ochranne systemy vo win 7 64 bit nejdu zapnut

[socrates]

Zdravim,
chcel by som poprosit o pomoc s mojim notebookom.

Popis situacie:
Zrejme sa jedna o nejakeho parazita, alebo jeho pozostatky.
Neda sa spustit centrum zabezpecenia systemu windows, rovnako nejde spustit microsoft security essentials (naskoci asi na 2 sekundy a hned sa sam vypne). Pozral som, ako to vyzera v polozke services - security center a defender su zakazane, ak ich dam povolit a spustit, asi do 15 sekund sa sami vypnu. System bezi celkovo pomalsie. Kedze mi Esssentials prestal fungovat, stiahol som NOD 32 a spravil kompletnu kontolu...naslo to asi 10 infiltracii, ale aj ked som ich odstranil nic sa nezmenilo. Za kazdu radu vopred dakujem.

moj log:

Logfile of random's system information tool 1.08 (written by random/random)
Run by RADOSLAV at 2011-04-07 18:07:46
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 242 GB (79%) free of 306 GB
Total RAM: 3764 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:07:51, on 7. 4. 2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\ICQ7.4\ICQ.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\RADOSLAV.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Pomocník pri prihlasovaní v sieti Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8693 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 27943024
\??\C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {7D44B6CA-A58A-4678-8432-D296D22284D5}
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\rundll32.exe "C:\Windows\SysWOW64\ar-SAF.dll",jsrvrmdk
C:\Windows\system32\rundll32.exe "C:\Windows\SysWOW64\ar-SAF.dll",jsrvrmdk
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe"
"C:\Program Files (x86)\Acer\Registration\GregHSRW.exe"
C:\Windows\system32\CNAB4RPD.EXE
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"Apntex.exe"
"C:\Program Files\Apoint2K\HidFind.exe"
\??\C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding
C:\Windows\system32\igfxext.exe -Embedding
"C:\Program Files (x86)\ICQ7.4\ICQ.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=636.c4f6ba0.1834918286 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" 636 plugin \\.\pipe\gecko-crash-server-pipe.636
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fb6d6987-5346-4df8-a9bd-b4d2392455f7 -SystemEventPortName:HostProcess-e35f187e-520f-4c8c-9dab-7d5fed4a442a -IoCancelEventPortName:HostProcess-83e18a8e-71fc-41b4-b3a5-aa8140128832 -NonStateChangingEventPortName:HostProcess-d78e8090-8ef8-42cb-9dc0-e4e1e04a816b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5877a17e-ed16-46e9-af06-f19dd23bc688
taskhost.exe $(Arg0)
taskeng.exe {80246837-4158-4157-95B2-E0760FF8061A}
"C:\Users\RADOSLAV\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\zlwuadwrzd.job
C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-23 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v sieti Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-04-04 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-23 323584]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-01-22 166424]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-01-22 390680]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-01-22 410136]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-01-20 9996320]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-01-20 877600]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-10-22 325120]
"Acer ePower Management"=C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [2010-01-20 496160]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-01-12 2918656]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 1436224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2009-10-28 388608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray]
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2010-01-13 265984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Brain Bullet]
C:\PROGRA~2\BRAINB~1\bb.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe 196609 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Global Registration]
C:\Program Files (x86)\Acer\Registration\GREG.exe [2009-08-28 2846240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files (x86)\ICQ7.2\ICQ.exe [2011-01-05 133432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MDS_Menu]
C:\Program Files (x86)\Olympus\ib\MUITransfer\MUIStartMenu.exe [2009-05-19 222504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Olympus ib]
C:\Program Files (x86)\Olympus\ib\olycamdetect.exe [2010-02-04 93376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetI]
C:\Windows\PLFSetI.exe [2010-11-24 206208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Q7NZMT7RLB]
C:\Users\RADOSLAV\AppData\Local\Temp\Xtg.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-10-29 249064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Canon LBP2900 Status Window.lnk]
C:\Windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE [2010-01-13 60384]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-12-24 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-01-26 336384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-01-22 268800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-04-07 18:07:47 ----D---- C:\Program Files\trend micro
2011-04-07 18:07:46 ----D---- C:\rsit
2011-04-07 13:47:53 ----D---- C:\Program Files (x86)\Microsoft Security Client
2011-04-07 13:47:50 ----D---- C:\Program Files\Microsoft Security Client
2011-04-07 13:41:20 ----SHD---- C:\Config.Msi
2011-04-06 21:51:53 ----D---- C:\ProgramData\ESET
2011-04-06 21:51:53 ----D---- C:\Program Files\ESET
2011-04-06 21:09:35 ----D---- C:\Program Files (x86)\Xenocode
2011-04-06 21:00:22 ----RASH---- C:\Windows\SYSWOW64\ar-SAF.dll
2011-04-04 13:57:58 ----D---- C:\Windows\Sun
2011-04-04 13:57:19 ----D---- C:\ProgramData\Sun
2011-04-04 13:57:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2011-04-04 13:57:06 ----A---- C:\Windows\SYSWOW64\javaw.exe
2011-04-04 13:57:06 ----A---- C:\Windows\SYSWOW64\java.exe
2011-04-04 13:57:06 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2011-04-04 13:56:50 ----D---- C:\Program Files (x86)\Java
2011-03-31 19:52:41 ----D---- C:\Program Files (x86)\ICQ7.4
2011-03-26 10:55:32 ----D---- C:\Program Files\Hewlett-Packard
2011-03-26 10:55:30 ----A---- C:\Windows\HPMProp.INI
2011-03-26 10:55:18 ----D---- C:\ProgramData\Hewlett-Packard
2011-03-26 10:54:49 ----A---- C:\Windows\SYSWOW64\hppccompio.dll
2011-03-26 10:54:49 ----A---- C:\Windows\system32\hppmopjl.dll
2011-03-26 10:54:49 ----A---- C:\Windows\system32\hppdcompio.dll
2011-03-26 10:54:49 ----A---- C:\Windows\system32\hpmtp112.dll
2011-03-26 10:54:49 ----A---- C:\Windows\system32\hpmpw081.dll
2011-03-26 10:54:49 ----A---- C:\Windows\system32\hpmpm081.dll
2011-03-26 10:54:49 ----A---- C:\Windows\system32\hpmml112.dll
2011-03-26 10:54:49 ----A---- C:\Windows\system32\hpmja112.dll
2011-03-26 10:54:45 ----A---- C:\Windows\system32\hpcpn112.dll
2011-03-26 10:54:44 ----A---- C:\Windows\SYSWOW64\hpcdmc32.dll
2011-03-26 10:54:44 ----A---- C:\Windows\SYSWOW64\hpcc3112.dll
2011-03-26 10:54:44 ----A---- C:\Windows\system32\FxCompChannel_x64.dll
2011-03-26 10:53:56 ----D---- C:\HP Universal Print Driver
2011-03-25 00:00:32 ----D---- C:\Users\RADOSLAV\AppData\Roaming\NeuroProgrammer3
2011-03-25 00:00:31 ----D---- C:\Windows\XSxS
2011-03-25 00:00:11 ----D---- C:\Program Files (x86)\Neuro-Programmer 3
2011-03-21 19:52:43 ----D---- C:\ProgramData\ATI
2011-03-13 21:00:15 ----A---- C:\Windows\SYSWOW64\drivers\ewusbmdm.sys
2011-03-13 21:00:15 ----A---- C:\Windows\SYSWOW64\drivers\ewdcsc.sys
2011-03-13 20:59:34 ----D---- C:\Program Files (x86)\Huawei technologies
2011-03-10 23:17:43 ----D---- C:\Windows\system32\SPReview
2011-03-10 23:16:33 ----D---- C:\Windows\system32\EventProviders
2011-03-10 23:14:25 ----A---- C:\Windows\system32\netfxperf.dll
2011-03-10 23:14:25 ----A---- C:\Windows\system32\dfshim.dll
2011-03-10 23:14:19 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-03-10 23:14:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-03-10 23:14:15 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-03-10 23:14:15 ----A---- C:\Windows\system32\mstscax.dll
2011-03-10 23:14:15 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-03-10 23:14:15 ----A---- C:\Windows\system32\d3d10warp.dll
2011-03-10 23:14:13 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-03-10 23:14:13 ----A---- C:\Windows\system32\ieframe.dll
2011-03-10 23:14:10 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2011-03-10 23:14:10 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2011-03-10 23:14:10 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-03-10 23:14:10 ----A---- C:\Windows\system32\sysmain.dll
2011-03-10 23:14:09 ----A---- C:\Windows\system32\shell32.dll
2011-03-10 23:14:09 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-03-10 23:14:08 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-03-10 23:14:07 ----A---- C:\Windows\system32\tquery.dll
2011-03-10 23:14:06 ----A---- C:\Windows\system32\wmp.dll
2011-03-10 23:14:06 ----A---- C:\Windows\system32\mssrch.dll
2011-03-10 23:14:05 ----A---- C:\Windows\system32\ntdll.dll
2011-03-10 23:14:05 ----A---- C:\Windows\system32\mscoree.dll
2011-03-10 23:14:05 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-03-10 23:14:04 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2011-03-10 23:14:04 ----A---- C:\Windows\system32\secproc_isv.dll
2011-03-10 23:14:04 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-03-10 23:14:04 ----A---- C:\Windows\system32\mf.dll
2011-03-10 23:14:03 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-03-10 23:14:03 ----A---- C:\Windows\system32\xpsservices.dll
2011-03-10 23:14:03 ----A---- C:\Windows\system32\secproc.dll
2011-03-10 23:14:03 ----A---- C:\Windows\system32\RMActivate.exe
2011-03-10 23:14:02 ----A---- C:\Windows\SYSWOW64\secproc.dll
2011-03-10 23:14:02 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2011-03-10 23:14:02 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-03-10 23:14:02 ----A---- C:\Windows\system32\rpcrt4.dll
2011-03-10 23:14:01 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2011-03-10 23:14:01 ----A---- C:\Windows\system32\schedsvc.dll
2011-03-10 23:14:01 ----A---- C:\Windows\system32\ole32.dll
2011-03-10 23:14:00 ----A---- C:\Windows\system32\spwizui.dll
2011-03-10 23:14:00 ----A---- C:\Windows\system32\iertutil.dll
2011-03-10 23:13:59 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-03-10 23:13:59 ----A---- C:\Windows\system32\wininet.dll
2011-03-10 23:13:59 ----A---- C:\Windows\system32\urlmon.dll
2011-03-10 23:13:59 ----A---- C:\Windows\system32\taskschd.dll
2011-03-10 23:13:59 ----A---- C:\Windows\system32\esent.dll
2011-03-10 23:13:59 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-03-10 23:13:58 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-03-10 23:13:58 ----A---- C:\Windows\SYSWOW64\mf.dll
2011-03-10 23:13:58 ----A---- C:\Windows\system32\wevtsvc.dll
2011-03-10 23:13:58 ----A---- C:\Windows\system32\RacEngn.dll
2011-03-10 23:13:58 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-03-10 23:13:58 ----A---- C:\Windows\system32\diagperf.dll
2011-03-10 23:13:57 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2011-03-10 23:13:57 ----A---- C:\Windows\system32\vssapi.dll
2011-03-10 23:13:57 ----A---- C:\Windows\system32\msxml3.dll
2011-03-10 23:13:57 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-03-10 23:13:56 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2011-03-10 23:13:56 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-03-10 23:13:56 ----A---- C:\Windows\system32\UIRibbon.dll
2011-03-10 23:13:56 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-03-10 23:13:56 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-03-10 23:13:56 ----A---- C:\Windows\explorer.exe
2011-03-10 23:13:55 ----A---- C:\Windows\SYSWOW64\wmp.dll
2011-03-10 23:13:54 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-03-10 23:13:54 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-03-10 23:13:54 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-03-10 23:13:54 ----A---- C:\Windows\SYSWOW64\esent.dll
2011-03-10 23:13:54 ----A---- C:\Windows\system32\WsmSvc.dll
2011-03-10 23:13:54 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-03-10 23:13:54 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-03-10 23:13:54 ----A---- C:\Windows\system32\PresentationHost.exe
2011-03-10 23:13:53 ----A---- C:\Windows\system32\spreview.exe
2011-03-10 23:13:53 ----A---- C:\Windows\system32\spinstall.exe
2011-03-10 23:13:53 ----A---- C:\Windows\system32\rdpdd.dll
2011-03-10 23:13:53 ----A---- C:\Windows\system32\MPSSVC.dll
2011-03-10 23:13:53 ----A---- C:\Windows\system32\CertEnroll.dll
2011-03-10 23:13:52 ----A---- C:\Windows\SYSWOW64\tquery.dll
2011-03-10 23:13:52 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-03-10 23:13:52 ----A---- C:\Windows\system32\WinSAT.exe
2011-03-10 23:13:52 ----A---- C:\Windows\system32\d3d9.dll
2011-03-10 23:13:51 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2011-03-10 23:13:51 ----A---- C:\Windows\system32\msxml6.dll
2011-03-10 23:13:51 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-03-10 23:13:50 ----A---- C:\Windows\SYSWOW64\AuthFWSnapin.dll
2011-03-10 23:13:50 ----A---- C:\Windows\system32\VSSVC.exe
2011-03-10 23:13:50 ----A---- C:\Windows\system32\SearchFolder.dll
2011-03-10 23:13:50 ----A---- C:\Windows\system32\kernel32.dll
2011-03-10 23:13:50 ----A---- C:\Windows\system32\gpsvc.dll
2011-03-10 23:13:50 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-03-10 23:13:49 ----A---- C:\Windows\system32\mstime.dll
2011-03-10 23:13:49 ----A---- C:\Windows\system32\dwmcore.dll
2011-03-10 23:13:49 ----A---- C:\Windows\system32\drivers\http.sys
2011-03-10 23:13:49 ----A---- C:\Windows\system32\dbgeng.dll
2011-03-10 23:13:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-03-10 23:13:48 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-03-10 23:13:48 ----A---- C:\Windows\system32\crypt32.dll
2011-03-10 23:13:47 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-03-10 23:13:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-03-10 23:13:46 ----A---- C:\Windows\SYSWOW64\ole32.dll
2011-03-10 23:13:46 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-03-10 23:13:46 ----A---- C:\Windows\system32\schannel.dll
2011-03-10 23:13:46 ----A---- C:\Windows\system32\qmgr.dll
2011-03-10 23:13:46 ----A---- C:\Windows\system32\lsasrv.dll
2011-03-10 23:13:46 ----A---- C:\Windows\system32\KernelBase.dll
2011-03-10 23:13:46 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-03-10 23:13:46 ----A---- C:\Windows\system32\drivers\afd.sys
2011-03-10 23:13:46 ----A---- C:\Windows\system32\audiosrv.dll
2011-03-10 23:13:46 ----A---- C:\Windows\system32\actxprxy.dll
2011-03-10 23:13:45 ----A---- C:\Windows\system32\termsrv.dll
2011-03-10 23:13:45 ----A---- C:\Windows\system32\sqmapi.dll
2011-03-10 23:13:45 ----A---- C:\Windows\system32\mstsc.exe
2011-03-10 23:13:45 ----A---- C:\Windows\system32\drivers\srv.sys
2011-03-10 23:13:44 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2011-03-10 23:13:44 ----A---- C:\Windows\system32\netlogon.dll
2011-03-10 23:13:44 ----A---- C:\Windows\system32\imapi2fs.dll
2011-03-10 23:13:43 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2011-03-10 23:13:43 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-03-10 23:13:43 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2011-03-10 23:13:43 ----A---- C:\Windows\system32\winhttp.dll
2011-03-10 23:13:43 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-03-10 23:13:43 ----A---- C:\Windows\system32\propsys.dll
2011-03-10 23:13:43 ----A---- C:\Windows\system32\msv1_0.dll
2011-03-10 23:13:43 ----A---- C:\Windows\system32\d3d11.dll
2011-03-10 23:13:42 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2011-03-10 23:13:42 ----A---- C:\Windows\system32\werconcpl.dll
2011-03-10 23:13:42 ----A---- C:\Windows\system32\wbengine.exe
2011-03-10 23:13:42 ----A---- C:\Windows\system32\setupapi.dll
2011-03-10 23:13:42 ----A---- C:\Windows\system32\rpcss.dll
2011-03-10 23:13:42 ----A---- C:\Windows\system32\authui.dll
2011-03-10 23:13:41 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2011-03-10 23:13:41 ----A---- C:\Windows\system32\taskeng.exe
2011-03-10 23:13:41 ----A---- C:\Windows\system32\oleaut32.dll
2011-03-10 23:13:41 ----A---- C:\Windows\system32\odbc32.dll
2011-03-10 23:13:41 ----A---- C:\Windows\system32\msfeeds.dll
2011-03-10 23:13:41 ----A---- C:\Windows\system32\dnsapi.dll
2011-03-10 23:13:40 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-03-10 23:13:40 ----A---- C:\Windows\system32\WSDApi.dll
2011-03-10 23:13:40 ----A---- C:\Windows\system32\user32.dll
2011-03-10 23:13:40 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-03-10 23:13:40 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-03-10 23:13:40 ----A---- C:\Windows\system32\drivers\netio.sys
2011-03-10 23:13:40 ----A---- C:\Windows\system32\dhcpcore.dll
2011-03-10 23:13:40 ----A---- C:\Windows\system32\certmgr.dll
2011-03-10 23:13:39 ----A---- C:\Windows\SYSWOW64\wer.dll
2011-03-10 23:13:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-03-10 23:13:39 ----A---- C:\Windows\SYSWOW64\certcli.dll
2011-03-10 23:13:39 ----A---- C:\Windows\system32\webio.dll
2011-03-10 23:13:39 ----A---- C:\Windows\system32\scavengeui.dll
2011-03-10 23:13:39 ----A---- C:\Windows\system32\localspl.dll
2011-03-10 23:13:39 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-03-10 23:13:38 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-03-10 23:13:38 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2011-03-10 23:13:38 ----A---- C:\Windows\system32\tsmf.dll
2011-03-10 23:13:38 ----A---- C:\Windows\system32\shlwapi.dll
2011-03-10 23:13:38 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-03-10 23:13:38 ----A---- C:\Windows\system32\ncsi.dll
2011-03-10 23:13:38 ----A---- C:\Windows\system32\msdtctm.dll
2011-03-10 23:13:38 ----A---- C:\Windows\system32\msdrm.dll
2011-03-10 23:13:38 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-03-10 23:13:37 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-03-10 23:13:37 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-03-10 23:13:37 ----A---- C:\Windows\system32\netshell.dll
2011-03-10 23:13:37 ----A---- C:\Windows\system32\framedynos.dll
2011-03-10 23:13:36 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll
2011-03-10 23:13:36 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-03-10 23:13:36 ----A---- C:\Windows\system32\ws2_32.dll
2011-03-10 23:13:36 ----A---- C:\Windows\system32\winlogon.exe
2011-03-10 23:13:36 ----A---- C:\Windows\system32\usp10.dll
2011-03-10 23:13:36 ----A---- C:\Windows\system32\quartz.dll
2011-03-10 23:13:36 ----A---- C:\Windows\system32\nlasvc.dll
2011-03-10 23:13:36 ----A---- C:\Windows\system32\netcfgx.dll
2011-03-10 23:13:36 ----A---- C:\Windows\system32\lsm.exe
2011-03-10 23:13:36 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-03-10 23:13:36 ----A---- C:\Windows\system32\drivers\cng.sys
2011-03-10 23:13:35 ----A---- C:\Windows\SYSWOW64\quartz.dll
2011-03-10 23:13:35 ----A---- C:\Windows\system32\wmpps.dll
2011-03-10 23:13:35 ----A---- C:\Windows\system32\dxgi.dll
2011-03-10 23:13:35 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-03-10 23:13:35 ----A---- C:\Windows\system32\comdlg32.dll
2011-03-10 23:13:35 ----A---- C:\Windows\system32\apphelp.dll
2011-03-10 23:13:34 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2011-03-10 23:13:34 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2011-03-10 23:13:34 ----A---- C:\Windows\SYSWOW64\dot3api.dll
2011-03-10 23:13:34 ----A---- C:\Windows\system32\wpdshext.dll
2011-03-10 23:13:34 ----A---- C:\Windows\system32\Query.dll
2011-03-10 23:13:34 ----A---- C:\Windows\system32\mswsock.dll
2011-03-10 23:13:34 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-03-10 23:13:34 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-03-10 23:13:33 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-03-10 23:13:33 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-03-10 23:13:33 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-03-10 23:13:33 ----A---- C:\Windows\system32\QAGENT.DLL
2011-03-10 23:13:33 ----A---- C:\Windows\system32\azroles.dll
2011-03-10 23:13:32 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2011-03-10 23:13:32 ----A---- C:\Windows\system32\BFE.DLL
2011-03-10 23:13:31 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2011-03-10 23:13:31 ----A---- C:\Windows\system32\Vault.dll
2011-03-10 23:13:31 ----A---- C:\Windows\system32\samsrv.dll
2011-03-10 23:13:31 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-03-10 23:13:31 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-03-10 23:13:31 ----A---- C:\Windows\system32\cmd.exe
2011-03-10 23:13:30 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2011-03-10 23:13:30 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2011-03-10 23:13:30 ----A---- C:\Windows\system32\lpksetup.exe
2011-03-10 23:13:29 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2011-03-10 23:13:29 ----A---- C:\Windows\system32\winload.exe
2011-03-10 23:13:29 ----A---- C:\Windows\system32\win32spl.dll
2011-03-10 23:13:29 ----A---- C:\Windows\system32\mssvp.dll
2011-03-10 23:13:28 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2011-03-10 23:13:28 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2011-03-10 23:13:28 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-03-10 23:13:27 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2011-03-10 23:13:25 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2011-03-10 23:13:25 ----A---- C:\Windows\SYSWOW64\webio.dll
2011-03-10 23:13:25 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-03-10 23:13:25 ----A---- C:\Windows\system32\WebClnt.dll
2011-03-10 23:13:24 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2011-03-10 23:13:24 ----A---- C:\Windows\SYSWOW64\Query.dll
2011-03-10 23:13:24 ----A---- C:\Windows\system32\Wldap32.dll
2011-03-10 23:13:24 ----A---- C:\Windows\system32\taskcomp.dll
2011-03-10 23:13:24 ----A---- C:\Windows\system32\sxs.dll
2011-03-10 23:13:24 ----A---- C:\Windows\system32\mcbuilder.exe
2011-03-10 23:13:24 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-03-10 23:13:23 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-03-10 23:13:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2011-03-10 23:13:23 ----A---- C:\Windows\system32\pnidui.dll
2011-03-10 23:13:23 ----A---- C:\Windows\system32\mfds.dll
2011-03-10 23:13:23 ----A---- C:\Windows\system32\drivers\storport.sys
2011-03-10 23:13:22 ----A---- C:\Windows\SYSWOW64\schannel.dll
2011-03-10 23:13:22 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-03-10 23:13:22 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2011-03-10 23:13:22 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2011-03-10 23:13:22 ----A---- C:\Windows\SYSWOW64\DShowRdpFilter.dll
2011-03-10 23:13:22 ----A---- C:\Windows\system32\wuaueng.dll
2011-03-10 23:13:22 ----A---- C:\Windows\system32\webservices.dll
2011-03-10 23:13:22 ----A---- C:\Windows\system32\SessEnv.dll
2011-03-10 23:13:22 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-03-10 23:13:22 ----A---- C:\Windows\system32\hgprint.dll
2011-03-10 23:13:21 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2011-03-10 23:13:21 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2011-03-10 23:13:21 ----A---- C:\Windows\SYSWOW64\authui.dll
2011-03-10 23:13:21 ----A---- C:\Windows\system32\winsta.dll
2011-03-10 23:13:21 ----A---- C:\Windows\system32\winresume.exe
2011-03-10 23:13:21 ----A---- C:\Windows\system32\spoolsv.exe
2011-03-10 23:13:20 ----A---- C:\Windows\SYSWOW64\usp10.dll
2011-03-10 23:13:20 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2011-03-10 23:13:20 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2011-03-10 23:13:20 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2011-03-10 23:13:20 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2011-03-10 23:13:20 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-03-10 23:13:20 ----A---- C:\Windows\system32\iepeers.dll
2011-03-10 23:13:20 ----A---- C:\Windows\system32\gdi32.dll
2011-03-10 23:13:20 ----A---- C:\Windows\system32\fveapi.dll
2011-03-10 23:13:20 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-03-10 23:13:20 ----A---- C:\Windows\system32\drivers\msrpc.sys
2011-03-10 23:13:20 ----A---- C:\Windows\system32\dot3api.dll
2011-03-10 23:13:19 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-03-10 23:13:19 ----A---- C:\Windows\system32\schtasks.exe
2011-03-10 23:13:19 ----A---- C:\Windows\system32\prncache.dll
2011-03-10 23:13:19 ----A---- C:\Windows\system32\mcmde.dll
2011-03-10 23:13:18 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2011-03-10 23:13:18 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-03-10 23:13:18 ----A---- C:\Windows\SYSWOW64\userenv.dll
2011-03-10 23:13:18 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-03-10 23:13:18 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-03-10 23:13:18 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2011-03-10 23:13:18 ----A---- C:\Windows\system32\wuapi.dll
2011-03-10 23:13:18 ----A---- C:\Windows\system32\wlanpref.dll
2011-03-10 23:13:18 ----A---- C:\Windows\system32\wintrust.dll
2011-03-10 23:13:18 ----A---- C:\Windows\system32\vpnike.dll
2011-03-10 23:13:18 ----A---- C:\Windows\system32\userenv.dll
2011-03-10 23:13:18 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-03-10 23:13:17 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2011-03-10 23:13:17 ----A---- C:\Windows\system32\photowiz.dll
2011-03-10 23:13:17 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-03-10 23:13:17 ----A---- C:\Windows\system32\framedyn.dll
2011-03-10 23:13:17 ----A---- C:\Windows\system32\evr.dll
2011-03-10 23:13:17 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-03-10 23:13:16 ----A---- C:\Windows\SYSWOW64\cmd.exe
2011-03-10 23:13:16 ----A---- C:\Windows\system32\wmpmde.dll
2011-03-10 23:13:16 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-03-10 23:13:16 ----A---- C:\Windows\system32\wmpeffects.dll
2011-03-10 23:13:16 ----A---- C:\Windows\system32\SyncCenter.dll
2011-03-10 23:13:16 ----A---- C:\Windows\system32\sppobjs.dll
2011-03-10 23:13:16 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-03-10 23:13:16 ----A---- C:\Windows\system32\FXSSVC.exe
2011-03-10 23:13:16 ----A---- C:\Windows\system32\AudioSes.dll
2011-03-10 23:13:16 ----A---- C:\Windows\system32\aepdu.dll
2011-03-10 23:13:15 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-03-10 23:13:15 ----A---- C:\Windows\system32\srvsvc.dll
2011-03-10 23:13:15 ----A---- C:\Windows\system32\shsvcs.dll
2011-03-10 23:13:15 ----A---- C:\Windows\system32\fde.dll
2011-03-10 23:13:15 ----A---- C:\Windows\system32\aeinv.dll
2011-03-10 23:13:14 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2011-03-10 23:13:14 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2011-03-10 23:13:14 ----A---- C:\Windows\SYSWOW64\propsys.dll
2011-03-10 23:13:14 ----A---- C:\Windows\SYSWOW64\mfds.dll
2011-03-10 23:13:14 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2011-03-10 23:13:14 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-03-10 23:13:14 ----A---- C:\Windows\system32\stobject.dll
2011-03-10 23:13:14 ----A---- C:\Windows\system32\netdiagfx.dll
2011-03-10 23:13:14 ----A---- C:\Windows\system32\localsec.dll
2011-03-10 23:13:14 ----A---- C:\Windows\system32\imapi2.dll
2011-03-10 23:13:14 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-03-10 23:13:14 ----A---- C:\Windows\system32\credui.dll
2011-03-10 23:13:14 ----A---- C:\Windows\system32\bcryptprimitives.dll
2011-03-10 23:13:13 ----A---- C:\Windows\SYSWOW64\user32.dll
2011-03-10 23:13:13 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-03-10 23:13:13 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-03-10 23:13:13 ----A---- C:\Windows\system32\netid.dll
2011-03-10 23:13:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-03-10 23:13:13 ----A---- C:\Windows\system32\inetpp.dll
2011-03-10 23:13:13 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-03-10 23:13:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-03-10 23:13:13 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2011-03-10 23:13:13 ----A---- C:\Windows\system32\cdd.dll
2011-03-10 23:13:12 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2011-03-10 23:13:12 ----A---- C:\Windows\SYSWOW64\azroles.dll
2011-03-10 23:13:12 ----A---- C:\Windows\system32\spp.dll
2011-03-10 23:13:12 ----A---- C:\Windows\system32\profsvc.dll
2011-03-10 23:13:12 ----A---- C:\Windows\system32\davclnt.dll
2011-03-10 23:13:12 ----A---- C:\Windows\system32\biocpl.dll
2011-03-10 23:13:11 ----A---- C:\Windows\system32\msinfo32.exe
2011-03-10 23:13:11 ----A---- C:\Windows\system32\gameux.dll
2011-03-10 23:13:09 ----A---- C:\Windows\SYSWOW64\themeui.dll
2011-03-10 23:13:09 ----A---- C:\Windows\SYSWOW64\credui.dll
2011-03-10 23:13:09 ----A---- C:\Windows\system32\scansetting.dll
2011-03-10 23:13:09 ----A---- C:\Windows\system32\printui.dll
2011-03-10 23:13:09 ----A---- C:\Windows\system32\mspbda.dll
2011-03-10 23:13:08 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2011-03-10 23:13:08 ----A---- C:\Windows\SYSWOW64\spp.dll
2011-03-10 23:13:08 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2011-03-10 23:13:08 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-03-10 23:13:08 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2011-03-10 23:13:08 ----A---- C:\Windows\system32\wusa.exe
2011-03-10 23:13:08 ----A---- C:\Windows\system32\vds.exe
2011-03-10 23:13:08 ----A---- C:\Windows\system32\pla.dll
2011-03-10 23:13:08 ----A---- C:\Windows\system32\msdri.dll
2011-03-10 23:13:08 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-03-10 23:13:08 ----A---- C:\Windows\system32\inetcomm.dll
2011-03-10 23:13:08 ----A---- C:\Windows\system32\conhost.exe
2011-03-10 23:13:08 ----A---- C:\Windows\system32\aitagent.exe
2011-03-10 23:13:08 ----A---- C:\Windows\splwow64.exe
2011-03-10 23:13:07 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2011-03-10 23:13:07 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-03-10 23:13:07 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2011-03-10 23:13:07 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2011-03-10 23:13:07 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2011-03-10 23:13:07 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2011-03-10 23:13:07 ----A---- C:\Windows\system32\wiaservc.dll
2011-03-10 23:13:07 ----A---- C:\Windows\system32\rpchttp.dll
2011-03-10 23:13:07 ----A---- C:\Windows\system32\mscms.dll
2011-03-10 23:13:07 ----A---- C:\Windows\system32\drivers\pci.sys
2011-03-10 23:13:07 ----A---- C:\Windows\system32\cryptsvc.dll
2011-03-10 23:13:06 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2011-03-10 23:13:06 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2011-03-10 23:13:06 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-03-10 23:13:06 ----A---- C:\Windows\system32\wisptis.exe
2011-03-10 23:13:06 ----A---- C:\Windows\system32\ocsetup.exe
2011-03-10 23:13:06 ----A---- C:\Windows\system32\msi.dll
2011-03-10 23:13:06 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-03-10 23:13:06 ----A---- C:\Windows\system32\drivers\rasl2tp.sys
2011-03-10 23:13:05 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2011-03-10 23:13:05 ----A---- C:\Windows\SYSWOW64\evr.dll
2011-03-10 23:13:05 ----A---- C:\Windows\system32\sppwinob.dll
2011-03-10 23:13:05 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-03-10 23:13:04 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2011-03-10 23:13:04 ----A---- C:\Windows\SYSWOW64\calc.exe
2011-03-10 23:13:04 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-03-10 23:13:04 ----A---- C:\Windows\system32\rdpcore.dll
2011-03-10 23:13:04 ----A---- C:\Windows\system32\ocsetapi.dll
2011-03-10 23:13:04 ----A---- C:\Windows\system32\ntshrui.dll
2011-03-10 23:13:04 ----A---- C:\Windows\system32\eapp3hst.dll
2011-03-10 23:13:04 ----A---- C:\Windows\system32\DXP.dll
2011-03-10 23:13:04 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-03-10 23:13:04 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-03-10 23:13:04 ----A---- C:\Windows\system32\ci.dll
2011-03-10 23:13:04 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-03-10 23:13:03 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2011-03-10 23:13:03 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2011-03-10 23:13:03 ----A---- C:\Windows\system32\wcncsvc.dll
2011-03-10 23:13:03 ----A---- C:\Windows\system32\upnp.dll
2011-03-10 23:13:03 ----A---- C:\Windows\system32\t2embed.dll
2011-03-10 23:13:03 ----A---- C:\Windows\system32\Robocopy.exe
2011-03-10 23:13:03 ----A---- C:\Windows\system32\mprapi.dll
2011-03-10 23:13:03 ----A---- C:\Windows\system32\eapphost.dll
2011-03-10 23:13:03 ----A---- C:\Windows\system32\drivers\HpSAMD.sys
2011-03-10 23:13:02 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2011-03-10 23:13:02 ----A---- C:\Windows\SYSWOW64\sxs.dll
2011-03-10 23:13:02 ----A---- C:\Windows\SYSWOW64\stobject.dll
2011-03-10 23:13:02 ----A---- C:\Windows\SYSWOW64\netshell.dll
2011-03-10 23:13:02 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-03-10 23:13:02 ----A---- C:\Windows\system32\thumbcache.dll
2011-03-10 23:13:02 ----A---- C:\Windows\system32\scecli.dll
2011-03-10 23:13:02 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-03-10 23:13:02 ----A---- C:\Windows\system32\hal.dll
2011-03-10 23:13:02 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-03-10 23:13:02 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-03-10 23:13:02 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-03-10 23:13:02 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-03-10 23:13:01 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2011-03-10 23:13:01 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2011-03-10 23:13:01 ----A---- C:\Windows\system32\sspicli.dll
2011-03-10 23:13:01 ----A---- C:\Windows\system32\puiobj.dll
2011-03-10 23:13:01 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-03-10 23:13:01 ----A---- C:\Windows\system32\msasn1.dll
2011-03-10 23:13:01 ----A---- C:\Windows\system32\iasrad.dll
2011-03-10 23:13:01 ----A---- C:\Windows\system32\dwmredir.dll
2011-03-10 23:13:01 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys
2011-03-10 23:13:01 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2011-03-10 23:13:00 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2011-03-10 23:13:00 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2011-03-10 23:13:00 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2011-03-10 23:13:00 ----A---- C:\Windows\SYSWOW64\prncache.dll
2011-03-10 23:13:00 ----A---- C:\Windows\SYSWOW64\printui.dll
2011-03-10 23:13:00 ----A---- C:\Windows\SYSWOW64\net1.exe
2011-03-10 23:13:00 ----A---- C:\Windows\SYSWOW64\msi.dll
2011-03-10 23:13:00 ----A---- C:\Windows\system32\themeui.dll
2011-03-10 23:13:00 ----A---- C:\Windows\system32\onex.dll
2011-03-10 23:13:00 ----A---- C:\Windows\system32\nlaapi.dll
2011-03-10 23:13:00 ----A---- C:\Windows\system32\iedkcs32.dll
2011-03-10 23:13:00 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-03-10 23:13:00 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-03-10 23:13:00 ----A---- C:\Windows\system32\aaclient.dll
2011-03-10 23:12:59 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-03-10 23:12:59 ----A---- C:\Windows\system32\wow64.dll
2011-03-10 23:12:59 ----A---- C:\Windows\system32\wdc.dll
2011-03-10 23:12:58 ----A---- C:\Windows\SYSWOW64\scansetting.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\wlangpui.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\wiadefui.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\VAN.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\sdengin2.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\scesrv.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\rasmans.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\msftedit.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\dskquoui.dll
2011-03-10 23:12:58 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-03-10 23:12:57 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2011-03-10 23:12:57 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2011-03-10 23:12:57 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2011-03-10 23:12:57 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-03-10 23:12:57 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2011-03-10 23:12:57 ----A---- C:\Windows\system32\wscapi.dll
2011-03-10 23:12:57 ----A---- C:\Windows\system32\SndVol.exe
2011-03-10 23:12:57 ----A---- C:\Windows\system32\samcli.dll
2011-03-10 23:12:57 ----A---- C:\Windows\system32\regapi.dll
2011-03-10 23:12:57 ----A---- C:\Windows\system32\netcenter.dll
2011-03-10 23:12:57 ----A---- C:\Windows\system32\iasacct.dll
2011-03-10 23:12:57 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-03-10 23:12:57 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-03-10 23:12:57 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-03-10 23:12:56 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2011-03-10 23:12:56 ----A---- C:\Windows\SYSWOW64\webservices.dll
2011-03-10 23:12:56 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2011-03-10 23:12:56 ----A---- C:\Windows\SYSWOW64\QSHVHOST.DLL
2011-03-10 23:12:56 ----A---- C:\Windows\SYSWOW64\pnidui.dll
2011-03-10 23:12:56 ----A---- C:\Windows\system32\wucltux.dll
2011-03-10 23:12:56 ----A---- C:\Windows\system32\TabSvc.dll
2011-03-10 23:12:56 ----A---- C:\Windows\system32\srchadmin.dll
2011-03-10 23:12:56 ----A---- C:\Windows\system32\QUTIL.DLL
2011-03-10 23:12:56 ----A---- C:\Windows\system32\consent.exe
2011-03-10 23:12:55 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2011-03-10 23:12:55 ----A---- C:\Windows\SYSWOW64\netdiagfx.dll
2011-03-10 23:12:55 ----A---- C:\Windows\SYSWOW64\fde.dll
2011-03-10 23:12:55 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-03-10 23:12:55 ----A---- C:\Windows\system32\wksprt.exe
2011-03-10 23:12:55 ----A---- C:\Windows\system32\taskhost.exe
2011-03-10 23:12:55 ----A---- C:\Windows\system32\setupcl.exe
2011-03-10 23:12:55 ----A---- C:\Windows\system32\rastls.dll
2011-03-10 23:12:55 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-03-10 23:12:55 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-03-10 23:12:54 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2011-03-10 23:12:54 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-03-10 23:12:54 ----A---- C:\Windows\system32\tapisrv.dll
2011-03-10 23:12:54 ----A---- C:\Windows\system32\netiohlp.dll
2011-03-10 23:12:54 ----A---- C:\Windows\system32\mimefilt.dll
2011-03-10 23:12:54 ----A---- C:\Windows\system32\ListSvc.dll
2011-03-10 23:12:54 ----A---- C:\Windows\system32\drivers\raspptp.sys
2011-03-10 23:12:54 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-03-10 23:12:53 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2011-03-10 23:12:53 ----A---- C:\Windows\SYSWOW64\pla.dll

[socrates]

zvysok logu :

2011-03-10 23:12:53 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2011-03-10 23:12:53 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2011-03-10 23:12:53 ----A---- C:\Windows\system32\msconfig.exe
2011-03-10 23:12:53 ----A---- C:\Windows\system32\lsmproxy.dll
2011-03-10 23:12:53 ----A---- C:\Windows\system32\hgcpl.dll
2011-03-10 23:12:53 ----A---- C:\Windows\system32\fdeploy.dll
2011-03-10 23:12:53 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-03-10 23:12:53 ----A---- C:\Windows\system32\drivers\ks.sys
2011-03-10 23:12:53 ----A---- C:\Windows\system32\clusapi.dll
2011-03-10 23:12:53 ----A---- C:\Windows\system32\basecsp.dll
2011-03-10 23:12:52 ----A---- C:\Windows\SYSWOW64\winsta.dll
2011-03-10 23:12:52 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2011-03-10 23:12:52 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2011-03-10 23:12:52 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-03-10 23:12:52 ----A---- C:\Windows\system32\WFS.exe
2011-03-10 23:12:52 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-03-10 23:12:52 ----A---- C:\Windows\system32\riched20.dll
2011-03-10 23:12:52 ----A---- C:\Windows\system32\mtxclu.dll
2011-03-10 23:12:52 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-03-10 23:12:52 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-03-10 23:12:52 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-03-10 23:12:51 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2011-03-10 23:12:51 ----A---- C:\Windows\SYSWOW64\gameux.dll
2011-03-10 23:12:51 ----A---- C:\Windows\SYSWOW64\DXPTaskRingtone.dll
2011-03-10 23:12:51 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-03-10 23:12:51 ----A---- C:\Windows\system32\dnscmmc.dll
2011-03-10 23:12:50 ----A---- C:\Windows\SYSWOW64\WMPEncEn.dll
2011-03-10 23:12:50 ----A---- C:\Windows\SYSWOW64\winmm.dll
2011-03-10 23:12:50 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2011-03-10 23:12:50 ----A---- C:\Windows\SYSWOW64\onex.dll
2011-03-10 23:12:50 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2011-03-10 23:12:50 ----A---- C:\Windows\system32\themecpl.dll
2011-03-10 23:12:50 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-03-10 23:12:50 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-03-10 23:12:50 ----A---- C:\Windows\system32\powercpl.dll
2011-03-10 23:12:50 ----A---- C:\Windows\system32\nci.dll
2011-03-10 23:12:50 ----A---- C:\Windows\system32\logoncli.dll
2011-03-10 23:12:50 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-03-10 23:12:49 ----A---- C:\Windows\SYSWOW64\netiohlp.dll
2011-03-10 23:12:49 ----A---- C:\Windows\SYSWOW64\hbaapi.dll
2011-03-10 23:12:49 ----A---- C:\Windows\SYSWOW64\autochk.exe
2011-03-10 23:12:49 ----A---- C:\Windows\SYSWOW64\autofmt.exe
2011-03-10 23:12:49 ----A---- C:\Windows\system32\wkssvc.dll
2011-03-10 23:12:49 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-03-10 23:12:49 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-03-10 23:12:49 ----A---- C:\Windows\system32\netjoin.dll
2011-03-10 23:12:49 ----A---- C:\Windows\system32\Narrator.exe
2011-03-10 23:12:49 ----A---- C:\Windows\system32\licmgr10.dll
2011-03-10 23:12:49 ----A---- C:\Windows\system32\Faultrep.dll
2011-03-10 23:12:49 ----A---- C:\Windows\system32\eudcedit.exe
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\thumbcache.dll
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\samcli.dll
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\proquota.exe
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\msutb.dll
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\msinfo32.exe
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2011-03-10 23:12:48 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2011-03-10 23:12:48 ----A---- C:\Windows\system32\sppcomapi.dll
2011-03-10 23:12:48 ----A---- C:\Windows\system32\comctl32.dll
2011-03-10 23:12:48 ----A---- C:\Windows\system32\cabview.dll
2011-03-10 23:12:48 ----A---- C:\Windows\system32\autochk.exe
2011-03-10 23:12:48 ----A---- C:\Windows\system32\autofmt.exe
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\tcpipcfg.dll
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\srchadmin.dll
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\regapi.dll
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\powercpl.dll
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\mimefilt.dll
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2011-03-10 23:12:47 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2011-03-10 23:12:47 ----A---- C:\Windows\system32\wpd_ci.dll
2011-03-10 23:12:47 ----A---- C:\Windows\system32\shsetup.dll
2011-03-10 23:12:47 ----A---- C:\Windows\system32\nshipsec.dll
2011-03-10 23:12:47 ----A---- C:\Windows\system32\fms.dll
2011-03-10 23:12:47 ----A---- C:\Windows\system32\bcdsrv.dll
2011-03-10 23:12:47 ----A---- C:\Windows\system32\autoconv.exe
2011-03-10 23:12:47 ----A---- C:\Windows\system32\audiodg.exe
2011-03-10 23:12:46 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2011-03-10 23:12:46 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2011-03-10 23:12:46 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2011-03-10 23:12:46 ----A---- C:\Windows\SYSWOW64\framedyn.dll
2011-03-10 23:12:46 ----A---- C:\Windows\SYSWOW64\AuxiliaryDisplayCpl.dll
2011-03-10 23:12:46 ----A---- C:\Windows\system32\wwanconn.dll
2011-03-10 23:12:46 ----A---- C:\Windows\system32\wlanui.dll
2011-03-10 23:12:46 ----A---- C:\Windows\system32\sdclt.exe
2011-03-10 23:12:46 ----A---- C:\Windows\system32\prntvpt.dll
2011-03-10 23:12:46 ----A---- C:\Windows\system32\mscorier.dll
2011-03-10 23:12:46 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-03-10 23:12:46 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-03-10 23:12:46 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2011-03-10 23:12:46 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-03-10 23:12:46 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-03-10 23:12:46 ----A---- C:\Windows\system32\drivers\bthport.sys
2011-03-10 23:12:46 ----A---- C:\Windows\system32\dps.dll
2011-03-10 23:12:45 ----A---- C:\Windows\SYSWOW64\QAGENT.DLL
2011-03-10 23:12:45 ----A---- C:\Windows\SYSWOW64\netid.dll
2011-03-10 23:12:45 ----A---- C:\Windows\system32\qedit.dll
2011-03-10 23:12:45 ----A---- C:\Windows\system32\mprddm.dll
2011-03-10 23:12:45 ----A---- C:\Windows\system32\fontext.dll
2011-03-10 23:12:45 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2011-03-10 23:12:45 ----A---- C:\Windows\system32\Display.dll
2011-03-10 23:12:45 ----A---- C:\Windows\system32\AxInstSv.dll
2011-03-10 23:12:44 ----A---- C:\Windows\SYSWOW64\wdc.dll
2011-03-10 23:12:44 ----A---- C:\Windows\SYSWOW64\untfs.dll
2011-03-10 23:12:44 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2011-03-10 23:12:44 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2011-03-10 23:12:44 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2011-03-10 23:12:44 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-03-10 23:12:44 ----A---- C:\Windows\system32\mblctr.exe
2011-03-10 23:12:44 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-03-10 23:12:44 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-03-10 23:12:44 ----A---- C:\Windows\system32\credssp.dll
2011-03-10 23:12:44 ----A---- C:\Windows\system32\batmeter.dll
2011-03-10 23:12:43 ----A---- C:\Windows\SYSWOW64\wlanpref.dll
2011-03-10 23:12:43 ----A---- C:\Windows\SYSWOW64\Vault.dll
2011-03-10 23:12:43 ----A---- C:\Windows\SYSWOW64\RpcRtRemote.dll
2011-03-10 23:12:43 ----A---- C:\Windows\SYSWOW64\rastls.dll
2011-03-10 23:12:43 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-03-10 23:12:43 ----A---- C:\Windows\SYSWOW64\nci.dll
2011-03-10 23:12:43 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-03-10 23:12:43 ----A---- C:\Windows\system32\DiagCpl.dll
2011-03-10 23:12:42 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2011-03-10 23:12:42 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2011-03-10 23:12:42 ----A---- C:\Windows\system32\wpccpl.dll
2011-03-10 23:12:42 ----A---- C:\Windows\system32\usercpl.dll
2011-03-10 23:12:42 ----A---- C:\Windows\system32\rtutils.dll
2011-03-10 23:12:42 ----A---- C:\Windows\system32\provsvc.dll
2011-03-10 23:12:42 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-03-10 23:12:42 ----A---- C:\Windows\system32\bootres.dll
2011-03-10 23:12:41 ----A---- C:\Windows\SYSWOW64\taskmgr.exe
2011-03-10 23:12:41 ----A---- C:\Windows\SYSWOW64\mtxclu.dll
2011-03-10 23:12:41 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2011-03-10 23:12:41 ----A---- C:\Windows\SYSWOW64\Display.dll
2011-03-10 23:12:41 ----A---- C:\Windows\system32\sppsvc.exe
2011-03-10 23:12:41 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-03-10 23:12:41 ----A---- C:\Windows\system32\rasppp.dll
2011-03-10 23:12:41 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-03-10 23:12:41 ----A---- C:\Windows\system32\dot3cfg.dll
2011-03-10 23:12:40 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-03-10 23:12:40 ----A---- C:\Windows\SYSWOW64\userinit.exe
2011-03-10 23:12:40 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2011-03-10 23:12:40 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2011-03-10 23:12:40 ----A---- C:\Windows\system32\taskmgr.exe
2011-03-10 23:12:40 ----A---- C:\Windows\system32\shdocvw.dll
2011-03-10 23:12:40 ----A---- C:\Windows\system32\prnfldr.dll
2011-03-10 23:12:40 ----A---- C:\Windows\system32\hbaapi.dll
2011-03-10 23:12:40 ----A---- C:\Windows\system32\dxdiagn.dll
2011-03-10 23:12:39 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2011-03-10 23:12:39 ----A---- C:\Windows\SYSWOW64\eudcedit.exe
2011-03-10 23:12:39 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-03-10 23:12:39 ----A---- C:\Windows\system32\proquota.exe
2011-03-10 23:12:39 ----A---- C:\Windows\system32\pdh.dll
2011-03-10 23:12:39 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-03-10 23:12:39 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-03-10 23:12:38 ----A---- C:\Windows\SYSWOW64\wiadefui.dll
2011-03-10 23:12:38 ----A---- C:\Windows\SYSWOW64\sppcomapi.dll
2011-03-10 23:12:38 ----A---- C:\Windows\SYSWOW64\shsetup.dll
2011-03-10 23:12:38 ----A---- C:\Windows\SYSWOW64\rasppp.dll
2011-03-10 23:12:38 ----A---- C:\Windows\SYSWOW64\logoncli.dll
2011-03-10 23:12:38 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2011-03-10 23:12:38 ----A---- C:\Windows\SYSWOW64\cabview.dll
2011-03-10 23:12:38 ----A---- C:\Windows\system32\userinit.exe
2011-03-10 23:12:38 ----A---- C:\Windows\system32\untfs.dll
2011-03-10 23:12:38 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-03-10 23:12:38 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-03-10 23:12:38 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-03-10 23:12:37 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2011-03-10 23:12:37 ----A---- C:\Windows\SYSWOW64\SensorsCpl.dll
2011-03-10 23:12:37 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2011-03-10 23:12:37 ----A---- C:\Windows\system32\webcheck.dll
2011-03-10 23:12:37 ----A---- C:\Windows\system32\slui.exe
2011-03-10 23:12:36 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2011-03-10 23:12:36 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll
2011-03-10 23:12:36 ----A---- C:\Windows\system32\zipfldr.dll
2011-03-10 23:12:36 ----A---- C:\Windows\system32\msieftp.dll
2011-03-10 23:12:36 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-03-10 23:12:35 ----A---- C:\Windows\SYSWOW64\tapisrv.dll
2011-03-10 23:12:35 ----A---- C:\Windows\SYSWOW64\scecli.dll
2011-03-10 23:12:35 ----A---- C:\Windows\SYSWOW64\mscories.dll
2011-03-10 23:12:35 ----A---- C:\Windows\SYSWOW64\mscms.dll
2011-03-10 23:12:35 ----A---- C:\Windows\SYSWOW64\fontext.dll
2011-03-10 23:12:35 ----A---- C:\Windows\system32\sud.dll
2011-03-10 23:12:35 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-03-10 23:12:35 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-03-10 23:12:34 ----A---- C:\Windows\SYSWOW64\SndVolSSO.dll
2011-03-10 23:12:34 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2011-03-10 23:12:34 ----A---- C:\Windows\SYSWOW64\localsec.dll
2011-03-10 23:12:34 ----A---- C:\Windows\SYSWOW64\iasacct.dll
2011-03-10 23:12:34 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-03-10 23:12:34 ----A---- C:\Windows\system32\qdvd.dll
2011-03-10 23:12:34 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-03-10 23:12:34 ----A---- C:\Windows\system32\networkmap.dll
2011-03-10 23:12:34 ----A---- C:\Windows\system32\dot3svc.dll
2011-03-10 23:12:34 ----A---- C:\Windows\system32\cryptui.dll
2011-03-10 23:12:34 ----A---- C:\Windows\system32\ActionCenter.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\wlanui.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\VAN.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\qedit.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\prntvpt.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\PerfCenterCPL.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\netcenter.dll
2011-03-10 23:12:33 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2011-03-10 23:12:33 ----A---- C:\Windows\system32\twext.dll
2011-03-10 23:12:33 ----A---- C:\Windows\system32\srcore.dll
2011-03-10 23:12:33 ----A---- C:\Windows\system32\rdpwsx.dll
2011-03-10 23:12:33 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-03-10 23:12:32 ----A---- C:\Windows\SYSWOW64\w32tm.exe
2011-03-10 23:12:32 ----A---- C:\Windows\SYSWOW64\SndVol.exe
2011-03-10 23:12:32 ----A---- C:\Windows\system32\uxlib.dll
2011-03-10 23:12:32 ----A---- C:\Windows\system32\recovery.dll
2011-03-10 23:12:32 ----A---- C:\Windows\system32\OobeFldr.dll
2011-03-10 23:12:32 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-03-10 23:12:32 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-03-10 23:12:32 ----A---- C:\Windows\system32\bcdedit.exe
2011-03-10 23:12:32 ----A---- C:\Windows\system32\azroleui.dll
2011-03-10 23:12:31 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2011-03-10 23:12:31 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2011-03-10 23:12:31 ----A---- C:\Windows\SYSWOW64\accessibilitycpl.dll
2011-03-10 23:12:31 ----A---- C:\Windows\system32\sisbkup.dll
2011-03-10 23:12:31 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-03-10 23:12:31 ----A---- C:\Windows\system32\isoburn.exe
2011-03-10 23:12:31 ----A---- C:\Windows\system32\dsuiext.dll
2011-03-10 23:12:31 ----A---- C:\Windows\system32\cca.dll
2011-03-10 23:12:31 ----A---- C:\Windows\system32\asycfilt.dll
2011-03-10 23:12:30 ----A---- C:\Windows\system32\tzutil.exe
2011-03-10 23:12:30 ----A---- C:\Windows\system32\efscore.dll
2011-03-10 23:12:29 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2011-03-10 23:12:29 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2011-03-10 23:12:29 ----A---- C:\Windows\SYSWOW64\fdeploy.dll
2011-03-10 23:12:29 ----A---- C:\Windows\system32\systemcpl.dll
2011-03-10 23:12:29 ----A---- C:\Windows\system32\syncui.dll
2011-03-10 23:12:29 ----A---- C:\Windows\system32\shwebsvc.dll
2011-03-10 23:12:29 ----A---- C:\Windows\system32\sdcpl.dll
2011-03-10 23:12:29 ----A---- C:\Windows\system32\recdisc.exe
2011-03-10 23:12:29 ----A---- C:\Windows\system32\netplwiz.dll
2011-03-10 23:12:29 ----A---- C:\Windows\system32\httpapi.dll
2011-03-10 23:12:29 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-03-10 23:12:29 ----A---- C:\Windows\system32\autoplay.dll
2011-03-10 23:12:28 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2011-03-10 23:12:28 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2011-03-10 23:12:28 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2011-03-10 23:12:28 ----A---- C:\Windows\system32\sysclass.dll
2011-03-10 23:12:28 ----A---- C:\Windows\system32\sspisrv.dll
2011-03-10 23:12:28 ----A---- C:\Windows\system32\ncryptui.dll
2011-03-10 23:12:28 ----A---- C:\Windows\system32\certcli.dll
2011-03-10 23:12:28 ----A---- C:\Windows\system32\appinfo.dll
2011-03-10 23:12:27 ----A---- C:\Windows\SYSWOW64\wusa.exe
2011-03-10 23:12:27 ----A---- C:\Windows\SYSWOW64\networkmap.dll
2011-03-10 23:12:27 ----A---- C:\Windows\SYSWOW64\MCEWMDRMNDBootstrap.dll
2011-03-10 23:12:27 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2011-03-10 23:12:27 ----A---- C:\Windows\system32\wlanmsm.dll
2011-03-10 23:12:27 ----A---- C:\Windows\system32\sdrsvc.dll
2011-03-10 23:12:27 ----A---- C:\Windows\system32\msvidc32.dll
2011-03-10 23:12:27 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-03-10 23:12:27 ----A---- C:\Windows\system32\ActionCenterCPL.dll
2011-03-10 23:12:26 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2011-03-10 23:12:26 ----A---- C:\Windows\SYSWOW64\OnLineIDCpl.dll
2011-03-10 23:12:26 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-03-10 23:12:26 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2011-03-10 23:12:26 ----A---- C:\Windows\system32\spwizeng.dll
2011-03-10 23:12:26 ----A---- C:\Windows\system32\MFPlay.dll
2011-03-10 23:12:25 ----A---- C:\Windows\SYSWOW64\sud.dll
2011-03-10 23:12:25 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2011-03-10 23:12:25 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2011-03-10 23:12:25 ----A---- C:\Windows\SYSWOW64\MediaMetadataHandler.dll
2011-03-10 23:12:25 ----A---- C:\Windows\SYSWOW64\credssp.dll
2011-03-10 23:12:25 ----A---- C:\Windows\system32\vdsutil.dll
2011-03-10 23:12:25 ----A---- C:\Windows\system32\termmgr.dll
2011-03-10 23:12:25 ----A---- C:\Windows\system32\mshtmled.dll
2011-03-10 23:12:24 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2011-03-10 23:12:24 ----A---- C:\Windows\SYSWOW64\iasrad.dll
2011-03-10 23:12:24 ----A---- C:\Windows\system32\sethc.exe
2011-03-10 23:12:24 ----A---- C:\Windows\system32\odbccp32.dll
2011-03-10 23:12:24 ----A---- C:\Windows\system32\msscp.dll
2011-03-10 23:12:24 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-03-10 23:12:23 ----A---- C:\Windows\SYSWOW64\ftp.exe
2011-03-10 23:12:23 ----A---- C:\Windows\SYSWOW64\dot3cfg.dll
2011-03-10 23:12:23 ----A---- C:\Windows\SYSWOW64\defaultlocationcpl.dll
2011-03-10 23:12:23 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-03-10 23:12:23 ----A---- C:\Windows\system32\rstrui.exe
2011-03-10 23:12:23 ----A---- C:\Windows\system32\ReAgent.dll
2011-03-10 23:12:23 ----A---- C:\Windows\system32\ntlanman.dll
2011-03-10 23:12:22 ----A---- C:\Windows\SYSWOW64\sisbkup.dll
2011-03-10 23:12:22 ----A---- C:\Windows\SYSWOW64\shwebsvc.dll
2011-03-10 23:12:22 ----A---- C:\Windows\SYSWOW64\ifsutil.dll
2011-03-10 23:12:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-03-10 23:12:22 ----A---- C:\Windows\SYSWOW64\efscore.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\tsgqec.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\sqlcese30.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\secur32.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\rdpd3d.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-03-10 23:12:22 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-03-10 23:12:21 ----A---- C:\Windows\SYSWOW64\syncui.dll
2011-03-10 23:12:21 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2011-03-10 23:12:21 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-03-10 23:12:21 ----A---- C:\Windows\SYSWOW64\autoplay.dll
2011-03-10 23:12:21 ----A---- C:\Windows\SYSWOW64\ActionCenterCPL.dll
2011-03-10 23:12:21 ----A---- C:\Windows\system32\odbctrac.dll
2011-03-10 23:12:21 ----A---- C:\Windows\system32\iyuv_32.dll
2011-03-10 23:12:21 ----A---- C:\Windows\system32\iTVData.dll
2011-03-10 23:12:20 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2011-03-10 23:12:20 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2011-03-10 23:12:20 ----A---- C:\Windows\SYSWOW64\ntlanman.dll
2011-03-10 23:12:20 ----A---- C:\Windows\SYSWOW64\dskquoui.dll
2011-03-10 23:12:20 ----A---- C:\Windows\SYSWOW64\DeviceCenter.dll
2011-03-10 23:12:20 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-03-10 23:12:20 ----A---- C:\Windows\system32\srvcli.dll
2011-03-10 23:12:20 ----A---- C:\Windows\system32\slwga.dll
2011-03-10 23:12:20 ----A---- C:\Windows\system32\nslookup.exe
2011-03-10 23:12:20 ----A---- C:\Windows\system32\msiexec.exe
2011-03-10 23:12:20 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-03-10 23:12:19 ----A---- C:\Windows\SYSWOW64\systemcpl.dll
2011-03-10 23:12:19 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2011-03-10 23:12:19 ----A---- C:\Windows\SYSWOW64\sethc.exe
2011-03-10 23:12:19 ----A---- C:\Windows\SYSWOW64\riched20.dll
2011-03-10 23:12:19 ----A---- C:\Windows\SYSWOW64\OobeFldr.dll
2011-03-10 23:12:19 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2011-03-10 23:12:19 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2011-03-10 23:12:19 ----A---- C:\Windows\system32\wavemsp.dll
2011-03-10 23:12:19 ----A---- C:\Windows\system32\ntprint.dll
2011-03-10 23:12:19 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-03-10 23:12:19 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-03-10 23:12:19 ----A---- C:\Windows\system32\bcdboot.exe
2011-03-10 23:12:19 ----A---- C:\Windows\system32\acppage.dll
2011-03-10 23:12:18 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2011-03-10 23:12:18 ----A---- C:\Windows\SYSWOW64\NAPHLPR.DLL
2011-03-10 23:12:18 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2011-03-10 23:12:18 ----A---- C:\Windows\SYSWOW64\activeds.dll
2011-03-10 23:12:18 ----A---- C:\Windows\system32\srrstr.dll
2011-03-10 23:12:18 ----A---- C:\Windows\system32\sppnp.dll
2011-03-10 23:12:18 ----A---- C:\Windows\system32\fsquirt.exe
2011-03-10 23:12:18 ----A---- C:\Windows\system32\certprop.dll
2011-03-10 23:12:17 ----A---- C:\Windows\SYSWOW64\wmpsrcwp.dll
2011-03-10 23:12:17 ----A---- C:\Windows\SYSWOW64\migisol.dll
2011-03-10 23:12:17 ----A---- C:\Windows\SYSWOW64\fms.dll
2011-03-10 23:12:17 ----A---- C:\Windows\system32\TSpkg.dll
2011-03-10 23:12:17 ----A---- C:\Windows\system32\networkexplorer.dll
2011-03-10 23:12:17 ----A---- C:\Windows\system32\cabinet.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\wavemsp.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\nshipsec.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\isoburn.exe
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\httpapi.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2011-03-10 23:12:16 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2011-03-10 23:12:16 ----A---- C:\Windows\system32\wkscli.dll
2011-03-10 23:12:16 ----A---- C:\Windows\system32\WinSCard.dll
2011-03-10 23:12:16 ----A---- C:\Windows\system32\remotepg.dll
2011-03-10 23:12:16 ----A---- C:\Windows\system32\ftp.exe
2011-03-10 23:12:16 ----A---- C:\Windows\system32\dfrgui.exe
2011-03-10 23:12:16 ----A---- C:\Windows\system32\cdosys.dll
2011-03-10 23:12:15 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2011-03-10 23:12:15 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2011-03-10 23:12:15 ----A---- C:\Windows\SYSWOW64\tzutil.exe
2011-03-10 23:12:15 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2011-03-10 23:12:15 ----A---- C:\Windows\SYSWOW64\dsuiext.dll
2011-03-10 23:12:15 ----A---- C:\Windows\SYSWOW64\dot3ui.dll
2011-03-10 23:12:15 ----A---- C:\Windows\SYSWOW64\dfrgui.exe
2011-03-10 23:12:15 ----A---- C:\Windows\system32\wvc.dll
2011-03-10 23:12:15 ----A---- C:\Windows\system32\wuwebv.dll
2011-03-10 23:12:15 ----A---- C:\Windows\system32\wsnmp32.dll
2011-03-10 23:12:15 ----A---- C:\Windows\system32\wmpdxm.dll
2011-03-10 23:12:15 ----A---- C:\Windows\system32\net1.exe
2011-03-10 23:12:14 ----A---- C:\Windows\SYSWOW64\wvc.dll
2011-03-10 23:12:14 ----A---- C:\Windows\SYSWOW64\wtsapi32.dll
2011-03-10 23:12:14 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2011-03-10 23:12:14 ----A---- C:\Windows\SYSWOW64\twext.dll
2011-03-10 23:12:14 ----A---- C:\Windows\SYSWOW64\ocsetup.exe
2011-03-10 23:12:14 ----A---- C:\Windows\SYSWOW64\mstask.dll
2011-03-10 23:12:14 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2011-03-10 23:12:14 ----A---- C:\Windows\system32\wsqmcons.exe
2011-03-10 23:12:14 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-03-10 23:12:14 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-03-10 23:12:14 ----A---- C:\Windows\system32\msyuv.dll
2011-03-10 23:12:14 ----A---- C:\Windows\system32\mfps.dll
2011-03-10 23:12:14 ----A---- C:\Windows\system32\blackbox.dll
2011-03-10 23:12:13 ----A---- C:\Windows\twain_32.dll
2011-03-10 23:12:13 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-03-10 23:12:13 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2011-03-10 23:12:13 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-03-10 23:12:13 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-03-10 23:12:13 ----A---- C:\Windows\system32\OpcServices.dll
2011-03-10 23:12:13 ----A---- C:\Windows\system32\mapistub.dll
2011-03-10 23:12:13 ----A---- C:\Windows\system32\mapi32.dll
2011-03-10 23:12:13 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\uxlib.dll
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\setupugc.exe
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\qcap.dll
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\qasf.dll
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-03-10 23:12:12 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-03-10 23:12:12 ----A---- C:\Windows\system32\unimdmat.dll
2011-03-10 23:12:12 ----A---- C:\Windows\system32\tsbyuv.dll
2011-03-10 23:12:12 ----A---- C:\Windows\system32\seclogon.dll
2011-03-10 23:12:12 ----A---- C:\Windows\system32\msrle32.dll
2011-03-10 23:12:12 ----A---- C:\Windows\system32\iscsium.dll
2011-03-10 23:12:12 ----A---- C:\Windows\system32\ifsutil.dll
2011-03-10 23:12:12 ----A---- C:\Windows\system32\diskraid.exe
2011-03-10 23:12:11 ----A---- C:\Windows\SYSWOW64\msvfw32.dll
2011-03-10 23:12:11 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2011-03-10 23:12:11 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-03-10 23:12:11 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-03-10 23:12:10 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2011-03-10 23:12:10 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2011-03-10 23:12:10 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2011-03-10 23:12:10 ----A---- C:\Windows\SYSWOW64\nslookup.exe
2011-03-10 23:12:10 ----A---- C:\Windows\SYSWOW64\DevicePairingFolder.dll
2011-03-10 23:12:10 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2011-03-10 23:12:10 ----A---- C:\Windows\SYSWOW64\audiodev.dll
2011-03-10 23:12:10 ----A---- C:\Windows\system32\wmpshell.dll
2011-03-10 23:12:10 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-03-10 23:12:10 ----A---- C:\Windows\system32\rdpencom.dll
2011-03-10 23:12:10 ----A---- C:\Windows\system32\perfmon.exe
2011-03-10 23:12:10 ----A---- C:\Windows\system32\muifontsetup.dll
2011-03-10 23:12:10 ----A---- C:\Windows\system32\d3d10level9.dll
2011-03-10 23:12:09 ----A---- C:\Windows\SYSWOW64\wimserv.exe
2011-03-10 23:12:09 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2011-03-10 23:12:09 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2011-03-10 23:12:09 ----A---- C:\Windows\SYSWOW64\msscp.dll
2011-03-10 23:12:09 ----A---- C:\Windows\SYSWOW64\diskraid.exe
2011-03-10 23:12:09 ----A---- C:\Windows\SYSWOW64\acppage.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\umb.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\tlscsp.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\qasf.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\netutils.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-03-10 23:12:09 ----A---- C:\Windows\system32\inseng.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\dbghelp.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-03-10 23:12:09 ----A---- C:\Windows\system32\ActionQueue.dll
2011-03-10 23:12:08 ----A---- C:\Windows\SYSWOW64\remotepg.dll
2011-03-10 23:12:08 ----A---- C:\Windows\SYSWOW64\raschap.dll
2011-03-10 23:12:08 ----A---- C:\Windows\SYSWOW64\QUTIL.DLL
2011-03-10 23:12:08 ----A---- C:\Windows\SYSWOW64\perfmon.exe
2011-03-10 23:12:08 ----A---- C:\Windows\SYSWOW64\NAPCRYPT.DLL
2011-03-10 23:12:08 ----A---- C:\Windows\SYSWOW64\input.dll
2011-03-10 23:12:08 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2011-03-10 23:12:08 ----A---- C:\Windows\system32\wpdwcn.dll
2011-03-10 23:12:08 ----A---- C:\Windows\system32\wiavideo.dll
2011-03-10 23:12:08 ----A---- C:\Windows\system32\runonce.exe
2011-03-10 23:12:08 ----A---- C:\Windows\system32\raschap.dll
2011-03-10 23:12:08 ----A---- C:\Windows\system32\FXSAPI.dll
2011-03-10 23:12:08 ----A---- C:\Windows\system32\browser.dll
2011-03-10 23:12:08 ----A---- C:\Windows\bfsvc.exe
2011-03-10 23:12:07 ----A---- C:\Windows\SYSWOW64\wmpdxm.dll
2011-03-10 23:12:07 ----A---- C:\Windows\SYSWOW64\vpnikeapi.dll
2011-03-10 23:12:07 ----A---- C:\Windows\SYSWOW64\UserAccountControlSettings.dll
2011-03-10 23:12:07 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2011-03-10 23:12:07 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2011-03-10 23:12:07 ----A---- C:\Windows\SYSWOW64\ocsetapi.dll
2011-03-10 23:12:07 ----A---- C:\Windows\SYSWOW64\networkexplorer.dll
2011-03-10 23:12:07 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-03-10 23:12:07 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-03-10 23:12:07 ----A---- C:\Windows\system32\vdsbas.dll
2011-03-10 23:12:07 ----A---- C:\Windows\system32\syssetup.dll
2011-03-10 23:12:07 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-03-10 23:12:07 ----A---- C:\Windows\system32\MdSched.exe
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\wpdwcn.dll
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\vdsbas.dll
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\runonce.exe
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\onexui.dll
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\logagent.exe
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\iTVData.dll
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-03-10 23:12:06 ----A---- C:\Windows\SYSWOW64\dxdiagn.dll
2011-03-10 23:12:06 ----A---- C:\Windows\system32\nltest.exe
2011-03-10 23:12:06 ----A---- C:\Windows\system32\mstask.dll
2011-03-10 23:12:06 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-03-10 23:12:06 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-03-10 23:12:06 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-03-10 23:12:05 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2011-03-10 23:12:05 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2011-03-10 23:12:05 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2011-03-10 23:12:05 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2011-03-10 23:12:05 ----A---- C:\Windows\system32\vss_ps.dll
2011-03-10 23:12:05 ----A---- C:\Windows\system32\shacct.dll
2011-03-10 23:12:05 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-03-10 23:12:05 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2011-03-10 23:12:05 ----A---- C:\Windows\system32\cscapi.dll
2011-03-10 23:12:05 ----A---- C:\Windows\system32\bitsadmin.exe
2011-03-10 23:12:04 ----A---- C:\Windows\SYSWOW64\wmpshell.dll
2011-03-10 23:12:04 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2011-03-10 23:12:04 ----A---- C:\Windows\SYSWOW64\shacct.dll
2011-03-10 23:12:04 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2011-03-10 23:12:04 ----A---- C:\Windows\system32\WPDSp.dll
2011-03-10 23:12:04 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-03-10 23:12:04 ----A---- C:\Windows\system32\tabcal.exe
2011-03-10 23:12:04 ----A---- C:\Windows\system32\qcap.dll
2011-03-10 23:12:04 ----A---- C:\Windows\system32\logman.exe
2011-03-10 23:12:03 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2011-03-10 23:12:03 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2011-03-10 23:12:03 ----A---- C:\Windows\SYSWOW64\lsmproxy.dll
2011-03-10 23:12:03 ----A---- C:\Windows\SYSWOW64\bitsadmin.exe
2011-03-10 23:12:03 ----A---- C:\Windows\system32\wudriver.dll
2011-03-10 23:12:03 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-03-10 23:12:03 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-03-10 23:12:03 ----A---- C:\Windows\system32\mssphtb.dll
2011-03-10 23:12:03 ----A---- C:\Windows\system32\msnetobj.dll
2011-03-10 23:12:02 ----A---- C:\Windows\SYSWOW64\sqlcese30.dll
2011-03-10 23:12:02 ----A---- C:\Windows\SYSWOW64\rdpd3d.dll
2011-03-10 23:12:02 ----A---- C:\Windows\SYSWOW64\pdh.dll
2011-03-10 23:12:02 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2011-03-10 23:12:02 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2011-03-10 23:12:02 ----A---- C:\Windows\SYSWOW64\iscsium.dll
2011-03-10 23:12:02 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2011-03-10 23:12:02 ----A---- C:\Windows\system32\spbcd.dll
2011-03-10 23:12:02 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-03-10 23:12:02 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-03-10 23:12:02 ----A---- C:\Windows\system32\qdv.dll
2011-03-10 23:12:02 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\srvcli.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\QSVRMGMT.DLL
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\PortableDeviceSyncProvider.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\PortableDeviceStatus.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\olethk32.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\ncryptui.dll
2011-03-10 23:12:01 ----A---- C:\Windows\SYSWOW64\logman.exe
2011-03-10 23:12:01 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-03-10 23:12:01 ----A---- C:\Windows\system32\fphc.dll
2011-03-10 23:12:01 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-03-10 23:12:01 ----A---- C:\Windows\system32\dot3ui.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\utildll.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\fphc.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\dot3msm.dll
2011-03-10 23:12:00 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2011-03-10 23:12:00 ----A---- C:\Windows\system32\WMPhoto.dll
2011-03-10 23:12:00 ----A---- C:\Windows\system32\takeown.exe
2011-03-10 23:12:00 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-03-10 23:12:00 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-03-10 23:12:00 ----A---- C:\Windows\system32\amstream.dll
2011-03-10 23:11:59 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2011-03-10 23:11:59 ----A---- C:\Windows\SYSWOW64\wiavideo.dll
2011-03-10 23:11:59 ----A---- C:\Windows\SYSWOW64\takeown.exe
2011-03-10 23:11:59 ----A---- C:\Windows\SYSWOW64\sqmapi.dll
2011-03-10 23:11:59 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2011-03-10 23:11:59 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-03-10 23:11:59 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-03-10 23:11:58 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2011-03-10 23:11:58 ----A---- C:\Windows\SYSWOW64\qdv.dll
2011-03-10 23:11:58 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2011-03-10 23:11:58 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2011-03-10 23:11:58 ----A---- C:\Windows\SYSWOW64\EhStorAPI.dll
2011-03-10 23:11:58 ----A---- C:\Windows\system32\WUDFHost.exe
2011-03-10 23:11:58 ----A---- C:\Windows\system32\shimgvw.dll
2011-03-10 23:11:58 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-03-10 23:11:58 ----A---- C:\Windows\system32\nrpsrv.dll
2011-03-10 23:11:58 ----A---- C:\Windows\system32\netapi32.dll
2011-03-10 23:11:58 ----A---- C:\Windows\system32\iasrecst.dll
2011-03-10 23:11:58 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-03-10 23:11:58 ----A---- C:\Windows\system32\djoin.exe
2011-03-10 23:11:58 ----A---- C:\Windows\system32\cmstp.exe
2011-03-10 23:11:58 ----A---- C:\Windows\system32\CertPolEng.dll
2011-03-10 23:11:57 ----A---- C:\Windows\SYSWOW64\sppinst.dll
2011-03-10 23:11:57 ----A---- C:\Windows\SYSWOW64\QCLIPROV.DLL
2011-03-10 23:11:57 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2011-03-10 23:11:57 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2011-03-10 23:11:57 ----A---- C:\Windows\SYSWOW64\cca.dll
2011-03-10 23:11:57 ----A---- C:\Windows\system32\WUDFx.dll
2011-03-10 23:11:57 ----A---- C:\Windows\system32\WavDest.dll
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\vfwwdm32.dll
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\pdhui.dll
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\MuiUnattend.exe
2011-03-10 23:11:56 ----A---- C:\Windows\SYSWOW64\cmstp.exe
2011-03-10 23:11:56 ----A---- C:\Windows\system32\wuauclt.exe
2011-03-10 23:11:56 ----A---- C:\Windows\system32\sscore.dll
2011-03-10 23:11:56 ----A---- C:\Windows\system32\relog.exe
2011-03-10 23:11:56 ----A---- C:\Windows\system32\mydocs.dll
2011-03-10 23:11:56 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-03-10 23:11:56 ----A---- C:\Windows\system32\KMSVC.DLL
2011-03-10 23:11:56 ----A---- C:\Windows\system32\fdProxy.dll
2011-03-10 23:11:56 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-03-10 23:11:56 ----A---- C:\Windows\system32\drivers\pacer.sys
2011-03-10 23:11:55 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2011-03-10 23:11:55 ----A---- C:\Windows\SYSWOW64\relog.exe
2011-03-10 23:11:55 ----A---- C:\Windows\SYSWOW64\netiougc.exe
2011-03-10 23:11:55 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2011-03-10 23:11:55 ----A---- C:\Windows\SYSWOW64\iscsicli.exe
2011-03-10 23:11:55 ----A---- C:\Windows\SYSWOW64\iasrecst.dll
2011-03-10 23:11:55 ----A---- C:\Windows\SYSWOW64\AzSqlExt.dll
2011-03-10 23:11:55 ----A---- C:\Windows\system32\mobsync.exe
2011-03-10 23:11:55 ----A---- C:\Windows\system32\iscsicli.exe
2011-03-10 23:11:55 ----A---- C:\Windows\system32\diskpart.exe
2011-03-10 23:11:55 ----A---- C:\Windows\system32\BWUnpairElevated.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\wkscli.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\spbcd.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\resutils.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\netbtugc.exe
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\mydocs.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\itircl.dll
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\diskpart.exe
2011-03-10 23:11:54 ----A---- C:\Windows\SYSWOW64\amstream.dll
2011-03-10 23:11:54 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-03-10 23:11:54 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-03-10 23:11:54 ----A---- C:\Windows\system32\msdmo.dll
2011-03-10 23:11:54 ----A---- C:\Windows\system32\itircl.dll
2011-03-10 23:11:54 ----A---- C:\Windows\system32\dot3msm.dll
2011-03-10 23:11:54 ----A---- C:\Windows\system32\browcli.dll
2011-03-10 23:11:53 ----A---- C:\Windows\SYSWOW64\syssetup.dll
2011-03-10 23:11:53 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2011-03-10 23:11:53 ----A---- C:\Windows\SYSWOW64\CertPolEng.dll
2011-03-10 23:11:53 ----A---- C:\Windows\system32\wuapp.exe
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\wmpps.dll
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\tlscsp.dll
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\secur32.dll
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\findstr.exe
2011-03-10 23:11:52 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2011-03-10 23:11:52 ----A---- C:\Windows\system32\sppc.dll
2011-03-10 23:11:52 ----A---- C:\Windows\system32\prevhost.exe
2011-03-10 23:11:52 ----A---- C:\Windows\system32\mciqtz32.dll
2011-03-10 23:11:52 ----A---- C:\Windows\system32\luainstall.dll
2011-03-10 23:11:52 ----A---- C:\Windows\system32\imagehlp.dll
2011-03-10 23:11:52 ----A---- C:\Windows\system32\choice.exe
2011-03-10 23:11:52 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-03-10 23:11:52 ----A---- C:\Windows\system32\findstr.exe
2011-03-10 23:11:52 ----A---- C:\Windows\system32\eappgnui.dll
2011-03-10 23:11:52 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-03-10 23:11:51 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2011-03-10 23:11:51 ----A---- C:\Windows\SYSWOW64\netutils.dll
2011-03-10 23:11:51 ----A---- C:\Windows\SYSWOW64\mobsync.exe
2011-03-10 23:11:51 ----A---- C:\Windows\SYSWOW64\mciqtz32.dll
2011-03-10 23:11:51 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-03-10 23:11:51 ----A---- C:\Windows\system32\onexui.dll
2011-03-10 23:11:51 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-03-10 23:11:50 ----A---- C:\Windows\SYSWOW64\sppc.dll
2011-03-10 23:11:50 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2011-03-10 23:11:50 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2011-03-10 23:11:50 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2011-03-10 23:11:50 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2011-03-10 23:11:50 ----A---- C:\Windows\SYSWOW64\cabinet.dll
2011-03-10 23:11:50 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-03-10 23:11:50 ----A---- C:\Windows\system32\spopk.dll
2011-03-10 23:11:50 ----A---- C:\Windows\system32\schedcli.dll
2011-03-10 23:11:50 ----A---- C:\Windows\system32\repair-bde.exe
2011-03-10 23:11:50 ----A---- C:\Windows\system32\manage-bde.exe
2011-03-10 23:11:50 ----A---- C:\Windows\system32\inetmib1.dll
2011-03-10 23:11:49 ----A---- C:\Windows\SYSWOW64\unlodctr.exe
2011-03-10 23:11:49 ----A---- C:\Windows\SYSWOW64\spopk.dll
2011-03-10 23:11:49 ----A---- C:\Windows\SYSWOW64\shimgvw.dll
2011-03-10 23:11:49 ----A---- C:\Windows\SYSWOW64\msdmo.dll
2011-03-10 23:11:49 ----A---- C:\Windows\SYSWOW64\luainstall.dll
2011-03-10 23:11:49 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-03-10 23:11:49 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-03-10 23:11:49 ----A---- C:\Windows\system32\profprov.dll
2011-03-10 23:11:48 ----A---- C:\Windows\SYSWOW64\rdprefdrvapi.dll
2011-03-10 23:11:48 ----A---- C:\Windows\system32\odbcconf.dll
2011-03-10 23:11:48 ----A---- C:\Windows\system32\fixmapi.exe
2011-03-10 23:11:47 ----A---- C:\Windows\SYSWOW64\inetmib1.dll
2011-03-10 23:11:46 ----A---- C:\Windows\SYSWOW64\wups.dll
2011-03-10 23:11:46 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2011-03-10 23:11:46 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2011-03-10 23:11:46 ----A---- C:\Windows\SYSWOW64\browcli.dll
2011-03-10 23:11:46 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-03-10 23:11:46 ----A---- C:\Windows\system32\TRAPI.dll
2011-03-10 23:11:46 ----A---- C:\Windows\system32\msfeedssync.exe
2011-03-10 23:11:46 ----A---- C:\Windows\system32\FXSMON.dll
2011-03-10 23:11:46 ----A---- C:\Windows\system32\elsTrans.dll
2011-03-10 23:11:46 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-03-10 23:11:45 ----A---- C:\Windows\SYSWOW64\perfts.dll
2011-03-10 23:11:45 ----A---- C:\Windows\SYSWOW64\imm32.dll
2011-03-10 23:11:45 ----A---- C:\Windows\system32\wshbth.dll
2011-03-10 23:11:45 ----A---- C:\Windows\system32\napdsnap.dll
2011-03-10 23:11:45 ----A---- C:\Windows\system32\LogonUI.exe
2011-03-10 23:11:45 ----A---- C:\Windows\system32\dsauth.dll
2011-03-10 23:11:44 ----A---- C:\Windows\SYSWOW64\TRAPI.dll
2011-03-10 23:11:44 ----A---- C:\Windows\SYSWOW64\schedcli.dll
2011-03-10 23:11:44 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-03-10 23:11:44 ----A---- C:\Windows\SYSWOW64\elsTrans.dll
2011-03-10 23:11:44 ----A---- C:\Windows\SYSWOW64\bitsperf.dll
2011-03-10 23:11:44 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-03-10 23:11:44 ----A---- C:\Windows\system32\FXSUNATD.exe
2011-03-10 23:11:44 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-03-10 23:11:44 ----A---- C:\Windows\system32\cscdll.dll
2011-03-10 23:11:44 ----A---- C:\Windows\system32\bitsperf.dll
2011-03-10 23:11:43 ----A---- C:\Windows\SYSWOW64\wshbth.dll
2011-03-10 23:11:43 ----A---- C:\Windows\SYSWOW64\napdsnap.dll
2011-03-10 23:11:43 ----A---- C:\Windows\SYSWOW64\dsauth.dll
2011-03-10 23:11:43 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2011-03-10 23:11:43 ----A---- C:\Windows\system32\wups2.dll
2011-03-10 23:11:43 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-03-10 23:11:42 ----A---- C:\Windows\SYSWOW64\wsdchngr.dll
2011-03-10 23:11:42 ----A---- C:\Windows\SYSWOW64\sscore.dll
2011-03-10 23:11:42 ----A---- C:\Windows\SYSWOW64\shgina.dll
2011-03-10 23:11:42 ----A---- C:\Windows\SYSWOW64\riched32.dll
2011-03-10 23:11:42 ----A---- C:\Windows\system32\wups.dll
2011-03-10 23:11:42 ----A---- C:\Windows\system32\wsdchngr.dll
2011-03-10 23:11:42 ----A---- C:\Windows\system32\shgina.dll
2011-03-10 23:11:41 ----A---- C:\Windows\system32\wshirda.dll
2011-03-10 23:11:41 ----A---- C:\Windows\system32\wow64win.dll
2011-03-10 23:11:41 ----A---- C:\Windows\system32\wow64cpu.dll
2011-03-10 23:11:41 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-03-10 23:11:41 ----A---- C:\Windows\system32\drivers\Dot4Prt.sys
2011-03-10 23:11:41 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-03-10 23:11:40 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-03-10 23:11:40 ----A---- C:\Windows\system32\drivers\appid.sys
2011-03-10 23:11:39 ----A---- C:\Windows\SYSWOW64\wshirda.dll
2011-03-10 23:11:39 ----A---- C:\Windows\system32\spwmp.dll
2011-03-10 23:11:39 ----A---- C:\Windows\system32\riched32.dll
2011-03-10 23:11:39 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-03-10 23:11:39 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-03-10 23:11:39 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-03-10 23:11:39 ----A---- C:\Windows\system32\browseui.dll
2011-03-10 23:11:38 ----A---- C:\Windows\SYSWOW64\browseui.dll
2011-03-10 23:11:38 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-03-10 23:11:37 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2011-03-10 23:11:36 ----AH---- C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\shunimpl.dll
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\KBDTUQ.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\KBDTUF.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\KBDSG.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\kbdlk41a.dll
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\KBDGR1.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2011-03-10 23:11:36 ----A---- C:\Windows\SYSWOW64\C_ISCII.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\shunimpl.dll
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDSG.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDSF.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDPO.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-03-10 23:11:36 ----A---- C:\Windows\system32\dxmasf.dll
2011-03-10 23:11:36 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-03-10 23:11:36 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-03-10 23:11:36 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-03-10 23:11:36 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-03-10 23:11:36 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-03-10 23:11:36 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-03-10 23:11:36 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDUS.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDUGHR1.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDTURME.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDTAJIK.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDMON.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDMAORI.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDGKL.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDGEO.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDCZ1.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\SYSWOW64\KBDBLR.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\wmploc.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDUS.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDMON.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-03-10 23:11:35 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\spwizres.dll
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\pifmgr.dll
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDSF.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDPO.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDNEPR.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDLT1.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDBULG.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\SYSWOW64\dpnaddr.dll
2011-03-10 23:11:34 ----A---- C:\Windows\system32\tzres.dll
2011-03-10 23:11:34 ----A---- C:\Windows\system32\spwizres.dll
2011-03-10 23:11:34 ----A---- C:\Windows\system32\pifmgr.dll
2011-03-10 23:11:34 ----A---- C:\Windows\system32\nlsbres.dll
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-03-10 23:11:34 ----A---- C:\Windows\system32\dpnaddr.dll
2011-03-10 23:11:34 ----A---- C:\Windows\system32\BlbEvents.dll
2011-03-10 23:11:25 ----A---- C:\Windows\SYSWOW64\wdscore.dll
2011-03-10 23:11:25 ----A---- C:\Windows\SYSWOW64\PkgMgr.exe
2011-03-10 23:11:19 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2011-03-10 23:11:19 ----A---- C:\Windows\SYSWOW64\dpx.dll
2011-03-10 23:11:17 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2011-03-10 23:09:33 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-03-10 23:09:33 ----A---- C:\Windows\system32\wbemcomn.dll
2011-03-10 23:09:24 ----A---- C:\Windows\system32\SmiEngine.dll
2011-03-10 23:09:20 ----A---- C:\Windows\system32\PkgMgr.exe
2011-03-10 23:09:04 ----A---- C:\Windows\system32\drvstore.dll
2011-03-10 23:09:04 ----A---- C:\Windows\system32\dpx.dll
2011-03-10 21:03:09 ----A---- C:\Windows\system32\FntCache.dll
2011-03-10 21:03:08 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-03-10 21:03:08 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-03-10 21:03:08 ----A---- C:\Windows\system32\DWrite.dll
2011-03-10 21:03:08 ----A---- C:\Windows\system32\d2d1.dll
2011-03-10 21:03:07 ----A---- C:\Windows\system32\EncDec.dll
2011-03-10 21:03:06 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-03-10 21:03:06 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-03-10 21:03:06 ----A---- C:\Windows\system32\CPFilters.dll
2011-03-10 21:03:05 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-03-10 21:03:05 ----A---- C:\Windows\system32\sbe.dll

======List of files/folders modified in the last 1 months======

2011-04-07 18:07:51 ----D---- C:\Windows\Prefetch
2011-04-07 18:07:47 ----D---- C:\Windows\Temp
2011-04-07 18:07:47 ----D---- C:\Program Files
2011-04-07 17:11:32 ----D---- C:\Windows\System32
2011-04-07 17:11:32 ----D---- C:\Windows\inf
2011-04-07 17:11:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-07 16:03:39 ----SHD---- C:\System Volume Information
2011-04-07 15:23:23 ----D---- C:\Users\RADOSLAV\AppData\Roaming\Skype
2011-04-07 15:23:01 ----D---- C:\Users\RADOSLAV\AppData\Roaming\skypePM
2011-04-07 14:51:45 ----D---- C:\Users\RADOSLAV\AppData\Roaming\ICQ
2011-04-07 14:49:19 ----D---- C:\Windows\system32\config
2011-04-07 13:56:50 ----A---- C:\Windows\SYSWOW64\log.txt
2011-04-07 13:48:03 ----SHD---- C:\Windows\Installer
2011-04-07 13:47:54 ----D---- C:\Windows\SysWOW64
2011-04-07 13:47:54 ----D---- C:\Windows\system32\drivers
2011-04-07 13:47:54 ----D---- C:\Windows\system32\catroot
2011-04-07 13:47:54 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2011-04-07 13:47:53 ----RD---- C:\Program Files (x86)
2011-04-07 13:41:16 ----HD---- C:\Windows\system32\GroupPolicy
2011-04-07 12:10:25 ----D---- C:\Windows
2011-04-07 11:41:09 ----D---- C:\Windows\system32\Tasks
2011-04-07 11:41:06 ----D---- C:\Windows\Tasks
2011-04-06 22:04:46 ----AD---- C:\ProgramData\Temp
2011-04-06 21:52:09 ----D---- C:\Windows\system32\DriverStore
2011-04-06 21:51:53 ----HD---- C:\ProgramData
2011-04-06 21:34:07 ----D---- C:\Windows\system32\catroot2
2011-04-04 13:57:18 ----D---- C:\Program Files (x86)\Common Files
2011-04-01 15:18:35 ----D---- C:\ProgramData\Microsoft Help
2011-04-01 10:13:53 ----D---- C:\Windows\winsxs
2011-04-01 10:02:03 ----RSD---- C:\Windows\Fonts
2011-04-01 10:00:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-03-31 19:52:40 ----D---- C:\Program Files (x86)\ICQ7.2
2011-03-25 15:27:45 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-03-21 20:39:08 ----RSD---- C:\Windows\assembly
2011-03-21 19:52:29 ----D---- C:\Program Files\ATI Technologies
2011-03-21 19:52:14 ----D---- C:\Program Files (x86)\ATI Technologies
2011-03-13 21:00:15 ----D---- C:\Windows\SYSWOW64\drivers
2011-03-11 10:53:01 ----D---- C:\Windows\rescache
2011-03-11 10:37:08 ----D---- C:\Windows\Microsoft.NET
2011-03-11 00:23:35 ----D---- C:\Program Files (x86)\Windows Sidebar
2011-03-11 00:23:35 ----D---- C:\Program Files (x86)\Windows Mail
2011-03-11 00:23:35 ----D---- C:\Program Files (x86)\Internet Explorer
2011-03-11 00:23:34 ----D---- C:\Program Files (x86)\Windows Portable Devices
2011-03-11 00:23:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2011-03-11 00:23:34 ----D---- C:\Program Files (x86)\Windows Media Player
2011-03-11 00:23:33 ----D---- C:\Program Files\Windows Sidebar
2011-03-11 00:23:33 ----D---- C:\Program Files\Windows Portable Devices
2011-03-11 00:23:33 ----D---- C:\Program Files\Windows Mail
2011-03-11 00:23:33 ----D---- C:\Program Files\Internet Explorer
2011-03-11 00:23:33 ----D---- C:\Program Files\DVD Maker
2011-03-11 00:23:32 ----D---- C:\Program Files\Windows Photo Viewer
2011-03-11 00:23:32 ----D---- C:\Program Files\Windows Media Player
2011-03-11 00:23:32 ----D---- C:\Program Files\Windows Journal
2011-03-11 00:23:30 ----D---- C:\Windows\servicing
2011-03-11 00:23:30 ----D---- C:\Windows\ehome
2011-03-11 00:23:30 ----D---- C:\Program Files\Windows Defender
2011-03-11 00:23:25 ----D---- C:\Windows\SYSWOW64\da-DK
2011-03-11 00:23:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\Setup
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\oobe
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\migration
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\manifeststore
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\en-US
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\en
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-03-11 00:23:23 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2011-03-11 00:23:22 ----D---- C:\Windows\SYSWOW64\wbem
2011-03-11 00:23:22 ----D---- C:\Windows\SYSWOW64\sppui
2011-03-11 00:23:22 ----D---- C:\Windows\SYSWOW64\migwiz
2011-03-11 00:23:22 ----D---- C:\Windows\SYSWOW64\es-ES
2011-03-11 00:23:22 ----D---- C:\Windows\SYSWOW64\Dism
2011-03-11 00:23:06 ----D---- C:\Windows\system32\da-DK
2011-03-11 00:23:06 ----D---- C:\Windows\PolicyDefinitions
2011-03-11 00:23:05 ----D---- C:\Windows\system32\sk-SK
2011-03-11 00:23:01 ----D---- C:\Windows\system32\en-US
2011-03-11 00:23:00 ----D---- C:\Windows\system32\sppui
2011-03-11 00:23:00 ----D---- C:\Windows\system32\Setup
2011-03-11 00:23:00 ----D---- C:\Windows\system32\oobe
2011-03-11 00:23:00 ----D---- C:\Windows\system32\migration
2011-03-11 00:23:00 ----D---- C:\Windows\system32\manifeststore
2011-03-11 00:23:00 ----D---- C:\Windows\system32\es-ES
2011-03-11 00:23:00 ----D---- C:\Windows\system32\cs-CZ
2011-03-11 00:23:00 ----D---- C:\Windows\system32\AdvancedInstallers
2011-03-11 00:22:59 ----D---- C:\Windows\system32\wbem
2011-03-11 00:22:59 ----D---- C:\Windows\system32\drivers\en-US
2011-03-11 00:22:58 ----D---- C:\Windows\system32\migwiz
2011-03-11 00:22:58 ----D---- C:\Windows\system32\Dism
2011-03-11 00:22:42 ----D---- C:\Windows\AppPatch
2011-03-11 00:22:32 ----D---- C:\Windows\system32\Boot
2011-03-10 23:28:56 ----D---- C:\Windows\debug
2011-03-10 23:28:55 ----A---- C:\Windows\system32\MRT.exe
2011-03-10 23:23:17 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2011-03-10 23:23:16 ----A---- C:\Windows\system32\msclmd.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-12-17 538136]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-24 834544]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 141264]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 188928]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 170640]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 125296]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-01-22 6233088]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-01-22 161280]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-10-22 272432]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2010-02-11 3058168]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2009-10-20 25088]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-01-20 2242720]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-01-22 8034368]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 ahntyeed;ahntyeed; C:\Windows\system32\drivers\ahntyeed.sys []
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-12-02 40448]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2009-10-21 31744]
S3 AthDfu;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2009-07-25 47616]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2009-10-23 329728]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2009-10-22 240128]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2009-10-21 126976]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2009-10-22 57344]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-20 552448]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-20 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-01-22 8034368]
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
S3 massfilter;ZTE Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys []
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 40832]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 72064]
S3 OlyCamComm;OLYMPUS USB Communication Device; C:\Windows\system32\DRIVERS\OlyCamComm.sys [2009-09-09 24208]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys []
S3 ZTEusbnmea;ZTE NMEA Port; C:\Windows\system32\DRIVERS\ZTEusbnmea.sys []
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\Windows\system32\DRIVERS\ZTEusbser6k.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-01-22 202752]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-01-12 810144]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2010-01-20 819232]
R2 Greg_Service;GRegService; C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-24 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-10-01 268824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-01-07 255744]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 TeamViewer5;TeamViewer 5; C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-10-19 2011944]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2320920]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2011-01-14 72704]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-01-12 42360]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-27 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-24 1255736]
S4 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 12784]

-----------------EOF-----------------

[motji]

Dobrý večer

Máte to krásně zavirované

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[socrates]

Dakujem za skoru reakciu na moj prispevok

Tu je log

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verzia databázy: 6304

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

7. 4. 2011 22:58:22
mbam-log-2011-04-07 (22-58-12).txt

Typ kontroly: Úplná kontrola (C:\|D:\|)
Objektov kontrolovaných: 324883
Uplynutý čas: 46 min, 56 sek

Infikované služby pamäte: 0
Infikované moduly pamäte: 0
Infikované registračné kľúče: 7
Infikované registračné hodnoty: 1
Infikované položky registračných dát: 0
Infikované priečinky: 10
Infikované súbory: 11

Infikované služby pamäte:
(Škodlivé položky neboli zistené)

Infikované moduly pamäte:
(Škodlivé položky neboli zistené)

Infikované registračné kľúče:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken.
HKEY_CLASSES_ROOT\HBLiteAx.Info (Adware.HotBar) -> No action taken.
HKEY_CLASSES_ROOT\HBLiteAx.Info.1 (Adware.HotBar) -> No action taken.
HKEY_CLASSES_ROOT\HBLiteAX.UserProfiles (Adware.HotBar) -> No action taken.
HKEY_CLASSES_ROOT\HBLiteAX.UserProfiles.1 (Adware.HotBar) -> No action taken.
HKEY_CURRENT_USER\Software\hblitesa (Adware.HotBar) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\HBLite (Adware.HotBar) -> No action taken.

Infikované registračné hodnoty:
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\HBLite@HBLite.com (Adware.HotBar) -> Value: HBLite@HBLite.com -> No action taken.

Infikované položky registračných dát:
(Škodlivé položky neboli zistené)

Infikované priečinky:
c:\programdata\2aca5cc3-0f83-453d-a079-1076fe1a8b65 (Adware.Seekmo) -> No action taken.
c:\Users\RADOSLAV\AppData\Roaming\HBLite (Adware.Hotbar) -> No action taken.
c:\programdata\HBLiteSA (Adware.Hotbar) -> No action taken.
c:\program files (x86)\HBLite (Adware.Hotbar) -> No action taken.
c:\program files (x86)\HBLite\bin (Adware.Hotbar) -> No action taken.
c:\program files (x86)\HBLite\bin\11.0.328.0 (Adware.Hotbar) -> No action taken.
c:\program files (x86)\HBLite\bin\11.0.328.0\firefox (Adware.Hotbar) -> No action taken.
c:\program files (x86)\HBLite\bin\11.0.328.0\firefox\extensions (Adware.Hotbar) -> No action taken.
c:\program files (x86)\HBLite\bin\11.0.328.0\firefox\extensions\plugins (Adware.Hotbar) -> No action taken.
c:\programdata\microsoft\Windows\start menu\Programs\Hotbar (Adware.Hotbar) -> No action taken.

Infikované súbory:
c:\program files (x86)\guitar pro 6\guitarpro6-patch-fixed.exe (Malware.Packer.Gen) -> No action taken.
d:\Programy\guitar pro 6.0.1 r7840 (no mac change + fixed patch)\crack-pavka77-gp6.0.1-7840\guitarpro6-patch-fixed.exe (Malware.Packer.Gen) -> No action taken.
c:\Windows\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> No action taken.
c:\programdata\HBLiteSA\HBLiteSA.dat (Adware.Hotbar) -> No action taken.
c:\programdata\HBLiteSA\hblitesaabout.mht (Adware.Hotbar) -> No action taken.
c:\programdata\HBLiteSA\hblitesaau.dat (Adware.Hotbar) -> No action taken.
c:\programdata\HBLiteSA\hblitesaeula.mht (Adware.Hotbar) -> No action taken.
c:\programdata\HBLiteSA\hblitesa_kyf.dat (Adware.Hotbar) -> No action taken.
c:\program files (x86)\HBLite\bin\11.0.328.0\firefox\extensions\install.rdf (Adware.Hotbar) -> No action taken.
c:\programdata\microsoft\Windows\start menu\Programs\Hotbar\about hotbar.lnk (Adware.Hotbar) -> No action taken.
c:\programdata\microsoft\Windows\start menu\Programs\Hotbar\hotbar customer support center.lnk (Adware.Hotbar) -> No action taken.

[motji]

Můžete smazat.

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT 

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

[socrates]

Este raz dakujem za pomoc (-:

Isiel som presne podla Vasho postupu. Najprv mi to pocas scanovania vyhodilo nejaku chybu, no na druhy pokus to prebehlo uspesne, prikladam obidva logy. (dal som ich do prilohy, kedze boli pridlhe na vlozenie do prispevkov)

logs.rar

(38.64 KiB) Staženo 36 x

[motji]

Vložte prosím logy sem, klidně je rozdělte do více příspěvků.

[socrates]

OK, tu su teda

OTL

OTL logfile created on: 4/9/2011 12:45:56 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\RADOSLAV\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 60.00% Memory free
7.00 Gb Paging File | 6.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298.37 Gb Total Space | 235.92 Gb Free Space | 79.07% Space Free | Partition Type: NTFS
Drive D: | 259.61 Gb Total Space | 27.74 Gb Free Space | 10.68% Space Free | Partition Type: NTFS

Computer Name: RADOSLAV-PC | User Name: RADOSLAV | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/04/09 11:05:08 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\RADOSLAV\Desktop\OTL.exe
PRC - [2011/03/25 15:27:40 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/01/12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2010/10/19 14:29:03 | 002,011,944 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
PRC - [2010/01/07 03:50:02 | 000,255,744 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
PRC - [2009/12/24 03:39:04 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009/12/24 03:39:02 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2009/10/01 06:01:32 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2009/10/01 06:01:30 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009/08/28 11:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
PRC - [2009/07/04 04:47:12 | 000,240,160 | ---- | M] (Acer) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe


========== Modules (SafeList) ==========

MOD - [2011/04/09 11:05:08 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\RADOSLAV\Desktop\OTL.exe
MOD - [2010/11/20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/01/12 16:44:02 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2011/01/12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2010/11/11 14:36:38 | 000,282,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2010/11/11 14:36:38 | 000,012,784 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2010/01/22 19:01:12 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/01/20 20:26:20 | 000,819,232 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/04 04:47:12 | 000,240,160 | ---- | M] (Acer) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Updater Service)
SRV - [2010/10/19 14:29:03 | 002,011,944 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe -- (TeamViewer5)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/07 03:50:02 | 000,255,744 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2009/12/24 03:39:04 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
SRV - [2009/10/01 06:01:32 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009/10/01 06:01:30 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009/08/28 11:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe -- (Greg_Service)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/12/21 15:04:06 | 000,170,640 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2010/12/21 15:04:06 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2010/12/21 13:47:38 | 000,125,296 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2010/11/24 17:29:26 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/11/20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 15:32:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 15:32:46 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/11/20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/10/24 21:25:38 | 000,072,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2010/02/11 21:01:12 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2010/01/22 19:13:24 | 006,233,088 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/01/22 18:08:28 | 008,034,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdpmd64.sys -- (intelkmd)
DRV:64bit: - [2010/01/22 18:08:28 | 008,034,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/01/22 18:07:56 | 000,161,280 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009/12/22 19:18:50 | 000,074,280 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2009/12/17 20:42:08 | 000,538,136 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/12/02 04:21:32 | 000,040,448 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2009/10/26 22:39:44 | 000,151,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009/10/23 12:04:24 | 000,329,728 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2009/10/22 09:49:28 | 000,057,344 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2009/10/22 09:46:22 | 000,240,128 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2009/10/22 06:55:06 | 000,272,432 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2009/10/21 13:58:14 | 000,031,744 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2009/10/21 09:42:38 | 000,126,976 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2009/10/20 11:51:28 | 000,025,088 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2009/09/30 19:34:32 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/09/17 22:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009/09/09 11:13:26 | 000,024,208 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\OlyCamComm.sys -- (OlyCamComm)
DRV:64bit: - [2009/07/25 16:23:56 | 000,047,616 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AthDfu.sys -- (AthDfu)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/20 04:09:57 | 000,054,272 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L1E62x64.sys -- (L1E) NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/06 02:46:08 | 000,018,432 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2009/05/06 02:46:08 | 000,016,896 | ---- | M] (NewTech Infosystems Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2615391229-1185309430-2028478684-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 5t57m1m82o
IE - HKU\S-1-5-21-2615391229-1185309430-2028478684-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
IE - HKU\S-1-5-21-2615391229-1185309430-2028478684-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.google.sk"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

FF - HKLM\software\mozilla\Firefox\Extensions\\HBLite@HBLite.com: C:\Program Files (x86)\HBLite\bin\11.0.328.0\firefox\extensions [2010/12/18 23:27:54 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/03/25 15:27:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/04/04 13:57:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011/04/06 21:51:53 | 000,000,000 | ---D | M]

[2010/11/24 17:29:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\RADOSLAV\AppData\Roaming\mozilla\Extensions
[2010/11/24 17:29:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\RADOSLAV\AppData\Roaming\mozilla\Firefox\Profiles\kshv1gv2.default\extensions
[2011/04/04 13:57:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/04/04 13:57:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/04/04 13:56:54 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2011/03/25 15:27:42 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\atlas-sk.xml
[2011/03/25 15:27:42 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\azet-sk.xml
[2011/03/25 15:27:43 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\dunaj-sk.xml
[2011/03/25 15:27:43 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slovnik-sk.xml
[2011/03/25 15:27:43 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-sk.xml
[2011/03/25 15:27:43 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\zoznam-sk.xml

Hosts file not found
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx (WRC Class)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{2999014a-4da3-11e0-adc9-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{2999014a-4da3-11e0-adc9-806e6f6e6963}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{29990181-4da3-11e0-adc9-c4461969bf38}\Shell - "" = AutoRun
O33 - MountPoints2\{29990181-4da3-11e0-adc9-c4461969bf38}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{29990183-4da3-11e0-adc9-c4461969bf38}\Shell - "" = AutoRun
O33 - MountPoints2\{29990183-4da3-11e0-adc9-c4461969bf38}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{2999018d-4da3-11e0-adc9-c4461969bf38}\Shell - "" = AutoRun
O33 - MountPoints2\{2999018d-4da3-11e0-adc9-c4461969bf38}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{49aa01c7-f7e2-11df-adaa-c4461969bf38}\Shell - "" = AutoRun
O33 - MountPoints2\{49aa01c7-f7e2-11df-adaa-c4461969bf38}\Shell\AutoRun\command - "" = E:\TMCCSetup_3.57.95.14.exe
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*


Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\Windows\SysWow64\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)

CREATERESTOREPOINT
Error creating restore point.

========== Files/Folders - Created Within 30 Days ==========

[2011/04/09 11:05:02 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\RADOSLAV\Desktop\OTL.exe
[2011/04/07 22:09:17 | 000,000,000 | ---D | C] -- C:\Users\RADOSLAV\AppData\Roaming\Malwarebytes
[2011/04/07 22:09:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/04/07 22:09:09 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/04/07 22:09:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/04/07 22:09:06 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/04/07 22:09:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/04/07 18:07:47 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011/04/07 18:07:46 | 000,000,000 | ---D | C] -- C:\rsit
[2011/04/07 13:47:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2011/04/07 13:47:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/04/07 13:41:20 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/04/07 11:39:17 | 000,000,000 | ---D | C] -- C:\Users\RADOSLAV\AppData\Local\ESET
[2011/04/06 21:51:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2011/04/06 21:51:53 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2011/04/06 21:51:53 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2011/04/06 21:09:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xenocode
[2011/04/06 20:51:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neuro-Programmer 3
[2011/04/05 09:24:22 | 000,000,000 | ---D | C] -- C:\Users\RADOSLAV\Desktop\penzion
[2011/04/04 13:57:58 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011/04/04 13:57:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/04/04 13:57:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2011/04/04 13:57:06 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2011/04/04 13:57:06 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2011/04/04 13:57:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2011/04/04 13:57:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2011/04/04 13:56:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2011/04/02 20:23:55 | 000,000,000 | ---D | C] -- C:\Users\RADOSLAV\Desktop\sad evening melody
[2011/03/31 19:53:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICQ7.4
[2011/03/31 19:52:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ICQ7.4
[2011/03/26 10:55:32 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011/03/26 10:55:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2011/03/26 10:54:49 | 000,384,000 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpmml112.dll
[2011/03/26 10:54:49 | 000,352,256 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpmja112.dll
[2011/03/26 10:54:49 | 000,309,760 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpmpm081.dll
[2011/03/26 10:54:49 | 000,271,872 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpmtp112.dll
[2011/03/26 10:54:49 | 000,218,112 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpmpw081.dll
[2011/03/26 10:54:49 | 000,193,592 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hppdcompio.dll
[2011/03/26 10:54:49 | 000,167,480 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysWow64\hppccompio.dll
[2011/03/26 10:54:49 | 000,022,016 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\hppmopjl.dll
[2011/03/26 10:54:45 | 000,286,720 | ---- | C] (Hewlett-Packard Corporation) -- C:\Windows\SysNative\hpcpn112.dll
[2011/03/26 10:54:44 | 000,507,904 | ---- | C] (HP) -- C:\Windows\SysWow64\hpcdmc32.dll
[2011/03/26 10:54:44 | 000,321,536 | ---- | C] (Hewlett Packard Corporation) -- C:\Windows\SysWow64\hpcc3112.dll
[2011/03/26 10:54:44 | 000,060,440 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\FxCompChannel_x64.dll
[2011/03/26 10:53:56 | 000,000,000 | ---D | C] -- C:\HP Universal Print Driver
[2011/03/26 10:49:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SWF Studio
[2011/03/25 00:00:32 | 000,000,000 | ---D | C] -- C:\Users\RADOSLAV\AppData\Roaming\NeuroProgrammer3
[2011/03/25 00:00:32 | 000,000,000 | ---D | C] -- C:\Users\RADOSLAV\Documents\Neuro-Programmer 3 Documents
[2011/03/25 00:00:31 | 000,000,000 | ---D | C] -- C:\Windows\XSxS
[2011/03/25 00:00:31 | 000,000,000 | ---D | C] -- C:\Users\RADOSLAV\AppData\Local\Xenocode
[2011/03/25 00:00:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Neuro-Programmer 3
[2011/03/21 19:52:43 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2011/03/21 19:52:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011/03/13 21:00:15 | 000,092,032 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysWow64\drivers\ewusbmdm.sys
[2011/03/13 21:00:15 | 000,023,424 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\SysWow64\drivers\ewdcsc.sys
[2011/03/13 20:59:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Connect
[2011/03/13 20:59:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Huawei technologies
[2011/03/11 19:57:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2011/03/10 23:17:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011/03/10 23:16:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2011/03/10 23:14:25 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2011/03/10 23:14:25 | 000,048,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2011/03/10 23:14:19 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2011/03/10 23:14:16 | 005,563,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011/03/10 23:14:15 | 003,715,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2011/03/10 23:14:15 | 001,838,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2011/03/10 23:14:15 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2011/03/10 23:14:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2011/03/10 23:14:13 | 003,215,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2011/03/10 23:14:10 | 001,171,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll
[2011/03/10 23:14:10 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2011/03/10 23:14:10 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2011/03/10 23:14:07 | 002,314,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2011/03/10 23:14:06 | 014,633,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2011/03/10 23:14:06 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2011/03/10 23:14:05 | 003,205,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmcndmgr.dll
[2011/03/10 23:14:05 | 001,731,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2011/03/10 23:14:04 | 004,120,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2011/03/10 23:14:04 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2011/03/10 23:14:04 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2011/03/10 23:14:04 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2011/03/10 23:14:03 | 003,008,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xpsservices.dll
[2011/03/10 23:14:03 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2011/03/10 23:14:03 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2011/03/10 23:14:02 | 001,219,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2011/03/10 23:14:02 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2011/03/10 23:14:02 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2011/03/10 23:14:01 | 002,086,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2011/03/10 23:14:01 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2011/03/10 23:14:00 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizui.dll
[2011/03/10 23:13:59 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2011/03/10 23:13:59 | 001,197,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
[2011/03/10 23:13:58 | 003,966,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011/03/10 23:13:58 | 003,207,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2011/03/10 23:13:58 | 001,866,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2011/03/10 23:13:58 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
[2011/03/10 23:13:58 | 001,340,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagperf.dll
[2011/03/10 23:13:57 | 001,753,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
[2011/03/10 23:13:57 | 001,334,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2011/03/10 23:13:56 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbon.dll
[2011/03/10 23:13:56 | 002,872,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/03/10 23:13:56 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2011/03/10 23:13:56 | 001,326,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NaturalLanguage6.dll
[2011/03/10 23:13:56 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
[2011/03/10 23:13:55 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2011/03/10 23:13:54 | 003,911,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011/03/10 23:13:54 | 003,027,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVCORE.DLL
[2011/03/10 23:13:54 | 001,698,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2011/03/10 23:13:54 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2011/03/10 23:13:54 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2011/03/10 23:13:54 | 000,109,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2011/03/10 23:13:54 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2011/03/10 23:13:53 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2011/03/10 23:13:53 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spinstall.exe
[2011/03/10 23:13:53 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spreview.exe
[2011/03/10 23:13:53 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpdd.dll
[2011/03/10 23:13:52 | 003,957,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
[2011/03/10 23:13:52 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2011/03/10 23:13:52 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2011/03/10 23:13:52 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2011/03/10 23:13:51 | 001,115,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
[2011/03/10 23:13:50 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuthFWSnapin.dll
[2011/03/10 23:13:50 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthFWSnapin.dll
[2011/03/10 23:13:50 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2011/03/10 23:13:50 | 000,867,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2011/03/10 23:13:49 | 003,391,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2011/03/10 23:13:49 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2011/03/10 23:13:48 | 001,456,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2011/03/10 23:13:47 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2011/03/10 23:13:46 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2011/03/10 23:13:46 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2011/03/10 23:13:46 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2011/03/10 23:13:46 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2011/03/10 23:13:45 | 001,116,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2011/03/10 23:13:45 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqmapi.dll
[2011/03/10 23:13:44 | 001,244,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2fs.dll
[2011/03/10 23:13:44 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
[2011/03/10 23:13:43 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2011/03/10 23:13:43 | 001,828,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d9.dll
[2011/03/10 23:13:43 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2011/03/10 23:13:43 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2011/03/10 23:13:42 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2011/03/10 23:13:42 | 001,900,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll
[2011/03/10 23:13:42 | 001,281,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werconcpl.dll
[2011/03/10 23:13:42 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2011/03/10 23:13:41 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011/03/10 23:13:41 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
[2011/03/10 23:13:41 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/03/10 23:13:41 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2011/03/10 23:13:41 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2011/03/10 23:13:40 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certmgr.dll
[2011/03/10 23:13:40 | 001,049,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2011/03/10 23:13:40 | 001,008,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2011/03/10 23:13:40 | 000,376,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2011/03/10 23:13:39 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2011/03/10 23:13:39 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2011/03/10 23:13:39 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2011/03/10 23:13:39 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2011/03/10 23:13:39 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2011/03/10 23:13:38 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
[2011/03/10 23:13:38 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2011/03/10 23:13:38 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceApi.dll
[2011/03/10 23:13:38 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2011/03/10 23:13:38 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shlwapi.dll
[2011/03/10 23:13:38 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsmf.dll
[2011/03/10 23:13:38 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2011/03/10 23:13:37 | 002,652,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netshell.dll
[2011/03/10 23:13:37 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2011/03/10 23:13:37 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedynos.dll
[2011/03/10 23:13:36 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2011/03/10 23:13:36 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2011/03/10 23:13:36 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
[2011/03/10 23:13:36 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2011/03/10 23:13:36 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.exe
[2011/03/10 23:13:36 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ws2_32.dll
[2011/03/10 23:13:36 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpmonui.dll
[2011/03/10 23:13:35 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2011/03/10 23:13:35 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2011/03/10 23:13:35 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2011/03/10 23:13:35 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
[2011/03/10 23:13:35 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2011/03/10 23:13:35 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2011/03/10 23:13:34 | 002,543,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdshext.dll
[2011/03/10 23:13:34 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Query.dll
[2011/03/10 23:13:34 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
[2011/03/10 23:13:34 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsmf.dll
[2011/03/10 23:13:34 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2011/03/10 23:13:34 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3api.dll
[2011/03/10 23:13:33 | 000,897,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroles.dll
[2011/03/10 23:13:33 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011/03/10 23:13:33 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QAGENT.DLL
[2011/03/10 23:13:31 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Vault.dll
[2011/03/10 23:13:31 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2011/03/10 23:13:31 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2011/03/10 23:13:31 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmd.exe
[2011/03/10 23:13:31 | 000,281,600 | ---- | C] (Microsoft) -- C:\Windows\SysNative\DShowRdpFilter.dll
[2011/03/10 23:13:30 | 002,522,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2011/03/10 23:13:30 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
[2011/03/10 23:13:29 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2011/03/10 23:13:29 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2011/03/10 23:13:29 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2011/03/10 23:13:28 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2011/03/10 23:13:27 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
[2011/03/10 23:13:25 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2011/03/10 23:13:25 | 001,190,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2011/03/10 23:13:25 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2011/03/10 23:13:24 | 001,363,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Query.dll
[2011/03/10 23:13:24 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxs.dll
[2011/03/10 23:13:24 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
[2011/03/10 23:13:24 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2011/03/10 23:13:24 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2011/03/10 23:13:23 | 001,808,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pnidui.dll
[2011/03/10 23:13:23 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2011/03/10 23:13:23 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
[2011/03/10 23:13:23 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\upnp.dll
[2011/03/10 23:13:23 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2011/03/10 23:13:22 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmcndmgr.dll
[2011/03/10 23:13:22 | 001,158,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webservices.dll
[2011/03/10 23:13:22 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ipsmsnap.dll
[2011/03/10 23:13:22 | 000,252,928 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\DShowRdpFilter.dll
[2011/03/10 23:13:22 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgprint.dll
[2011/03/10 23:13:22 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2011/03/10 23:13:21 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2011/03/10 23:13:21 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2fs.dll
[2011/03/10 23:13:21 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2011/03/10 23:13:21 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdrm.dll
[2011/03/10 23:13:21 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsta.dll
[2011/03/10 23:13:20 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlsrv32.dll
[2011/03/10 23:13:20 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceApi.dll
[2011/03/10 23:13:20 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2011/03/10 23:13:20 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2011/03/10 23:13:20 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011/03/10 23:13:20 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2011/03/10 23:13:20 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3api.dll
[2011/03/10 23:13:19 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMNetMgr.dll
[2011/03/10 23:13:19 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
[2011/03/10 23:13:19 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2011/03/10 23:13:19 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schtasks.exe
[2011/03/10 23:13:19 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prncache.dll
[2011/03/10 23:13:18 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xpsservices.dll
[2011/03/10 23:13:18 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certmgr.dll
[2011/03/10 23:13:18 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanpref.dll
[2011/03/10 23:13:18 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2011/03/10 23:13:18 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2011/03/10 23:13:18 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2011/03/10 23:13:18 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll
[2011/03/10 23:13:18 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
[2011/03/10 23:13:17 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2011/03/10 23:13:17 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\photowiz.dll
[2011/03/10 23:13:17 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedyn.dll
[2011/03/10 23:13:16 | 002,262,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncCenter.dll
[2011/03/10 23:13:16 | 002,072,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPEncEn.dll
[2011/03/10 23:13:16 | 001,082,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2011/03/10 23:13:16 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2011/03/10 23:13:16 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpeffects.dll
[2011/03/10 23:13:16 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2011/03/10 23:13:16 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmd.exe
[2011/03/10 23:13:16 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2011/03/10 23:13:16 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2011/03/10 23:13:15 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2011/03/10 23:13:15 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fde.dll
[2011/03/10 23:13:14 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localsec.dll
[2011/03/10 23:13:14 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2.dll
[2011/03/10 23:13:14 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
[2011/03/10 23:13:14 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2011/03/10 23:13:14 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netdiagfx.dll
[2011/03/10 23:13:14 | 000,298,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
[2011/03/10 23:13:14 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
[2011/03/10 23:13:14 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2011/03/10 23:13:14 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedynos.dll
[2011/03/10 23:13:14 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2011/03/10 23:13:13 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcpipcfg.dll
[2011/03/10 23:13:13 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSHVHOST.DLL
[2011/03/10 23:13:13 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
[2011/03/10 23:13:13 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netid.dll
[2011/03/10 23:13:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2011/03/10 23:13:12 | 000,762,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroles.dll
[2011/03/10 23:13:12 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biocpl.dll
[2011/03/10 23:13:12 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spp.dll
[2011/03/10 23:13:12 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2011/03/10 23:13:12 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2011/03/10 23:13:11 | 002,746,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2011/03/10 23:13:11 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2011/03/10 23:13:09 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2011/03/10 23:13:09 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
[2011/03/10 23:13:09 | 000,571,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspbda.dll
[2011/03/10 23:13:09 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scansetting.dll
[2011/03/10 23:13:09 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\credui.dll
[2011/03/10 23:13:08 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2011/03/10 23:13:08 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2011/03/10 23:13:08 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2011/03/10 23:13:08 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wusa.exe
[2011/03/10 23:13:08 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
[2011/03/10 23:13:08 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitagent.exe
[2011/03/10 23:13:08 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2011/03/10 23:13:07 | 000,854,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
[2011/03/10 23:13:07 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll
[2011/03/10 23:13:07 | 000,508,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxgi.dll
[2011/03/10 23:13:07 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2011/03/10 23:13:07 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2011/03/10 23:13:07 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2011/03/10 23:13:07 | 000,144,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
[2011/03/10 23:13:06 | 003,211,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2011/03/10 23:13:06 | 000,934,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallControlPanel.dll
[2011/03/10 23:13:06 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2011/03/10 23:13:06 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wisptis.exe
[2011/03/10 23:13:06 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
[2011/03/10 23:13:06 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2011/03/10 23:13:06 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetup.exe
[2011/03/10 23:13:05 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2011/03/10 23:13:05 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2011/03/10 23:13:05 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
[2011/03/10 23:13:04 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2011/03/10 23:13:04 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2011/03/10 23:13:04 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlsrv32.dll
[2011/03/10 23:13:04 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\calc.exe
[2011/03/10 23:13:04 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2011/03/10 23:13:04 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXP.dll
[2011/03/10 23:13:04 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
[2011/03/10 23:13:04 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cfgmgr32.dll
[2011/03/10 23:13:04 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetapi.dll
[2011/03/10 23:13:03 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll
[2011/03/10 23:13:03 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2011/03/10 23:13:03 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapphost.dll
[2011/03/10 23:13:03 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\upnp.dll
[2011/03/10 23:13:03 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprapi.dll
[2011/03/10 23:13:03 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2011/03/10 23:13:03 | 000,128,000 | ---- | C] (Microsoft) -- C:\Windows\SysNative\Robocopy.exe
[2011/03/10 23:13:03 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys
[2011/03/10 23:13:02 | 002,494,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netshell.dll
[2011/03/10 23:13:02 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DxpTaskSync.dll
[2011/03/10 23:13:02 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerfCenterCPL.dll
[2011/03/10 23:13:02 | 000,263,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2011/03/10 23:13:02 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scecli.dll
[2011/03/10 23:13:02 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2011/03/10 23:13:02 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
[2011/03/10 23:13:01 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSMPEG2ENC.DLL
[2011/03/10 23:13:01 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2011/03/10 23:13:01 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
[2011/03/10 23:13:01 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2011/03/10 23:13:01 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
[2011/03/10 23:13:01 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2011/03/10 23:13:00 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2011/03/10 23:13:00 | 002,341,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msi.dll
[2011/03/10 23:13:00 | 000,932,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
[2011/03/10 23:13:00 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXPTaskRingtone.dll
[2011/03/10 23:13:00 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpeffects.dll
[2011/03/10 23:13:00 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onex.dll
[2011/03/10 23:13:00 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2011/03/10 23:13:00 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\net1.exe
[2011/03/10 23:13:00 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2011/03/10 23:13:00 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prncache.dll
[2011/03/10 23:13:00 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2011/03/10 23:12:59 | 001,363,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2011/03/10 23:12:59 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2011/03/10 23:12:59 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2011/03/10 23:12:58 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdengin2.dll
[2011/03/10 23:12:58 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2011/03/10 23:12:58 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2011/03/10 23:12:58 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2011/03/10 23:12:58 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlangpui.dll
[2011/03/10 23:12:58 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiadefui.dll
[2011/03/10 23:12:58 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
[2011/03/10 23:12:58 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2011/03/10 23:12:58 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scansetting.dll
[2011/03/10 23:12:58 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquoui.dll
[2011/03/10 23:12:57 | 002,504,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVCORE.DLL
[2011/03/10 23:12:57 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcenter.dll
[2011/03/10 23:12:57 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlangpui.dll
[2011/03/10 23:12:57 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVol.exe
[2011/03/10 23:12:57 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MMDevAPI.dll
[2011/03/10 23:12:57 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2011/03/10 23:12:57 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\regapi.dll
[2011/03/10 23:12:57 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\davclnt.dll
[2011/03/10 23:12:57 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samcli.dll
[2011/03/10 23:12:57 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2011/03/10 23:12:56 | 002,621,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2011/03/10 23:12:56 | 002,311,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdshext.dll
[2011/03/10 23:12:56 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pnidui.dll
[2011/03/10 23:12:56 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
[2011/03/10 23:12:56 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2011/03/10 23:12:56 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srchadmin.dll
[2011/03/10 23:12:56 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSHVHOST.DLL
[2011/03/10 23:12:56 | 000,112,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2011/03/10 23:12:56 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2011/03/10 23:12:56 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QUTIL.DLL
[2011/03/10 23:12:55 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SyncCenter.dll
[2011/03/10 23:12:55 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2011/03/10 23:12:55 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2011/03/10 23:12:55 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netdiagfx.dll
[2011/03/10 23:12:55 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fde.dll
[2011/03/10 23:12:55 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupcl.exe
[2011/03/10 23:12:55 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2011/03/10 23:12:54 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
[2011/03/10 23:12:54 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TabletPC.cpl
[2011/03/10 23:12:54 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2011/03/10 23:12:54 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netiohlp.dll
[2011/03/10 23:12:54 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2011/03/10 23:12:54 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mimefilt.dll
[2011/03/10 23:12:53 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
[2011/03/10 23:12:53 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgcpl.dll
[2011/03/10 23:12:53 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2011/03/10 23:12:53 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msconfig.exe
[2011/03/10 23:12:53 | 000,166,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
[2011/03/10 23:12:53 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSCard.dll
[2011/03/10 23:12:53 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2011/03/10 23:12:53 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsmproxy.dll
[2011/03/10 23:12:52 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2011/03/10 23:12:52 | 000,974,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFS.exe
[2011/03/10 23:12:52 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2011/03/10 23:12:52 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayCpl.dll
[2011/03/10 23:12:52 | 000,633,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched20.dll
[2011/03/10 23:12:52 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2.dll
[2011/03/10 23:12:52 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxclu.dll
[2011/03/10 23:12:52 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011/03/10 23:12:52 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winsta.dll
[2011/03/10 23:12:52 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2011/03/10 23:12:52 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2011/03/10 23:12:51 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2011/03/10 23:12:51 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DXPTaskRingtone.dll
[2011/03/10 23:12:51 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscmmc.dll
[2011/03/10 23:12:50 | 002,193,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themecpl.dll
[2011/03/10 23:12:50 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPEncEn.dll
[2011/03/10 23:12:50 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2011/03/10 23:12:50 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercpl.dll
[2011/03/10 23:12:50 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sharemediacpl.dll
[2011/03/10 23:12:50 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onex.dll
[2011/03/10 23:12:50 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoncli.dll
[2011/03/10 23:12:50 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nci.dll
[2011/03/10 23:12:50 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RpcRtRemote.dll
[2011/03/10 23:12:49 | 002,250,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsCpl.dll
[2011/03/10 23:12:49 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2011/03/10 23:12:49 | 000,668,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe
[2011/03/10 23:12:49 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autofmt.exe
[2011/03/10 23:12:49 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eudcedit.exe
[2011/03/10 23:12:49 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
[2011/03/10 23:12:49 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netjoin.dll
[2011/03/10 23:12:49 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiohlp.dll
[2011/03/10 23:12:49 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
[2011/03/10 23:12:49 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011/03/10 23:12:49 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnikeapi.dll
[2011/03/10 23:12:48 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe
[2011/03/10 23:12:48 | 000,763,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autofmt.exe
[2011/03/10 23:12:48 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoconv.exe
[2011/03/10 23:12:48 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2011/03/10 23:12:48 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
[2011/03/10 23:12:48 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppcomapi.dll
[2011/03/10 23:12:48 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AudioSes.dll
[2011/03/10 23:12:48 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msutb.dll
[2011/03/10 23:12:48 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2011/03/10 23:12:48 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IPHLPAPI.DLL
[2011/03/10 23:12:48 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\proquota.exe
[2011/03/10 23:12:47 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoconv.exe
[2011/03/10 23:12:47 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpd_ci.dll
[2011/03/10 23:12:47 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshipsec.dll
[2011/03/10 23:12:47 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercpl.dll
[2011/03/10 23:12:47 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ipsmsnap.dll
[2011/03/10 23:12:47 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srchadmin.dll
[2011/03/10 23:12:47 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapphost.dll
[2011/03/10 23:12:47 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpipcfg.dll
[2011/03/10 23:12:47 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe
[2011/03/10 23:12:47 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
[2011/03/10 23:12:47 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shsetup.dll
[2011/03/10 23:12:47 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2011/03/10 23:12:47 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2011/03/10 23:12:47 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\regapi.dll
[2011/03/10 23:12:47 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mimefilt.dll
[2011/03/10 23:12:46 | 001,466,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011/03/10 23:12:46 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdclt.exe
[2011/03/10 23:12:46 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2011/03/10 23:12:46 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuxiliaryDisplayCpl.dll
[2011/03/10 23:12:46 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanui.dll
[2011/03/10 23:12:46 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
[2011/03/10 23:12:46 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll
[2011/03/10 23:12:46 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedyn.dll
[2011/03/10 23:12:46 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys
[2011/03/10 23:12:46 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2011/03/10 23:12:46 | 000,155,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscorier.dll
[2011/03/10 23:12:46 | 000,154,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscorier.dll
[2011/03/10 23:12:45 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2011/03/10 23:12:45 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontext.dll
[2011/03/10 23:12:45 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2011/03/10 23:12:45 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2011/03/10 23:12:45 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprddm.dll
[2011/03/10 23:12:45 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QAGENT.DLL
[2011/03/10 23:12:45 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netid.dll
[2011/03/10 23:12:44 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2011/03/10 23:12:44 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mblctr.exe
[2011/03/10 23:12:44 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2011/03/10 23:12:44 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll
[2011/03/10 23:12:44 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2011/03/10 23:12:44 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2011/03/10 23:12:44 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpsrcwp.dll
[2011/03/10 23:12:44 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2011/03/10 23:12:44 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2011/03/10 23:12:43 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanpref.dll

[socrates]

[2011/03/10 23:12:43 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DiagCpl.dll
[2011/03/10 23:12:43 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Vault.dll
[2011/03/10 23:12:43 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2011/03/10 23:12:43 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nci.dll
[2011/03/10 23:12:43 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011/03/10 23:12:42 | 002,217,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bootres.dll
[2011/03/10 23:12:42 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMNetMgr.dll
[2011/03/10 23:12:42 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
[2011/03/10 23:12:42 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2011/03/10 23:12:42 | 000,433,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MCEWMDRMNDBootstrap.dll
[2011/03/10 23:12:42 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksproxy.ax
[2011/03/10 23:12:42 | 000,098,816 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\Robocopy.exe
[2011/03/10 23:12:42 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSTPager.ax
[2011/03/10 23:12:42 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2011/03/10 23:12:41 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DxpTaskSync.dll
[2011/03/10 23:12:41 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2011/03/10 23:12:41 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxclu.dll
[2011/03/10 23:12:41 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskmgr.exe
[2011/03/10 23:12:41 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2011/03/10 23:12:41 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasppp.dll
[2011/03/10 23:12:41 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3cfg.dll
[2011/03/10 23:12:40 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnfldr.dll
[2011/03/10 23:12:40 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2011/03/10 23:12:40 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxdiagn.dll
[2011/03/10 23:12:40 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskmgr.exe
[2011/03/10 23:12:40 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssphtb.dll
[2011/03/10 23:12:40 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2011/03/10 23:12:40 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2011/03/10 23:12:40 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hbaapi.dll
[2011/03/10 23:12:39 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\termmgr.dll
[2011/03/10 23:12:39 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pdh.dll
[2011/03/10 23:12:39 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eudcedit.exe
[2011/03/10 23:12:39 | 000,155,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2011/03/10 23:12:39 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDShServiceObj.dll
[2011/03/10 23:12:39 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\proquota.exe
[2011/03/10 23:12:38 | 003,745,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\accessibilitycpl.dll
[2011/03/10 23:12:38 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FirewallControlPanel.dll
[2011/03/10 23:12:38 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
[2011/03/10 23:12:38 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiadefui.dll
[2011/03/10 23:12:38 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll
[2011/03/10 23:12:38 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAC3ENC.DLL
[2011/03/10 23:12:38 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll
[2011/03/10 23:12:38 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasppp.dll
[2011/03/10 23:12:38 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2011/03/10 23:12:38 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2011/03/10 23:12:38 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logoncli.dll
[2011/03/10 23:12:38 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
[2011/03/10 23:12:37 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsCpl.dll
[2011/03/10 23:12:37 | 002,157,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themecpl.dll
[2011/03/10 23:12:37 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slui.exe
[2011/03/10 23:12:37 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2011/03/10 23:12:36 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2011/03/10 23:12:36 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
[2011/03/10 23:12:36 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2011/03/10 23:12:36 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hgcpl.dll
[2011/03/10 23:12:36 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\defaultlocationcpl.dll
[2011/03/10 23:12:36 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscmmc.dll
[2011/03/10 23:12:35 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontext.dll
[2011/03/10 23:12:35 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sud.dll
[2011/03/10 23:12:35 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCenter.dll
[2011/03/10 23:12:35 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscms.dll
[2011/03/10 23:12:35 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scecli.dll
[2011/03/10 23:12:35 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mpeg2Data.ax
[2011/03/10 23:12:35 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscories.dll
[2011/03/10 23:12:34 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkmap.dll
[2011/03/10 23:12:34 | 001,065,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2011/03/10 23:12:34 | 000,780,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
[2011/03/10 23:12:34 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\localsec.dll
[2011/03/10 23:12:34 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2011/03/10 23:12:34 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprddm.dll
[2011/03/10 23:12:34 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskbarcpl.dll
[2011/03/10 23:12:34 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OnLineIDCpl.dll
[2011/03/10 23:12:34 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2011/03/10 23:12:34 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2011/03/10 23:12:33 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcenter.dll
[2011/03/10 23:12:33 | 000,740,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
[2011/03/10 23:12:33 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2011/03/10 23:12:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PerfCenterCPL.dll
[2011/03/10 23:12:33 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2011/03/10 23:12:33 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2011/03/10 23:12:33 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2011/03/10 23:12:33 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2011/03/10 23:12:33 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanui.dll
[2011/03/10 23:12:33 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl
[2011/03/10 23:12:33 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twext.dll
[2011/03/10 23:12:33 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prntvpt.dll
[2011/03/10 23:12:33 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2011/03/10 23:12:32 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OobeFldr.dll
[2011/03/10 23:12:32 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroleui.dll
[2011/03/10 23:12:32 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdedit.exe
[2011/03/10 23:12:32 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVol.exe
[2011/03/10 23:12:32 | 000,288,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2011/03/10 23:12:32 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxlib.dll
[2011/03/10 23:12:32 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recovery.dll
[2011/03/10 23:12:32 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\w32tm.exe
[2011/03/10 23:12:31 | 003,727,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\accessibilitycpl.dll
[2011/03/10 23:12:31 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsuiext.dll
[2011/03/10 23:12:31 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizeng.dll
[2011/03/10 23:12:31 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MediaMetadataHandler.dll
[2011/03/10 23:12:31 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroleui.dll
[2011/03/10 23:12:31 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cca.dll
[2011/03/10 23:12:31 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\isoburn.exe
[2011/03/10 23:12:31 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sisbkup.dll
[2011/03/10 23:12:30 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl
[2011/03/10 23:12:30 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efscore.dll
[2011/03/10 23:12:30 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VBICodec.ax
[2011/03/10 23:12:30 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzutil.exe
[2011/03/10 23:12:29 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdcpl.dll
[2011/03/10 23:12:29 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\main.cpl
[2011/03/10 23:12:29 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shwebsvc.dll
[2011/03/10 23:12:29 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\systemcpl.dll
[2011/03/10 23:12:29 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\zipfldr.dll
[2011/03/10 23:12:29 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recdisc.exe
[2011/03/10 23:12:29 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAC3ENC.DLL
[2011/03/10 23:12:29 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syncui.dll
[2011/03/10 23:12:29 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll
[2011/03/10 23:12:29 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoplay.dll
[2011/03/10 23:12:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2011/03/10 23:12:29 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll
[2011/03/10 23:12:28 | 001,003,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2011/03/10 23:12:28 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2011/03/10 23:12:28 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysclass.dll
[2011/03/10 23:12:28 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adsldp.dll
[2011/03/10 23:12:28 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netjoin.dll
[2011/03/10 23:12:28 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptui.dll
[2011/03/10 23:12:28 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2011/03/10 23:12:27 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkmap.dll
[2011/03/10 23:12:27 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenterCPL.dll
[2011/03/10 23:12:27 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2011/03/10 23:12:27 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
[2011/03/10 23:12:27 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wusa.exe
[2011/03/10 23:12:27 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCEWMDRMNDBootstrap.dll
[2011/03/10 23:12:27 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayServices.dll
[2011/03/10 23:12:26 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenter.dll
[2011/03/10 23:12:26 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizeng.dll
[2011/03/10 23:12:26 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnfldr.dll
[2011/03/10 23:12:26 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2011/03/10 23:12:26 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OnLineIDCpl.dll
[2011/03/10 23:12:26 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksxbar.ax
[2011/03/10 23:12:25 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sud.dll
[2011/03/10 23:12:25 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\termmgr.dll
[2011/03/10 23:12:25 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2011/03/10 23:12:25 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\photowiz.dll
[2011/03/10 23:12:25 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MediaMetadataHandler.dll
[2011/03/10 23:12:25 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
[2011/03/10 23:12:25 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011/03/10 23:12:24 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2011/03/10 23:12:24 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
[2011/03/10 23:12:24 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
[2011/03/10 23:12:24 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sethc.exe
[2011/03/10 23:12:24 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iprtrmgr.dll
[2011/03/10 23:12:24 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2011/03/10 23:12:23 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2011/03/10 23:12:23 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2011/03/10 23:12:23 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\defaultlocationcpl.dll
[2011/03/10 23:12:23 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2011/03/10 23:12:23 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntlanman.dll
[2011/03/10 23:12:23 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3cfg.dll
[2011/03/10 23:12:23 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ftp.exe
[2011/03/10 23:12:22 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
[2011/03/10 23:12:22 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlcese30.dll
[2011/03/10 23:12:22 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shwebsvc.dll
[2011/03/10 23:12:22 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl
[2011/03/10 23:12:22 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdm.tsp
[2011/03/10 23:12:22 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iprtrmgr.dll
[2011/03/10 23:12:22 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efscore.dll
[2011/03/10 23:12:22 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifsutil.dll
[2011/03/10 23:12:22 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2011/03/10 23:12:22 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserAccountControlSettings.dll
[2011/03/10 23:12:22 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpd3d.dll
[2011/03/10 23:12:22 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2011/03/10 23:12:22 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2011/03/10 23:12:22 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2011/03/10 23:12:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sisbkup.dll
[2011/03/10 23:12:21 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenterCPL.dll
[2011/03/10 23:12:21 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ssText3d.scr
[2011/03/10 23:12:21 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2011/03/10 23:12:21 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iTVData.dll
[2011/03/10 23:12:21 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2011/03/10 23:12:21 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syncui.dll
[2011/03/10 23:12:21 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoplay.dll
[2011/03/10 23:12:21 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011/03/10 23:12:20 | 000,781,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2011/03/10 23:12:20 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2011/03/10 23:12:20 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2011/03/10 23:12:20 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceCenter.dll
[2011/03/10 23:12:20 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquoui.dll
[2011/03/10 23:12:20 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srvcli.dll
[2011/03/10 23:12:20 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nslookup.exe
[2011/03/10 23:12:20 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntlanman.dll
[2011/03/10 23:12:20 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSTPager.ax
[2011/03/10 23:12:20 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2011/03/10 23:12:20 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slwga.dll
[2011/03/10 23:12:19 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OobeFldr.dll
[2011/03/10 23:12:19 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2011/03/10 23:12:19 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched20.dll
[2011/03/10 23:12:19 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll
[2011/03/10 23:12:19 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.dll
[2011/03/10 23:12:19 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.dll
[2011/03/10 23:12:19 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sethc.exe
[2011/03/10 23:12:19 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wavemsp.dll
[2011/03/10 23:12:19 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairingFolder.dll
[2011/03/10 23:12:19 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdboot.exe
[2011/03/10 23:12:19 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
[2011/03/10 23:12:19 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2011/03/10 23:12:19 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPHLPR.DLL
[2011/03/10 23:12:19 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acppage.dll
[2011/03/10 23:12:18 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2011/03/10 23:12:18 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srrstr.dll
[2011/03/10 23:12:18 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsquirt.exe
[2011/03/10 23:12:18 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\activeds.dll
[2011/03/10 23:12:18 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
[2011/03/10 23:12:18 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll
[2011/03/10 23:12:18 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPHLPR.DLL
[2011/03/10 23:12:18 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppnp.dll
[2011/03/10 23:12:17 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
[2011/03/10 23:12:17 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpsrcwp.dll
[2011/03/10 23:12:17 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\migisol.dll
[2011/03/10 23:12:17 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabinet.dll
[2011/03/10 23:12:17 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011/03/10 23:12:16 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2011/03/10 23:12:16 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2011/03/10 23:12:16 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfrgui.exe
[2011/03/10 23:12:16 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2011/03/10 23:12:16 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshipsec.dll
[2011/03/10 23:12:16 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2011/03/10 23:12:16 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wavemsp.dll
[2011/03/10 23:12:16 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll
[2011/03/10 23:12:16 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\remotepg.dll
[2011/03/10 23:12:16 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kstvtune.ax
[2011/03/10 23:12:16 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\isoburn.exe
[2011/03/10 23:12:16 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wkscli.dll
[2011/03/10 23:12:16 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ftp.exe
[2011/03/10 23:12:16 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll
[2011/03/10 23:12:15 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsuiext.dll
[2011/03/10 23:12:15 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll
[2011/03/10 23:12:15 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfrgui.exe
[2011/03/10 23:12:15 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2011/03/10 23:12:15 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpdxm.dll
[2011/03/10 23:12:15 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3ui.dll
[2011/03/10 23:12:15 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2011/03/10 23:12:15 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2011/03/10 23:12:15 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\net1.exe
[2011/03/10 23:12:15 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsnmp32.dll
[2011/03/10 23:12:15 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzutil.exe
[2011/03/10 23:12:14 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2011/03/10 23:12:14 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmdev.dll
[2011/03/10 23:12:14 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll
[2011/03/10 23:12:14 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimgapi.dll
[2011/03/10 23:12:14 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsqmcons.exe
[2011/03/10 23:12:14 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdm.tsp
[2011/03/10 23:12:14 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstask.dll
[2011/03/10 23:12:14 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2011/03/10 23:12:14 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetup.exe
[2011/03/10 23:12:14 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twext.dll
[2011/03/10 23:12:14 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wtsapi32.dll
[2011/03/10 23:12:14 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFaultSecure.exe
[2011/03/10 23:12:13 | 001,911,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2011/03/10 23:12:13 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Bubbles.scr
[2011/03/10 23:12:13 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2011/03/10 23:12:13 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2011/03/10 23:12:13 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
[2011/03/10 23:12:13 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
[2011/03/10 23:12:13 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\Windows\twain_32.dll
[2011/03/10 23:12:13 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2011/03/10 23:12:12 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\main.cpl
[2011/03/10 23:12:12 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskraid.exe
[2011/03/10 23:12:12 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Ribbons.scr
[2011/03/10 23:12:12 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qasf.dll
[2011/03/10 23:12:12 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2011/03/10 23:12:12 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qcap.dll
[2011/03/10 23:12:12 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ifsutil.dll
[2011/03/10 23:12:12 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2011/03/10 23:12:12 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\uxlib.dll
[2011/03/10 23:12:12 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupugc.exe
[2011/03/10 23:12:12 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdmat.dll
[2011/03/10 23:12:12 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsium.dll
[2011/03/10 23:12:12 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
[2011/03/10 23:12:11 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ssText3d.scr
[2011/03/10 23:12:11 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mystify.scr
[2011/03/10 23:12:11 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll
[2011/03/10 23:12:11 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2011/03/10 23:12:11 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2011/03/10 23:12:10 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2011/03/10 23:12:10 | 000,573,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2011/03/10 23:12:10 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsAnytimeUpgradeResults.exe
[2011/03/10 23:12:10 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\audiodev.dll
[2011/03/10 23:12:10 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2011/03/10 23:12:10 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2011/03/10 23:12:10 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairingFolder.dll
[2011/03/10 23:12:10 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfmon.exe
[2011/03/10 23:12:10 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpshell.dll
[2011/03/10 23:12:10 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nslookup.exe
[2011/03/10 23:12:10 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll
[2011/03/10 23:12:09 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbghelp.dll
[2011/03/10 23:12:09 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2011/03/10 23:12:09 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimserv.exe
[2011/03/10 23:12:09 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskraid.exe
[2011/03/10 23:12:09 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qasf.dll
[2011/03/10 23:12:09 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionQueue.dll
[2011/03/10 23:12:09 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
[2011/03/10 23:12:09 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2011/03/10 23:12:09 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tlscsp.dll
[2011/03/10 23:12:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\umb.dll
[2011/03/10 23:12:09 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPCRYPT.DLL
[2011/03/10 23:12:09 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\acppage.dll
[2011/03/10 23:12:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AzSqlExt.dll
[2011/03/10 23:12:09 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netutils.dll
[2011/03/10 23:12:08 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
[2011/03/10 23:12:08 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2011/03/10 23:12:08 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2011/03/10 23:12:08 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2011/03/10 23:12:08 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdwcn.dll
[2011/03/10 23:12:08 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2011/03/10 23:12:08 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfmon.exe
[2011/03/10 23:12:08 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\remotepg.dll
[2011/03/10 23:12:08 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiavideo.dll
[2011/03/10 23:12:08 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QUTIL.DLL
[2011/03/10 23:12:08 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2011/03/10 23:12:08 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\runonce.exe
[2011/03/10 23:12:08 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPCRYPT.DLL
[2011/03/10 23:12:07 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
[2011/03/10 23:12:07 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSDECD.DLL
[2011/03/10 23:12:07 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpdxm.dll
[2011/03/10 23:12:07 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsbas.dll
[2011/03/10 23:12:07 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetapi.dll
[2011/03/10 23:12:07 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MdSched.exe
[2011/03/10 23:12:07 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2011/03/10 23:12:07 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserAccountControlSettings.dll
[2011/03/10 23:12:07 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PrintIsolationProxy.dll
[2011/03/10 23:12:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vpnikeapi.dll
[2011/03/10 23:12:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syssetup.dll
[2011/03/10 23:12:06 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onexui.dll
[2011/03/10 23:12:06 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nltest.exe
[2011/03/10 23:12:06 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstask.dll
[2011/03/10 23:12:06 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iTVData.dll
[2011/03/10 23:12:06 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxdiagn.dll
[2011/03/10 23:12:06 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdwcn.dll
[2011/03/10 23:12:06 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdsbas.dll
[2011/03/10 23:12:06 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys
[2011/03/10 23:12:06 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Kswdmcap.ax
[2011/03/10 23:12:06 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2011/03/10 23:12:06 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logagent.exe
[2011/03/10 23:12:06 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2011/03/10 23:12:06 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\runonce.exe
[2011/03/10 23:12:05 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
[2011/03/10 23:12:05 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsadmin.exe
[2011/03/10 23:12:05 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2011/03/10 23:12:05 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shacct.dll
[2011/03/10 23:12:05 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSVRMGMT.DLL
[2011/03/10 23:12:05 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
[2011/03/10 23:12:05 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
[2011/03/10 23:12:04 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmnet.dll
[2011/03/10 23:12:04 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmdev.dll
[2011/03/10 23:12:04 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10level9.dll
[2011/03/10 23:12:04 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDSp.dll
[2011/03/10 23:12:04 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qcap.dll
[2011/03/10 23:12:04 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shacct.dll
[2011/03/10 23:12:04 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpshell.dll
[2011/03/10 23:12:04 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2011/03/10 23:12:04 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tabcal.exe
[2011/03/10 23:12:03 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
[2011/03/10 23:12:03 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2011/03/10 23:12:03 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2011/03/10 23:12:03 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsadmin.exe
[2011/03/10 23:12:03 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2011/03/10 23:12:03 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2011/03/10 23:12:03 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2011/03/10 23:12:03 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdmat.dll
[2011/03/10 23:12:03 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lsmproxy.dll
[2011/03/10 23:12:02 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2011/03/10 23:12:02 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Bubbles.scr
[2011/03/10 23:12:02 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlcese30.dll
[2011/03/10 23:12:02 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdv.dll
[2011/03/10 23:12:02 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdh.dll
[2011/03/10 23:12:02 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceSyncProvider.dll
[2011/03/10 23:12:02 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprapi.dll
[2011/03/10 23:12:02 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2011/03/10 23:12:02 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011/03/10 23:12:02 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kstvtune.ax
[2011/03/10 23:12:02 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spbcd.dll
[2011/03/10 23:12:02 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpd3d.dll
[2011/03/10 23:12:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsium.dll
[2011/03/10 23:12:01 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceStatus.dll
[2011/03/10 23:12:01 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceStatus.dll
[2011/03/10 23:12:01 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WPDSp.dll
[2011/03/10 23:12:01 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3ui.dll
[2011/03/10 23:12:01 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Ribbons.scr
[2011/03/10 23:12:01 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceSyncProvider.dll
[2011/03/10 23:12:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2011/03/10 23:12:01 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl
[2011/03/10 23:12:01 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\desk.cpl
[2011/03/10 23:12:01 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fphc.dll
[2011/03/10 23:12:01 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSVRMGMT.DLL
[2011/03/10 23:12:01 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2011/03/10 23:12:01 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\olethk32.dll
[2011/03/10 23:12:01 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptui.dll
[2011/03/10 23:12:01 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2011/03/10 23:12:00 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
[2011/03/10 23:12:00 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2011/03/10 23:12:00 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2011/03/10 23:12:00 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mystify.scr
[2011/03/10 23:12:00 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3msm.dll
[2011/03/10 23:12:00 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fphc.dll
[2011/03/10 23:12:00 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2011/03/10 23:12:00 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\amstream.dll
[2011/03/10 23:12:00 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapistub.dll
[2011/03/10 23:12:00 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapi32.dll
[2011/03/10 23:12:00 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mpeg2Data.ax
[2011/03/10 23:12:00 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011/03/10 23:12:00 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\takeown.exe
[2011/03/10 23:12:00 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2011/03/10 23:12:00 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PnPUnattend.exe
[2011/03/10 23:12:00 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\utildll.dll
[2011/03/10 23:11:59 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10.IME
[2011/03/10 23:11:59 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSDECD.DLL
[2011/03/10 23:11:59 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
[2011/03/10 23:11:59 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VBICodec.ax
[2011/03/10 23:11:59 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EhStorAPI.dll
[2011/03/10 23:11:59 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiavideo.dll
[2011/03/10 23:11:59 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Kswdmcap.ax
[2011/03/10 23:11:59 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\takeown.exe
[2011/03/10 23:11:58 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmnet.dll
[2011/03/10 23:11:58 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdv.dll
[2011/03/10 23:11:58 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2011/03/10 23:11:58 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2011/03/10 23:11:58 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imagehlp.dll
[2011/03/10 23:11:58 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EhStorAPI.dll
[2011/03/10 23:11:58 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmstp.exe
[2011/03/10 23:11:58 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QCLIPROV.DLL
[2011/03/10 23:11:58 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2011/03/10 23:11:58 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2011/03/10 23:11:58 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertPolEng.dll
[2011/03/10 23:11:58 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\djoin.exe
[2011/03/10 23:11:58 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimgvw.dll
[2011/03/10 23:11:58 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HotStartUserAgent.dll
[2011/03/10 23:11:58 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nrpsrv.dll
[2011/03/10 23:11:57 | 000,681,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2011/03/10 23:11:57 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppinst.dll
[2011/03/10 23:11:57 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSDvbNP.ax
[2011/03/10 23:11:57 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QCLIPROV.DLL
[2011/03/10 23:11:57 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cca.dll
[2011/03/10 23:11:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WavDest.dll
[2011/03/10 23:11:56 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
[2011/03/10 23:11:56 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mydocs.dll
[2011/03/10 23:11:56 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupcln.dll
[2011/03/10 23:11:56 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmstp.exe
[2011/03/10 23:11:56 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdProxy.dll
[2011/03/10 23:11:56 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MuiUnattend.exe
[2011/03/10 23:11:56 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\g711codc.ax
[2011/03/10 23:11:56 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vfwwdm32.dll
[2011/03/10 23:11:56 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsnmp32.dll
[2011/03/10 23:11:56 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MultiDigiMon.exe
[2011/03/10 23:11:56 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2011/03/10 23:11:56 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdhui.dll
[2011/03/10 23:11:56 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2011/03/10 23:11:56 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
[2011/03/10 23:11:55 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
[2011/03/10 23:11:55 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskpart.exe
[2011/03/10 23:11:55 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsicli.exe
[2011/03/10 23:11:55 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsicli.exe
[2011/03/10 23:11:55 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\desk.cpl
[2011/03/10 23:11:55 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mobsync.exe
[2011/03/10 23:11:55 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbisurf.ax
[2011/03/10 23:11:55 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2011/03/10 23:11:55 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AzSqlExt.dll
[2011/03/10 23:11:55 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiougc.exe
[2011/03/10 23:11:55 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BWUnpairElevated.dll
[2011/03/10 23:11:54 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2011/03/10 23:11:54 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2011/03/10 23:11:54 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\itircl.dll
[2011/03/10 23:11:54 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\itircl.dll
[2011/03/10 23:11:54 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mydocs.dll
[2011/03/10 23:11:54 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskpart.exe
[2011/03/10 23:11:54 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3msm.dll
[2011/03/10 23:11:54 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2011/03/10 23:11:54 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
[2011/03/10 23:11:54 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\amstream.dll
[2011/03/10 23:11:54 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastapi.dll
[2011/03/10 23:11:54 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spbcd.dll
[2011/03/10 23:11:54 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2011/03/10 23:11:54 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
[2011/03/10 23:11:54 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdmo.dll
[2011/03/10 23:11:54 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netbtugc.exe
[2011/03/10 23:11:53 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10.IME
[2011/03/10 23:11:53 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2011/03/10 23:11:53 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertPolEng.dll
[2011/03/10 23:11:53 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksxbar.ax
[2011/03/10 23:11:53 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2011/03/10 23:11:53 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syssetup.dll
[2011/03/10 23:11:52 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSTIFF.dll
[2011/03/10 23:11:52 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2011/03/10 23:11:52 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppc.dll
[2011/03/10 23:11:52 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpps.dll
[2011/03/10 23:11:52 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
[2011/03/10 23:11:52 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
[2011/03/10 23:11:52 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2011/03/10 23:11:52 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
[2011/03/10 23:11:52 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tlscsp.dll
[2011/03/10 23:11:52 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\findstr.exe
[2011/03/10 23:11:52 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\luainstall.dll
[2011/03/10 23:11:52 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciqtz32.dll
[2011/03/10 23:11:52 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\choice.exe
[2011/03/10 23:11:52 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2011/03/10 23:11:52 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2011/03/10 23:11:52 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFaultSecure.exe
[2011/03/10 23:11:52 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
[2011/03/10 23:11:51 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onexui.dll
[2011/03/10 23:11:51 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2011/03/10 23:11:51 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mobsync.exe
[2011/03/10 23:11:51 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciqtz32.dll
[2011/03/10 23:11:51 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2011/03/10 23:11:50 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppc.dll
[2011/03/10 23:11:50 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2011/03/10 23:11:50 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\manage-bde.exe
[2011/03/10 23:11:50 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabinet.dll
[2011/03/10 23:11:50 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetmib1.dll
[2011/03/10 23:11:50 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSDvbNP.ax
[2011/03/10 23:11:50 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\repair-bde.exe
[2011/03/10 23:11:50 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdiasqmmodule.dll
[2011/03/10 23:11:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2011/03/10 23:11:50 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schedcli.dll
[2011/03/10 23:11:50 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spopk.dll
[2011/03/10 23:11:50 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll
[2011/03/10 23:11:49 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDPENCDD.dll
[2011/03/10 23:11:49 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2011/03/10 23:11:49 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\luainstall.dll
[2011/03/10 23:11:49 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shimgvw.dll
[2011/03/10 23:11:49 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unlodctr.exe
[2011/03/10 23:11:49 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbisurf.ax
[2011/03/10 23:11:49 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profprov.dll
[2011/03/10 23:11:49 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdmo.dll
[2011/03/10 23:11:49 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spopk.dll
[2011/03/10 23:11:48 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
[2011/03/10 23:11:48 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdprefdrvapi.dll
[2011/03/10 23:11:48 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
[2011/03/10 23:11:47 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetmib1.dll
[2011/03/10 23:11:46 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
[2011/03/10 23:11:46 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2011/03/10 23:11:46 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\g711codc.ax
[2011/03/10 23:11:46 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSMON.dll
[2011/03/10 23:11:46 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2011/03/10 23:11:46 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
[2011/03/10 23:11:46 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2011/03/10 23:11:46 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
[2011/03/10 23:11:46 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elsTrans.dll
[2011/03/10 23:11:46 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TRAPI.dll
[2011/03/10 23:11:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011/03/10 23:11:45 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\napdsnap.dll
[2011/03/10 23:11:45 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsauth.dll
[2011/03/10 23:11:45 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonUI.exe
[2011/03/10 23:11:45 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfts.dll
[2011/03/10 23:11:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys
[2011/03/10 23:11:44 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
[2011/03/10 23:11:44 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsperf.dll
[2011/03/10 23:11:44 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdprefdrvapi.dll
[2011/03/10 23:11:44 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elsTrans.dll
[2011/03/10 23:11:44 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TRAPI.dll
[2011/03/10 23:11:44 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsperf.dll
[2011/03/10 23:11:44 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSUNATD.exe
[2011/03/10 23:11:44 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schedcli.dll
[2011/03/10 23:11:44 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011/03/10 23:11:43 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imkr80.ime
[2011/03/10 23:11:43 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\napdsnap.dll
[2011/03/10 23:11:43 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2011/03/10 23:11:43 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsauth.dll
[2011/03/10 23:11:42 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011/03/10 23:11:42 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
[2011/03/10 23:11:42 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2011/03/10 23:11:42 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shgina.dll
[2011/03/10 23:11:42 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsdchngr.dll
[2011/03/10 23:11:42 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2011/03/10 23:11:42 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shgina.dll
[2011/03/10 23:11:42 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2011/03/10 23:11:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched32.dll
[2011/03/10 23:11:41 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2011/03/10 23:11:41 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys
[2011/03/10 23:11:41 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshirda.dll
[2011/03/10 23:11:41 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2011/03/10 23:11:40 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011/03/10 23:11:39 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshirda.dll
[2011/03/10 23:11:39 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched32.dll
[2011/03/10 23:11:39 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcfgex.dll
[2011/03/10 23:11:39 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2011/03/10 23:11:38 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\C_ISCII.DLL
[2011/03/10 23:11:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2011/03/10 23:11:36 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shunimpl.dll
[2011/03/10 23:11:36 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\C_ISCII.DLL
[2011/03/10 23:11:36 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shunimpl.dll
[2011/03/10 23:11:36 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUQ.DLL
[2011/03/10 23:11:36 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUF.DLL
[2011/03/10 23:11:36 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSG.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUQ.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUF.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSG.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSF.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDPO.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDNEPR.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdlk41a.dll
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTAM.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINBEN.DLL
[2011/03/10 23:11:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGR1.DLL
[2011/03/10 23:11:36 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2011/03/10 23:11:36 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2011/03/10 23:11:36 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2011/03/10 23:11:36 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2011/03/10 23:11:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-ums-l1-1-0.dll
[2011/03/10 23:11:35 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2011/03/10 23:11:35 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2011/03/10 23:11:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdlk41a.dll
[2011/03/10 23:11:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGKL.DLL
[2011/03/10 23:11:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDCZ1.DLL
[2011/03/10 23:11:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGR1.DLL
[2011/03/10 23:11:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGKL.DLL
[2011/03/10 23:11:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDCZ1.DLL
[2011/03/10 23:11:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUS.DLL
[2011/03/10 23:11:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUGHR1.DLL
[2011/03/10 23:11:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAJIK.DLL
[2011/03/10 23:11:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMON.DLL
[2011/03/10 23:11:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINHIN.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUS.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUGHR1.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTURME.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAJIK.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMON.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMAORI.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTEL.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGEO.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGEO.DLL
[2011/03/10 23:11:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBLR.DLL
[2011/03/10 23:11:34 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlsbres.dll
[2011/03/10 23:11:34 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nlsbres.dll
[2011/03/10 23:11:34 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BlbEvents.dll
[2011/03/10 23:11:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pifmgr.dll
[2011/03/10 23:11:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pifmgr.dll
[2011/03/10 23:11:34 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizres.dll
[2011/03/10 23:11:34 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizres.dll
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTURME.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSF.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDPO.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDNEPR.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMAORI.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDLT1.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTEL.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTAM.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINORI.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINORI.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINMAR.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINMAR.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINKAN.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINKAN.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINHIN.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINBEN.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBULG.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBLR.DLL
[2011/03/10 23:11:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2011/03/10 23:11:34 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDLT1.DLL
[2011/03/10 23:11:34 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBULG.DLL
[2011/03/10 23:11:34 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
[2011/03/10 23:11:34 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
[2011/03/10 23:11:34 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll
[2011/03/10 23:11:25 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PkgMgr.exe
[2011/03/10 23:11:25 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdscore.dll
[2011/03/10 23:11:19 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2011/03/10 23:11:19 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpx.dll
[2011/03/10 23:09:33 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wbemcomn.dll
[2011/03/10 23:09:33 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmicmiplugin.dll
[2011/03/10 23:09:24 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmiEngine.dll
[2011/03/10 23:09:20 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PkgMgr.exe
[2011/03/10 23:09:04 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2011/03/10 23:09:04 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpx.dll
[2011/03/10 21:03:08 | 001,544,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2011/03/10 21:03:08 | 001,076,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DWrite.dll
[2011/03/10 21:03:08 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2011/03/10 21:03:08 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d2d1.dll
[2011/03/10 21:03:07 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2011/03/10 21:03:06 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2011/03/10 21:03:06 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2011/03/10 21:03:06 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2011/03/10 21:03:05 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2011/03/10 21:03:05 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2011/03/10 21:03:05 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2011/03/10 21:03:05 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010/02/11 21:15:33 | 000,036,136 | ---- | C] (Oberon Media) -- C:\ProgramData\FullRemove.exe
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/04/09 12:07:02 | 000,000,298 | -H-- | M] () -- C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2011/04/09 11:43:40 | 183,517,516 | ---- | M] () -- C:\Users\RADOSLAV\Desktop\The.Big.Bang.Theory.S04E20.HDTV.XviD-ASAP.avi
[2011/04/09 11:09:42 | 000,017,600 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/04/09 11:09:42 | 000,017,600 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/04/09 11:05:08 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\RADOSLAV\Desktop\OTL.exe
[2011/04/09 11:02:22 | 000,000,312 | -HS- | M] () -- C:\Windows\tasks\zlwuadwrzd.job
[2011/04/09 11:02:17 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/04/09 11:02:12 | 2960,461,824 | -HS- | M] () -- C:\hiberfil.sys
[2011/04/08 20:24:42 | 000,029,349 | ---- | M] () -- C:\Users\RADOSLAV\Desktop\the.big.bang.theory.s04e20.hdtv.xvid-asap.srt
[2011/04/08 19:09:26 | 000,040,379 | ---- | M] () -- C:\Users\RADOSLAV\Desktop\skupinové vplyvy.odt
[2011/04/08 15:31:14 | 000,729,688 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/04/08 15:31:14 | 000,618,108 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/04/08 15:31:14 | 000,107,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/04/07 13:48:53 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/04/07 13:47:54 | 000,735,230 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/04/06 21:00:22 | 000,090,112 | RHS- | M] () -- C:\Windows\SysWow64\ar-SAF.dll
[2011/04/04 13:56:53 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2011/04/04 13:56:53 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2011/04/04 13:56:53 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2011/04/04 13:56:51 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2011/04/04 12:30:09 | 000,028,864 | ---- | M] () -- C:\Users\RADOSLAV\Desktop\nightwish_bare_grace_misery.gp4
[2011/04/03 20:18:10 | 000,047,611 | ---- | M] () -- C:\Users\RADOSLAV\Desktop\kinslayer.gp4
[2011/04/01 12:26:21 | 000,359,080 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/03/26 10:55:30 | 000,000,000 | ---- | M] () -- C:\Windows\HPMProp.INI

[socrates]

[2011/03/24 20:07:51 | 000,002,828 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
[2011/03/24 20:04:16 | 000,000,088 | RHS- | M] () -- C:\ProgramData\AB10D0C704.sys
[2011/03/10 23:23:17 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
[2011/03/10 23:23:16 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/04/09 12:14:58 | 000,029,349 | ---- | C] () -- C:\Users\RADOSLAV\Desktop\the.big.bang.theory.s04e20.hdtv.xvid-asap.srt
[2011/04/09 11:31:11 | 183,517,516 | ---- | C] () -- C:\Users\RADOSLAV\Desktop\The.Big.Bang.Theory.S04E20.HDTV.XviD-ASAP.avi
[2011/04/07 20:28:27 | 000,040,379 | ---- | C] () -- C:\Users\RADOSLAV\Desktop\skupinové vplyvy.odt
[2011/04/07 13:47:51 | 000,001,861 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/04/06 21:00:36 | 000,000,298 | -H-- | C] () -- C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
[2011/04/06 21:00:22 | 000,090,112 | RHS- | C] () -- C:\Windows\SysWow64\ar-SAF.dll
[2011/04/06 21:00:22 | 000,000,312 | -HS- | C] () -- C:\Windows\tasks\zlwuadwrzd.job
[2011/04/04 12:30:09 | 000,028,864 | ---- | C] () -- C:\Users\RADOSLAV\Desktop\nightwish_bare_grace_misery.gp4
[2011/04/03 20:18:10 | 000,047,611 | ---- | C] () -- C:\Users\RADOSLAV\Desktop\kinslayer.gp4
[2011/03/26 10:55:30 | 000,000,000 | ---- | C] () -- C:\Windows\HPMProp.INI
[2011/03/10 23:13:54 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011/03/10 23:11:51 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011/03/10 23:11:34 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011/03/10 23:11:34 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011/03/10 23:11:25 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011/03/04 11:49:33 | 000,034,308 | ---- | C] () -- C:\Windows\SysWow64\BASSMOD.dll
[2011/03/04 11:36:17 | 000,002,828 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2011/03/04 11:36:17 | 000,000,088 | RHS- | C] () -- C:\ProgramData\AB10D0C704.sys
[2011/01/29 21:38:09 | 000,735,230 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/12/29 17:01:31 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010/12/29 17:01:28 | 000,810,496 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/12/29 17:01:28 | 000,183,808 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/12/29 17:01:28 | 000,080,896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010/11/28 21:42:09 | 000,003,584 | ---- | C] () -- C:\Users\RADOSLAV\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/11/25 23:20:49 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/11/24 17:30:43 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/11/24 17:29:41 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010/11/24 14:50:59 | 000,206,208 | ---- | C] () -- C:\Windows\PLFSetI.exe
[2010/11/24 14:50:59 | 000,000,302 | ---- | C] () -- C:\Windows\PidList_C.ini
[2010/11/24 14:50:58 | 000,113,264 | ---- | C] () -- C:\Windows\FixUVC.exe
[2010/11/19 02:51:48 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/11/19 02:00:57 | 000,870,544 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin
[2010/11/19 02:00:57 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2010/11/19 02:00:57 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2010/11/19 02:00:57 | 000,127,896 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin
[2010/11/19 02:00:57 | 000,051,068 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin
[2010/11/19 02:00:55 | 000,001,035 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2010/11/19 02:00:06 | 000,001,329 | ---- | C] () -- C:\Windows\WPatchProgress.ini
[2010/02/11 20:19:05 | 000,000,193 | ---- | C] () -- C:\Windows\Prelaunch.ini
[2010/02/11 20:19:05 | 000,000,167 | ---- | C] () -- C:\Windows\WisLangCode.ini
[2010/02/11 20:19:05 | 000,000,147 | ---- | C] () -- C:\Windows\WisPriority.ini
[2009/07/14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:59:36 | 000,982,196 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2009/07/13 23:59:36 | 000,139,824 | ---- | C] () -- C:\Windows\SysWow64\igfcg500.bin
[2009/07/13 23:59:36 | 000,097,448 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2009/07/13 23:59:35 | 000,417,344 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2002/06/06 03:01:58 | 000,029,696 | ---- | C] () -- C:\Windows\SysWow64\asutl8.dll

========== LOP Check ==========

[2010/11/26 14:02:04 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Anvil Studio
[2010/11/24 19:54:11 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\DAEMON Tools Lite
[2010/11/29 21:08:04 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Guitar Pro 6
[2010/12/18 23:27:53 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\HBLite
[2011/04/08 15:32:49 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\ICQ
[2011/04/06 22:04:45 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\NeuroProgrammer3
[2010/11/24 19:20:09 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\OpenOffice.org
[2010/11/24 17:59:52 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Paradoxx
[2011/01/17 21:24:10 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Steinberg
[2010/11/26 15:42:20 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\TeamViewer
[2011/01/19 16:20:59 | 000,032,614 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/04/09 11:02:22 | 000,000,312 | -HS- | M] () -- C:\Windows\Tasks\zlwuadwrzd.job
[2011/04/09 12:07:02 | 000,000,298 | -H-- | M] () -- C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job

========== Purity Check ==========



========== Custom Scans ==========


< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"msnmsgr" = "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background -- [2010/04/16 23:12:36 | 003,872,080 | ---- | M] (Microsoft Corporation)

< c:\windows\*.* /U >

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011/01/14 16:32:12 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Adobe
[2010/11/26 14:02:04 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Anvil Studio
[2010/11/24 14:45:50 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\ATI
[2011/01/15 21:48:17 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\CyberLink
[2010/11/24 19:54:11 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\DAEMON Tools Lite
[2010/11/24 17:39:48 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Google
[2010/11/29 21:08:04 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Guitar Pro 6
[2010/12/18 23:27:53 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\HBLite
[2011/04/08 15:32:49 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\ICQ
[2010/11/24 14:37:47 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Identities
[2010/11/24 14:38:21 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Intel Corporation
[2010/11/24 14:52:11 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Macromedia
[2011/04/07 22:09:17 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Malwarebytes
[2010/02/11 20:27:01 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Media Center Programs
[2010/11/24 18:41:14 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Media Player Classic
[2011/02/24 10:46:08 | 000,000,000 | --SD | M] -- C:\Users\RADOSLAV\AppData\Roaming\Microsoft
[2010/11/24 17:29:54 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Mozilla
[2011/04/06 22:04:45 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\NeuroProgrammer3
[2010/11/24 19:20:09 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\OpenOffice.org
[2010/11/24 17:59:52 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Paradoxx
[2011/04/07 22:28:48 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Skype
[2011/04/07 22:27:44 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\skypePM
[2011/01/17 21:24:10 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\Steinberg
[2010/11/26 15:42:20 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\TeamViewer
[2010/11/26 20:35:13 | 000,000,000 | ---D | M] -- C:\Users\RADOSLAV\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >


< MD5 for: AGP440.SYS >
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010/11/20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010/11/20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010/11/20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2010/11/20 15:25:59 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\SysNative\cryptsvc.dll
[2010/11/20 15:25:59 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010/11/20 14:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\SysWOW64\cryptsvc.dll
[2010/11/20 14:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2010/11/20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SysWOW64\explorer.exe
[2010/11/20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2010/02/11 20:57:39 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2010/02/11 20:57:39 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010/11/20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\explorer.exe
[2010/11/20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009/10/31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2010/02/11 20:57:39 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2010/02/11 20:57:39 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010/11/20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010/11/20 15:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTOR.SYS >
[2009/12/17 20:42:08 | 000,538,136 | ---- | M] (Intel Corporation) MD5=42E00996DFC13C46366689C0EA8ABC5E -- C:\Windows\SysNative\drivers\iaStor.sys
[2009/12/17 20:42:08 | 000,538,136 | ---- | M] (Intel Corporation) MD5=42E00996DFC13C46366689C0EA8ABC5E -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_f26ae7769ab43067\iaStor.sys

< MD5 for: IASTORV.SYS >
[2010/11/20 15:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\drivers\iaStorV.sys
[2010/11/20 15:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010/11/20 15:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe

< MD5 for: NDIS.SYS >
[2010/11/20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\SysNative\drivers\ndis.sys
[2010/11/20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2010/11/20 15:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010/11/20 15:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010/11/20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010/11/20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
[2010/11/20 15:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\drivers\nvraid.sys
[2010/11/20 15:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010/11/20 15:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2010/11/20 15:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\drivers\nvstor.sys
[2010/11/20 15:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010/11/20 15:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010/11/20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010/11/20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010/11/20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010/11/20 15:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2010/11/20 15:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010/11/20 15:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2010/06/14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010/04/09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_0f2ca8c580036f65\tcpip.sys
[2010/06/14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2010/04/09 09:56:29 | 001,892,232 | ---- | M] (Microsoft Corporation) MD5=A9C0F786AC1F736891D05CE0A1D29DEB -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_0f9ea52499331463\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010/11/20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010/11/20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010/11/20 15:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010/11/20 15:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2010/11/20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010/11/20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2011/04/06 21:00:22 | 000,090,112 | RHS- | M] () Unable to obtain MD5 -- C:\Windows\SysWOW64\ar-SAF.dll

< %systemroot%\Tasks\*.job /lockedfiles >
[2011/04/09 11:02:22 | 000,000,312 | -HS- | M] () Unable to obtain MD5 -- C:\Windows\Tasks\zlwuadwrzd.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2011/04/06 21:00:22 | 000,090,112 | RHS- | M] () Unable to obtain MD5 -- C:\Windows\SysWOW64\ar-SAF.dll

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2011/04/06 21:00:22 | 000,090,112 | RHS- | M] () -- C:\Windows\SysWOW64\ar-SAF.dll
[2011/04/09 11:02:27 | 000,000,018 | ---- | M] () -- C:\Windows\SysWOW64\log.txt
[2011/04/07 13:47:54 | 000,735,230 | ---- | M] () -- C:\Windows\SysWOW64\PerfStringBackup.INI

========== Alternate Data Streams ==========

@Alternate Data Stream - 139 bytes -> C:\ProgramData\Temp:157E1AD3

< End of report >











OTL Extras logfile created on: 4/9/2011 12:45:56 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\RADOSLAV\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: Slovensko | Language: SKY | Date Format: d. M. yyyy

4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 60.00% Memory free
7.00 Gb Paging File | 6.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298.37 Gb Total Space | 235.92 Gb Free Space | 79.07% Space Free | Partition Type: NTFS
Drive D: | 259.61 Gb Total Space | 27.74 Gb Free Space | 10.68% Space Free | Partition Type: NTFS

Computer Name: RADOSLAV-PC | User Name: RADOSLAV | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2615391229-1185309430-2028478684-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{230D1595-57DA-4933-8C4E-375797EBB7E1}" = Bluetooth Win7 Suite (64)
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{423794DA-512E-4FF6-AAC7-50E404F91B42}" = ESET NOD32 Antivirus
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5737101A-27C4-408A-8A57-D1DC78DF84B4}" = 64 Bit HP CIO Components Installer
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{75d2897c-87aa-4a06-8710-3ebda9f02de0}.sdb" = Adobe Audition 3.0 Vista Compatibility
"{774088D4-0777-4D78-904D-E435B318F5D2}" = Microsoft Antimalware
"{8E3ECAA6-4975-17E7-E443-960F8E3F9136}" = ccc-utility64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{90A1F0ED-BC6F-EBD4-2101-885AB084499C}" = ATI Catalyst Install Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{E06EC832-F6E9-49D6-8468-964CA5F9DB89}" = Microsoft Antimalware Service SK-SK Language Pack
"{E77543EE-6FB5-4FF6-AB70-635392C8C756}" = Microsoft Security Client
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FCAB9F73-BF5D-4E3D-92E7-B0F35C568F20}" = Microsoft Security Client SK-SK Language Pack
"2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB" = Windows Driver Package - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0)
"Canon LBP2900" = Canon LBP2900
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00E9A68C-DD7F-F961-7EB3-60606DEA8C83}" = CCC Help Chinese Traditional
"{02980141-FD57-8EAE-12FE-14DB086AD44E}" = CCC Help Finnish
"{1A64965D-FE4B-46D9-A600-384D964EFC8A}" = Windows Live Fotogaléria
"{1BFC85A2-D51C-B072-EECE-692C1F6F39F7}" = CCC Help Russian
"{1D08D60F-B829-B083-3CEB-46D45E786BD7}" = CCC Help Korean
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Odovzdávací nástroj lokality Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 24
"{28456131-01CD-4BE4-8D67-BDBDD1ED636A}" = Windows Live Sync
"{28B94253-5729-4C30-8DE4-F2A0A63149B0}" = OpenOffice.org 3.2
"{293F82CD-1BE8-03BC-DBAD-903388CFBB62}" = Catalyst Control Center Localization All
"{309CFFB9-4EFD-428F-4CAE-CBBEB6A32CD6}" = CCC Help Danish
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer PowerSmart Manager
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3EAAC5FD-E209-4856-8C49-D4EA40F85032}" = Mobile Connect
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3F5CF8BB-8D8E-9553-4F3E-DDB29F56158C}" = CCC Help German
"{490BF87E-1F75-4453-BF55-9F540543A3CA}" = Steinberg Drum Loop Expansion 01
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}" = Steinberg Cubase 5
"{4D454CF8-12FD-464D-B57B-B46FE27B78BB}" = Steinberg LoopMash Content
"{532B917B-8235-4FA5-BE36-643A8BB053A5}" = Steinberg REVerence Content 01
"{53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}" = Adobe Audition 3.0
"{53F67FF8-D51D-1C77-59E0-4797A3BEF546}" = CCC Help Norwegian
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{585E9394-6039-4AAB-D121-57788CA7474C}" = CCC Help Japanese
"{5A4FB792-D98F-409C-24B6-BD2A80D30E3A}" = Catalyst Control Center Graphics Previews Common
"{5DDE8B6B-2922-103A-EA92-0CC4D5BBE63E}" = CCC Help Spanish
"{6030FCD7-8F1A-427D-AF05-8DD1A2EA2ABA}" = Alcor Micro USB Card Reader
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{67114EC2-5C83-4FE9-A1EF-358459AB3640}" = Windows Live Mail
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6EA15FDE-39F1-47F1-2FE2-37803AA4F7F6}" = CCC Help French
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{749129FB-A3E4-B5D7-425A-B22F262EBD50}" = CCC Help Polish
"{78C957A5-B4AF-21AB-1CD4-0B9C9EC66DCB}" = CCC Help Turkish
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit
"{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}" = Steinberg HALionOne Studio Drum Set
"{896C5024-AA39-12E8-D6C2-D818B7E3D58F}" = CCC Help English
"{89A43E80-AC6C-4DA8-9800-F4B30ED577C0}" = OLYMPUS ib
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B562A56-6C57-509C-FD32-B68FB80DE2CB}" = CCC Help Portuguese
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0015-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_OMUI.sk-sk_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_OMUI.sk-sk_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-040E-0000-0000000FF1CE}_OMUI.sk-sk_{573CA1BB-C8A3-46C4-993E-DB4043D9BFCD}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_OMUI.sk-sk_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002A-041B-1000-0000000FF1CE}_OMUI.sk-sk_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}_OMUI.sk-sk_{8AF3A9EB-FBB9-449F-AC11-94CE39930037}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2007
"{90120000-00A1-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2007
"{90120000-00BA-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0100-041B-0000-0000000FF1CE}" = Microsoft Office O MUI (Slovak) 2007
"{90120000-0100-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0101-041B-0000-0000000FF1CE}" = Microsoft Office X MUI (Slovak) 2007
"{90120000-0101-041B-0000-0000000FF1CE}_OMUI.sk-sk_{F69A7281-8297-47E2-B583-36EAA37C89EE}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{95120000-00AF-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Slovak)
"{95ECF9A9-FE38-0751-3BAC-446BB4494846}" = CCC Help Swedish
"{9A22BB09-8086-691D-F409-3AF74D9E3BF0}" = ccc-core-static
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A17A245B-1B9D-AD95-2249-C2F1C1F1F4BA}" = CCC Help Thai
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A62FA809-74EB-440B-B8A8-AF8A36807F19}" = Windows Live Messenger
"{A789920E-E183-4311-9DEB-972913AB2FBF}" = Asistent pri prihlasovaní v sieti Windows Live
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.4.3 MUI
"{AC997F93-0757-4ED4-A701-F40C2D654D09}" = Steinberg HALionOne GM Drum Set
"{ADEEF3E4-15A4-F286-38EE-675A8EF0212B}" = Catalyst Control Center InstallProxy
"{B217B71E-D823-7317-B606-D247E38A82C5}" = CCC Help Dutch
"{B50EEEB0-4984-11C2-7F6A-0263034A20E9}" = CCC Help Greek
"{B76C2956-321B-4EE3-84CA-AF3CEA63D4E6}" = Windows Live Movie Maker
"{B812760B-E2A2-082F-8F0B-F9C5D722A203}" = CCC Help Chinese Standard
"{BD86F1AC-B594-46E4-85DC-1258AC9E2232}" = Steinberg Groove Agent ONE Content
"{C109F629-36BB-4F7B-9762-A038936CA457}" = Windows Live Essentials
"{C33ABF38-B26E-02CB-EAE4-F13CF444FA7A}" = CCC Help Czech
"{C715EA19-97B2-4758-BF4B-042CC5527ABF}" = Microsoft Works
"{CFEAF8DD-4BDF-4141-BF2B-02BCA2DEB7FB}" = Windows Live Writer
"{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}" = Acer Crystal Eye webcam Ver:1.1.158.203
"{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}" = Steinberg HALionOne Studio Set
"{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}" = Intel(R) Turbo Boost Technology Driver
"{D82CDA0D-C182-42C8-8FF2-5649C98D6003}" = Steinberg HALionOne Pro Set
"{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}" = Steinberg HALionOne Expression Set
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E5E7A1EE-F0D6-6E44-6C59-29CD9A666409}" = CCC Help Italian
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E70E7159-93B1-470D-9FBD-D8E9EF34B538}" = Steinberg HALionOne
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F057965A-D974-4C64-ADB1-4381CD4B8956}" = Steinberg HALionOne GM Set
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}" = Steinberg HALionOne Additional Content Set 01
"{F74C130C-3D05-7182-1E80-10C990C1D163}" = CCC Help Hungarian
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"Acer Registration" = Acer Registration
"Adobe AIR" = Adobe AIR
"Adobe Audition 3.0" = Adobe Audition 3.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AsUninst.exe" = Anvil Studio
"GoldWave v5.58" = GoldWave v5.58
"Guitar Pro 5_is1" = Guitar Pro 5.2
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{6030FCD7-8F1A-427D-AF05-8DD1A2EA2ABA}" = Alcor Micro USB Card Reader
"InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
"InstallShield_{89A43E80-AC6C-4DA8-9800-F4B30ED577C0}" = OLYMPUS ib
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.7.0
"Mafia II_is1" = Mafia II
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.16)" = Mozilla Firefox (3.6.16)
"Neuro-Programmer 3_is1" = Neuro-Programmer 3.0.9
"OMUI.sk-sk" = Microsoft Office Language Pack 2007 - Slovak/Slovenčina
"TeamViewer 5" = TeamViewer 5
"WinLiveSuite_Wave3" = Windows Live Essentials

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 4/7/2011 9:57:06 AM | Computer Name = RADOSLAV-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "c:\program files (x86)\windows
live\photo gallery\MovieMaker.Exe".Error in manifest or policy file "c:\program
files (x86)\windows live\photo gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.

Error - 4/7/2011 11:11:32 AM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 4/7/2011 11:11:32 AM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 4/7/2011 4:36:10 PM | Computer Name = RADOSLAV-PC | Source = Application Hang | ID = 1002
Description = The program ICQ.exe version 7.4.0.4629 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Action Center control panel. Process ID: 1124 Start Time:
01cbf5228513ec18 Termination Time: 32 Application Path: C:\Program Files (x86)\ICQ7.4\ICQ.exe

Report
Id:

Error - 4/8/2011 9:31:14 AM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 4/8/2011 9:31:14 AM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.

Error - 4/8/2011 10:47:37 AM | Computer Name = RADOSLAV-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.

Error - 4/8/2011 10:48:07 AM | Computer Name = RADOSLAV-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "c:\program files (x86)\windows
live\photo gallery\MovieMaker.Exe".Error in manifest or policy file "c:\program
files (x86)\windows live\photo gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.

Error - 4/9/2011 6:02:56 AM | Computer Name = RADOSLAV-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.

Error - 4/9/2011 6:03:24 AM | Computer Name = RADOSLAV-PC | Source = SideBySide | ID = 16842787
Description = Activation context generation failed for "c:\program files (x86)\windows
live\photo gallery\MovieMaker.Exe".Error in manifest or policy file "c:\program
files (x86)\windows live\photo gallery\WLMFDS.DLL" on line 8. Component identity
found in manifest does not match the identity of the component requested. Reference
is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition
is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Please use
sxstrace.exe for detailed diagnosis.

[ System Events ]
Error - 3/22/2011 12:07:44 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 12:32:52 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 12:32:57 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 12:32:57 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 1:10:51 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 1:48:13 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 2:04:38 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 2:33:05 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 3:03:51 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.

Error - 3/22/2011 3:35:57 PM | Computer Name = RADOSLAV-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = There was an error while attempting to read the local hosts file.


< End of report >

[motji]

Otestujte na www.virustotal.com
C:\Windows\SysWOW64\ar-SAF.dll

Na zbytek mrknu večer.

[socrates]

s tym suborom ar-SAF.dll sa mi neda nic urobit. nemôzem ho skopirovat ani odoslat na analyzu (aj ked to robim s administratorskymi pravami)

[motji]

Bude to vir

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[socrates]

ked chcem spustit combofix, stale mi program vypise, ze detekoval spustene programy nod 32 a microsoft essentials. Obidva programy som odinstaloval z pocitaca, ale pise to stale, môzem pokracovat napriek tomu?

[motji]

Ano