aryama

Computer shutting down during virus scan

Recommended Posts

Hi All,

Whenever I am scanning my computer for Virus,it was shutting down.I have Kaspersky Total Security,it shuts down when scan is just 10% into it.I scanned with SuperAntispyware and found some tracking cookies,removed them but still no solution.Whenever I try to scan with malwarebytes it shuts down,Tried in safe mode,same thing.A peculiar pattern I have noticied is that,if I restart it again after PC shuts down,it again shuts down while loading windows,a wait of 5-10 min and again my pc is back to normal!! I formatted my C drive reloaded windows xp(sev pack2),for a day everything seemed normal,but again it all has started.Now internet is going slow while browsing.Sometimes different tabs keep opening on their own on Mozilla Firefox.Though it has been handled with SuperAntispyware,I have a feeling that I have got system virus.Now sometimes I cannot disconnect from Net,if I am browsing Malwarebytes forum,pc shuts down..weird. I went through Malwarebytes forum and tried TDS Killer,but it didnt help,so I guess my solution would be different. Please suggest steps as to what I should do.Should I need to reformat my whole PC? What about my data? Also please note I cant access network on 'Safe Mode with Networking'. Please help.

dds.txt

attach.txt

Share this post


Link to post
Share on other sites

:welcome: I am TheDarkKnight and will be assisting you. Please ask questions if anything is unclear. :)

Please follow these instructions to run ComboFix.exe. Please visit this webpage for download links and instructions for running this tool:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix (CF).

Please go here to see a list of programs that need to be disabled.

**Note: Do not mouseclick ComboFix's window while it's running. That may cause it to stall.**

**Note 2: If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.**

Please include the C:\ComboFix.txt in your next reply for further review.

=====

Also, please download Malwarebytes Anti-Rootkit here.

  • Unzip the contents to a folder on the Desktop.
  • Open the folder where the contents were unzipped and run mbar.exe ( right-click and select Run as administrator for Vista and Windows 7).
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
  • Wait while the system shuts down and the cleanup process is performed.
  • Please post the two logs produced.

Please note: This tool is still in BETA mode, so please ensure you have backed up any important files.

=====

In your reply please provide the contents of the following:

  • ComboFix.txt.
  • Both MBAR logs.

How is your computer currently running?

Share this post


Link to post
Share on other sites

Hi DarkKnight

Firstly thanks for assisting me.

Coming to my problem,I tried the steps you mentioned-

1) ComboFix.exe-- Started ComboFix,but while it was running,pc shut down,So couldnt get the logs,also they were not generated.

2) MBAR -- Same problem,while it was executing,computer shut down,no logs were generated.

I ddint try running both these second time,as I know it will have the same issues.Please suggest what should be done.Also after I restarted my PC,now I am unable to open 'Malwarebytes Forum' from my PC.I am now accessing this site from another pc.

Computer is running fine,until I try scanning,though sometimes it is shutting down inspite of my not doing anything,this was not there previously.Internet is a bit slow.

Share this post


Link to post
Share on other sites

Good afternoon aryama,

Please download OTL.exe by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe.
  • In the "Custom Scans/Fixes" window (under the light green bar) paste the following in bold:

    netsvcs
    drivers32
    %SYSTEMDRIVE%\*.*
    %systemroot%\*. /mp /s
    CREATERESTOREPOINT
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs

  • Click Run Scan and let the program run uninterrupted.
  • When the scan completes, it will open two Notepad windows. OTL.txt and Extras.txt. These are saved in the same location as OTL. Post both logs in this thread.
  • You may need to use two posts to get it all.

Share this post


Link to post
Share on other sites

OTL logfile created on: 2/4/2013 10:49:57 PM - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\abc\Desktop

Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.94 Gb Total Physical Memory | 2.48 Gb Available Physical Memory | 84.35% Memory free

4.19 Gb Paging File | 3.78 Gb Available in Paging File | 90.27% Paging File free

Paging file location(s): C:\pagefile.sys 1440 2880 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48.83 Gb Total Space | 43.41 Gb Free Space | 88.90% Space Free | Partition Type: NTFS

Drive D: | 48.83 Gb Total Space | 5.11 Gb Free Space | 10.46% Space Free | Partition Type: NTFS

Drive E: | 39.06 Gb Total Space | 1.21 Gb Free Space | 3.09% Space Free | Partition Type: NTFS

Drive F: | 29.29 Gb Total Space | 3.22 Gb Free Space | 11.00% Space Free | Partition Type: NTFS

Drive G: | 31.86 Gb Total Space | 1.67 Gb Free Space | 5.23% Space Free | Partition Type: NTFS

Drive H: | 25.69 Gb Total Space | 3.37 Gb Free Space | 13.11% Space Free | Partition Type: NTFS

Drive I: | 241.06 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: ABC-3B1295B6860 | User Name: abc | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/02/04 22:41:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe

PRC - [2010/10/01 22:06:36 | 000,348,760 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\avp.exe

PRC - [2009/12/21 17:34:38 | 000,743,992 | ---- | M] (Infowatch) -- C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe

PRC - [2004/08/03 11:26:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

MOD - [2010/10/01 22:05:46 | 008,972,888 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\QtGui4.dll

MOD - [2010/10/01 22:05:42 | 002,456,152 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\QtCore4.dll

MOD - [2010/10/01 22:05:42 | 000,117,336 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\text_extractor.dll

MOD - [2010/10/01 22:05:28 | 002,111,064 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\avzkrnl.dll

MOD - [2010/10/01 21:07:46 | 000,733,184 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\localization_manager.dll

MOD - [2009/10/30 20:32:30 | 000,410,496 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\dblite.dll

MOD - [2006/10/30 22:35:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll

MOD - [2006/10/30 22:35:00 | 000,196,608 | ---- | M] () -- C:\WINDOWS\system32\nvapi.dll

========== Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)

SRV - [2011/06/25 22:45:56 | 000,256,000 | R--- | M] () [Auto | Stopped] -- C:\ComboFix\pev.3XE -- (PEVSystemStart)

SRV - [2010/10/01 22:06:36 | 000,348,760 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky PURE\avp.exe -- (AVP)

SRV - [2009/12/21 17:34:38 | 000,743,992 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe -- (CSObjectsSrv)

SRV - [2004/08/03 11:26:44 | 000,164,820 | RHS- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\wcjohrw.dll -- (liluavs)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)

DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)

DRV - File not found [Kernel | System | Stopped] -- -- (Changer)

DRV - [2013/02/01 23:27:40 | 000,016,608 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)

DRV - [2009/12/14 12:44:24 | 000,088,632 | ---- | M] (Infowatch) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\CSCrySec.sys -- (CSCrySec)

DRV - [2009/12/14 12:44:24 | 000,039,352 | ---- | M] (Infowatch) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\CSVirtualDiskDrv.sys -- (CSVirtualDiskDrv)

DRV - [2009/11/26 13:10:46 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)

DRV - [2009/10/14 21:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\klbg.sys -- (KLBG)

DRV - [2009/10/02 19:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)

DRV - [2009/09/14 14:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)

DRV - [2009/09/01 15:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)

DRV - [2008/12/11 01:24:20 | 004,959,232 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)

DRV - [2007/04/16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)

DRV - [2006/11/27 16:33:54 | 000,019,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)

DRV - [2006/11/27 16:33:50 | 000,058,368 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)

DRV - [2006/10/18 16:31:38 | 000,105,472 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3220468

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()

FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/01/20 09:14:15 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/01/13 04:47:17 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky PURE\THBExt [2013/02/01 23:44:03 | 000,000,000 | ---D | M]

[2013/01/20 09:14:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\abc\Application Data\Mozilla\Extensions

[2013/01/20 09:14:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2013/01/12 05:32:16 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru

[2013/01/16 12:11:06 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2012/06/28 07:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

[2013/01/16 12:10:30 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

[2013/01/16 12:10:30 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2001/09/03 14:51:08 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\ievkbd.dll (Kaspersky Lab)

O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll (Kaspersky Lab)

O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)

O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky PURE\avp.exe (Kaspersky Lab)

O4 - HKLM..\Run: [GEST] m‘|Pë File not found

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky PURE\ie_banner_deny.htm ()

O9 - Extra Button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll (Kaspersky Lab)

O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll (Kaspersky Lab)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{283623E3-FE97-4B66-8A18-D86E4F615C25}: NameServer = 213.254.232.55 213.254.232.37

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2BC31B98-0C5C-4962-B48E-9B35E39C4A07}: DhcpNameServer = 192.168.0.1

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)

O24 - Desktop WallPaper: C:\Documents and Settings\abc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\abc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2013/01/12 14:03:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2010/12/23 08:50:00 | 000,640,024 | R--- | M] (Kaspersky Lab ZAO) - I:\autorun.exe -- [ CDFS ]

O32 - AutoRun File - [2010/10/06 21:40:00 | 000,000,051 | R--- | M] () - I:\autorun.inf -- [ CDFS ]

O33 - MountPoints2\{61026628-5cbe-11e2-acfb-806d6172696f}\Shell - "" = AutoRun

O33 - MountPoints2\{61026628-5cbe-11e2-acfb-806d6172696f}\Shell\AutoRun - "" = Auto&Play

O33 - MountPoints2\{61026628-5cbe-11e2-acfb-806d6172696f}\Shell\AutoRun\command - "" = I:\Run.exe

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)

Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)

Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)

Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)

Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)

Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()

Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()

Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)

Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)

CREATERESTOREPOINT

Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/02/04 22:42:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe

[2013/02/03 23:02:16 | 000,000,000 | RHSD | C] -- C:\cmdcons

[2013/02/03 22:57:38 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

[2013/02/03 22:57:38 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

[2013/02/03 22:57:38 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

[2013/02/03 22:57:38 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

[2013/02/03 22:57:15 | 000,000,000 | --SD | C] -- C:\ComboFix

[2013/02/03 22:57:08 | 000,000,000 | ---D | C] -- C:\Qoobox

[2013/02/03 22:56:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt

[2013/02/03 22:46:50 | 005,029,877 | R--- | C] (Swearware) -- C:\Documents and Settings\abc\Desktop\ComboFix.exe

[2013/02/03 22:40:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Desktop\mbar

[2013/02/02 20:44:32 | 000,688,992 | R--- | C] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.com

[2013/02/02 20:44:32 | 000,688,992 | ---- | C] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.scr

[2013/01/24 11:54:48 | 000,000,000 | -HSD | C] -- C:\Config.Msi

[2013/01/21 11:23:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Malwarebytes' Anti-Malware

[2013/01/21 11:23:35 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2013/01/21 11:23:35 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2013/01/21 10:09:27 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC

[2013/01/20 12:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Desktop\New Folder

[2013/01/20 09:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Mozilla

[2013/01/20 03:41:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Malwarebytes

[2013/01/20 03:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes

[2013/01/20 00:57:21 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine

[2013/01/19 04:22:19 | 000,000,000 | --SD | C] -- C:\Documents and Settings\abc\UserData

[2013/01/19 02:25:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\Phone_pic

[2013/01/19 02:15:23 | 000,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys

[2013/01/18 13:08:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData

[2013/01/13 08:34:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\WinRAR

[2013/01/13 08:34:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\WinRAR

[2013/01/13 08:34:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\WinRAR

[2013/01/13 08:33:29 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2013/01/13 04:49:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Winamp

[2013/01/13 04:49:08 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll

[2013/01/13 04:49:06 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll

[2013/01/13 04:48:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs

[2013/01/13 04:47:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Winamp Detector Plug-in

[2013/01/13 04:47:17 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect

[2013/01/13 04:46:47 | 002,095,600 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll

[2013/01/13 04:46:47 | 000,571,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll

[2013/01/13 04:46:47 | 000,440,816 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll

[2013/01/13 04:46:47 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll

[2013/01/13 04:46:47 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe

[2013/01/13 04:46:47 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe

[2013/01/13 04:46:47 | 000,100,848 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll

[2013/01/13 04:46:47 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe

[2013/01/13 04:46:47 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe

[2013/01/13 04:46:47 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe

[2013/01/13 04:46:47 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll

[2013/01/13 04:46:47 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys

[2013/01/13 04:46:47 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys

[2013/01/13 04:46:46 | 000,698,864 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll

[2013/01/13 04:46:46 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll

[2013/01/13 04:46:39 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp

[2013/01/13 04:46:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Winamp

[2013/01/13 04:31:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents\My Videos

[2013/01/13 04:31:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Administrative Tools

[2013/01/13 04:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\WALKMAN Guide

[2013/01/13 04:30:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Downloaded Installations

[2013/01/13 03:01:59 | 000,000,000 | ---D | C] -- C:\Program Files\Sony

[2013/01/13 03:00:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll

[2013/01/13 02:58:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\CRE

[2013/01/13 02:57:49 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit

[2013/01/13 02:57:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Conduit

[2013/01/13 02:57:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Temp

[2013/01/13 02:52:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF

[2013/01/13 02:52:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles

[2013/01/13 02:51:19 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent

[2013/01/13 02:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\uTorrent

[2013/01/13 01:33:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Macromedia

[2013/01/13 01:32:29 | 000,697,864 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe

[2013/01/13 01:32:29 | 000,074,248 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

[2013/01/12 14:37:12 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvuide.exe

[2013/01/12 14:37:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups

[2013/01/12 14:37:02 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe

[2013/01/12 14:36:57 | 000,356,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE

[2013/01/12 14:36:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\InstallShield

[2013/01/12 14:36:08 | 000,016,608 | ---- | C] (Windows ® 2000 DDK provider) -- C:\WINDOWS\gdrv.sys

[2013/01/12 14:29:08 | 000,039,352 | ---- | C] (Infowatch) -- C:\WINDOWS\System32\drivers\CSVirtualDiskDrv.sys

[2013/01/12 14:29:07 | 000,088,632 | ---- | C] (Infowatch) -- C:\WINDOWS\System32\drivers\CSCrySec.sys

[2013/01/12 14:29:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE

[2013/01/12 14:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InfoWatch

[2013/01/12 14:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Kaspersky PURE

[2013/01/12 14:28:12 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab

[2013/01/12 14:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Lab

[2013/01/12 14:28:01 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys

[2013/01/12 14:27:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Lab Setup Files

[2013/01/12 14:08:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Identities

[2013/01/12 14:08:20 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information

[2013/01/12 14:08:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents\My Music

[2013/01/12 14:08:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents\My Pictures

[2013/01/12 14:08:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\abc\Application Data\Microsoft

[2013/01/12 14:08:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\abc\Cookies

[2013/01/12 14:08:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\abc\SendTo

[2013/01/12 14:08:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\abc\Recent

[2013/01/12 14:08:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\abc\Application Data

[2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Startup

[2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu

[2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\My Documents

[2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Favorites

[2013/01/12 14:08:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\abc\Start Menu\Programs\Accessories

[2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\Templates

[2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\PrintHood

[2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\NetHood

[2013/01/12 14:08:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\abc\Local Settings

[2013/01/12 14:08:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Microsoft

[2013/01/12 14:08:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Desktop

[2013/01/12 14:07:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution

[2013/01/12 14:07:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2013/01/12 14:07:10 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft

[2013/01/12 14:07:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft

[2013/01/12 14:07:09 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft

[2013/01/12 14:06:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft

[2013/01/12 14:06:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft

[2013/01/12 14:05:33 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime

[2013/01/12 14:05:33 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime

[2013/01/12 14:05:32 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime

[2013/01/12 14:05:32 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime

[2013/01/12 14:05:32 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime

[2013/01/12 14:05:32 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime

[2013/01/12 14:05:31 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll

[2013/01/12 14:05:31 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys

[2013/01/12 14:05:30 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll

[2013/01/12 14:05:30 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll

[2013/01/12 14:05:30 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll

[2013/01/12 14:05:29 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll

[2013/01/12 14:05:29 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll

[2013/01/12 14:05:29 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll

[2013/01/12 14:05:29 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll

[2013/01/12 14:05:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll

[2013/01/12 14:05:29 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll

[2013/01/12 14:05:28 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll

[2013/01/12 14:05:27 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll

[2013/01/12 14:05:27 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime

[2013/01/12 14:05:26 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll

[2013/01/12 14:05:26 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe

[2013/01/12 14:05:25 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime

[2013/01/12 14:05:25 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe

[2013/01/12 14:05:25 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe

[2013/01/12 14:05:25 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll

[2013/01/12 14:05:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll

[2013/01/12 14:05:24 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll

[2013/01/12 14:05:24 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys

[2013/01/12 14:05:24 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys

[2013/01/12 14:05:24 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys

[2013/01/12 14:05:22 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll

[2013/01/12 14:05:22 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll

[2013/01/12 14:05:22 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll

[2013/01/12 14:05:22 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll

[2013/01/12 14:05:21 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll

[2013/01/12 14:05:20 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll

[2013/01/12 14:05:20 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll

[2013/01/12 14:05:19 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll

[2013/01/12 14:05:19 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll

[2013/01/12 14:05:19 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll

[2013/01/12 14:05:19 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll

[2013/01/12 14:05:19 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll

[2013/01/12 14:05:19 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe

[2013/01/12 14:05:19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll

[2013/01/12 14:05:19 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe

[2013/01/12 14:05:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll

[2013/01/12 14:05:18 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe

[2013/01/12 14:05:18 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll

[2013/01/12 14:05:18 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll

[2013/01/12 14:05:18 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll

[2013/01/12 14:05:18 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll

[2013/01/12 14:05:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll

[2013/01/12 14:05:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll

[2013/01/12 14:05:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll

[2013/01/12 14:05:17 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll

[2013/01/12 14:05:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll

[2013/01/12 14:05:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll

[2013/01/12 14:05:17 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll

[2013/01/12 14:05:17 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll

[2013/01/12 14:05:17 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll

[2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll

[2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll

[2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll

[2013/01/12 14:05:17 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll

[2013/01/12 14:05:17 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll

[2013/01/12 14:05:16 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll

[2013/01/12 14:05:13 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll

[2013/01/12 14:05:13 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll

[2013/01/12 14:05:12 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll

[2013/01/12 14:05:12 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll

[2013/01/12 14:05:11 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll

[2013/01/12 14:05:11 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll

[2013/01/12 14:05:11 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll

[2013/01/12 14:05:11 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime

[2013/01/12 14:05:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll

[2013/01/12 14:05:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll

[2013/01/12 14:05:10 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe

[2013/01/12 14:05:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe

[2013/01/12 14:05:09 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys

[2013/01/12 14:05:08 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime

[2013/01/12 14:05:08 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe

[2013/01/12 14:05:08 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe

[2013/01/12 14:05:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll

[2013/01/12 14:05:07 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll

[2013/01/12 14:05:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll

[2013/01/12 14:05:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll

[2013/01/12 14:05:06 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime

[2013/01/12 14:05:06 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime

[2013/01/12 14:05:06 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe

[2013/01/12 14:05:06 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll

[2013/01/12 14:05:06 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll

[2013/01/12 14:05:06 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll

[2013/01/12 14:05:05 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll

[2013/01/12 14:05:05 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll

[2013/01/12 14:05:05 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll

[2013/01/12 14:05:05 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll

[2013/01/12 14:05:05 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll

[2013/01/12 14:05:03 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll

[2013/01/12 14:05:02 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll

[2013/01/12 14:05:01 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll

[2013/01/12 14:05:00 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll

[2013/01/12 14:05:00 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe

[2013/01/12 14:04:57 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex

[2013/01/12 14:04:57 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll

[2013/01/12 14:04:57 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe

[2013/01/12 14:04:52 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe

[2013/01/12 14:04:51 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys

[2013/01/12 14:04:51 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll

[2013/01/12 14:04:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll

[2013/01/12 14:04:51 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll

[2013/01/12 14:04:51 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll

[2013/01/12 14:04:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll

[2013/01/12 14:04:49 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll

[2013/01/12 14:04:49 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll

[2013/01/12 14:04:49 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll

[2013/01/12 14:04:49 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll

[2013/01/12 14:04:48 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll

[2013/01/12 14:04:47 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll

[2013/01/12 14:04:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll

[2013/01/12 14:04:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll

[2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll

[2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll

[2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll

[2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll

[2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll

[2013/01/12 14:04:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll

[2013/01/12 14:04:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll

[2013/01/12 14:04:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll

[2013/01/12 14:04:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll

[2013/01/12 14:04:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll

[2013/01/12 14:04:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll

[2013/01/12 14:04:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll

[2013/01/12 14:04:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll

[2013/01/12 14:04:45 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll

[2013/01/12 14:04:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll

[2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll

[2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll

[2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll

[2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll

[2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll

[2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll

[2013/01/12 14:04:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll

[2013/01/12 14:04:45 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll

[2013/01/12 14:04:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll

[2013/01/12 14:04:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll

[2013/01/12 14:04:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll

[2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll

[2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll

[2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll

[2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll

[2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll

[2013/01/12 14:04:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll

[2013/01/12 14:04:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll

[2013/01/12 14:04:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll

[2013/01/12 14:04:43 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll

[2013/01/12 14:04:43 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll

[2013/01/12 14:04:43 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll

[2013/01/12 14:04:43 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll

[2013/01/12 14:04:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll

[2013/01/12 14:04:42 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll

[2013/01/12 14:04:42 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll

[2013/01/12 14:04:42 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe

[2013/01/12 14:04:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll

[2013/01/12 14:04:41 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll

[2013/01/12 14:04:41 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll

[2013/01/12 14:04:41 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll

[2013/01/12 14:04:41 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe

[2013/01/12 14:04:41 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll

[2013/01/12 14:04:41 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe

[2013/01/12 14:04:41 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe

[2013/01/12 14:04:40 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll

[2013/01/12 14:04:40 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll

[2013/01/12 14:04:40 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe

[2013/01/12 14:04:40 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe

[2013/01/12 14:04:40 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe

[2013/01/12 14:04:40 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe

[2013/01/12 14:04:40 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll

[2013/01/12 14:04:40 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe

[2013/01/12 14:04:39 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll

[2013/01/12 14:04:39 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime

[2013/01/12 14:04:39 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe

[2013/01/12 14:04:39 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll

[2013/01/12 14:04:39 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll

[2013/01/12 14:04:39 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime

[2013/01/12 14:04:39 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll

[2013/01/12 14:04:39 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe

[2013/01/12 14:04:38 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll

[2013/01/12 14:04:38 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll

[2013/01/12 14:04:38 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll

[2013/01/12 14:04:38 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll

[2013/01/12 14:04:38 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll

[2013/01/12 14:04:38 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll

[2013/01/12 14:04:38 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe

[2013/01/12 14:04:38 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll

[2013/01/12 14:04:35 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll

[2013/01/12 14:04:30 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll

[2013/01/12 14:04:30 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll

[2013/01/12 14:04:30 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll

[2013/01/12 14:04:30 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll

[2013/01/12 14:04:30 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll

[2013/01/12 14:04:29 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll

[2013/01/12 14:04:28 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll

[2013/01/12 14:04:28 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll

[2013/01/12 14:04:28 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll

[2013/01/12 14:04:28 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll

[2013/01/12 14:04:27 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll

[2013/01/12 14:04:27 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll

[2013/01/12 14:04:27 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe

[2013/01/12 14:04:27 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll

[2013/01/12 14:04:27 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll

[2013/01/12 14:04:27 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll

[2013/01/12 14:04:27 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll

[2013/01/12 14:04:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll

[2013/01/12 14:04:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll

[2013/01/12 14:04:27 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe

[2013/01/12 14:04:27 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll

[2013/01/12 14:04:27 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll

[2013/01/12 14:04:26 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll

[2013/01/12 14:04:26 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll

[2013/01/12 14:04:26 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe

[2013/01/12 14:04:26 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe

[2013/01/12 14:04:26 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll

[2013/01/12 14:04:26 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll

[2013/01/12 14:04:26 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll

[2013/01/12 14:04:26 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll

[2013/01/12 14:04:26 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll

[2013/01/12 14:04:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll

[2013/01/12 14:04:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll

[2013/01/12 14:04:25 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll

[2013/01/12 14:04:25 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe

[2013/01/12 14:04:25 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll

[2013/01/12 14:04:25 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe

[2013/01/12 14:04:24 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll

[2013/01/12 14:04:24 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe

[2013/01/12 14:04:24 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll

[2013/01/12 14:04:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe

[2013/01/12 14:04:24 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll

[2013/01/12 14:04:24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll

[2013/01/12 14:04:23 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll

[2013/01/12 14:04:23 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll

[2013/01/12 14:04:23 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll

[2013/01/12 14:04:23 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll

[2013/01/12 14:04:23 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys

[2013/01/12 14:04:19 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime

[2013/01/12 14:04:19 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe

[2013/01/12 14:04:18 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe

[2013/01/12 14:04:18 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe

[2013/01/12 14:04:18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll

[2013/01/12 14:04:18 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll

[2013/01/12 14:04:18 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe

[2013/01/12 14:04:17 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe

[2013/01/12 14:04:17 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll

[2013/01/12 14:04:16 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll

[2013/01/12 14:04:16 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll

[2013/01/12 14:04:16 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll

[2013/01/12 14:04:16 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll

[2013/01/12 14:04:16 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime

[2013/01/12 14:04:15 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll

[2013/01/12 14:04:15 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime

[2013/01/12 14:04:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe

[2013/01/12 14:04:15 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe

[2013/01/12 14:04:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe

[2013/01/12 14:04:15 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe

[2013/01/12 14:04:14 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll

[2013/01/12 14:04:14 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys

[2013/01/12 14:04:14 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll

[2013/01/12 14:04:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll

[2013/01/12 14:04:08 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll

[2013/01/12 14:04:07 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll

[2013/01/12 14:04:07 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll

[2013/01/12 14:04:07 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll

[2013/01/12 14:04:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll

[2013/01/12 14:04:06 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll

[2013/01/12 14:04:06 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll

[2013/01/12 14:04:06 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll

[2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll

[2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll

[2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll

[2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll

[2013/01/12 14:04:06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll

[2013/01/12 14:04:05 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll

[2013/01/12 14:04:05 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll

[2013/01/12 14:04:05 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll

[2013/01/12 14:04:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll

[2013/01/12 14:04:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll

[2013/01/12 14:04:02 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe

[2013/01/12 14:04:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll

[2013/01/12 14:04:02 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll

[2013/01/12 14:04:02 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll

[2013/01/12 14:04:01 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll

[2013/01/12 14:04:01 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll

[2013/01/12 14:04:01 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll

[2013/01/12 14:04:01 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe

[2013/01/12 14:03:58 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx

[2013/01/12 14:03:58 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll

[2013/01/12 14:03:57 | 000,829,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll

[2013/01/12 14:03:57 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll

[2013/01/12 14:03:57 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll

[2013/01/12 14:03:57 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe

[2013/01/12 14:03:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll

[2013/01/12 14:03:57 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll

[2013/01/12 14:03:57 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe

[2013/01/12 14:03:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll

[2013/01/12 14:03:56 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll

[2013/01/12 14:03:56 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll

[2013/01/12 14:03:56 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll

[2013/01/12 14:03:56 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll

[2013/01/12 14:03:56 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe

[2013/01/12 14:03:56 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe

[2013/01/12 14:03:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll

[2013/01/12 14:03:55 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll

[2013/01/12 14:03:55 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe

[2013/01/12 14:03:55 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe

[2013/01/12 14:03:55 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll

[2013/01/12 14:03:55 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll

[2013/01/12 14:03:55 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll

[2013/01/12 14:03:55 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll

[2013/01/12 14:03:55 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll

[2013/01/12 14:03:55 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll

[2013/01/12 14:03:55 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe

[2013/01/12 14:03:54 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx

[2013/01/12 14:03:54 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe

[2013/01/12 14:03:54 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll

[2013/01/12 14:03:54 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll

[2013/01/12 14:03:54 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll

[2013/01/12 14:03:54 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx

[2013/01/12 14:03:54 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll

[2013/01/12 14:03:53 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll

[2013/01/12 14:03:53 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx

[2013/01/12 14:03:53 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll

[2013/01/12 14:03:53 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll

[2013/01/12 14:03:53 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe

[2013/01/12 14:03:53 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe

[2013/01/12 14:03:52 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll

[2013/01/12 14:03:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom

[2013/01/12 14:03:50 | 000,000,000 | ---D | C] -- C:\Program Files\xerox

[2013/01/12 14:03:50 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage

[2013/01/12 14:03:23 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll

[2013/01/12 14:02:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users.WINDOWS\DRM

[2013/01/12 14:02:42 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files

[2013/01/12 14:02:42 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages

[2013/01/12 14:02:34 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate

[2013/01/12 14:02:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX

[2013/01/12 14:01:57 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe

[2013/01/12 14:01:56 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll

[2013/01/12 14:01:56 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll

[2013/01/12 14:01:55 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe

[2013/01/12 14:01:55 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe

[2013/01/12 14:01:55 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll

[2013/01/12 14:01:55 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll

[2013/01/12 14:01:47 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe

[2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe

[2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll

[2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll

[2013/01/12 14:01:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe

[2013/01/12 14:01:45 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll

[2013/01/12 14:01:45 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll

[2013/01/12 14:01:45 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe

[2013/01/12 14:01:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services

[2013/01/12 14:01:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll

[2013/01/12 14:01:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll

[2013/01/12 14:01:42 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks

[2013/01/12 14:01:41 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll

[2013/01/12 14:01:41 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe

[2013/01/12 14:01:41 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll

[2013/01/12 14:01:41 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll

[2013/01/12 14:01:41 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll

[2013/01/12 14:01:41 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll

[2013/01/12 14:01:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe

[2013/01/12 14:01:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap

[2013/01/12 14:01:40 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx

[2013/01/12 14:01:38 | 000,725,566 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll

[2013/01/12 14:01:38 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll

[2013/01/12 14:01:37 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll

[2013/01/12 14:01:37 | 000,848,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll

[2013/01/12 14:01:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst

[2013/01/12 14:01:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed

[2013/01/12 14:01:36 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe

[2013/01/12 14:01:36 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll

[2013/01/12 14:01:35 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe

[2013/01/12 14:01:35 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll

[2013/01/12 14:01:35 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll

[2013/01/12 14:01:35 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll

[2013/01/12 14:01:35 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe

[2013/01/12 14:01:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll

[2013/01/12 14:01:35 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll

[2013/01/12 14:01:34 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll

[2013/01/12 14:01:34 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll

[2013/01/12 14:01:34 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll

[2013/01/12 14:01:34 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll

[2013/01/12 14:01:34 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll

[2013/01/12 14:01:34 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll

[2013/01/12 14:01:34 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll

[2013/01/12 14:01:33 | 001,134,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll

[2013/01/12 14:01:33 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll

[2013/01/12 14:01:33 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll

[2013/01/12 14:01:33 | 000,382,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll

[2013/01/12 14:01:33 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe

[2013/01/12 14:01:33 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe

[2013/01/12 14:01:33 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl

[2013/01/12 14:01:33 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe

[2013/01/12 14:01:33 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll

[2013/01/12 14:01:33 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll

[2013/01/12 14:01:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll

[2013/01/12 14:01:33 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll

[2013/01/12 14:01:33 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll

[2013/01/12 14:01:33 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll

[2013/01/12 14:01:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll

[2013/01/12 14:01:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll

[2013/01/12 14:01:31 | 004,256,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll

[2013/01/12 14:01:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll

[2013/01/12 14:01:31 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll

[2013/01/12 14:01:30 | 003,555,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe

[2013/01/12 14:01:30 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll

[2013/01/12 14:01:30 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll

[2013/01/12 14:01:30 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll

[2013/01/12 14:01:30 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll

[2013/01/12 14:01:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll

[2013/01/12 14:01:29 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker

[2013/01/12 14:01:28 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll

[2013/01/12 14:01:28 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll

[2013/01/12 14:01:28 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe

[2013/01/12 14:01:28 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll

[2013/01/12 14:01:28 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll

[2013/01/12 14:01:28 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll

[2013/01/12 14:01:26 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe

[2013/01/12 14:01:26 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll

[2013/01/12 14:01:26 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll

[2013/01/12 14:01:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll

[2013/01/12 14:01:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll

[2013/01/12 14:01:26 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll

[2013/01/12 14:01:26 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll

[2013/01/12 14:01:25 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll

[2013/01/12 14:01:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll

[2013/01/12 14:01:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll

[2013/01/12 14:01:25 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll

[2013/01/12 14:01:24 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe

[2013/01/12 14:01:23 | 000,768,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe

[2013/01/12 14:01:23 | 000,743,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe

[2013/01/12 14:01:23 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe

[2013/01/12 14:01:23 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe

[2013/01/12 14:01:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe

[2013/01/12 14:01:23 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll

[2013/01/12 14:01:22 | 000,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe

[2013/01/12 14:01:22 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll

[2013/01/12 14:01:22 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll

[2013/01/12 14:01:22 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll

[2013/01/12 14:01:22 | 000,124,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys

[2013/01/12 14:01:22 | 000,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys

[2013/01/12 14:01:22 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll

[2013/01/12 14:01:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore

[2013/01/12 14:01:21 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll

[2013/01/12 14:01:21 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll

[2013/01/12 14:01:21 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll

[2013/01/12 14:01:21 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll

[2013/01/12 14:01:21 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe

[2013/01/12 14:01:21 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll

[2013/01/12 14:01:21 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll

[2013/01/12 14:01:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll

[2013/01/12 14:01:21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll

[2013/01/12 14:01:20 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll

[2013/01/12 14:01:20 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll

[2013/01/12 14:01:20 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll

[2013/01/12 14:01:20 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll

[2013/01/12 14:01:20 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll

[2013/01/12 14:01:20 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll

[2013/01/12 14:01:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll

[2013/01/12 14:01:19 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll

[2013/01/12 14:01:19 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll

[2013/01/12 14:01:19 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll

[2013/01/12 14:01:19 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll

[2013/01/12 14:01:19 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll

[2013/01/12 14:01:19 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll

[2013/01/12 14:01:19 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll

[2013/01/12 14:01:18 | 001,032,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe

[2013/01/12 14:01:18 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll

[2013/01/12 14:01:18 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll

[2013/01/12 14:01:18 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll

[2013/01/12 14:01:18 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll

[2013/01/12 14:01:18 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll

[2013/01/12 14:01:18 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll

[2013/01/12 14:01:18 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll

[2013/01/12 14:01:18 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe

Share this post


Link to post
Share on other sites

[2013/01/12 14:01:18 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting

[2013/01/12 14:01:17 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll

[2013/01/12 14:01:17 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll

[2013/01/12 14:01:17 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll

[2013/01/12 14:01:17 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll

[2013/01/12 14:01:17 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll

[2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll

[2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll

[2013/01/12 14:01:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll

[2013/01/12 14:01:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe

[2013/01/12 14:01:16 | 002,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll

[2013/01/12 14:01:16 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll

[2013/01/12 14:01:16 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe

[2013/01/12 14:01:15 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll

[2013/01/12 14:01:15 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll

[2013/01/12 14:01:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe

[2013/01/12 14:01:15 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe

[2013/01/12 14:01:15 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll

[2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe

[2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe

[2013/01/12 14:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express

[2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll

[2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll

[2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll

[2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll

[2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll

[2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll

[2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll

[2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll

[2013/01/12 14:01:13 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll

[2013/01/12 14:01:13 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll

[2013/01/12 14:01:13 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll

[2013/01/12 14:01:13 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll

[2013/01/12 14:01:13 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe

[2013/01/12 14:01:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe

[2013/01/12 14:01:12 | 000,561,179 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll

[2013/01/12 14:01:12 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll

[2013/01/12 14:01:12 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe

[2013/01/12 14:01:12 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe

[2013/01/12 14:01:12 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll

[2013/01/12 14:01:11 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll

[2013/01/12 14:01:11 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll

[2013/01/12 14:01:11 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll

[2013/01/12 14:01:11 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll

[2013/01/12 14:01:11 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll

[2013/01/12 14:01:11 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll

[2013/01/12 14:01:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll

[2013/01/12 14:01:11 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll

[2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll

[2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll

[2013/01/12 14:01:10 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll

[2013/01/12 14:01:10 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll

[2013/01/12 14:01:10 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll

[2013/01/12 14:01:10 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll

[2013/01/12 14:01:10 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll

[2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb

[2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb

[2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb

[2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb

[2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb

[2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll

[2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll

[2013/01/12 14:01:10 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll

[2013/01/12 14:01:09 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2013/01/12 14:01:09 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll

[2013/01/12 14:01:09 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll

[2013/01/12 14:01:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll

[2013/01/12 14:01:09 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll

[2013/01/12 14:01:09 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll

[2013/01/12 14:01:09 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll

[2013/01/12 14:01:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll

[2013/01/12 14:01:09 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll

[2013/01/12 14:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System

[2013/01/12 14:01:08 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe

[2013/01/12 14:01:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll

[2013/01/12 14:01:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe

[2013/01/12 14:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer

[2013/01/12 14:01:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Pictures

[2013/01/12 14:00:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Games

[2013/01/12 14:00:43 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications

[2013/01/12 14:00:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration

[2013/01/12 14:00:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Administrative Tools

[2013/01/12 14:00:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Music

[2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player

[2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services

[2013/01/12 14:00:24 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe

[2013/01/12 14:00:24 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger

[2013/01/12 14:00:23 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll

[2013/01/12 14:00:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll

[2013/01/12 14:00:23 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll

[2013/01/12 14:00:23 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll

[2013/01/12 14:00:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe

[2013/01/12 14:00:22 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll

[2013/01/12 14:00:22 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll

[2013/01/12 14:00:22 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll

[2013/01/12 14:00:22 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll

[2013/01/12 14:00:22 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll

[2013/01/12 14:00:22 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe

[2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe

[2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe

[2013/01/12 14:00:22 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll

[2013/01/12 14:00:22 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll

[2013/01/12 14:00:21 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll

[2013/01/12 14:00:21 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll

[2013/01/12 14:00:21 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll

[2013/01/12 14:00:21 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll

[2013/01/12 14:00:21 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll

[2013/01/12 14:00:21 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll

[2013/01/12 14:00:20 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe

[2013/01/12 14:00:20 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll

[2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe

[2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe

[2013/01/12 14:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone

[2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll

[2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll

[2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe

[2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe

[2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll

[2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll

[2013/01/12 14:00:10 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll

[2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll

[2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll

[2013/01/12 14:00:10 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll

[2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe

[2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe

[2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll

[2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll

[2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe

[2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe

[2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe

[2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe

[2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe

[2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe

[2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe

[2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe

[2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe

[2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe

[2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe

[2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe

[2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe

[2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe

[2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe

[2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe

[2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe

[2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe

[2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe

[2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe

[2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe

[2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe

[2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe

[2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe

[2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe

[2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe

[2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe

[2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe

[2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll

[2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll

[2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe

[2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe

[2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll

[2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll

[2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll

[2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll

[2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll

[2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll

[2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll

[2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll

[2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll

[2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll

[2013/01/12 13:59:58 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb

[2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe

[2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe

[2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe

[2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll

[2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll

[2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll

[2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll

[2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll

[2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll

[2013/01/12 13:59:57 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll

[2013/01/12 13:59:54 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll

[2013/01/12 13:59:54 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll

[2013/01/12 13:59:54 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll

[2013/01/12 13:59:53 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll

[2013/01/12 13:59:53 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll

[2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb

[2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll

[2013/01/12 13:59:53 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb

[2013/01/12 13:59:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe

[2013/01/12 13:59:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll

[2013/01/12 13:59:53 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe

[2013/01/12 13:59:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll

[2013/01/12 13:59:52 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll

[2013/01/12 13:59:52 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll

[2013/01/12 13:59:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll

[2013/01/12 13:59:52 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll

[2013/01/12 13:59:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSN

[2013/01/12 13:59:38 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe

[2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe

[2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe

[2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe

[2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe

[2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe

[2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe

[2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl

[2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl

[2013/01/12 13:59:37 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe

[2013/01/12 13:59:37 | 000,345,088 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll

[2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe

[2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe

[2013/01/12 13:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT

[2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe

[2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe

[2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe

[2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe

[2013/01/12 13:59:36 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys

[2013/01/12 13:59:36 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys

[2013/01/12 13:59:35 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll

[2013/01/12 13:59:35 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe

[2013/01/12 13:59:35 | 000,139,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys

[2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll

[2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll

[2013/01/12 13:59:35 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll

[2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe

[2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe

[2013/01/12 13:59:34 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll

[2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll

[2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll

[2013/01/12 13:59:34 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe

[2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll

[2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll

[2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe

[2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe

[2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe

[2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe

[2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe

[2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe

[2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll

[2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll

[2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll

[2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll

[2013/01/12 13:59:33 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll

[2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll

[2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll

[2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe

[2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe

[2013/01/12 13:59:33 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll

[2013/01/12 13:59:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc

[2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll

[2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll

[2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll

[2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll

[2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll

[2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll

[2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll

[2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll

[2013/01/12 13:59:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe

[2013/01/12 13:59:31 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll

[2013/01/12 13:59:31 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll

[2013/01/12 13:59:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe

[2013/01/12 13:59:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com

[2013/01/12 13:59:30 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll

[2013/01/12 13:59:30 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll

[2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll

[2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll

[2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll

[2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll

[2013/01/12 13:59:29 | 001,251,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll

[2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll

[2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll

[2013/01/12 13:59:28 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll

[2013/01/12 13:59:26 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe

[2013/01/12 13:59:26 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe

[2013/01/12 13:59:26 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll

[2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll

[2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll

[2013/01/12 13:59:26 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll

[2013/01/12 13:59:26 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll

[2013/01/12 13:59:26 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe

[2013/01/12 13:59:26 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll

[2013/01/12 13:59:26 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll

[2013/01/12 13:59:26 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll

[2013/01/12 13:59:26 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll

[2013/01/12 13:59:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll

[2013/01/12 13:59:26 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll

[2013/01/12 13:59:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll

[2013/01/12 13:59:25 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll

[2013/01/12 13:59:25 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll

[2013/01/12 13:59:25 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll

[2013/01/12 13:59:25 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll

[2013/01/12 13:59:25 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll

[2013/01/12 13:59:25 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll

[2013/01/12 13:59:25 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll

[2013/01/12 13:59:25 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe

[2013/01/12 13:59:25 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll

[2013/01/12 13:59:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll

[2013/01/12 13:59:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll

[2013/01/12 13:59:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll

[2013/01/12 13:59:24 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll

[2013/01/12 13:59:24 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll

[2013/01/12 13:59:24 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll

[2013/01/12 13:59:24 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll

[2013/01/12 13:59:24 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll

[2013/01/12 13:59:24 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll

[2013/01/12 13:59:24 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe

[2013/01/12 13:59:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe

[2013/01/12 13:59:23 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll

[2013/01/12 13:59:23 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll

[2013/01/12 13:59:22 | 001,352,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll

[2013/01/12 13:59:22 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll

[2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll

[2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll

[2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll

[2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll

[2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll

[2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll

[2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll

[2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll

[2013/01/12 13:59:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Videos

[2013/01/12 13:58:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Accessories

[2013/01/12 12:53:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt

[2013/01/12 05:55:24 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll

[2013/01/12 05:54:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll

[2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll

[2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll

[2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll

[2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll

[2013/01/12 05:54:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll

[2013/01/12 05:54:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll

[2013/01/12 05:54:21 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll

[2013/01/12 05:54:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll

[2013/01/12 05:54:17 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll

[2013/01/12 05:54:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll

[2013/01/12 05:54:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll

[2013/01/12 05:54:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll

[2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll

[2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll

[2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll

[2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll

[2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll

[2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll

[2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll

[2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll

[2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll

[2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll

[2013/01/12 05:54:15 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll

[2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll

[2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll

[2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll

[2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll

[2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll

[2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll

[2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll

[2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll

[2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll

[2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll

[2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll

[2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll

[2013/01/12 05:54:13 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll

[2013/01/12 05:54:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll

[2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll

[2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll

[2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll

[2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll

[2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll

[2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll

[2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll

[2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll

[2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll

[2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll

[2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll

[2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll

[2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll

[2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll

[2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll

[2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll

[2013/01/12 05:54:10 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL

[2013/01/12 05:54:10 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV

[2013/01/12 05:54:10 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL

[2013/01/12 05:54:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL

[2013/01/12 05:54:10 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV

[2013/01/12 05:54:10 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV

[2013/01/12 05:54:10 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV

[2013/01/12 05:54:10 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV

[2013/01/12 05:54:09 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL

[2013/01/12 05:54:09 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL

[2013/01/12 05:54:09 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV

[2013/01/12 05:54:09 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL

[2013/01/12 05:54:09 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV

[2013/01/12 05:54:09 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV

[2013/01/12 05:54:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL

[2013/01/12 05:54:09 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL

[2013/01/12 05:54:09 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV

[2013/01/12 05:54:09 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV

[2013/01/12 05:54:09 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK

[2013/01/12 05:54:08 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL

[2013/01/12 05:54:08 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL

[2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE

[2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe

[2013/01/12 05:54:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys

[2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll

[2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll

[2013/01/12 05:54:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV

[2013/01/12 05:54:07 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll

[2013/01/12 05:54:07 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL

[2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup

[2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu

[2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents

[2013/01/12 05:54:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Templates

[2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Favorites

[2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Desktop

[2013/01/12 05:53:43 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft

[2013/01/12 05:53:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data

[2013/01/12 05:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\AdobeUM

[2013/01/12 05:44:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Adobe

[2013/01/12 05:44:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\My eBooks

[2013/01/12 05:43:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Adobe

[2013/01/12 05:43:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe

[2013/01/12 05:41:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\vlc

[2013/01/12 05:39:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\VideoLAN

[2013/01/12 05:35:11 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN

[2013/01/12 05:14:23 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer

[2013/01/12 05:14:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC

[2013/01/12 05:14:21 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll

[2013/01/12 05:14:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll

[2013/01/12 05:14:19 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll

[2013/01/12 05:14:18 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll

[2013/01/12 05:14:18 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl

[2013/01/12 05:14:18 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe

[2013/01/12 05:14:18 | 000,000,000 | R--D | C] -- C:\Program Files

[2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines

[2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared

[2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files

[2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2

[2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot

[2013/01/12 05:13:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings

[2013/01/12 05:13:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[2013/01/12 05:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\Downloads

[2013/01/12 05:03:28 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts

[2013/01/12 05:03:28 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache

[2013/01/12 05:03:28 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web

[2013/01/12 05:03:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\security

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\java

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025

[2013/01/12 04:58:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Mozilla

[2013/01/12 04:58:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Mozilla

[2013/01/12 04:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

[2013/01/12 02:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\PrintMe Internet Printing

[2013/01/12 02:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe

[2013/01/12 02:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe

[2013/01/12 02:52:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache

[2013/01/12 02:00:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang

[2013/01/12 01:55:41 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys

[2013/01/12 01:55:40 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys

[2013/01/12 01:55:40 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys

[2013/01/12 01:55:39 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys

[2013/01/12 01:55:38 | 000,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys

[2013/01/12 01:55:37 | 000,171,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys

[2013/01/12 01:55:37 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys

[2013/01/12 01:55:36 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys

[2013/01/12 01:55:35 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys

[2013/01/12 01:55:35 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys

[2013/01/12 01:55:33 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys

[2013/01/12 01:55:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM

[2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll

[2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll

[2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax

[2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax

[2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys

[2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys

[2013/01/12 01:55:23 | 000,290,816 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe

[2013/01/12 01:55:23 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

[2013/01/12 01:55:22 | 001,200,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe

[2013/01/12 01:55:22 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL

[2013/01/12 01:55:22 | 000,104,992 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe

[2013/01/12 01:55:22 | 000,034,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstXP.dll

[2013/01/12 01:55:20 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE

[2013/01/12 01:55:19 | 004,959,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys

[2013/01/12 01:55:13 | 002,168,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe

[2013/01/12 01:55:13 | 001,389,056 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys

[2013/01/12 01:55:09 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE

[2013/01/12 01:55:09 | 000,057,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE

[2013/01/12 01:55:08 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys

[2013/01/12 01:55:08 | 000,278,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL

[2013/01/12 01:55:08 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek

[2013/01/12 01:55:02 | 000,528,384 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll

[2013/01/12 01:54:35 | 000,023,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe

[2013/01/12 01:54:22 | 000,033,792 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdPPM.sys

[2013/01/12 01:54:21 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information

[2013/01/12 01:54:21 | 000,000,000 | ---D | C] -- C:\Program Files\AMD

[2013/01/12 01:53:23 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe

[2013/01/12 01:53:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview

[2013/01/12 01:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield

[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/02/04 22:41:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe

[2013/02/04 22:30:09 | 000,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2013/02/04 22:30:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini

[2013/02/03 22:46:32 | 005,029,877 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\ComboFix.exe

[2013/02/03 22:41:08 | 000,000,452 | ---- | M] () -- C:\Documents and Settings\abc\My Documents\spider.sav

[2013/02/02 20:44:08 | 000,688,992 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.com

[2013/02/02 20:43:36 | 000,688,992 | ---- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.scr

[2013/02/02 18:03:01 | 005,257,020 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3

[2013/02/02 17:58:57 | 005,748,900 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3

[2013/02/01 23:57:38 | 000,116,189 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat

[2013/02/01 23:57:38 | 000,098,168 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat

[2013/02/01 23:29:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2013/02/01 23:27:40 | 000,016,608 | ---- | M] (Windows ® 2000 DDK provider) -- C:\WINDOWS\gdrv.sys

[2013/01/29 23:56:50 | 000,095,526 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg

[2013/01/29 22:14:50 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2013/01/25 17:46:52 | 004,109,156 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG

[2013/01/21 11:23:36 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk

[2013/01/20 12:53:03 | 000,000,005 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan

[2013/01/20 09:14:17 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk

[2013/01/19 02:18:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf

[2013/01/13 04:31:50 | 000,001,841 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk

[2013/01/13 03:01:25 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2013/01/13 02:59:17 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2013/01/13 02:53:10 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf

[2013/01/13 01:32:29 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe

[2013/01/13 01:32:29 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

[2013/01/12 14:08:28 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2013/01/12 14:08:28 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

[2013/01/12 14:06:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD

[2013/01/12 14:06:40 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2013/01/12 14:05:51 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf

[2013/01/12 14:03:36 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2013/01/12 14:03:33 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb

[2013/01/12 14:03:33 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb

[2013/01/12 14:03:23 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI

[2013/01/12 14:00:51 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat

[2013/01/12 04:52:32 | 000,000,580 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk

[2013/01/12 04:43:57 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk

[2013/01/12 02:53:32 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk

[2013/01/12 02:04:27 | 000,311,934 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2013/01/12 02:04:27 | 000,040,196 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2013/01/12 02:00:29 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2013/01/12 02:00:29 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak

[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/02/03 23:02:20 | 000,000,223 | ---- | C] () -- C:\Boot.bak

[2013/02/03 23:02:18 | 000,260,272 | RHS- | C] () -- C:\cmldr

[2013/02/03 22:57:38 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe

[2013/02/03 22:57:38 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe

[2013/02/03 22:57:38 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2013/02/03 22:57:38 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2013/02/03 22:57:38 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2013/02/03 22:41:08 | 000,000,452 | ---- | C] () -- C:\Documents and Settings\abc\My Documents\spider.sav

[2013/02/02 18:00:04 | 005,257,020 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3

[2013/02/02 17:54:32 | 005,748,900 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3

[2013/01/29 23:56:49 | 000,095,526 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg

[2013/01/25 09:32:41 | 004,109,156 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG

[2013/01/21 11:23:36 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk

[2013/01/20 12:53:03 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan

[2013/01/20 09:14:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox.lnk

[2013/01/20 09:14:17 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk

[2013/01/19 02:18:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf

[2013/01/13 04:31:50 | 000,001,841 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk

[2013/01/13 02:53:10 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf

[2013/01/12 14:37:12 | 000,001,570 | ---- | C] () -- C:\WINDOWS\System32\nvide.nvu

[2013/01/12 14:37:02 | 000,003,903 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu

[2013/01/12 14:37:02 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin

[2013/01/12 14:29:33 | 000,116,189 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat

[2013/01/12 14:29:33 | 000,098,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat

[2013/01/12 14:08:28 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

[2013/01/12 14:08:21 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Outlook Express.lnk

[2013/01/12 14:08:20 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2013/01/12 14:08:20 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Internet Explorer.lnk

[2013/01/12 14:08:14 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Remote Assistance.lnk

[2013/01/12 14:08:14 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Windows Media Player.lnk

[2013/01/12 14:06:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD

[2013/01/12 14:05:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2013/01/12 14:05:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll

[2013/01/12 14:04:48 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex

[2013/01/12 14:04:41 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe

[2013/01/12 14:04:40 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe

[2013/01/12 14:04:39 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex

[2013/01/12 14:04:32 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll

[2013/01/12 14:04:29 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex

[2013/01/12 14:04:25 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll

[2013/01/12 14:04:16 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll

[2013/01/12 14:03:36 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT

[2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS

[2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\IO.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT

[2013/01/12 14:03:33 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb

[2013/01/12 14:03:33 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb

[2013/01/12 14:03:32 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx

[2013/01/12 14:02:33 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Movie Maker.lnk

[2013/01/12 14:02:23 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex

[2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp

[2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp

[2013/01/12 14:01:47 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf

[2013/01/12 14:01:34 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2013/01/12 14:01:24 | 000,376,320 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll

[2013/01/12 14:00:53 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Messenger.lnk

[2013/01/12 14:00:51 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2013/01/12 14:00:29 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\MSN.lnk

[2013/01/12 14:00:04 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp

[2013/01/12 14:00:04 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp

[2013/01/12 14:00:04 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp

[2013/01/12 14:00:04 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp

[2013/01/12 14:00:04 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp

[2013/01/12 14:00:04 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp

[2013/01/12 14:00:03 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp

[2013/01/12 14:00:03 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp

[2013/01/12 14:00:03 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp

[2013/01/12 14:00:03 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp

[2013/01/12 14:00:03 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp

[2013/01/12 14:00:00 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h

[2013/01/12 14:00:00 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd

[2013/01/12 13:59:59 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h

[2013/01/12 13:59:52 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

[2013/01/12 05:54:29 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK

[2013/01/12 05:54:26 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2013/01/12 05:54:08 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT

[2013/01/12 05:54:00 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat

[2013/01/12 05:54:00 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat

[2013/01/12 05:54:00 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat

[2013/01/12 05:54:00 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat

[2013/01/12 05:54:00 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat

[2013/01/12 05:54:00 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT

[2013/01/12 05:54:00 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT

[2013/01/12 05:53:59 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT

[2013/01/12 05:53:59 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT

[2013/01/12 05:53:59 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT

[2013/01/12 05:53:59 | 000,502,724 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT

[2013/01/12 05:53:59 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT

[2013/01/12 05:53:59 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT

[2013/01/12 05:53:59 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT

[2013/01/12 05:53:59 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT

[2013/01/12 05:53:59 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT

[2013/01/12 05:53:59 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT

[2013/01/12 05:53:59 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT

[2013/01/12 05:53:59 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat

[2013/01/12 05:53:20 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2013/01/12 05:52:25 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf

[2013/01/12 05:14:20 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd

[2013/01/12 05:14:20 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf

[2013/01/12 05:14:19 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa

[2013/01/12 05:14:18 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa

[2013/01/12 05:07:03 | 000,000,339 | RHS- | C] () -- C:\boot.ini

[2013/01/12 04:52:32 | 000,000,580 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk

[2013/01/12 04:43:57 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk

[2013/01/12 02:54:07 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2013/01/12 02:53:32 | 000,001,740 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk

[2013/01/12 02:53:31 | 000,001,866 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Adobe Reader 6.0.lnk

[2013/01/12 02:00:29 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2013/01/12 02:00:29 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2013/01/12 01:55:42 | 000,000,553 | R--- | C] () -- C:\WINDOWS\USetup.iss

[2013/01/12 01:53:49 | 000,081,496 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml

[2013/01/12 01:53:23 | 000,017,056 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2004/08/03 11:26:46 | 001,483,264 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = %systemroot%\system32\wbem\fastprox.dll -- [2004/08/03 11:26:44 | 000,472,064 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = %systemroot%\system32\wbem\wbemess.dll -- [2004/08/03 11:26:48 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

========== Custom Scans ==========

< netsves >

< %SYSTEMDRIVE%\*.* >

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak

[2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini

[2004/08/03 23:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2013/01/12 01:55:43 | 000,000,206 | ---- | M] () -- C:\csb.log

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2004/08/03 09:08:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM

[2004/08/03 09:29:34 | 000,250,032 | RHS- | M] () -- C:\ntldr

[2013/02/04 22:30:05 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys

[2013/01/12 01:55:43 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log

[2013/01/20 01:02:09 | 000,215,196 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_20.01.2013_00.48.43_log.txt

[2013/01/23 12:57:17 | 000,145,430 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.54.14_log.txt

[2013/01/23 13:01:21 | 000,228,108 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.59.24_log.txt

< %systemroot%\*./mp/s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto >

< Update\Results\Install\LastSuccessTime/rs >

Invalid Switch: rs

< End of report >

Share this post


Link to post
Share on other sites

[2013/01/12 14:01:18 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting

[2013/01/12 14:01:17 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll

[2013/01/12 14:01:17 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll

[2013/01/12 14:01:17 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll

[2013/01/12 14:01:17 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll

[2013/01/12 14:01:17 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll

[2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll

[2013/01/12 14:01:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll

[2013/01/12 14:01:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll

[2013/01/12 14:01:17 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe

[2013/01/12 14:01:16 | 002,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll

[2013/01/12 14:01:16 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll

[2013/01/12 14:01:16 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe

[2013/01/12 14:01:15 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll

[2013/01/12 14:01:15 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll

[2013/01/12 14:01:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe

[2013/01/12 14:01:15 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe

[2013/01/12 14:01:15 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll

[2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe

[2013/01/12 14:01:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe

[2013/01/12 14:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express

[2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll

[2013/01/12 14:01:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll

[2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll

[2013/01/12 14:01:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll

[2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll

[2013/01/12 14:01:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll

[2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll

[2013/01/12 14:01:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll

[2013/01/12 14:01:13 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll

[2013/01/12 14:01:13 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll

[2013/01/12 14:01:13 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll

[2013/01/12 14:01:13 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll

[2013/01/12 14:01:13 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe

[2013/01/12 14:01:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe

[2013/01/12 14:01:12 | 000,561,179 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll

[2013/01/12 14:01:12 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll

[2013/01/12 14:01:12 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe

[2013/01/12 14:01:12 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe

[2013/01/12 14:01:12 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll

[2013/01/12 14:01:11 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll

[2013/01/12 14:01:11 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll

[2013/01/12 14:01:11 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll

[2013/01/12 14:01:11 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll

[2013/01/12 14:01:11 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll

[2013/01/12 14:01:11 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll

[2013/01/12 14:01:11 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll

[2013/01/12 14:01:11 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll

[2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll

[2013/01/12 14:01:11 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll

[2013/01/12 14:01:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll

[2013/01/12 14:01:10 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll

[2013/01/12 14:01:10 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll

[2013/01/12 14:01:10 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll

[2013/01/12 14:01:10 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll

[2013/01/12 14:01:10 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll

[2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb

[2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb

[2013/01/12 14:01:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb

[2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb

[2013/01/12 14:01:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb

[2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll

[2013/01/12 14:01:10 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll

[2013/01/12 14:01:10 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll

[2013/01/12 14:01:09 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2013/01/12 14:01:09 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll

[2013/01/12 14:01:09 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll

[2013/01/12 14:01:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll

[2013/01/12 14:01:09 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll

[2013/01/12 14:01:09 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll

[2013/01/12 14:01:09 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll

[2013/01/12 14:01:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll

[2013/01/12 14:01:09 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll

[2013/01/12 14:01:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll

[2013/01/12 14:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System

[2013/01/12 14:01:08 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe

[2013/01/12 14:01:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll

[2013/01/12 14:01:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe

[2013/01/12 14:01:08 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer

[2013/01/12 14:01:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Pictures

[2013/01/12 14:00:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Games

[2013/01/12 14:00:43 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications

[2013/01/12 14:00:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration

[2013/01/12 14:00:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Administrative Tools

[2013/01/12 14:00:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Music

[2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player

[2013/01/12 14:00:29 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services

[2013/01/12 14:00:24 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe

[2013/01/12 14:00:24 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger

[2013/01/12 14:00:23 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll

[2013/01/12 14:00:23 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll

[2013/01/12 14:00:23 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll

[2013/01/12 14:00:23 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll

[2013/01/12 14:00:23 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe

[2013/01/12 14:00:22 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll

[2013/01/12 14:00:22 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll

[2013/01/12 14:00:22 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll

[2013/01/12 14:00:22 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll

[2013/01/12 14:00:22 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll

[2013/01/12 14:00:22 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe

[2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe

[2013/01/12 14:00:22 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe

[2013/01/12 14:00:22 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll

[2013/01/12 14:00:22 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll

[2013/01/12 14:00:21 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll

[2013/01/12 14:00:21 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll

[2013/01/12 14:00:21 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll

[2013/01/12 14:00:21 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll

[2013/01/12 14:00:21 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll

[2013/01/12 14:00:21 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll

[2013/01/12 14:00:20 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe

[2013/01/12 14:00:20 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll

[2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe

[2013/01/12 14:00:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe

[2013/01/12 14:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone

[2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll

[2013/01/12 14:00:10 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll

[2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe

[2013/01/12 14:00:10 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe

[2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll

[2013/01/12 14:00:10 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll

[2013/01/12 14:00:10 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll

[2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll

[2013/01/12 14:00:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll

[2013/01/12 14:00:10 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll

[2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe

[2013/01/12 14:00:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe

[2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll

[2013/01/12 14:00:02 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll

[2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe

[2013/01/12 14:00:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe

[2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe

[2013/01/12 14:00:02 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe

[2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe

[2013/01/12 14:00:01 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe

[2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe

[2013/01/12 14:00:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe

[2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe

[2013/01/12 14:00:01 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe

[2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe

[2013/01/12 14:00:00 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe

[2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe

[2013/01/12 14:00:00 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe

[2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe

[2013/01/12 14:00:00 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe

[2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe

[2013/01/12 14:00:00 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe

[2013/01/12 14:00:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe

[2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe

[2013/01/12 14:00:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe

[2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe

[2013/01/12 13:59:59 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe

[2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe

[2013/01/12 13:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe

[2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe

[2013/01/12 13:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe

[2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe

[2013/01/12 13:59:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe

[2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll

[2013/01/12 13:59:59 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll

[2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe

[2013/01/12 13:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe

[2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll

[2013/01/12 13:59:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll

[2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll

[2013/01/12 13:59:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll

[2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll

[2013/01/12 13:59:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll

[2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll

[2013/01/12 13:59:58 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll

[2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll

[2013/01/12 13:59:58 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll

[2013/01/12 13:59:58 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb

[2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe

[2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe

[2013/01/12 13:59:58 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe

[2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll

[2013/01/12 13:59:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll

[2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll

[2013/01/12 13:59:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll

[2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll

[2013/01/12 13:59:57 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll

[2013/01/12 13:59:57 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll

[2013/01/12 13:59:54 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll

[2013/01/12 13:59:54 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll

[2013/01/12 13:59:54 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll

[2013/01/12 13:59:53 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll

[2013/01/12 13:59:53 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll

[2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb

[2013/01/12 13:59:53 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll

[2013/01/12 13:59:53 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb

[2013/01/12 13:59:53 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe

[2013/01/12 13:59:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll

[2013/01/12 13:59:53 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe

[2013/01/12 13:59:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll

[2013/01/12 13:59:52 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll

[2013/01/12 13:59:52 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll

[2013/01/12 13:59:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll

[2013/01/12 13:59:52 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll

[2013/01/12 13:59:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSN

[2013/01/12 13:59:38 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe

[2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe

[2013/01/12 13:59:38 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe

[2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe

[2013/01/12 13:59:38 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe

[2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe

[2013/01/12 13:59:38 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe

[2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl

[2013/01/12 13:59:38 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl

[2013/01/12 13:59:37 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe

[2013/01/12 13:59:37 | 000,345,088 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll

[2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe

[2013/01/12 13:59:37 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe

[2013/01/12 13:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT

[2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe

[2013/01/12 13:59:36 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe

[2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe

[2013/01/12 13:59:36 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe

[2013/01/12 13:59:36 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys

[2013/01/12 13:59:36 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys

[2013/01/12 13:59:35 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll

[2013/01/12 13:59:35 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe

[2013/01/12 13:59:35 | 000,139,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys

[2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll

[2013/01/12 13:59:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll

[2013/01/12 13:59:35 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll

[2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe

[2013/01/12 13:59:35 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe

[2013/01/12 13:59:34 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll

[2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll

[2013/01/12 13:59:34 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll

[2013/01/12 13:59:34 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe

[2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll

[2013/01/12 13:59:34 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll

[2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe

[2013/01/12 13:59:34 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe

[2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe

[2013/01/12 13:59:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe

[2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe

[2013/01/12 13:59:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe

[2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll

[2013/01/12 13:59:34 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll

[2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll

[2013/01/12 13:59:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll

[2013/01/12 13:59:33 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll

[2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll

[2013/01/12 13:59:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll

[2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe

[2013/01/12 13:59:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe

[2013/01/12 13:59:33 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll

[2013/01/12 13:59:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc

[2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll

[2013/01/12 13:59:32 | 000,949,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll

[2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll

[2013/01/12 13:59:32 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll

[2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll

[2013/01/12 13:59:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll

[2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll

[2013/01/12 13:59:32 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll

[2013/01/12 13:59:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe

[2013/01/12 13:59:31 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll

[2013/01/12 13:59:31 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll

[2013/01/12 13:59:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe

[2013/01/12 13:59:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com

[2013/01/12 13:59:30 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll

[2013/01/12 13:59:30 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll

[2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll

[2013/01/12 13:59:30 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll

[2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll

[2013/01/12 13:59:30 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll

[2013/01/12 13:59:29 | 001,251,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll

[2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll

[2013/01/12 13:59:29 | 000,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll

[2013/01/12 13:59:28 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll

[2013/01/12 13:59:26 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe

[2013/01/12 13:59:26 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe

[2013/01/12 13:59:26 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll

[2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll

[2013/01/12 13:59:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll

[2013/01/12 13:59:26 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll

[2013/01/12 13:59:26 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll

[2013/01/12 13:59:26 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe

[2013/01/12 13:59:26 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll

[2013/01/12 13:59:26 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll

[2013/01/12 13:59:26 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll

[2013/01/12 13:59:26 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll

[2013/01/12 13:59:26 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll

[2013/01/12 13:59:26 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll

[2013/01/12 13:59:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll

[2013/01/12 13:59:25 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll

[2013/01/12 13:59:25 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll

[2013/01/12 13:59:25 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll

[2013/01/12 13:59:25 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll

[2013/01/12 13:59:25 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll

[2013/01/12 13:59:25 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll

[2013/01/12 13:59:25 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll

[2013/01/12 13:59:25 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe

[2013/01/12 13:59:25 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll

[2013/01/12 13:59:25 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll

[2013/01/12 13:59:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll

[2013/01/12 13:59:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll

[2013/01/12 13:59:24 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll

[2013/01/12 13:59:24 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll

[2013/01/12 13:59:24 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll

[2013/01/12 13:59:24 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll

[2013/01/12 13:59:24 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll

[2013/01/12 13:59:24 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll

[2013/01/12 13:59:24 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe

[2013/01/12 13:59:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe

[2013/01/12 13:59:23 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll

[2013/01/12 13:59:23 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll

[2013/01/12 13:59:22 | 001,352,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll

[2013/01/12 13:59:22 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll

[2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll

[2013/01/12 13:59:21 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll

[2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll

[2013/01/12 13:59:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll

[2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll

[2013/01/12 13:59:21 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll

[2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll

[2013/01/12 13:59:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll

[2013/01/12 13:59:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\My Videos

[2013/01/12 13:58:58 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Accessories

[2013/01/12 12:53:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt

[2013/01/12 05:55:24 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll

[2013/01/12 05:54:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll

[2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll

[2013/01/12 05:54:22 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll

[2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll

[2013/01/12 05:54:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll

[2013/01/12 05:54:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll

[2013/01/12 05:54:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll

[2013/01/12 05:54:21 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll

[2013/01/12 05:54:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll

[2013/01/12 05:54:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll

[2013/01/12 05:54:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll

[2013/01/12 05:54:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll

[2013/01/12 05:54:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll

[2013/01/12 05:54:17 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll

[2013/01/12 05:54:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll

[2013/01/12 05:54:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll

[2013/01/12 05:54:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll

[2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll

[2013/01/12 05:54:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll

[2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll

[2013/01/12 05:54:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll

[2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll

[2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll

[2013/01/12 05:54:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll

[2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll

[2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll

[2013/01/12 05:54:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll

[2013/01/12 05:54:15 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll

[2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll

[2013/01/12 05:54:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll

[2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll

[2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll

[2013/01/12 05:54:15 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll

[2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll

[2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll

[2013/01/12 05:54:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll

[2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll

[2013/01/12 05:54:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll

[2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll

[2013/01/12 05:54:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll

[2013/01/12 05:54:13 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll

[2013/01/12 05:54:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll

[2013/01/12 05:54:13 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll

[2013/01/12 05:54:13 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll

[2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll

[2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll

[2013/01/12 05:54:13 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll

[2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll

[2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll

[2013/01/12 05:54:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll

[2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll

[2013/01/12 05:54:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll

[2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll

[2013/01/12 05:54:11 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll

[2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll

[2013/01/12 05:54:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll

[2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll

[2013/01/12 05:54:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll

[2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll

[2013/01/12 05:54:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll

[2013/01/12 05:54:10 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL

[2013/01/12 05:54:10 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV

[2013/01/12 05:54:10 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL

[2013/01/12 05:54:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL

[2013/01/12 05:54:10 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV

[2013/01/12 05:54:10 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV

[2013/01/12 05:54:10 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV

[2013/01/12 05:54:10 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV

[2013/01/12 05:54:09 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL

[2013/01/12 05:54:09 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL

[2013/01/12 05:54:09 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV

[2013/01/12 05:54:09 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL

[2013/01/12 05:54:09 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV

[2013/01/12 05:54:09 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV

[2013/01/12 05:54:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL

[2013/01/12 05:54:09 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL

[2013/01/12 05:54:09 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV

[2013/01/12 05:54:09 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV

[2013/01/12 05:54:09 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK

[2013/01/12 05:54:08 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL

[2013/01/12 05:54:08 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL

[2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE

[2013/01/12 05:54:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe

[2013/01/12 05:54:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys

[2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll

[2013/01/12 05:54:08 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll

[2013/01/12 05:54:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV

[2013/01/12 05:54:07 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll

[2013/01/12 05:54:07 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL

[2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup

[2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu

[2013/01/12 05:54:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents

[2013/01/12 05:54:00 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Templates

[2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Favorites

[2013/01/12 05:54:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Desktop

[2013/01/12 05:53:43 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft

[2013/01/12 05:53:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data

[2013/01/12 05:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\AdobeUM

[2013/01/12 05:44:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Adobe

[2013/01/12 05:44:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\My eBooks

[2013/01/12 05:43:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\Adobe

[2013/01/12 05:43:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe

[2013/01/12 05:41:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Application Data\vlc

[2013/01/12 05:39:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\VideoLAN

[2013/01/12 05:35:11 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN

[2013/01/12 05:14:23 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer

[2013/01/12 05:14:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC

[2013/01/12 05:14:21 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll

[2013/01/12 05:14:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll

[2013/01/12 05:14:19 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll

[2013/01/12 05:14:18 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll

[2013/01/12 05:14:18 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl

[2013/01/12 05:14:18 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe

[2013/01/12 05:14:18 | 000,000,000 | R--D | C] -- C:\Program Files

[2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines

[2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared

[2013/01/12 05:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files

[2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2

[2013/01/12 05:13:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot

[2013/01/12 05:13:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings

[2013/01/12 05:13:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[2013/01/12 05:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\My Documents\Downloads

[2013/01/12 05:03:28 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts

[2013/01/12 05:03:28 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache

[2013/01/12 05:03:28 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web

[2013/01/12 05:03:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\system

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\security

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\java

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028

[2013/01/12 05:03:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025

[2013/01/12 04:58:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\abc\Local Settings\Application Data\Mozilla

[2013/01/12 04:58:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Mozilla

[2013/01/12 04:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

[2013/01/12 02:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\PrintMe Internet Printing

[2013/01/12 02:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe

[2013/01/12 02:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe

[2013/01/12 02:52:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache

[2013/01/12 02:00:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang

[2013/01/12 01:55:41 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys

[2013/01/12 01:55:40 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys

[2013/01/12 01:55:40 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys

[2013/01/12 01:55:39 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys

[2013/01/12 01:55:38 | 000,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys

[2013/01/12 01:55:37 | 000,171,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys

[2013/01/12 01:55:37 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys

[2013/01/12 01:55:36 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys

[2013/01/12 01:55:35 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys

[2013/01/12 01:55:35 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys

[2013/01/12 01:55:33 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys

[2013/01/12 01:55:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM

[2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll

[2013/01/12 01:55:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll

[2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax

[2013/01/12 01:55:27 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax

[2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys

[2013/01/12 01:55:27 | 000,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys

[2013/01/12 01:55:23 | 000,290,816 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe

[2013/01/12 01:55:23 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

[2013/01/12 01:55:22 | 001,200,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe

[2013/01/12 01:55:22 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL

[2013/01/12 01:55:22 | 000,104,992 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe

[2013/01/12 01:55:22 | 000,034,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstXP.dll

[2013/01/12 01:55:20 | 009,715,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE

[2013/01/12 01:55:19 | 004,959,232 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys

[2013/01/12 01:55:13 | 002,168,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe

[2013/01/12 01:55:13 | 001,389,056 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys

[2013/01/12 01:55:09 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE

[2013/01/12 01:55:09 | 000,057,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE

[2013/01/12 01:55:08 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys

[2013/01/12 01:55:08 | 000,278,528 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL

[2013/01/12 01:55:08 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek

[2013/01/12 01:55:02 | 000,528,384 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll

[2013/01/12 01:54:35 | 000,023,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe

[2013/01/12 01:54:22 | 000,033,792 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdPPM.sys

[2013/01/12 01:54:21 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information

[2013/01/12 01:54:21 | 000,000,000 | ---D | C] -- C:\Program Files\AMD

[2013/01/12 01:53:23 | 000,208,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe

[2013/01/12 01:53:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview

[2013/01/12 01:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield

[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/02/04 22:41:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\abc\Desktop\OTL.exe

[2013/02/04 22:30:09 | 000,081,496 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2013/02/04 22:30:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini

[2013/02/03 22:46:32 | 005,029,877 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\ComboFix.exe

[2013/02/03 22:41:08 | 000,000,452 | ---- | M] () -- C:\Documents and Settings\abc\My Documents\spider.sav

[2013/02/02 20:44:08 | 000,688,992 | R--- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.com

[2013/02/02 20:43:36 | 000,688,992 | ---- | M] (Swearware) -- C:\Documents and Settings\abc\Desktop\dds.scr

[2013/02/02 18:03:01 | 005,257,020 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3

[2013/02/02 17:58:57 | 005,748,900 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3

[2013/02/01 23:57:38 | 000,116,189 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat

[2013/02/01 23:57:38 | 000,098,168 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat

[2013/02/01 23:29:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2013/02/01 23:27:40 | 000,016,608 | ---- | M] (Windows ® 2000 DDK provider) -- C:\WINDOWS\gdrv.sys

[2013/01/29 23:56:50 | 000,095,526 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg

[2013/01/29 22:14:50 | 000,013,312 | ---- | M] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2013/01/25 17:46:52 | 004,109,156 | ---- | M] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG

[2013/01/21 11:23:36 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk

[2013/01/20 12:53:03 | 000,000,005 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan

[2013/01/20 09:14:17 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk

[2013/01/19 02:18:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf

[2013/01/13 04:31:50 | 000,001,841 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk

[2013/01/13 03:01:25 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2013/01/13 02:59:17 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2013/01/13 02:53:10 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf

[2013/01/13 01:32:29 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe

[2013/01/13 01:32:29 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

[2013/01/12 14:08:28 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2013/01/12 14:08:28 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

[2013/01/12 14:06:50 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD

[2013/01/12 14:06:40 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2013/01/12 14:05:51 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf

[2013/01/12 14:03:36 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2013/01/12 14:03:33 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb

[2013/01/12 14:03:33 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb

[2013/01/12 14:03:23 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI

[2013/01/12 14:00:51 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat

[2013/01/12 04:52:32 | 000,000,580 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk

[2013/01/12 04:43:57 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk

[2013/01/12 02:53:32 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk

[2013/01/12 02:04:27 | 000,311,934 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2013/01/12 02:04:27 | 000,040,196 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2013/01/12 02:00:29 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2013/01/12 02:00:29 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak

[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/02/03 23:02:20 | 000,000,223 | ---- | C] () -- C:\Boot.bak

[2013/02/03 23:02:18 | 000,260,272 | RHS- | C] () -- C:\cmldr

[2013/02/03 22:57:38 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe

[2013/02/03 22:57:38 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe

[2013/02/03 22:57:38 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2013/02/03 22:57:38 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2013/02/03 22:57:38 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2013/02/03 22:41:08 | 000,000,452 | ---- | C] () -- C:\Documents and Settings\abc\My Documents\spider.sav

[2013/02/02 18:00:04 | 005,257,020 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Khiladi 786 - 05 - Hookah Bar.mp3

[2013/02/02 17:54:32 | 005,748,900 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\[songs.PK] Race 2 - 02 - Be Intehaan.mp3

[2013/01/29 23:56:49 | 000,095,526 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\601116_499480730095434_619647671_n.jpg

[2013/01/25 09:32:41 | 004,109,156 | ---- | C] () -- C:\Documents and Settings\abc\Desktop\DSC03404.JPG

[2013/01/21 11:23:36 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Malwarebytes Anti-Malware.lnk

[2013/01/20 12:53:03 | 000,000,005 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\mbam.context.scan

[2013/01/20 09:14:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox.lnk

[2013/01/20 09:14:17 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk

[2013/01/19 02:18:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf

[2013/01/13 04:31:50 | 000,001,841 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\NWZ-B170 WALKMAN Guide.lnk

[2013/01/13 02:53:10 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf

[2013/01/12 14:37:12 | 000,001,570 | ---- | C] () -- C:\WINDOWS\System32\nvide.nvu

[2013/01/12 14:37:02 | 000,003,903 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu

[2013/01/12 14:37:02 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin

[2013/01/12 14:29:33 | 000,116,189 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat

[2013/01/12 14:29:33 | 000,098,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat

[2013/01/12 14:08:28 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

[2013/01/12 14:08:21 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Outlook Express.lnk

[2013/01/12 14:08:20 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

[2013/01/12 14:08:20 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Internet Explorer.lnk

[2013/01/12 14:08:14 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Remote Assistance.lnk

[2013/01/12 14:08:14 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\abc\Start Menu\Programs\Windows Media Player.lnk

[2013/01/12 14:06:50 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD

[2013/01/12 14:05:51 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2013/01/12 14:05:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll

[2013/01/12 14:04:48 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex

[2013/01/12 14:04:41 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe

[2013/01/12 14:04:40 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe

[2013/01/12 14:04:39 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex

[2013/01/12 14:04:32 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll

[2013/01/12 14:04:29 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex

[2013/01/12 14:04:25 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll

[2013/01/12 14:04:16 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll

[2013/01/12 14:03:36 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT

[2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS

[2013/01/12 14:03:36 | 000,000,000 | RHS- | C] () -- C:\IO.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS

[2013/01/12 14:03:36 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT

[2013/01/12 14:03:33 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb

[2013/01/12 14:03:33 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb

[2013/01/12 14:03:32 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx

[2013/01/12 14:02:33 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Movie Maker.lnk

[2013/01/12 14:02:23 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex

[2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp

[2013/01/12 14:01:53 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp

[2013/01/12 14:01:47 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf

[2013/01/12 14:01:34 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2013/01/12 14:01:24 | 000,376,320 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll

[2013/01/12 14:00:53 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Windows Messenger.lnk

[2013/01/12 14:00:51 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2013/01/12 14:00:29 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\MSN.lnk

[2013/01/12 14:00:04 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp

[2013/01/12 14:00:04 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp

[2013/01/12 14:00:04 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp

[2013/01/12 14:00:04 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp

[2013/01/12 14:00:04 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp

[2013/01/12 14:00:04 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp

[2013/01/12 14:00:03 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp

[2013/01/12 14:00:03 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp

[2013/01/12 14:00:03 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp

[2013/01/12 14:00:03 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp

[2013/01/12 14:00:03 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp

[2013/01/12 14:00:00 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h

[2013/01/12 14:00:00 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd

[2013/01/12 13:59:59 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h

[2013/01/12 13:59:52 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

[2013/01/12 05:54:29 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK

[2013/01/12 05:54:26 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2013/01/12 05:54:08 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT

[2013/01/12 05:54:00 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat

[2013/01/12 05:54:00 | 000,110,116 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat

[2013/01/12 05:54:00 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat

[2013/01/12 05:54:00 | 000,024,209 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat

[2013/01/12 05:54:00 | 000,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat

[2013/01/12 05:54:00 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT

[2013/01/12 05:54:00 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT

[2013/01/12 05:53:59 | 002,012,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT

[2013/01/12 05:53:59 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT

[2013/01/12 05:53:59 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT

[2013/01/12 05:53:59 | 000,502,724 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT

[2013/01/12 05:53:59 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT

[2013/01/12 05:53:59 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT

[2013/01/12 05:53:59 | 000,031,281 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT

[2013/01/12 05:53:59 | 000,013,753 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT

[2013/01/12 05:53:59 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT

[2013/01/12 05:53:59 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT

[2013/01/12 05:53:59 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT

[2013/01/12 05:53:59 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat

[2013/01/12 05:53:20 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2013/01/12 05:52:25 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf

[2013/01/12 05:14:20 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd

[2013/01/12 05:14:20 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf

[2013/01/12 05:14:19 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa

[2013/01/12 05:14:18 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa

[2013/01/12 05:07:03 | 000,000,339 | RHS- | C] () -- C:\boot.ini

[2013/01/12 04:52:32 | 000,000,580 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Broadband Connection.lnk

[2013/01/12 04:43:57 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\abc\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk

[2013/01/12 02:54:07 | 000,013,312 | ---- | C] () -- C:\Documents and Settings\abc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2013/01/12 02:53:32 | 000,001,740 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Desktop\Adobe Reader 6.0.lnk

[2013/01/12 02:53:31 | 000,001,866 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Adobe Reader 6.0.lnk

[2013/01/12 02:00:29 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2013/01/12 02:00:29 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2013/01/12 01:55:42 | 000,000,553 | R--- | C] () -- C:\WINDOWS\USetup.iss

[2013/01/12 01:53:49 | 000,081,496 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml

[2013/01/12 01:53:23 | 000,017,056 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu

========== ZeroAccess Check ==========

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2004/08/03 11:26:46 | 001,483,264 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = %systemroot%\system32\wbem\fastprox.dll -- [2004/08/03 11:26:44 | 000,472,064 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = %systemroot%\system32\wbem\wbemess.dll -- [2004/08/03 11:26:48 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

========== Custom Scans ==========

< netsves >

< %SYSTEMDRIVE%\*.* >

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2013/01/12 01:54:21 | 000,000,223 | ---- | M] () -- C:\Boot.bak

[2013/02/03 23:02:20 | 000,000,339 | RHS- | M] () -- C:\boot.ini

[2004/08/03 23:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr

[2013/01/12 14:03:36 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2013/01/12 01:55:43 | 000,000,206 | ---- | M] () -- C:\csb.log

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2013/01/12 14:03:36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2004/08/03 09:08:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM

[2004/08/03 09:29:34 | 000,250,032 | RHS- | M] () -- C:\ntldr

[2013/02/04 22:30:05 | 1509,949,440 | -HS- | M] () -- C:\pagefile.sys

[2013/01/12 01:55:43 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log

[2013/01/20 01:02:09 | 000,215,196 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_20.01.2013_00.48.43_log.txt

[2013/01/23 12:57:17 | 000,145,430 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.54.14_log.txt

[2013/01/23 13:01:21 | 000,228,108 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_23.01.2013_12.59.24_log.txt

< %systemroot%\*./mp/s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto >

< Update\Results\Install\LastSuccessTime/rs >

Invalid Switch: rs

< End of report >

Share this post


Link to post
Share on other sites

Good morning aryama,

I notice that you have Conduit installed. It is often present when other infections are and does act suspiciously. I strongly recommend removing this program.

Please go to Start>Control Panel> Add or Remove Programs and remove the following (if present):

  • Conduit
  • Conduit Engine

Please restart your computer after these program removals.

=====

Please post the contents of the logs, as malware writers would like nothing more than to infect the computers of helpers, such as myself. Thanks!

Next, please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
    :OTL
    O4 - HKLM..\Run: [GEST] m‘|Pë File not found
    :Commands
    [EmptyTemp]
  • Return to OTL.exe, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.
  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

=====

Finally, please go to http://www.virustotal.com, click on Choose File, and upload the following file for analysis: You will only be able to have one file scanned at a time.

C:\WINDOWS\system32\wcjohrw.dll

Then click Scan It!. Allow the file to be scanned, and then please copy/paste the results here for me to see.

Note: If a message appears saying the file has already been analysed, please resend the file.

=====

Please provide the results from OTL and VirusTotal in your reply.

Share this post


Link to post
Share on other sites

Hi

From Start>Control Panel> Add or Remove Programs--

  • Conduit
  • Conduit Engine

Both didnt display,so couldnt uninstall

Also there was no wcjohrw.dll inC:\WINDOWS\system32

OTL Log

All processes killed

========== OTL ==========

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\GEST deleted successfully.

========== COMMANDS ==========

[EMPTYTEMP]

User: abc

->Temp folder emptied: 641721 bytes

->Temporary Internet Files folder emptied: 1321960 bytes

->FireFox cache emptied: 8734752 bytes

->Flash cache emptied: 1841 bytes

User: Administrator

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

->FireFox cache emptied: 30561 bytes

User: Administrator.ABC-3B1295B6860

->Temp folder emptied: 327680 bytes

->Temporary Internet Files folder emptied: 33170 bytes

User: Administrator.ABC-3B1295B6860.000

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

User: Administrator.ABC-3B1295B6860.001

->Temp folder emptied: 278528 bytes

->Temporary Internet Files folder emptied: 33170 bytes

User: Administrator.ABC-3B1295B6860.002

->Temp folder emptied: 327680 bytes

->Temporary Internet Files folder emptied: 33170 bytes

->FireFox cache emptied: 934786 bytes

User: All Users

User: All Users.WINDOWS

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: Default User.WINDOWS

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 197990 bytes

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 2142714 bytes

%systemroot%\System32 .tmp files removed: 2832913 bytes

%systemroot%\System32\dllcache .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 815333376 bytes

%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes

%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes

RecycleBin emptied: 14687612 bytes

Total Files Cleaned = 809.00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 02052013_022554

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Share this post


Link to post
Share on other sites

Howdy aryama,

Please run OTL.exe.

  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
    :files
    C:\WINDOWS\system32\wcjohrw.dll
    :Commands
    [EmptyTemp]
  • Return to OTL.exe, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.
  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Do the issues remain?

Share this post


Link to post
Share on other sites

All processes killed

========== FILES ==========

File\Folder C:\WINDOWS\system32\wcjohrw.

dll not found.

========== COMMANDS ==========

[EMPTYTEMP]

User: abc

->Temp folder emptied: 641721 bytes

->Temporary Internet Files folder emptied: 33170 bytes

->FireFox cache emptied: 11876615 bytes

->Flash cache emptied: 492 bytes

User: Administrator

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->FireFox cache emptied: 0 bytes

User: Administrator.ABC-3B1295B6860

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.ABC-3B1295B6860.000

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.ABC-3B1295B6860.001

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.ABC-3B1295B6860.002

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->FireFox cache emptied: 0 bytes

User: All Users

User: All Users.WINDOWS

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: Default User.WINDOWS

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

User: LocalService

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32\dllcache .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 0 bytes

%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes

%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes

RecycleBin emptied: 0 bytes

Total Files Cleaned = 12.00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 02052013_222829

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Share this post


Link to post
Share on other sites

Issues still remain,infact some new things are happening like I am not able to open any sites except facebook.I am accessing malwarebytes through kproxy.com (from my own pc!!!!),still it doesnt let me post anything.Again today i tried to scan with MBAR,again PC had shut down while scan,but diff is i am able to access malwarebytes again ! This is going weird...please help.

Share this post


Link to post
Share on other sites

Good morning aryama,

Please boot into Safe Mode (restart and tap F8 repeatedly).

Try running ComboFix. Please post the contents of its log in your reply.

Share this post


Link to post
Share on other sites

When pc is booting up in safe mode,its shutting down,tried with 'safe mode and networking',after couple of tries was able to start ComboFix but in middle of scan,pc got shut down.Tried 3 times to start combofix in 'safe mode and networking',but as soon as windows is getting loaded,pc is getting shut down all of a sudden. I am still trying,is ther eanything else I can do?

Share this post


Link to post
Share on other sites

Good morning aryama,

Please read all these directions before proceeding.

When you have the .ISO file downloaded, you need to create a bootable disk or flash drive with it, using a clean PC to do that. The .ISO file is a disk image. It should NOT be burned as a regular file. You need a program like ImgBurn that can burn an .ISO image. I think a CD is best as there is no way anything can write on it after it is made, but the USB may be more convenient and easier.

Be sure to read these:

Download Kaspersky Rescue Disk 10

How to record Kaspersky Rescue Disk 10 to an USB device and boot my computer from it?

How to record Kaspersky Rescue Disk 10 to a CD/DVD and boot my computer from the disk?

  • Please go to a clean computer
  • Download the .iso image file.
  • Create a CD (or flash drive if you prefer).
  • On the infected computer: put the disk in the drive and reboot.

Follow the directions here, but you will find some differences.

Familiarise yourself with How to create a report file in Kaspersky Rescue Disk 10?

Then, please print the following directions:

Boot from Kaspersky Rescue Disk 10:

Restart your computer and put the disk in the drive while booting.

Press any key. A loading wizard will start (you will see the menu to select the required language). If you do not press any key in 10 seconds, the computer boots from hard drive automatically.

Select the required interface language using the arrow-keys on your keyboard.

Press the Enter key on the keyboard.

In the start up wizard window that opens, select the Kaspersky Rescue Disk. Graphic Mode

Click Enter.

Click 'A' to accept the agreement.

Select operating system from dropdown menu (select Windows whatever).

Select Objects to scan: check Disk boot sectors, Hidden startup objects, C:

Click My Update Center and update.

Back to other tab and click Start Object Scan.

When scan has completed save a report:

On the upper part of the Kaspersky Rescue Disk window, click on the Report link.

On the bottom right hand corner of the Protection status - Kaspersky Rescue Disk window, click on the Detailed Report button.

On the upper right hand corner of the Detailed report window, click on the Save button.

After clicking Detailed Report and 'SAVE', a browse window opens.

Double-click on the \

Click 'disks'.

All your drives will be shown and you can easily double-click C and save the report to C:\KasperskyRescueDisk10.txt.

Click on the Save button.

The report has been saved to the file.

Remove the disk from the drive (or disconnect USB) and reboot normally.

Share this post


Link to post
Share on other sites

Hi Dark Knight

Since the above steps need to be done from a clean computer,i.e getting Kaspersky Rescue Disk,I would require 2 days time.Till then I am trying with the ComboFix.

Share this post


Link to post
Share on other sites

Hello aryama,

OK. Please bear in mind that ComboFix may still fail while the disc should succeed.

Share this post


Link to post
Share on other sites

Yes you are correct,ComboFix isn't working,I tried couple of times again.Another thing started recently,PC is shutting down even when I am not scanning anything but connected to net.Is it also related to the same problem?Also what kind of virus do my PC have?

Coming to Kaspersky Rescue Disk,I already tried downloading it from a PC which had avast antivirus on it,after fully downloading Avast detected it to be a malware and didnt let .iso image file to save. Was it because there was some virus on this PC and hence didnt let .iso image file to save? I will be trying in another PC,but in any chance do i need to switch off the anti virus of that PC?

Lastly what if Kaspersky Rescue Disk also fails?

Share this post


Link to post
Share on other sites

Hello aryama,

Please try another PC. You shouldn't need to disable your antivirus program.

Well there is always the possibility that your computer is dying, and that it isn't malware related. But let's see how Kaspersky goes first.

Share this post


Link to post
Share on other sites

Hi DarkKnight

I think maybe that is the case,maybe I would need to format the whole system,But in that case if I take backup of my data to any external USB drive,will it be a problem? I mean if I have virus will it be transmitted with my backup data to the usb drive as well? or is it safe to take backup?

Share this post


Link to post
Share on other sites

Hey aryama,

If one of your files was infected and you backed it up then yes you could reinfect yourself. But I haven't seen any evidence to indicate this is the case.

Please let me know what you would like to do. :)

Share this post


Link to post
Share on other sites

Thanks DarkKnight

I will be backing up my data,I better be prepared.

In the meantime I was able to download the kaspersky rescue disk exe.Will be do the steps you had mentioned.

Now my pc is shutting down even when I am not scanning anything. Recently when I was in CMOS setup and let the pc sit there to check if everything is fine or not,after about 10min pc shut down :(. Can it be due any malware or should I suspect mother board prob?

Share this post


Link to post
Share on other sites

Hey aryama,

It sounds like you might have hardware issues.

Run the Kaspersky disc, and if that doesn't find anything then I will direct you to the PC troubleshooting part of this forum. :)

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.