01/12 14:37:02 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin [2013/01/12 14:29:33 | 000,116,189 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat [2013/01/12 14:29:33 | 000,098,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat [2013/01/12 14:08:28 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2013/01/12 14:08:21 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Outlook Express.lnk [2013/01/12 14:08:20 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2013/01/12 14:08:20 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Internet Explorer.lnk [2013/01/12 14:08:14 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Remote Assistance.lnk [2013/01/12 14:08:14 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Windows Media Player.lnk [2013/01/12 14:06:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2013/01/12 14:05:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2013/01/12 14:05:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2013/01/12 14:04:48 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2013/01/12 14:04:41 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2013/01/12 14:04:40 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2013/01/12 14:04:39 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2013/01/12 14:04:32 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2013/01/12 14:04:29 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2013/01/12 14:04:25 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2013/01/12 14:04:16 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2013/01/12 14:03:36 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2013/01/12 14:03:33 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2013/01/12 14:03:33 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2013/01/12 14:03:32 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2013/01/12 14:02:33 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Movie Maker.lnk [2013/01/12 14:02:23 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2013/01/12 14:01:47 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2013/01/12 14:01:34 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2013/01/12 14:01:24 | 000,376,320 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2013/01/12 14:00:53 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Messenger.lnk [2013/01/12 14:00:51 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2013/01/12 14:00:29 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\MSN.lnk [2013/01/12 14:00:04 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp [2013/01/12 14:00:04 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp [2013/01/12 14:00:04 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp [2013/01/12 14:00:04 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp [2013/01/12 14:00:04 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2013/01/12 14:00:04 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2013/01/12 14:00:03 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp [2013/01/12 14:00:03 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp [2013/01/12 14:00:03 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp [2013/01/12 14:00:03 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp [2013/01/12 14:00:03 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp [2013/01/12 14:00:00 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2013/01/12 14:00:00 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2013/01/12 13:59:59 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2013/01/12 13:59:52 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2013/01/12 05:54:29 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2013/01/12 05:54:26 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2013/01/12 05:54:08 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2013/01/12 05:54:00 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2013/01/12 05:54:00 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2013/01/12 05:54:00 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2013/01/12 05:54:00 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat [2013/01/12 05:54:00 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat [2013/01/12 05:54:00 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2013/01/12 05:54:00 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2013/01/12 05:53:59 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2013/01/12 05:53:59 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2013/01/12 05:53:59 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2013/01/12 05:53:59 | 000,502,724 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2013/01/12 05:53:59 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2013/01/12 05:53:59 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2013/01/12 05:53:59 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2013/01/12 05:53:59 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2013/01/12 05:53:59 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2013/01/12 05:53:59 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2013/01/12 05:53:59 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2013/01/12 05:53:59 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2013/01/12 05:53:20 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013/01/12 05:52:25 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2013/01/12 05:14:20 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2013/01/12 05:14:20 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2013/01/12 05:14:19 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2013/01/12 05:14:18 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2013/01/12 05:07:03 | 000,000,339 | RHS- | C] () -- C:\boot.ini [2013/01/12 04:52:32 | 000,000,580 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk [2013/01/12 04:43:57 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2013/01/12 02:54:07 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/01/12 02:53:32 | 000,001,740 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk [2013/01/12 02:53:31 | 000,001,866 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Adobe Reader 6.0.lnk [2013/01/12 02:00:29 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2013/01/12 02:00:29 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2013/01/12 01:55:42 | 000,000,553 | R--- | C] () -- C:\WINDOWS\USetup.iss [2013/01/12 01:53:49 | 000,081,496 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2013/01/12 01:53:23 | 000,017,056 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2004/08/03 11:26:46 | 001,483,264 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2004/08/03 11:26:44 | 000,472,064 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2004/08/03 11:26:48 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== Custom Scans ========== < netsves > < %SYSTEMDRIVE%\*.* > [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak [2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini [2004/08/03 23:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2013/01/12 01:55:43 | 000,000,206 | ---- | M] () -- C:\csb.log [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/08/03 09:08:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2004/08/03 09:29:34 | 000,250,032 | RHS- | M] () -- C:\ntldr [2013/02/04 22:30:05 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys [2013/01/12 01:55:43 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log [2013/01/20 01:02:09 | 000,215,196 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_20.01.2013_00.48.43_log.txt [2013/01/23 12:57:17 | 000,145,430 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.54.14_log.txt [2013/01/23 13:01:21 | 000,228,108 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.59.24_log.txt < %systemroot%\*./mp/s > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto > < Update\Results\Install\LastSuccessTime/rs > Invalid Switch: rs < End of report >

[2013/01/12 14:01:18 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2013/01/12 14:01:17 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013/01/12 14:01:17 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll [2013/01/12 14:01:17 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll [2013/01/12 14:01:17 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll [2013/01/12 14:01:17 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll [2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll [2013/01/12 14:01:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll [2013/01/12 14:01:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe [2013/01/12 14:01:16 | 002,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll [2013/01/12 14:01:16 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll [2013/01/12 14:01:16 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe [2013/01/12 14:01:15 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll [2013/01/12 14:01:15 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll [2013/01/12 14:01:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe [2013/01/12 14:01:15 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe [2013/01/12 14:01:15 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll [2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe [2013/01/12 14:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll [2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll [2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll [2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll [2013/01/12 14:01:13 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll [2013/01/12 14:01:13 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll [2013/01/12 14:01:13 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll [2013/01/12 14:01:13 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll [2013/01/12 14:01:13 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe [2013/01/12 14:01:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe [2013/01/12 14:01:12 | 000,561,179 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll [2013/01/12 14:01:12 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll [2013/01/12 14:01:12 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe [2013/01/12 14:01:12 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe [2013/01/12 14:01:12 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll [2013/01/12 14:01:11 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll [2013/01/12 14:01:11 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll [2013/01/12 14:01:11 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll [2013/01/12 14:01:11 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll [2013/01/12 14:01:11 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll [2013/01/12 14:01:11 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll [2013/01/12 14:01:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll [2013/01/12 14:01:11 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll [2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll [2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll [2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll [2013/01/12 14:01:10 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013/01/12 14:01:10 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013/01/12 14:01:10 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013/01/12 14:01:10 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll [2013/01/12 14:01:10 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll [2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll [2013/01/12 14:01:10 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll [2013/01/12 14:01:09 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013/01/12 14:01:09 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll [2013/01/12 14:01:09 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll [2013/01/12 14:01:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013/01/12 14:01:09 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll [2013/01/12 14:01:09 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll [2013/01/12 14:01:09 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll [2013/01/12 14:01:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll [2013/01/12 14:01:09 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll [2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll [2013/01/12 14:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2013/01/12 14:01:08 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2013/01/12 14:01:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2013/01/12 14:01:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe [2013/01/12 14:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2013/01/12 14:01:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Pictures [2013/01/12 14:00:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Games [2013/01/12 14:00:43 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2013/01/12 14:00:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2013/01/12 14:00:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Administrative Tools [2013/01/12 14:00:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Music [2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services [2013/01/12 14:00:24 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2013/01/12 14:00:24 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2013/01/12 14:00:23 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2013/01/12 14:00:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2013/01/12 14:00:23 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2013/01/12 14:00:23 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2013/01/12 14:00:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2013/01/12 14:00:22 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2013/01/12 14:00:22 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2013/01/12 14:00:22 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2013/01/12 14:00:22 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2013/01/12 14:00:22 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2013/01/12 14:00:22 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2013/01/12 14:00:22 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2013/01/12 14:00:22 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2013/01/12 14:00:21 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2013/01/12 14:00:21 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2013/01/12 14:00:21 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2013/01/12 14:00:21 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2013/01/12 14:00:21 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2013/01/12 14:00:21 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2013/01/12 14:00:20 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2013/01/12 14:00:20 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2013/01/12 14:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2013/01/12 14:00:10 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2013/01/12 14:00:10 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll [2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll [2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll [2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll [2013/01/12 13:59:58 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe [2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe [2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll [2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll [2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll [2013/01/12 13:59:57 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2013/01/12 13:59:54 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2013/01/12 13:59:54 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2013/01/12 13:59:54 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2013/01/12 13:59:53 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2013/01/12 13:59:53 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2013/01/12 13:59:53 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2013/01/12 13:59:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2013/01/12 13:59:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2013/01/12 13:59:53 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2013/01/12 13:59:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2013/01/12 13:59:52 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2013/01/12 13:59:52 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2013/01/12 13:59:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2013/01/12 13:59:52 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2013/01/12 13:59:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSN [2013/01/12 13:59:38 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe [2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe [2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl [2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2013/01/12 13:59:37 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe [2013/01/12 13:59:37 | 000,345,088 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013/01/12 13:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe [2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe [2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2013/01/12 13:59:36 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys [2013/01/12 13:59:36 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys [2013/01/12 13:59:35 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll [2013/01/12 13:59:35 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe [2013/01/12 13:59:35 | 000,139,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll [2013/01/12 13:59:35 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll [2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe [2013/01/12 13:59:34 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll [2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll [2013/01/12 13:59:34 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe [2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll [2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe [2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe [2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe [2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll [2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013/01/12 13:59:33 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll [2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe [2013/01/12 13:59:33 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll [2013/01/12 13:59:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll [2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll [2013/01/12 13:59:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe [2013/01/12 13:59:31 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll [2013/01/12 13:59:31 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll [2013/01/12 13:59:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe [2013/01/12 13:59:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2013/01/12 13:59:30 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll [2013/01/12 13:59:30 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll [2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll [2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll [2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2013/01/12 13:59:29 | 001,251,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll [2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll [2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2013/01/12 13:59:28 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll [2013/01/12 13:59:26 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe [2013/01/12 13:59:26 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe [2013/01/12 13:59:26 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll [2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll [2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll [2013/01/12 13:59:26 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll [2013/01/12 13:59:26 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll [2013/01/12 13:59:26 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe [2013/01/12 13:59:26 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll [2013/01/12 13:59:26 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll [2013/01/12 13:59:26 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll [2013/01/12 13:59:26 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll [2013/01/12 13:59:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll [2013/01/12 13:59:26 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll [2013/01/12 13:59:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll [2013/01/12 13:59:25 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll [2013/01/12 13:59:25 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll [2013/01/12 13:59:25 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll [2013/01/12 13:59:25 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll [2013/01/12 13:59:25 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll [2013/01/12 13:59:25 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll [2013/01/12 13:59:25 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll [2013/01/12 13:59:25 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe [2013/01/12 13:59:25 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll [2013/01/12 13:59:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll [2013/01/12 13:59:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll [2013/01/12 13:59:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll [2013/01/12 13:59:24 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll [2013/01/12 13:59:24 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll [2013/01/12 13:59:24 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll [2013/01/12 13:59:24 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll [2013/01/12 13:59:24 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll [2013/01/12 13:59:24 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll [2013/01/12 13:59:24 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe [2013/01/12 13:59:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe [2013/01/12 13:59:23 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll [2013/01/12 13:59:23 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll [2013/01/12 13:59:22 | 001,352,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll [2013/01/12 13:59:22 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll [2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll [2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll [2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll [2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll [2013/01/12 13:59:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Videos [2013/01/12 13:58:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Accessories [2013/01/12 12:53:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2013/01/12 05:55:24 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2013/01/12 05:54:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll [2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2013/01/12 05:54:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2013/01/12 05:54:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2013/01/12 05:54:21 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2013/01/12 05:54:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2013/01/12 05:54:17 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2013/01/12 05:54:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2013/01/12 05:54:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2013/01/12 05:54:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2013/01/12 05:54:15 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll [2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll [2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll [2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2013/01/12 05:54:13 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2013/01/12 05:54:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll [2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll [2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2013/01/12 05:54:10 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2013/01/12 05:54:10 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2013/01/12 05:54:10 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2013/01/12 05:54:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2013/01/12 05:54:10 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2013/01/12 05:54:10 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2013/01/12 05:54:10 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2013/01/12 05:54:10 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2013/01/12 05:54:09 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2013/01/12 05:54:09 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2013/01/12 05:54:09 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2013/01/12 05:54:09 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2013/01/12 05:54:09 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2013/01/12 05:54:09 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2013/01/12 05:54:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2013/01/12 05:54:09 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2013/01/12 05:54:09 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2013/01/12 05:54:09 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2013/01/12 05:54:09 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2013/01/12 05:54:08 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2013/01/12 05:54:08 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2013/01/12 05:54:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys [2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll [2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2013/01/12 05:54:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV [2013/01/12 05:54:07 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2013/01/12 05:54:07 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup [2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu [2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents [2013/01/12 05:54:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Templates [2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Favorites [2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Desktop [2013/01/12 05:53:43 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft [2013/01/12 05:53:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data [2013/01/12 05:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\AdobeUM [2013/01/12 05:44:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Adobe [2013/01/12 05:44:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\My eBooks [2013/01/12 05:43:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Adobe [2013/01/12 05:43:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013/01/12 05:41:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\vlc [2013/01/12 05:39:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\VideoLAN [2013/01/12 05:35:11 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2013/01/12 05:14:23 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2013/01/12 05:14:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2013/01/12 05:14:21 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2013/01/12 05:14:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2013/01/12 05:14:19 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2013/01/12 05:14:18 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll [2013/01/12 05:14:18 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl [2013/01/12 05:14:18 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2013/01/12 05:14:18 | 000,000,000 | R--D | C] -- C:\Program Files [2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2013/01/12 05:13:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2013/01/12 05:13:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013/01/12 05:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\Downloads [2013/01/12 05:03:28 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2013/01/12 05:03:28 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2013/01/12 05:03:28 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2013/01/12 05:03:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2013/01/12 04:58:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Mozilla [2013/01/12 04:58:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Mozilla [2013/01/12 04:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013/01/12 02:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\PrintMe Internet Printing [2013/01/12 02:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe [2013/01/12 02:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013/01/12 02:52:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache [2013/01/12 02:00:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013/01/12 01:55:41 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013/01/12 01:55:40 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013/01/12 01:55:40 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013/01/12 01:55:39 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013/01/12 01:55:38 | 000,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013/01/12 01:55:37 | 000,171,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013/01/12 01:55:37 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013/01/12 01:55:36 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013/01/12 01:55:35 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013/01/12 01:55:35 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013/01/12 01:55:33 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013/01/12 01:55:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013/01/12 01:55:23 | 000,290,816 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013/01/12 01:55:23 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013/01/12 01:55:22 | 001,200,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013/01/12 01:55:22 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013/01/12 01:55:22 | 000,104,992 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013/01/12 01:55:22 | 000,034,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstXP.dll [2013/01/12 01:55:20 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013/01/12 01:55:19 | 004,959,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013/01/12 01:55:13 | 002,168,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013/01/12 01:55:13 | 001,389,056 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013/01/12 01:55:09 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013/01/12 01:55:09 | 000,057,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013/01/12 01:55:08 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013/01/12 01:55:08 | 000,278,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013/01/12 01:55:08 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013/01/12 01:55:02 | 000,528,384 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013/01/12 01:54:35 | 000,023,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2013/01/12 01:54:22 | 000,033,792 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdPPM.sys [2013/01/12 01:54:21 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2013/01/12 01:54:21 | 000,000,000 | ---D | C] -- C:\Program Files\AMD [2013/01/12 01:53:23 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe [2013/01/12 01:53:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview [2013/01/12 01:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013/02/04 22:41:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe [2013/02/04 22:30:09 | 000,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2013/02/04 22:30:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini [2013/02/03 22:46:32 | 005,029,877 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\ComboFix.exe [2013/02/03 22:41:08 | 000,000,452 | ---- | M] () -- C:\Documents and Settings\abc\My Documents\spider.sav [2013/02/02 20:44:08 | 000,688,992 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.com [2013/02/02 20:43:36 | 000,688,992 | ---- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.scr [2013/02/02 18:03:01 | 005,257,020 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3 [2013/02/02 17:58:57 | 005,748,900 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3 [2013/02/01 23:57:38 | 000,116,189 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat [2013/02/01 23:57:38 | 000,098,168 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat [2013/02/01 23:29:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013/02/01 23:27:40 | 000,016,608 | ---- | M] (Windows ® 2000 DDK provider) -- C:\WINDOWS\gdrv.sys [2013/01/29 23:56:50 | 000,095,526 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg [2013/01/29 22:14:50 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/01/25 17:46:52 | 004,109,156 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG [2013/01/21 11:23:36 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk [2013/01/20 12:53:03 | 000,000,005 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan [2013/01/20 09:14:17 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk [2013/01/19 02:18:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2013/01/13 04:31:50 | 000,001,841 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk [2013/01/13 03:01:25 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013/01/13 02:59:17 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2013/01/13 02:53:10 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2013/01/13 01:32:29 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013/01/13 01:32:29 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013/01/12 14:08:28 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2013/01/12 14:08:28 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2013/01/12 14:06:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2013/01/12 14:06:40 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013/01/12 14:05:51 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2013/01/12 14:03:36 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2013/01/12 14:03:33 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2013/01/12 14:03:33 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2013/01/12 14:03:23 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2013/01/12 14:00:51 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2013/01/12 04:52:32 | 000,000,580 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk [2013/01/12 04:43:57 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2013/01/12 02:53:32 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk [2013/01/12 02:04:27 | 000,311,934 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013/01/12 02:04:27 | 000,040,196 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013/01/12 02:00:29 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2013/01/12 02:00:29 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2013/02/03 23:02:20 | 000,000,223 | ---- | C] () -- C:\Boot.bak [2013/02/03 23:02:18 | 000,260,272 | RHS- | C] () -- C:\cmldr [2013/02/03 22:57:38 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2013/02/03 22:57:38 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2013/02/03 22:57:38 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2013/02/03 22:57:38 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2013/02/03 22:57:38 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2013/02/03 22:41:08 | 000,000,452 | ---- | C] () -- C:\Documents and Settings\abc\My Documents\spider.sav [2013/02/02 18:00:04 | 005,257,020 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3 [2013/02/02 17:54:32 | 005,748,900 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3 [2013/01/29 23:56:49 | 000,095,526 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg [2013/01/25 09:32:41 | 004,109,156 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG [2013/01/21 11:23:36 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk [2013/01/20 12:53:03 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan [2013/01/20 09:14:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox.lnk [2013/01/20 09:14:17 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk [2013/01/19 02:18:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf [2013/01/13 04:31:50 | 000,001,841 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk [2013/01/13 02:53:10 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2013/01/12 14:37:12 | 000,001,570 | ---- | C] () -- C:\WINDOWS\System32\nvide.nvu [2013/01/12 14:37:02 | 000,003,903 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu [2013/01/12 14:37:02 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin [2013/01/12 14:29:33 | 000,116,189 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat [2013/01/12 14:29:33 | 000,098,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat [2013/01/12 14:08:28 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2013/01/12 14:08:21 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Outlook Express.lnk [2013/01/12 14:08:20 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2013/01/12 14:08:20 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Internet Explorer.lnk [2013/01/12 14:08:14 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Remote Assistance.lnk [2013/01/12 14:08:14 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Windows Media Player.lnk [2013/01/12 14:06:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2013/01/12 14:05:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2013/01/12 14:05:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2013/01/12 14:04:48 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2013/01/12 14:04:41 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2013/01/12 14:04:40 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2013/01/12 14:04:39 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2013/01/12 14:04:32 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2013/01/12 14:04:29 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2013/01/12 14:04:25 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2013/01/12 14:04:16 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2013/01/12 14:03:36 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2013/01/12 14:03:33 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2013/01/12 14:03:33 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2013/01/12 14:03:32 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2013/01/12 14:02:33 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Movie Maker.lnk [2013/01/12 14:02:23 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2013/01/12 14:01:47 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2013/01/12 14:01:34 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2013/01/12 14:01:24 | 000,376,320 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2013/01/12 14:00:53 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Messenger.lnk [2013/01/12 14:00:51 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2013/01/12 14:00:29 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\MSN.lnk [2013/01/12 14:00:04 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp [2013/01/12 14:00:04 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp [2013/01/12 14:00:04 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp [2013/01/12 14:00:04 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp [2013/01/12 14:00:04 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2013/01/12 14:00:04 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2013/01/12 14:00:03 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp [2013/01/12 14:00:03 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp [2013/01/12 14:00:03 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp [2013/01/12 14:00:03 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp [2013/01/12 14:00:03 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp [2013/01/12 14:00:00 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2013/01/12 14:00:00 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2013/01/12 13:59:59 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2013/01/12 13:59:52 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2013/01/12 05:54:29 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2013/01/12 05:54:26 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2013/01/12 05:54:08 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2013/01/12 05:54:00 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2013/01/12 05:54:00 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2013/01/12 05:54:00 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2013/01/12 05:54:00 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat [2013/01/12 05:54:00 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat [2013/01/12 05:54:00 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2013/01/12 05:54:00 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2013/01/12 05:53:59 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2013/01/12 05:53:59 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2013/01/12 05:53:59 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2013/01/12 05:53:59 | 000,502,724 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2013/01/12 05:53:59 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2013/01/12 05:53:59 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2013/01/12 05:53:59 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2013/01/12 05:53:59 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2013/01/12 05:53:59 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2013/01/12 05:53:59 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2013/01/12 05:53:59 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2013/01/12 05:53:59 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2013/01/12 05:53:20 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013/01/12 05:52:25 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2013/01/12 05:14:20 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2013/01/12 05:14:20 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2013/01/12 05:14:19 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2013/01/12 05:14:18 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2013/01/12 05:07:03 | 000,000,339 | RHS- | C] () -- C:\boot.ini [2013/01/12 04:52:32 | 000,000,580 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk [2013/01/12 04:43:57 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2013/01/12 02:54:07 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013/01/12 02:53:32 | 000,001,740 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk [2013/01/12 02:53:31 | 000,001,866 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Adobe Reader 6.0.lnk [2013/01/12 02:00:29 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2013/01/12 02:00:29 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2013/01/12 01:55:42 | 000,000,553 | R--- | C] () -- C:\WINDOWS\USetup.iss [2013/01/12 01:53:49 | 000,081,496 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml [2013/01/12 01:53:23 | 000,017,056 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2004/08/03 11:26:46 | 001,483,264 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2004/08/03 11:26:44 | 000,472,064 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2004/08/03 11:26:48 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== Custom Scans ========== < netsves > < %SYSTEMDRIVE%\*.* > [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak [2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini [2004/08/03 23:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2013/01/12 01:55:43 | 000,000,206 | ---- | M] () -- C:\csb.log [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/08/03 09:08:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2004/08/03 09:29:34 | 000,250,032 | RHS- | M] () -- C:\ntldr [2013/02/04 22:30:05 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys [2013/01/12 01:55:43 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log [2013/01/20 01:02:09 | 000,215,196 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_20.01.2013_00.48.43_log.txt [2013/01/23 12:57:17 | 000,145,430 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.54.14_log.txt [2013/01/23 13:01:21 | 000,228,108 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.59.24_log.txt < %systemroot%\*./mp/s > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto > < Update\Results\Install\LastSuccessTime/rs > Invalid Switch: rs < End of report >

OTL logfile created on: 2/4/2013 10:49:57 PM - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\abc\Desktop Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 2.94 Gb Total Physical Memory | 2.48 Gb Available Physical Memory | 84.35% Memory free 4.19 Gb Paging File | 3.78 Gb Available in Paging File | 90.27% Paging File free Paging file location(s): C:\pagefile.sys 1440 2880 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48.83 Gb Total Space | 43.41 Gb Free Space | 88.90% Space Free | Partition Type: NTFS Drive D: | 48.83 Gb Total Space | 5.11 Gb Free Space | 10.46% Space Free | Partition Type: NTFS Drive E: | 39.06 Gb Total Space | 1.21 Gb Free Space | 3.09% Space Free | Partition Type: NTFS Drive F: | 29.29 Gb Total Space | 3.22 Gb Free Space | 11.00% Space Free | Partition Type: NTFS Drive G: | 31.86 Gb Total Space | 1.67 Gb Free Space | 5.23% Space Free | Partition Type: NTFS Drive H: | 25.69 Gb Total Space | 3.37 Gb Free Space | 13.11% Space Free | Partition Type: NTFS Drive I: | 241.06 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: ABC-3B1295B6860 | User Name: abc | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013/02/04 22:41:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe PRC - [2010/10/01 22:06:36 | 000,348,760 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\avp.exe PRC - [2009/12/21 17:34:38 | 000,743,992 | ---- | M] (Infowatch) -- C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe PRC - [2004/08/03 11:26:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe ========== Modules (No Company Name) ========== MOD - [2010/10/01 22:05:46 | 008,972,888 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\QtGui4.dll MOD - [2010/10/01 22:05:42 | 002,456,152 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\QtCore4.dll MOD - [2010/10/01 22:05:42 | 000,117,336 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\text_extractor.dll MOD - [2010/10/01 22:05:28 | 002,111,064 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\avzkrnl.dll MOD - [2010/10/01 21:07:46 | 000,733,184 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\localization_manager.dll MOD - [2009/10/30 20:32:30 | 000,410,496 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\dblite.dll MOD - [2006/10/30 22:35:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll MOD - [2006/10/30 22:35:00 | 000,196,608 | ---- | M] () -- C:\WINDOWS\system32\nvapi.dll ========== Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - [2011/06/25 22:45:56 | 000,256,000 | R--- | M] () [Auto | Stopped] -- C:\ComboFix\pev.3XE -- (PEVSystemStart) SRV - [2010/10/01 22:06:36 | 000,348,760 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\avp.exe -- (AVP) SRV - [2009/12/21 17:34:38 | 000,743,992 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe -- (CSObjectsSrv) SRV - [2004/08/03 11:26:44 | 000,164,820 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\wcjohrw.dll -- (liluavs) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2013/02/01 23:27:40 | 000,016,608 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2009/12/14 12:44:24 | 000,088,632 | ---- | M] (Infowatch) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\CSCrySec.sys -- (CSCrySec) DRV - [2009/12/14 12:44:24 | 000,039,352 | ---- | M] (Infowatch) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\CSVirtualDiskDrv.sys -- (CSVirtualDiskDrv) DRV - [2009/11/26 13:10:46 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF) DRV - [2009/10/14 21:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\klbg.sys -- (KLBG) DRV - [2009/10/02 19:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt) DRV - [2009/09/14 14:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5) DRV - [2009/09/01 15:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1) DRV - [2008/12/11 01:24:20 | 004,959,232 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2007/04/16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM) DRV - [2006/11/27 16:33:54 | 000,019,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2006/11/27 16:33:50 | 000,058,368 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2006/10/18 16:31:38 | 000,105,472 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3220468 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll () FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/01/20 09:14:15 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/01/13 04:47:17 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky PURE\THBExt [2013/02/01 23:44:03 | 000,000,000 | ---D | M] [2013/01/20 09:14:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\abc\Application Data\Mozilla\Extensions [2013/01/20 09:14:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2013/01/12 05:32:16 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2013/01/16 12:11:06 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012/06/28 07:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll [2013/01/16 12:10:30 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2013/01/16 12:10:30 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml O1 HOSTS File: ([2001/09/03 14:51:08 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\ievkbd.dll (Kaspersky Lab) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll (Kaspersky Lab) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky PURE\avp.exe (Kaspersky Lab) O4 - HKLM..\Run: [GEST] m‘|Pë File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky PURE\ie_banner_deny.htm () O9 - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll (Kaspersky Lab) O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll (Kaspersky Lab) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{283623E3-FE97-4B66-8A18-D86E4F615C25}: NameServer = 213.254.232.55 213.254.232.37 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2BC31B98-0C5C-4962-B48E-9B35E39C4A07}: DhcpNameServer = 192.168.0.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab) O24 - Desktop WallPaper: C:\Documents and Settings\abc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\abc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010/12/23 08:50:00 | 000,640,024 | R--- | M] (Kaspersky Lab ZAO) - I:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2010/10/06 21:40:00 | 000,000,051 | R--- | M] () - I:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{61026628-5cbe-11e2-acfb-806d6172696f}\Shell - "" = AutoRun O33 - MountPoints2\{61026628-5cbe-11e2-acfb-806d6172696f}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{61026628-5cbe-11e2-acfb-806d6172696f}\Shell\AutoRun\command - "" = I:\Run.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013/02/04 22:42:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe [2013/02/03 23:02:16 | 000,000,000 | RHSD | C] -- C:\cmdcons [2013/02/03 22:57:38 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2013/02/03 22:57:38 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2013/02/03 22:57:38 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2013/02/03 22:57:38 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2013/02/03 22:57:15 | 000,000,000 | --SD | C] -- C:\ComboFix [2013/02/03 22:57:08 | 000,000,000 | ---D | C] -- C:\Qoobox [2013/02/03 22:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt [2013/02/03 22:46:50 | 005,029,877 | R--- | C] (Swearware) -- C:\Documents and Settings\abc\Desktop\ComboFix.exe [2013/02/03 22:40:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Desktop\mbar [2013/02/02 20:44:32 | 000,688,992 | R--- | C] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.com [2013/02/02 20:44:32 | 000,688,992 | ---- | C] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.scr [2013/01/24 11:54:48 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2013/01/21 11:23:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware [2013/01/21 11:23:35 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2013/01/21 11:23:35 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013/01/21 10:09:27 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013/01/20 12:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Desktop\New Folder [2013/01/20 09:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Mozilla [2013/01/20 03:41:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Malwarebytes [2013/01/20 03:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes [2013/01/20 00:57:21 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine [2013/01/19 04:22:19 | 000,000,000 | --SD | C] -- C:\Documents and Settings\abc\UserData [2013/01/19 02:25:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\Phone_pic [2013/01/19 02:15:23 | 000,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys [2013/01/18 13:08:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2013/01/13 08:34:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\WinRAR [2013/01/13 08:34:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\WinRAR [2013/01/13 08:34:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\WinRAR [2013/01/13 08:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013/01/13 04:49:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Winamp [2013/01/13 04:49:08 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll [2013/01/13 04:49:06 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll [2013/01/13 04:48:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013/01/13 04:47:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Winamp Detector Plug-in [2013/01/13 04:47:17 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2013/01/13 04:46:47 | 002,095,600 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll [2013/01/13 04:46:47 | 000,571,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll [2013/01/13 04:46:47 | 000,440,816 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll [2013/01/13 04:46:47 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll [2013/01/13 04:46:47 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe [2013/01/13 04:46:47 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe [2013/01/13 04:46:47 | 000,100,848 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll [2013/01/13 04:46:47 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe [2013/01/13 04:46:47 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe [2013/01/13 04:46:47 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe [2013/01/13 04:46:47 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll [2013/01/13 04:46:47 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [2013/01/13 04:46:47 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [2013/01/13 04:46:46 | 000,698,864 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll [2013/01/13 04:46:46 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll [2013/01/13 04:46:39 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2013/01/13 04:46:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Winamp [2013/01/13 04:31:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents\My Videos [2013/01/13 04:31:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Administrative Tools [2013/01/13 04:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\WALKMAN Guide [2013/01/13 04:30:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Downloaded Installations [2013/01/13 03:01:59 | 000,000,000 | ---D | C] -- C:\Program Files\Sony [2013/01/13 03:00:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2013/01/13 02:58:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\CRE [2013/01/13 02:57:49 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2013/01/13 02:57:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Conduit [2013/01/13 02:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Temp [2013/01/13 02:52:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2013/01/13 02:52:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2013/01/13 02:51:19 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2013/01/13 02:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\uTorrent [2013/01/13 01:33:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Macromedia [2013/01/13 01:32:29 | 000,697,864 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013/01/13 01:32:29 | 000,074,248 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013/01/12 14:37:12 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuide.exe [2013/01/12 14:37:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2013/01/12 14:37:02 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe [2013/01/12 14:36:57 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE [2013/01/12 14:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\InstallShield [2013/01/12 14:36:08 | 000,016,608 | ---- | C] (Windows ® 2000 DDK provider) -- C:\WINDOWS\gdrv.sys [2013/01/12 14:29:08 | 000,039,352 | ---- | C] (Infowatch) -- C:\WINDOWS\System32\drivers\CSVirtualDiskDrv.sys [2013/01/12 14:29:07 | 000,088,632 | ---- | C] (Infowatch) -- C:\WINDOWS\System32\drivers\CSCrySec.sys [2013/01/12 14:29:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013/01/12 14:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InfoWatch [2013/01/12 14:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Kaspersky PURE [2013/01/12 14:28:12 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab [2013/01/12 14:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Lab [2013/01/12 14:28:01 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys [2013/01/12 14:27:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Lab Setup Files [2013/01/12 14:08:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Identities [2013/01/12 14:08:20 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2013/01/12 14:08:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents\My Music [2013/01/12 14:08:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents\My Pictures [2013/01/12 14:08:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\abc\Application Data\Microsoft [2013/01/12 14:08:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\abc\Cookies [2013/01/12 14:08:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\abc\SendTo [2013/01/12 14:08:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\abc\Recent [2013/01/12 14:08:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\abc\Application Data [2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Startup [2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu [2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents [2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Favorites [2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Accessories [2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\Templates [2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\PrintHood [2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\NetHood [2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\Local Settings [2013/01/12 14:08:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Microsoft [2013/01/12 14:08:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Desktop [2013/01/12 14:07:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2013/01/12 14:07:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013/01/12 14:07:10 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2013/01/12 14:07:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2013/01/12 14:07:09 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2013/01/12 14:06:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2013/01/12 14:06:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2013/01/12 14:05:33 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2013/01/12 14:05:33 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2013/01/12 14:05:32 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2013/01/12 14:05:32 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2013/01/12 14:05:32 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2013/01/12 14:05:32 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2013/01/12 14:05:31 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2013/01/12 14:05:31 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2013/01/12 14:05:30 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2013/01/12 14:05:30 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2013/01/12 14:05:30 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2013/01/12 14:05:29 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2013/01/12 14:05:29 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2013/01/12 14:05:29 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2013/01/12 14:05:29 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2013/01/12 14:05:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2013/01/12 14:05:29 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2013/01/12 14:05:28 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2013/01/12 14:05:27 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2013/01/12 14:05:27 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2013/01/12 14:05:26 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2013/01/12 14:05:26 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2013/01/12 14:05:25 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2013/01/12 14:05:25 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2013/01/12 14:05:25 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2013/01/12 14:05:25 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2013/01/12 14:05:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2013/01/12 14:05:24 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2013/01/12 14:05:24 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2013/01/12 14:05:24 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2013/01/12 14:05:24 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2013/01/12 14:05:22 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2013/01/12 14:05:22 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2013/01/12 14:05:22 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2013/01/12 14:05:22 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2013/01/12 14:05:21 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2013/01/12 14:05:20 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2013/01/12 14:05:20 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2013/01/12 14:05:19 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2013/01/12 14:05:19 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2013/01/12 14:05:19 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2013/01/12 14:05:19 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2013/01/12 14:05:19 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2013/01/12 14:05:19 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2013/01/12 14:05:19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2013/01/12 14:05:19 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2013/01/12 14:05:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2013/01/12 14:05:18 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2013/01/12 14:05:18 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2013/01/12 14:05:18 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2013/01/12 14:05:18 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2013/01/12 14:05:18 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2013/01/12 14:05:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll [2013/01/12 14:05:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2013/01/12 14:05:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2013/01/12 14:05:17 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2013/01/12 14:05:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2013/01/12 14:05:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2013/01/12 14:05:17 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2013/01/12 14:05:17 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2013/01/12 14:05:17 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2013/01/12 14:05:17 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2013/01/12 14:05:16 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2013/01/12 14:05:13 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll [2013/01/12 14:05:13 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2013/01/12 14:05:12 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2013/01/12 14:05:12 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll [2013/01/12 14:05:11 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2013/01/12 14:05:11 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2013/01/12 14:05:11 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2013/01/12 14:05:11 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2013/01/12 14:05:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2013/01/12 14:05:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2013/01/12 14:05:10 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2013/01/12 14:05:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2013/01/12 14:05:09 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2013/01/12 14:05:08 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2013/01/12 14:05:08 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2013/01/12 14:05:08 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2013/01/12 14:05:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2013/01/12 14:05:07 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2013/01/12 14:05:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2013/01/12 14:05:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2013/01/12 14:05:06 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2013/01/12 14:05:06 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2013/01/12 14:05:06 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2013/01/12 14:05:06 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2013/01/12 14:05:06 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2013/01/12 14:05:06 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2013/01/12 14:05:05 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2013/01/12 14:05:05 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2013/01/12 14:05:05 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2013/01/12 14:05:05 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2013/01/12 14:05:05 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2013/01/12 14:05:03 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2013/01/12 14:05:02 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2013/01/12 14:05:01 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2013/01/12 14:05:00 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2013/01/12 14:05:00 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2013/01/12 14:04:57 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2013/01/12 14:04:57 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2013/01/12 14:04:57 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe [2013/01/12 14:04:52 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2013/01/12 14:04:51 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2013/01/12 14:04:51 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2013/01/12 14:04:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2013/01/12 14:04:51 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2013/01/12 14:04:51 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2013/01/12 14:04:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2013/01/12 14:04:49 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2013/01/12 14:04:49 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2013/01/12 14:04:49 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2013/01/12 14:04:49 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2013/01/12 14:04:48 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2013/01/12 14:04:47 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2013/01/12 14:04:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2013/01/12 14:04:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2013/01/12 14:04:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2013/01/12 14:04:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2013/01/12 14:04:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2013/01/12 14:04:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2013/01/12 14:04:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2013/01/12 14:04:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2013/01/12 14:04:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2013/01/12 14:04:45 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2013/01/12 14:04:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2013/01/12 14:04:45 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2013/01/12 14:04:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2013/01/12 14:04:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2013/01/12 14:04:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2013/01/12 14:04:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2013/01/12 14:04:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2013/01/12 14:04:43 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2013/01/12 14:04:43 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2013/01/12 14:04:43 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2013/01/12 14:04:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2013/01/12 14:04:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2013/01/12 14:04:42 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2013/01/12 14:04:42 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2013/01/12 14:04:42 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2013/01/12 14:04:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2013/01/12 14:04:41 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2013/01/12 14:04:41 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2013/01/12 14:04:41 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2013/01/12 14:04:41 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2013/01/12 14:04:41 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2013/01/12 14:04:41 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2013/01/12 14:04:41 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2013/01/12 14:04:40 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2013/01/12 14:04:40 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2013/01/12 14:04:40 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2013/01/12 14:04:40 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2013/01/12 14:04:40 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2013/01/12 14:04:40 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2013/01/12 14:04:40 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2013/01/12 14:04:40 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2013/01/12 14:04:39 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2013/01/12 14:04:39 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2013/01/12 14:04:39 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2013/01/12 14:04:39 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2013/01/12 14:04:39 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2013/01/12 14:04:39 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2013/01/12 14:04:39 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2013/01/12 14:04:39 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2013/01/12 14:04:38 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2013/01/12 14:04:38 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2013/01/12 14:04:38 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2013/01/12 14:04:38 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2013/01/12 14:04:38 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2013/01/12 14:04:38 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2013/01/12 14:04:38 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2013/01/12 14:04:38 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2013/01/12 14:04:35 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2013/01/12 14:04:30 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2013/01/12 14:04:30 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2013/01/12 14:04:30 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2013/01/12 14:04:30 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2013/01/12 14:04:30 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2013/01/12 14:04:29 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2013/01/12 14:04:28 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2013/01/12 14:04:28 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2013/01/12 14:04:28 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2013/01/12 14:04:28 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2013/01/12 14:04:27 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2013/01/12 14:04:27 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2013/01/12 14:04:27 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2013/01/12 14:04:27 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2013/01/12 14:04:27 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2013/01/12 14:04:27 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2013/01/12 14:04:27 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2013/01/12 14:04:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2013/01/12 14:04:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2013/01/12 14:04:27 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2013/01/12 14:04:27 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2013/01/12 14:04:27 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2013/01/12 14:04:26 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2013/01/12 14:04:26 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2013/01/12 14:04:26 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2013/01/12 14:04:26 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2013/01/12 14:04:26 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2013/01/12 14:04:26 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2013/01/12 14:04:26 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2013/01/12 14:04:26 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2013/01/12 14:04:26 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2013/01/12 14:04:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2013/01/12 14:04:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2013/01/12 14:04:25 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll [2013/01/12 14:04:25 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2013/01/12 14:04:25 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2013/01/12 14:04:25 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2013/01/12 14:04:24 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2013/01/12 14:04:24 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2013/01/12 14:04:24 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2013/01/12 14:04:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2013/01/12 14:04:24 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2013/01/12 14:04:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2013/01/12 14:04:23 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll [2013/01/12 14:04:23 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2013/01/12 14:04:23 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2013/01/12 14:04:23 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2013/01/12 14:04:23 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2013/01/12 14:04:19 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2013/01/12 14:04:19 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2013/01/12 14:04:18 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2013/01/12 14:04:18 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2013/01/12 14:04:18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2013/01/12 14:04:18 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2013/01/12 14:04:18 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2013/01/12 14:04:17 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2013/01/12 14:04:17 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2013/01/12 14:04:16 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2013/01/12 14:04:16 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2013/01/12 14:04:16 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2013/01/12 14:04:16 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2013/01/12 14:04:16 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2013/01/12 14:04:15 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2013/01/12 14:04:15 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2013/01/12 14:04:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2013/01/12 14:04:15 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2013/01/12 14:04:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2013/01/12 14:04:15 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2013/01/12 14:04:14 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2013/01/12 14:04:14 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2013/01/12 14:04:14 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2013/01/12 14:04:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2013/01/12 14:04:08 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2013/01/12 14:04:07 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2013/01/12 14:04:07 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2013/01/12 14:04:07 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2013/01/12 14:04:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2013/01/12 14:04:06 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2013/01/12 14:04:06 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2013/01/12 14:04:06 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2013/01/12 14:04:05 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2013/01/12 14:04:05 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2013/01/12 14:04:05 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2013/01/12 14:04:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2013/01/12 14:04:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2013/01/12 14:04:02 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2013/01/12 14:04:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2013/01/12 14:04:02 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2013/01/12 14:04:02 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2013/01/12 14:04:01 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll [2013/01/12 14:04:01 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll [2013/01/12 14:04:01 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2013/01/12 14:04:01 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2013/01/12 14:03:58 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2013/01/12 14:03:58 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2013/01/12 14:03:57 | 000,829,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2013/01/12 14:03:57 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2013/01/12 14:03:57 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2013/01/12 14:03:57 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2013/01/12 14:03:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2013/01/12 14:03:57 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2013/01/12 14:03:57 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2013/01/12 14:03:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2013/01/12 14:03:56 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2013/01/12 14:03:56 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2013/01/12 14:03:56 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2013/01/12 14:03:56 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2013/01/12 14:03:56 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2013/01/12 14:03:56 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2013/01/12 14:03:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2013/01/12 14:03:55 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2013/01/12 14:03:55 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2013/01/12 14:03:55 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2013/01/12 14:03:55 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2013/01/12 14:03:55 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2013/01/12 14:03:55 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2013/01/12 14:03:55 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2013/01/12 14:03:55 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2013/01/12 14:03:55 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2013/01/12 14:03:55 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2013/01/12 14:03:54 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2013/01/12 14:03:54 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2013/01/12 14:03:54 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2013/01/12 14:03:54 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2013/01/12 14:03:54 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2013/01/12 14:03:54 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2013/01/12 14:03:54 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2013/01/12 14:03:53 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2013/01/12 14:03:53 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2013/01/12 14:03:53 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2013/01/12 14:03:53 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2013/01/12 14:03:53 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2013/01/12 14:03:53 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2013/01/12 14:03:52 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll [2013/01/12 14:03:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2013/01/12 14:03:50 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2013/01/12 14:03:50 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2013/01/12 14:03:23 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2013/01/12 14:02:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users.WINDOWS\DRM [2013/01/12 14:02:42 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2013/01/12 14:02:42 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2013/01/12 14:02:34 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2013/01/12 14:02:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2013/01/12 14:01:57 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe [2013/01/12 14:01:56 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2013/01/12 14:01:56 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2013/01/12 14:01:55 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2013/01/12 14:01:55 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2013/01/12 14:01:55 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2013/01/12 14:01:55 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2013/01/12 14:01:47 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2013/01/12 14:01:45 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2013/01/12 14:01:45 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2013/01/12 14:01:45 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2013/01/12 14:01:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2013/01/12 14:01:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2013/01/12 14:01:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2013/01/12 14:01:42 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2013/01/12 14:01:41 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2013/01/12 14:01:41 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2013/01/12 14:01:41 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2013/01/12 14:01:41 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2013/01/12 14:01:41 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2013/01/12 14:01:41 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2013/01/12 14:01:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2013/01/12 14:01:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2013/01/12 14:01:40 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2013/01/12 14:01:38 | 000,725,566 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll [2013/01/12 14:01:38 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll [2013/01/12 14:01:37 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll [2013/01/12 14:01:37 | 000,848,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll [2013/01/12 14:01:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2013/01/12 14:01:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2013/01/12 14:01:36 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2013/01/12 14:01:36 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2013/01/12 14:01:35 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2013/01/12 14:01:35 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2013/01/12 14:01:35 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2013/01/12 14:01:35 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2013/01/12 14:01:35 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2013/01/12 14:01:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll [2013/01/12 14:01:35 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2013/01/12 14:01:34 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2013/01/12 14:01:34 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2013/01/12 14:01:34 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll [2013/01/12 14:01:34 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2013/01/12 14:01:34 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2013/01/12 14:01:34 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2013/01/12 14:01:34 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll [2013/01/12 14:01:33 | 001,134,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2013/01/12 14:01:33 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2013/01/12 14:01:33 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2013/01/12 14:01:33 | 000,382,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll [2013/01/12 14:01:33 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2013/01/12 14:01:33 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe [2013/01/12 14:01:33 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2013/01/12 14:01:33 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2013/01/12 14:01:33 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2013/01/12 14:01:33 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2013/01/12 14:01:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2013/01/12 14:01:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll [2013/01/12 14:01:33 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll [2013/01/12 14:01:33 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2013/01/12 14:01:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll [2013/01/12 14:01:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2013/01/12 14:01:31 | 004,256,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll [2013/01/12 14:01:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll [2013/01/12 14:01:31 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll [2013/01/12 14:01:30 | 003,555,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013/01/12 14:01:30 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll [2013/01/12 14:01:30 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll [2013/01/12 14:01:30 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll [2013/01/12 14:01:30 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll [2013/01/12 14:01:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll [2013/01/12 14:01:29 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2013/01/12 14:01:28 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll [2013/01/12 14:01:28 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll [2013/01/12 14:01:28 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe [2013/01/12 14:01:28 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll [2013/01/12 14:01:28 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll [2013/01/12 14:01:28 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll [2013/01/12 14:01:26 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe [2013/01/12 14:01:26 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2013/01/12 14:01:26 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll [2013/01/12 14:01:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2013/01/12 14:01:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll [2013/01/12 14:01:26 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2013/01/12 14:01:26 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll [2013/01/12 14:01:25 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll [2013/01/12 14:01:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2013/01/12 14:01:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll [2013/01/12 14:01:25 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll [2013/01/12 14:01:24 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe [2013/01/12 14:01:23 | 000,768,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe [2013/01/12 14:01:23 | 000,743,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013/01/12 14:01:23 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe [2013/01/12 14:01:23 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe [2013/01/12 14:01:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe [2013/01/12 14:01:23 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll [2013/01/12 14:01:22 | 000,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe [2013/01/12 14:01:22 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2013/01/12 14:01:22 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll [2013/01/12 14:01:22 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll [2013/01/12 14:01:22 | 000,124,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys [2013/01/12 14:01:22 | 000,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys [2013/01/12 14:01:22 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll [2013/01/12 14:01:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2013/01/12 14:01:21 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2013/01/12 14:01:21 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll [2013/01/12 14:01:21 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2013/01/12 14:01:21 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll [2013/01/12 14:01:21 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe [2013/01/12 14:01:21 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2013/01/12 14:01:21 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll [2013/01/12 14:01:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2013/01/12 14:01:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll [2013/01/12 14:01:20 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll [2013/01/12 14:01:20 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll [2013/01/12 14:01:20 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2013/01/12 14:01:20 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll [2013/01/12 14:01:20 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll [2013/01/12 14:01:20 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll [2013/01/12 14:01:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll [2013/01/12 14:01:19 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll [2013/01/12 14:01:19 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll [2013/01/12 14:01:19 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll [2013/01/12 14:01:19 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll [2013/01/12 14:01:19 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll [2013/01/12 14:01:19 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll [2013/01/12 14:01:19 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll [2013/01/12 14:01:18 | 001,032,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe [2013/01/12 14:01:18 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2013/01/12 14:01:18 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll [2013/01/12 14:01:18 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll [2013/01/12 14:01:18 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll [2013/01/12 14:01:18 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll [2013/01/12 14:01:18 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2013/01/12 14:01:18 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll [2013/01/12 14:01:18 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe

Good morning kingtaoist, Please download to the Desktop RogueKiller (by tigzy). Please quit all programs. Start RogueKiller.exe. Wait until Prescan has finished. Click on Scan. Click on Report and copy/paste the contents of the report in your next reply.

Hello preconmanager, Could you please give the filepath of the hosts driver?

Good afternoon Bluedragon07. That's fine. A little housekeeping to uninstall ComboFix: Please click Start>Run and copy/paste the following text, including the space between "ComboFix and "/uninstall", into the Run box and click OK: ComboFix /uninstall Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually. Right-click the Recycle Bin and please select Empty Recycle Bin. And AdwCleaner: Please double click on adwcleaner.exe to run the tool. Click on Uninstall. Confirm with Yes. ===== Please consider using these ideas to help secure your computer. While there is no way to guarantee safety when you use a computer, these steps will make it much less likely that you will need to endure another infection. While we really like to help people, we would rather help you protect yourself so that you won't need that help in the future. :thumbup: IMPORTANT: Please enable Automatic Updates under Start > Control Panel > Automatic Updates to ensure your Windows updates regularly. This is extremely important in ensuring you remain protected against vulnerabilities and infections. This is a crucial security measure. As a minimum, you need at least an antivirus, firewall and some type of anti-spyware program. Please consider installing and running the following program (there is a free version available): SpywareBlaster A tutorial on using SpywareBlaster to prevent malware from ever installing on your computer may be found here. Please keep these programs up-to-date and run them whenever you suspect a problem to prevent malware problems. A number of programs have resident protection and it is a good idea to run the resident protection of one of each type of program to maintain protection. However, it is important to run only one resident program of each type since they can conflict and become less effective. That means only one antivirus, firewall and scanning anti-spyware program at a time. Passive protectors, like SpywareBlaster, can be run with any of them. Note that there are a lot of rogue programs out there that want to scare you into giving them your money and some malware actually claims to be security programs. If you get a popup for a security program that you did not install yourself, do NOT click on it and ask for help immediately. It is very important to run an antivirus and firewall, but you can't always rely on reviews and ads for information. Ask in a security forum that you trust if you are not sure. If you are unsure and looking for anti-spyware programs, you may be able to find out if it is a rogue here: http://www.spywarewarrior.com/rogue_anti-spyware.htm A similar category of programs is now called "scareware." Scareware programs are active infections that will pop-up on your computer and tell you that you are infected. If you look closely, it will usually have a name that looks like it might be legitimate, but it is NOT one of the programs you installed. It tells you to click and install it right away. If you click on any part of it, including the 'X' to close it, you may actually help it infect your computer further. Keeping protection updated and running resident protection can help prevent these infections. If it happens anyway, get offline as quickly as you can. Pull the internet connection cable or shut down the computer if you have to. Contact someone to help by using another computer if possible. These programs are also sometimes called 'rogues', but they are different than the older version of rogues mentioned above. Please consider using an alternate browser. Mozilla's Firefox browser is a very good alternative. In addition to being generally more secure than Internet Explorer, it has a very good built-in popup blocker and Add-ons, like Adblock Plus and NoScript, can make it even more secure. To avoid dangerous sites Web of Trust or McAfee SiteAdvisor can be installed. Google Chrome or Opera are other good options. Two useful programs for keeping your programs up-to-date are FileHippo or Secunia PSI. Running one of these regularly will help you obtain the latest program updates. Please also read Tony Klein's excellent article: How did I get infected in the first place. Hopefully these steps will help to keep you error free. If you run into more difficulty, we will certainly do what we can to help.