API tools faq
paste
Advertisement
Guest User

OTL.txt & Extras.txt

a guest
Apr 19th, 2012
386
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 263.02 KB | None | 0 0
raw download clone embed print report
  1. OTL.txt
  2. -----------------------------------------------------------------------------------------------------------
  3.  
  4. OTL logfile created on: 19.04.2012 19:56:20 - Run 1
  5. OTL by OldTimer - Version 3.2.40.0 Folder = C:\Users\Glenn\Desktop
  6. 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  7. Internet Explorer (Version = 9.0.8112.16421)
  8. Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
  9.  
  10. 8,00 Gb Total Physical Memory | 6,61 Gb Available Physical Memory | 82,63% Memory free
  11. 8,25 Gb Paging File | 6,78 Gb Available in Paging File | 82,28% Paging File free
  12. Paging file location(s): c:\pagefile.sys 256 512
  13.  
  14. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  15. Drive C: | 923,41 Gb Total Space | 892,96 Gb Free Space | 96,70% Space Free | Partition Type: NTFS
  16. Drive E: | 100,00 Mb Total Space | 65,79 Mb Free Space | 65,79% Space Free | Partition Type: NTFS
  17.  
  18. Computer Name: HYRICAN-PC | User Name: Glenn | Logged in as Administrator.
  19. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  20. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  21.  
  22. [color=#E56717]========== Processes (SafeList) ==========[/color]
  23.  
  24. PRC - C:\Users\Glenn\Desktop\OTL.exe (OldTimer Tools)
  25. PRC - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
  26. PRC - C:\Program Files (x86)\Avanquest\Fix-It\AVQWinMonEngine.exe (Avanquest Software)
  27. PRC - C:\PROGRA~2\Avanquest\Fix-It\MxTask.exe (Avanquest Software)
  28. PRC - C:\PROGRA~2\Avanquest\Fix-It\mxtask2.exe (Avanquest Software)
  29. PRC - C:\Program Files (x86)\Avanquest\Fix-It\AQFileRestoreSrv.exe (Avanquest Software)
  30. PRC - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUNMain.exe (Panda Security, S.L.)
  31. PRC - C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe (Panda Security, S.L.)
  32. PRC - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe (AVM Berlin)
  33. PRC - C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
  34.  
  35.  
  36. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  37.  
  38.  
  39. [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
  40.  
  41. SRV:[b]64bit:[/b] - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
  42. SRV:[b]64bit:[/b] - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.)
  43. SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
  44. SRV - (TeamViewer7) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TeamViewer GmbH)
  45. SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
  46. SRV - (.AVQWindowsMonitorService) -- C:\Program Files (x86)\Avanquest\Fix-It\AVQWinMonEngine.exe (Avanquest Software)
  47. SRV - (Fix-It Task Manager) -- C:\PROGRA~2\Avanquest\Fix-It\MxTask.exe (Avanquest Software)
  48. SRV - (AQFileRestoreSrv) -- C:\Program Files (x86)\Avanquest\Fix-It\AQFileRestoreSrv.exe (Avanquest Software)
  49. SRV - (NanoServiceMain) -- C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe (Panda Security, S.L.)
  50. SRV - (AVM WLAN Connection Service) -- C:\Program Files (x86)\avmwlanstick\WlanNetService.exe (AVM Berlin)
  51. SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
  52. SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
  53.  
  54.  
  55. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  56.  
  57. DRV:[b]64bit:[/b] - (ElRawDisk) -- C:\Windows\SysNative\drivers\ElRawDsk.sys (EldoS Corporation)
  58. DRV:[b]64bit:[/b] - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
  59. DRV:[b]64bit:[/b] - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
  60. DRV:[b]64bit:[/b] - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
  61. DRV:[b]64bit:[/b] - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
  62. DRV:[b]64bit:[/b] - (PSINAflt) -- C:\Windows\SysNative\drivers\PSINAflt.sys (Panda Security, S.L.)
  63. DRV:[b]64bit:[/b] - (AQFileRestore) -- C:\Windows\SysNative\drivers\AQFileRestore.sys ()
  64. DRV:[b]64bit:[/b] - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
  65. DRV:[b]64bit:[/b] - (PSINProt) -- C:\Windows\SysNative\drivers\PSINProt.sys (Panda Security, S.L.)
  66. DRV:[b]64bit:[/b] - (PSINKNC) -- C:\Windows\SysNative\drivers\PSINKNC.sys (Panda Security, S.L.)
  67. DRV:[b]64bit:[/b] - (PSINProc) -- C:\Windows\SysNative\drivers\PSINProc.sys (Panda Security, S.L.)
  68. DRV:[b]64bit:[/b] - (PSINFile) -- C:\Windows\SysNative\drivers\PSINFile.sys (Panda Security, S.L.)
  69. DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
  70. DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
  71. DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
  72. DRV:[b]64bit:[/b] - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
  73. DRV:[b]64bit:[/b] - (fwlanusbn) -- C:\Windows\SysNative\drivers\fwlanusbn.sys (AVM GmbH)
  74. DRV:[b]64bit:[/b] - (PSI) -- C:\Windows\SysNative\drivers\psi_mf.sys (Secunia)
  75. DRV:[b]64bit:[/b] - (amdide64) -- C:\Windows\SysNative\drivers\amdide64.sys (Advanced Micro Devices Inc.)
  76. DRV:[b]64bit:[/b] - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices)
  77. DRV:[b]64bit:[/b] - (ahcix64s) -- C:\Windows\SysNative\drivers\ahcix64s.sys (Advanced Micro Devices, Inc)
  78. DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
  79. DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
  80. DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
  81. DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
  82. DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
  83. DRV:[b]64bit:[/b] - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
  84. DRV:[b]64bit:[/b] - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
  85. DRV - (AODDriver4.1) -- C:\Programme\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys (Advanced Micro Devices)
  86. DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
  87.  
  88.  
  89. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  90.  
  91.  
  92. [color=#E56717]========== Internet Explorer ==========[/color]
  93.  
  94. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  95. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  96. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  97. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  98.  
  99.  
  100. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  101.  
  102. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  103.  
  104.  
  105.  
  106. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
  107. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?ocid=iehp
  108. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
  109. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 08 87 AF D4 9A 12 CD 01 [binary data]
  110. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  111. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  112. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  113. IE - HKU\S-1-5-21-3086057490-25080596-496616258-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = xx.xx.x.xxx:80
  114.  
  115. [color=#E56717]========== FireFox ==========[/color]
  116.  
  117.  
  118. FF - user.js..browser.search.openintab: false
  119.  
  120. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_2_202_233.dll File not found
  121. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll ()
  122. FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll File not found
  123. FF - HKLM\Software\MozillaPlugins\@TrendMicro.com/FFExtension: File not found
  124.  
  125. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
  126. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.04.10 20:47:43 | 000,000,000 | ---D | M]
  127.  
  128. [2012.04.07 13:16:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Glenn\AppData\Roaming\mozilla\Extensions
  129. [2012.04.07 16:04:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Glenn\AppData\Roaming\mozilla\Firefox\Profiles\a5q0fbow.default\extensions
  130. [2012.04.16 21:58:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
  131. () (No name found) -- C:\USERS\GLENN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\A5Q0FBOW.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
  132. () (No name found) -- C:\USERS\GLENN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\A5Q0FBOW.DEFAULT\EXTENSIONS\ICH@MALTEGOETZ.DE.XPI
  133. [2012.03.13 06:38:06 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
  134. [2012.03.13 07:23:34 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
  135. [2012.03.13 07:06:36 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
  136. [2012.03.13 07:23:34 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
  137. [2012.03.13 07:23:34 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
  138. [2012.03.13 07:23:34 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
  139. [2012.03.13 07:23:34 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
  140.  
  141. O1 HOSTS File: ([2012.04.14 18:59:16 | 000,000,808 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  142. O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No CLSID value found.
  143. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found
  144. O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
  145. O4 - HKLM..\Run: [AVMWlanClient] C:\Program Files (x86)\avmwlanstick\wlangui.exe (AVM Berlin)
  146. O4 - HKLM..\Run: [PSUNMain] C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSUNMain.exe (Panda Security, S.L.)
  147. O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  148. O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  149. O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  150. O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  151. O4 - Startup: C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Firefox.lnk = C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  152. O4 - Startup: C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk = C:\Windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe ()
  153. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  154. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  155. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  156. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
  157. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesMyComputer = 0
  158. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileAssociate = 0
  159. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
  160. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
  161. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
  162. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
  163. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
  164. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
  165. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
  166. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0
  167. O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
  168. O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutorun = 0
  169. O7 - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
  170. O7 - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
  171. O7 - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
  172. O7 - HKU\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
  173. O13[b]64bit:[/b] - gopher Prefix: missing
  174. O13 - gopher Prefix: missing
  175. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
  176. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
  177. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1BA12C0B-2FCF-48C5-81DC-2DF21303DDC5}: DhcpNameServer = 192.168.178.1
  178. O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
  179. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
  180. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  181. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  182. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
  183. O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
  184. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  185. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  186. O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
  187. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  188. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  189. O32 - HKLM CDRom: AutoRun - 1
  190. O33 - MountPoints2\{66117d7a-7e7c-11e1-aba5-806e6f6e6963}\Shell - "" = AutoRun
  191. O33 - MountPoints2\{66117d7a-7e7c-11e1-aba5-806e6f6e6963}\Shell\AutoRun\command - "" = D:\setup.exe
  192. O34 - HKLM BootExecute: (autocheck autochk *)
  193. O34 - HKLM BootExecute: (sasnative64)
  194. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  195. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  196. O35 - HKLM\..comfile [open] -- "%1" %*
  197. O35 - HKLM\..exefile [open] -- "%1" %*
  198. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  199. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  200. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  201. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  202.  
  203.  
  204. MsConfig:64bit - StartUpFolder: C:^Users^Glenn^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OMSI Addon Manager.lnk - - File not found
  205. MsConfig:64bit - State: "startup" - Reg Error: Key error.
  206. MsConfig:64bit - State: "services" - Reg Error: Key error.
  207.  
  208. SafeBootMin:[b]64bit:[/b] AppMgmt - Service
  209. SafeBootMin:[b]64bit:[/b] Base - Driver Group
  210. SafeBootMin:[b]64bit:[/b] Boot Bus Extender - Driver Group
  211. SafeBootMin:[b]64bit:[/b] Boot file system - Driver Group
  212. SafeBootMin:[b]64bit:[/b] File system - Driver Group
  213. SafeBootMin:[b]64bit:[/b] Filter - Driver Group
  214. SafeBootMin:[b]64bit:[/b] HelpSvc - Service
  215. SafeBootMin:[b]64bit:[/b] PCI Configuration - Driver Group
  216. SafeBootMin:[b]64bit:[/b] PNP Filter - Driver Group
  217. SafeBootMin:[b]64bit:[/b] Primary disk - Driver Group
  218. SafeBootMin:[b]64bit:[/b] sacsvr - Service
  219. SafeBootMin:[b]64bit:[/b] SCSI Class - Driver Group
  220. SafeBootMin:[b]64bit:[/b] System Bus Extender - Driver Group
  221. SafeBootMin:[b]64bit:[/b] vmms - Service
  222. SafeBootMin:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  223. SafeBootMin:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  224. SafeBootMin:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  225. SafeBootMin:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  226. SafeBootMin:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  227. SafeBootMin:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  228. SafeBootMin:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  229. SafeBootMin:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  230. SafeBootMin:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  231. SafeBootMin:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  232. SafeBootMin:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  233. SafeBootMin:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  234. SafeBootMin:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  235. SafeBootMin:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  236. SafeBootMin:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  237. SafeBootMin:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  238. SafeBootMin:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  239. SafeBootMin: AppMgmt - Service
  240. SafeBootMin: Base - Driver Group
  241. SafeBootMin: Boot Bus Extender - Driver Group
  242. SafeBootMin: Boot file system - Driver Group
  243. SafeBootMin: File system - Driver Group
  244. SafeBootMin: Filter - Driver Group
  245. SafeBootMin: HelpSvc - Service
  246. SafeBootMin: PCI Configuration - Driver Group
  247. SafeBootMin: PNP Filter - Driver Group
  248. SafeBootMin: Primary disk - Driver Group
  249. SafeBootMin: sacsvr - Service
  250. SafeBootMin: SCSI Class - Driver Group
  251. SafeBootMin: System Bus Extender - Driver Group
  252. SafeBootMin: vmms - Service
  253. SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  254. SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  255. SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  256. SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  257. SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  258. SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  259. SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  260. SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  261. SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  262. SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  263. SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  264. SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  265. SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  266. SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  267. SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  268. SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  269. SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  270.  
  271. SafeBootNet:[b]64bit:[/b] AppMgmt - Service
  272. SafeBootNet:[b]64bit:[/b] Base - Driver Group
  273. SafeBootNet:[b]64bit:[/b] Boot Bus Extender - Driver Group
  274. SafeBootNet:[b]64bit:[/b] Boot file system - Driver Group
  275. SafeBootNet:[b]64bit:[/b] File system - Driver Group
  276. SafeBootNet:[b]64bit:[/b] Filter - Driver Group
  277. SafeBootNet:[b]64bit:[/b] HelpSvc - Service
  278. SafeBootNet:[b]64bit:[/b] hitmanpro36 - Reg Error: Value error.
  279. SafeBootNet:[b]64bit:[/b] hitmanpro36.sys - Reg Error: Value error.
  280. SafeBootNet:[b]64bit:[/b] Messenger - Service
  281. SafeBootNet:[b]64bit:[/b] NDIS Wrapper - Driver Group
  282. SafeBootNet:[b]64bit:[/b] NetBIOSGroup - Driver Group
  283. SafeBootNet:[b]64bit:[/b] NetDDEGroup - Driver Group
  284. SafeBootNet:[b]64bit:[/b] Network - Driver Group
  285. SafeBootNet:[b]64bit:[/b] NetworkProvider - Driver Group
  286. SafeBootNet:[b]64bit:[/b] PCI Configuration - Driver Group
  287. SafeBootNet:[b]64bit:[/b] PNP Filter - Driver Group
  288. SafeBootNet:[b]64bit:[/b] PNP_TDI - Driver Group
  289. SafeBootNet:[b]64bit:[/b] Primary disk - Driver Group
  290. SafeBootNet:[b]64bit:[/b] rdsessmgr - Service
  291. SafeBootNet:[b]64bit:[/b] sacsvr - Service
  292. SafeBootNet:[b]64bit:[/b] SCSI Class - Driver Group
  293. SafeBootNet:[b]64bit:[/b] Streams Drivers - Driver Group
  294. SafeBootNet:[b]64bit:[/b] System Bus Extender - Driver Group
  295. SafeBootNet:[b]64bit:[/b] TDI - Driver Group
  296. SafeBootNet:[b]64bit:[/b] vmms - Service
  297. SafeBootNet:[b]64bit:[/b] WudfUsbccidDriver - Driver
  298. SafeBootNet:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  299. SafeBootNet:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  300. SafeBootNet:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  301. SafeBootNet:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  302. SafeBootNet:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  303. SafeBootNet:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  304. SafeBootNet:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  305. SafeBootNet:[b]64bit:[/b] {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
  306. SafeBootNet:[b]64bit:[/b] {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
  307. SafeBootNet:[b]64bit:[/b] {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
  308. SafeBootNet:[b]64bit:[/b] {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
  309. SafeBootNet:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  310. SafeBootNet:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  311. SafeBootNet:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  312. SafeBootNet:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  313. SafeBootNet:[b]64bit:[/b] {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
  314. SafeBootNet:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  315. SafeBootNet:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  316. SafeBootNet:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  317. SafeBootNet:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  318. SafeBootNet:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  319. SafeBootNet:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  320. SafeBootNet: AppMgmt - Service
  321. SafeBootNet: Base - Driver Group
  322. SafeBootNet: Boot Bus Extender - Driver Group
  323. SafeBootNet: Boot file system - Driver Group
  324. SafeBootNet: File system - Driver Group
  325. SafeBootNet: Filter - Driver Group
  326. SafeBootNet: HelpSvc - Service
  327. SafeBootNet: hitmanpro36 - Reg Error: Value error.
  328. SafeBootNet: hitmanpro36.sys - Reg Error: Value error.
  329. SafeBootNet: Messenger - Service
  330. SafeBootNet: NDIS Wrapper - Driver Group
  331. SafeBootNet: NetBIOSGroup - Driver Group
  332. SafeBootNet: NetDDEGroup - Driver Group
  333. SafeBootNet: Network - Driver Group
  334. SafeBootNet: NetworkProvider - Driver Group
  335. SafeBootNet: PCI Configuration - Driver Group
  336. SafeBootNet: PNP Filter - Driver Group
  337. SafeBootNet: PNP_TDI - Driver Group
  338. SafeBootNet: Primary disk - Driver Group
  339. SafeBootNet: rdsessmgr - Service
  340. SafeBootNet: sacsvr - Service
  341. SafeBootNet: SCSI Class - Driver Group
  342. SafeBootNet: Streams Drivers - Driver Group
  343. SafeBootNet: System Bus Extender - Driver Group
  344. SafeBootNet: TDI - Driver Group
  345. SafeBootNet: vmms - Service
  346. SafeBootNet: WudfUsbccidDriver - Driver
  347. SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
  348. SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
  349. SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
  350. SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
  351. SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
  352. SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
  353. SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
  354. SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
  355. SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
  356. SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
  357. SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
  358. SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
  359. SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
  360. SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
  361. SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
  362. SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
  363. SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
  364. SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
  365. SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
  366. SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
  367. SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
  368. SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
  369.  
  370. ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
  371. ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
  372. ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
  373. ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
  374. ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
  375. ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
  376. ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
  377. ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
  378. ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
  379. ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
  380. ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
  381. ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
  382. ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
  383. ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
  384. ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
  385. ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
  386. ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
  387. ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
  388. ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
  389. ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
  390. ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
  391. ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
  392. ActiveX:[b]64bit:[/b] >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
  393. ActiveX:[b]64bit:[/b] >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
  394. ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
  395. ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
  396. ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
  397. ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
  398. ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
  399. ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
  400. ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
  401. ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
  402. ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
  403. ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
  404. ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
  405. ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
  406. ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
  407. ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
  408. ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
  409. ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
  410. ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
  411. ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
  412. ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
  413. ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
  414. ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
  415. ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
  416. ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
  417. ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
  418. ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
  419.  
  420. Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  421. Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  422. Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
  423.  
  424. CREATERESTOREPOINT
  425. Restore point Set: OTL Restore Point
  426.  
  427. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  428.  
  429. [2012.04.19 19:52:10 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\Glenn\Desktop\OTL.exe
  430. [2012.04.19 19:46:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise PC Engineer
  431. [2012.04.19 19:46:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wise PC Engineer
  432. [2012.04.19 19:05:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanMyReg
  433. [2012.04.19 19:05:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ScanMyReg
  434. [2012.04.18 22:07:45 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Panda Security
  435. [2012.04.18 22:05:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus
  436. [2012.04.18 22:05:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
  437. [2012.04.18 22:05:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda Security
  438. [2012.04.18 22:05:27 | 000,000,000 | ---D | C] -- C:\temp
  439. [2012.04.18 21:53:16 | 000,000,000 | ---D | C] -- C:\Users\Glenn\Documents\ForceField Shared Files
  440. [2012.04.18 21:53:16 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\CheckPoint
  441. [2012.04.18 21:53:09 | 000,000,000 | ---D | C] -- C:\Program Files\CheckPoint
  442. [2012.04.18 21:53:06 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
  443. [2012.04.18 21:50:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CheckPoint
  444. [2012.04.18 19:18:10 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\SlimWare Utilities Inc
  445. [2012.04.18 19:16:40 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
  446. [2012.04.18 17:34:29 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Software Update
  447. [2012.04.18 17:02:46 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Reviversoft
  448. [2012.04.18 15:41:17 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Avanquest_Software
  449. [2012.04.18 14:27:28 | 008,766,112 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
  450. [2012.04.18 13:59:39 | 000,000,000 | RHSD | C] -- C:\_Backup.RC
  451. [2012.04.18 13:59:29 | 000,000,000 | -H-D | C] -- C:\_Backup
  452. [2012.04.18 13:58:57 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Avanquest
  453. [2012.04.18 13:58:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avanquest
  454. [2012.04.17 22:09:25 | 000,000,000 | ---D | C] -- C:\Windows\pss
  455. [2012.04.17 21:56:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
  456. [2012.04.17 20:20:06 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\iolo
  457. [2012.04.17 20:20:06 | 000,000,000 | ---D | C] -- C:\ProgramData\iolo
  458. [2012.04.17 20:09:36 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Nico Mak Computing
  459. [2012.04.17 20:09:34 | 000,018,240 | ---- | C] (ReviverSoft) -- C:\Windows\SysNative\roboot64.exe
  460. [2012.04.17 07:22:01 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\ASCOMP Software
  461. [2012.04.16 21:52:30 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Abelssoft
  462. [2012.04.16 21:52:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpdateYeti
  463. [2012.04.16 21:52:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\UpdateYeti
  464. [2012.04.16 21:40:35 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Abelssoft
  465. [2012.04.16 21:40:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Fresh
  466. [2012.04.16 21:40:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PC Fresh
  467. [2012.04.16 21:34:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Licenses
  468. [2012.04.16 21:26:51 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Engelmann Media
  469. [2012.04.16 21:26:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Engelmann Media
  470. [2012.04.16 20:51:11 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\MAGIX
  471. [2012.04.16 20:49:25 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\OnDemandDump
  472. [2012.04.16 20:49:25 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\CrashLog
  473. [2012.04.16 20:49:09 | 000,000,000 | ---D | C] -- C:\ProgramData\MAGIX
  474. [2012.04.16 20:49:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
  475. [2012.04.16 18:45:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
  476. [2012.04.16 18:45:08 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
  477. [2012.04.16 18:45:08 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
  478. [2012.04.16 07:30:59 | 000,024,408 | ---- | C] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
  479. [2012.04.16 07:12:33 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
  480. [2012.04.16 07:12:26 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\IObit
  481. [2012.04.16 07:12:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
  482. [2012.04.15 19:55:27 | 000,258,520 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
  483. [2012.04.15 19:54:58 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
  484. [2012.04.15 13:10:49 | 000,574,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp50.dll
  485. [2012.04.15 13:08:07 | 000,000,000 | ---D | C] -- C:\ProgramData\fssg
  486. [2012.04.15 13:00:16 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\f-secure
  487. [2012.04.15 13:00:08 | 000,000,000 | ---D | C] -- C:\ProgramData\F-Secure
  488. [2012.04.15 12:59:21 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
  489. [2012.04.15 12:52:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
  490. [2012.04.15 12:51:56 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
  491. [2012.04.15 11:05:54 | 000,011,832 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\drivers\amdide64.sys
  492. [2012.04.15 11:05:45 | 000,227,896 | ---- | C] (Advanced Micro Devices, Inc) -- C:\Windows\SysNative\drivers\ahcix64s.sys
  493. [2012.04.15 11:05:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
  494. [2012.04.15 11:05:36 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
  495. [2012.04.15 11:05:27 | 003,308,376 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
  496. [2012.04.15 11:05:27 | 000,426,328 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
  497. [2012.04.15 11:05:27 | 000,136,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
  498. [2012.04.15 11:05:27 | 000,118,104 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
  499. [2012.04.15 11:05:27 | 000,074,072 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
  500. [2012.04.14 22:36:06 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
  501. [2012.04.14 22:34:42 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\WinZip
  502. [2012.04.14 21:09:47 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\ParetoLogic
  503. [2012.04.14 21:09:47 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\DriverCure
  504. [2012.04.14 21:09:39 | 000,000,000 | ---D | C] -- C:\ProgramData\ParetoLogic
  505. [2012.04.14 20:48:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Fighters
  506. [2012.04.14 19:22:33 | 000,031,432 | ---- | C] (EldoS Corporation) -- C:\Windows\SysNative\drivers\ElRawDsk.sys
  507. [2012.04.13 20:53:49 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Malwarebytes
  508. [2012.04.13 20:53:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
  509. [2012.04.13 19:59:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
  510. [2012.04.13 19:58:04 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Origin
  511. [2012.04.13 16:33:17 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\OptimalPC
  512. [2012.04.13 16:29:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\appsmaker
  513. [2012.04.13 14:55:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Uniblue
  514. [2012.04.12 18:43:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Registry First Aid
  515. [2012.04.12 17:07:38 | 000,544,768 | ---- | C] (Stardock Corporation) -- C:\Windows\SysWow64\wbocx.ocx
  516. [2012.04.12 17:07:38 | 000,258,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll
  517. [2012.04.12 17:07:38 | 000,056,496 | ---- | C] (Stardock.Net, Inc) -- C:\Windows\SysWow64\wbhelp2.dll
  518. [2012.04.12 17:07:37 | 001,706,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdiplus.dll
  519. [2012.04.12 17:07:37 | 000,033,968 | ---- | C] (Neil Banfield) -- C:\Windows\SysWow64\anim.dll
  520. [2012.04.12 17:07:37 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\W95INF32.DLL
  521. [2012.04.12 17:07:37 | 000,002,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\W95INF16.DLL
  522. [2012.04.12 09:07:08 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Wise Disk Cleaner
  523. [2012.04.12 09:05:57 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
  524. [2012.04.12 09:05:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aerosoft
  525. [2012.04.12 07:53:12 | 000,000,000 | ---D | C] -- C:\Windows\Repair
  526. [2012.04.12 07:52:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Systweak
  527. [2012.04.11 22:24:57 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
  528. [2012.04.11 22:24:55 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\AVS4YOU
  529. [2012.04.11 22:24:37 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3a.dll
  530. [2012.04.11 21:32:26 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Trend Micro
  531. [2012.04.11 21:30:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Trend Micro
  532. [2012.04.11 20:26:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
  533. [2012.04.10 20:41:04 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\CyberLink
  534. [2012.04.10 20:39:10 | 000,000,000 | ---D | C] -- C:\ProgramData\SmartSound Software Inc
  535. [2012.04.10 20:39:09 | 000,000,000 | ---D | C] -- C:\ProgramData\eSellerate
  536. [2012.04.10 20:38:21 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Apple
  537. [2012.04.10 20:38:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
  538. [2012.04.10 20:35:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Temp
  539. [2012.04.10 20:35:21 | 000,000,000 | ---D | C] -- C:\ProgramData\CLSK
  540. [2012.04.10 20:00:02 | 000,000,000 | ---D | C] -- C:\ProgramData\CyberLink
  541. [2012.04.10 19:53:28 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
  542. [2012.04.10 19:53:28 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
  543. [2012.04.10 19:53:27 | 002,311,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
  544. [2012.04.10 19:53:27 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
  545. [2012.04.10 19:53:27 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
  546. [2012.04.10 19:53:27 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
  547. [2012.04.10 19:53:27 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
  548. [2012.04.10 19:53:26 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
  549. [2012.04.10 19:53:26 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
  550. [2012.04.10 19:53:26 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
  551. [2012.04.10 19:53:26 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
  552. [2012.04.10 19:53:13 | 005,559,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
  553. [2012.04.10 19:53:13 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
  554. [2012.04.10 19:53:12 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
  555. [2012.04.10 19:51:51 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
  556. [2012.04.10 19:51:51 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
  557. [2012.04.10 19:51:51 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
  558. [2012.04.10 15:40:58 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\TuneUp Software
  559. [2012.04.10 15:40:04 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
  560. [2012.04.10 15:38:51 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
  561. [2012.04.09 18:27:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Leawo
  562. [2012.04.09 18:09:30 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Avanquest Software
  563. [2012.04.09 18:08:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Avanquest
  564. [2012.04.08 14:40:15 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\SumatraPDF
  565. [2012.04.08 14:40:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SumatraPDF
  566. [2012.04.08 11:03:26 | 000,000,000 | ---D | C] -- C:\ProgramData\OMSI AM
  567. [2012.04.07 20:52:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
  568. [2012.04.07 20:52:12 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
  569. [2012.04.07 16:43:08 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
  570. [2012.04.07 16:20:39 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\DVDVideoSoft_Ltd
  571. [2012.04.07 16:19:51 | 000,000,000 | ---D | C] -- C:\Users\Glenn\Documents\DVDVideoSoft
  572. [2012.04.07 16:19:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
  573. [2012.04.07 16:19:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DVDVideoSoft
  574. [2012.04.07 16:19:39 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\DVDVideoSoft
  575. [2012.04.07 16:19:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DVDVideoSoft
  576. [2012.04.07 13:21:39 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
  577. [2012.04.07 13:16:51 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Mozilla
  578. [2012.04.07 13:16:51 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Mozilla
  579. [2012.04.07 13:16:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
  580. [2012.04.06 15:42:03 | 000,000,000 | ---D | C] -- C:\m-r-software
  581. [2012.04.06 15:42:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Aerosoft
  582. [2012.04.06 06:56:21 | 000,000,000 | -HSD | C] -- C:\found.000
  583. [2012.04.05 19:17:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
  584. [2012.04.05 19:17:18 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
  585. [2012.04.05 16:55:11 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Skype
  586. [2012.04.05 16:55:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  587. [2012.04.05 16:55:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
  588. [2012.04.05 16:55:04 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
  589. [2012.04.05 16:55:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
  590. [2012.04.05 07:23:38 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\AMD
  591. [2012.04.05 07:23:13 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\ATI
  592. [2012.04.05 07:23:13 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\ATI
  593. [2012.04.05 07:23:13 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
  594. [2012.04.05 07:21:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
  595. [2012.04.05 07:21:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
  596. [2012.04.05 07:21:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
  597. [2012.04.05 07:21:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
  598. [2012.04.05 07:21:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
  599. [2012.04.05 07:20:29 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
  600. [2012.04.05 07:20:25 | 000,046,136 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdiox64.sys
  601. [2012.04.05 07:19:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
  602. [2012.04.05 07:19:53 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
  603. [2012.04.05 07:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
  604. [2012.04.05 07:06:13 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
  605. [2012.04.05 07:06:13 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
  606. [2012.04.04 22:06:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
  607. [2012.04.04 22:05:39 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
  608. [2012.04.04 21:55:55 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
  609. [2012.04.04 21:55:55 | 000,048,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
  610. [2012.04.04 21:55:51 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
  611. [2012.04.04 21:55:49 | 003,715,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
  612. [2012.04.04 21:55:49 | 001,838,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
  613. [2012.04.04 21:55:49 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
  614. [2012.04.04 21:55:49 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
  615. [2012.04.04 21:55:47 | 003,215,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
  616. [2012.04.04 21:55:46 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
  617. [2012.04.04 21:55:46 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
  618. [2012.04.04 21:55:44 | 014,633,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
  619. [2012.04.04 21:55:42 | 004,120,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
  620. [2012.04.04 21:55:42 | 003,205,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmcndmgr.dll
  621. [2012.04.04 21:55:42 | 003,008,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xpsservices.dll
  622. [2012.04.04 21:55:42 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
  623. [2012.04.04 21:55:42 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
  624. [2012.04.04 21:55:42 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
  625. [2012.04.04 21:55:42 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
  626. [2012.04.04 21:55:42 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
  627. [2012.04.04 21:55:41 | 001,219,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
  628. [2012.04.04 21:55:41 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
  629. [2012.04.04 21:55:41 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
  630. [2012.04.04 21:55:41 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
  631. [2012.04.04 21:55:40 | 002,086,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
  632. [2012.04.04 21:55:40 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizui.dll
  633. [2012.04.04 21:55:39 | 003,207,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
  634. [2012.04.04 21:55:39 | 001,866,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
  635. [2012.04.04 21:55:39 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
  636. [2012.04.04 21:55:39 | 001,340,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagperf.dll
  637. [2012.04.04 21:55:39 | 001,197,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
  638. [2012.04.04 21:55:38 | 001,753,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
  639. [2012.04.04 21:55:38 | 001,334,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
  640. [2012.04.04 21:55:38 | 001,326,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NaturalLanguage6.dll
  641. [2012.04.04 21:55:37 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
  642. [2012.04.04 21:55:37 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbon.dll
  643. [2012.04.04 21:55:37 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
  644. [2012.04.04 21:55:36 | 003,027,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVCORE.DLL
  645. [2012.04.04 21:55:36 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
  646. [2012.04.04 21:55:36 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spinstall.exe
  647. [2012.04.04 21:55:36 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
  648. [2012.04.04 21:55:36 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spreview.exe
  649. [2012.04.04 21:55:36 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
  650. [2012.04.04 21:55:36 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpdd.dll
  651. [2012.04.04 21:55:36 | 000,109,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
  652. [2012.04.04 21:55:36 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
  653. [2012.04.04 21:55:35 | 003,957,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
  654. [2012.04.04 21:55:35 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
  655. [2012.04.04 21:55:35 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
  656. [2012.04.04 21:55:35 | 001,115,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
  657. [2012.04.04 21:55:34 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuthFWSnapin.dll
  658. [2012.04.04 21:55:34 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthFWSnapin.dll
  659. [2012.04.04 21:55:34 | 000,867,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
  660. [2012.04.04 21:55:33 | 003,391,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
  661. [2012.04.04 21:55:33 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
  662. [2012.04.04 21:55:32 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
  663. [2012.04.04 21:55:32 | 001,456,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
  664. [2012.04.04 21:55:32 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
  665. [2012.04.04 21:55:32 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
  666. [2012.04.04 21:55:31 | 001,244,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2fs.dll
  667. [2012.04.04 21:55:31 | 001,116,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
  668. [2012.04.04 21:55:31 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
  669. [2012.04.04 21:55:31 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
  670. [2012.04.04 21:55:30 | 001,900,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll
  671. [2012.04.04 21:55:30 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
  672. [2012.04.04 21:55:29 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
  673. [2012.04.04 21:55:29 | 001,281,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werconcpl.dll
  674. [2012.04.04 21:55:29 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
  675. [2012.04.04 21:55:29 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
  676. [2012.04.04 21:55:29 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
  677. [2012.04.04 21:55:28 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certmgr.dll
  678. [2012.04.04 21:55:28 | 001,049,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
  679. [2012.04.04 21:55:28 | 001,008,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
  680. [2012.04.04 21:55:28 | 000,376,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
  681. [2012.04.04 21:55:27 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
  682. [2012.04.04 21:55:27 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceApi.dll
  683. [2012.04.04 21:55:27 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
  684. [2012.04.04 21:55:27 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
  685. [2012.04.04 21:55:27 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
  686. [2012.04.04 21:55:27 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsmf.dll
  687. [2012.04.04 21:55:27 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
  688. [2012.04.04 21:55:27 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
  689. [2012.04.04 21:55:26 | 002,652,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netshell.dll
  690. [2012.04.04 21:55:26 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
  691. [2012.04.04 21:55:26 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
  692. [2012.04.04 21:55:26 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
  693. [2012.04.04 21:55:26 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
  694. [2012.04.04 21:55:26 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmicmiplugin.dll
  695. [2012.04.04 21:55:26 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
  696. [2012.04.04 21:55:26 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shlwapi.dll
  697. [2012.04.04 21:55:26 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
  698. [2012.04.04 21:55:26 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ws2_32.dll
  699. [2012.04.04 21:55:26 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedynos.dll
  700. [2012.04.04 21:55:26 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpmonui.dll
  701. [2012.04.04 21:55:25 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
  702. [2012.04.04 21:55:25 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
  703. [2012.04.04 21:55:25 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
  704. [2012.04.04 21:55:25 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.exe
  705. [2012.04.04 21:55:25 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
  706. [2012.04.04 21:55:24 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
  707. [2012.04.04 21:55:23 | 002,543,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdshext.dll
  708. [2012.04.04 21:55:23 | 002,522,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
  709. [2012.04.04 21:55:23 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Query.dll
  710. [2012.04.04 21:55:23 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Vault.dll
  711. [2012.04.04 21:55:23 | 000,897,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroles.dll
  712. [2012.04.04 21:55:23 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
  713. [2012.04.04 21:55:23 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
  714. [2012.04.04 21:55:23 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
  715. [2012.04.04 21:55:23 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmd.exe
  716. [2012.04.04 21:55:23 | 000,281,600 | ---- | C] (Microsoft) -- C:\Windows\SysNative\DShowRdpFilter.dll
  717. [2012.04.04 21:55:23 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsmf.dll
  718. [2012.04.04 21:55:23 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QAGENT.DLL
  719. [2012.04.04 21:55:23 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3api.dll
  720. [2012.04.04 21:55:22 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
  721. [2012.04.04 21:55:22 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
  722. [2012.04.04 21:55:22 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
  723. [2012.04.04 21:55:21 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmcndmgr.dll
  724. [2012.04.04 21:55:21 | 001,808,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pnidui.dll
  725. [2012.04.04 21:55:21 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
  726. [2012.04.04 21:55:21 | 001,190,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
  727. [2012.04.04 21:55:21 | 001,158,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webservices.dll
  728. [2012.04.04 21:55:21 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ipsmsnap.dll
  729. [2012.04.04 21:55:21 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxs.dll
  730. [2012.04.04 21:55:21 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
  731. [2012.04.04 21:55:21 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
  732. [2012.04.04 21:55:21 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
  733. [2012.04.04 21:55:21 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
  734. [2012.04.04 21:55:21 | 000,252,928 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\DShowRdpFilter.dll
  735. [2012.04.04 21:55:21 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgprint.dll
  736. [2012.04.04 21:55:21 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\upnp.dll
  737. [2012.04.04 21:55:20 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
  738. [2012.04.04 21:55:20 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
  739. [2012.04.04 21:55:20 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlsrv32.dll
  740. [2012.04.04 21:55:20 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2fs.dll
  741. [2012.04.04 21:55:20 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
  742. [2012.04.04 21:55:20 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
  743. [2012.04.04 21:55:20 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsta.dll
  744. [2012.04.04 21:55:20 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
  745. [2012.04.04 21:55:20 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prncache.dll
  746. [2012.04.04 21:55:20 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3api.dll
  747. [2012.04.04 21:55:20 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
  748. [2012.04.04 21:55:19 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xpsservices.dll
  749. [2012.04.04 21:55:19 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certmgr.dll
  750. [2012.04.04 21:55:19 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanpref.dll
  751. [2012.04.04 21:55:19 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMNetMgr.dll
  752. [2012.04.04 21:55:19 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
  753. [2012.04.04 21:55:19 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
  754. [2012.04.04 21:55:19 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\photowiz.dll
  755. [2012.04.04 21:55:19 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
  756. [2012.04.04 21:55:19 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schtasks.exe
  757. [2012.04.04 21:55:19 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
  758. [2012.04.04 21:55:19 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
  759. [2012.04.04 21:55:18 | 002,262,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncCenter.dll
  760. [2012.04.04 21:55:18 | 002,072,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPEncEn.dll
  761. [2012.04.04 21:55:18 | 001,082,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
  762. [2012.04.04 21:55:18 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
  763. [2012.04.04 21:55:18 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpeffects.dll
  764. [2012.04.04 21:55:18 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
  765. [2012.04.04 21:55:18 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
  766. [2012.04.04 21:55:18 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmd.exe
  767. [2012.04.04 21:55:18 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
  768. [2012.04.04 21:55:18 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedyn.dll
  769. [2012.04.04 21:55:18 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
  770. [2012.04.04 21:55:18 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedynos.dll
  771. [2012.04.04 21:55:18 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fde.dll
  772. [2012.04.04 21:55:17 | 000,762,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroles.dll
  773. [2012.04.04 21:55:17 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localsec.dll
  774. [2012.04.04 21:55:17 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2.dll
  775. [2012.04.04 21:55:17 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
  776. [2012.04.04 21:55:17 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
  777. [2012.04.04 21:55:17 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netdiagfx.dll
  778. [2012.04.04 21:55:17 | 000,298,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
  779. [2012.04.04 21:55:17 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
  780. [2012.04.04 21:55:17 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
  781. [2012.04.04 21:55:17 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcpipcfg.dll
  782. [2012.04.04 21:55:17 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spp.dll
  783. [2012.04.04 21:55:17 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSHVHOST.DLL
  784. [2012.04.04 21:55:17 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
  785. [2012.04.04 21:55:17 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
  786. [2012.04.04 21:55:17 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netid.dll
  787. [2012.04.04 21:55:17 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
  788. [2012.04.04 21:55:17 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
  789. [2012.04.04 21:55:17 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
  790. [2012.04.04 21:55:16 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
  791. [2012.04.04 21:55:16 | 002,746,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
  792. [2012.04.04 21:55:16 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
  793. [2012.04.04 21:55:16 | 000,571,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspbda.dll
  794. [2012.04.04 21:55:16 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
  795. [2012.04.04 21:55:16 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biocpl.dll
  796. [2012.04.04 21:55:16 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
  797. [2012.04.04 21:55:16 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
  798. [2012.04.04 21:55:16 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wusa.exe
  799. [2012.04.04 21:55:16 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scansetting.dll
  800. [2012.04.04 21:55:16 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
  801. [2012.04.04 21:55:16 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitagent.exe
  802. [2012.04.04 21:55:16 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
  803. [2012.04.04 21:55:15 | 003,211,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
  804. [2012.04.04 21:55:15 | 000,934,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallControlPanel.dll
  805. [2012.04.04 21:55:15 | 000,854,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
  806. [2012.04.04 21:55:15 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll
  807. [2012.04.04 21:55:15 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
  808. [2012.04.04 21:55:15 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
  809. [2012.04.04 21:55:15 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wisptis.exe
  810. [2012.04.04 21:55:15 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
  811. [2012.04.04 21:55:15 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
  812. [2012.04.04 21:55:15 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PkgMgr.exe
  813. [2012.04.04 21:55:15 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
  814. [2012.04.04 21:55:15 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
  815. [2012.04.04 21:55:15 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetup.exe
  816. [2012.04.04 21:55:15 | 000,144,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
  817. [2012.04.04 21:55:14 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll
  818. [2012.04.04 21:55:14 | 002,494,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netshell.dll
  819. [2012.04.04 21:55:14 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DxpTaskSync.dll
  820. [2012.04.04 21:55:14 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
  821. [2012.04.04 21:55:14 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
  822. [2012.04.04 21:55:14 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlsrv32.dll
  823. [2012.04.04 21:55:14 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\calc.exe
  824. [2012.04.04 21:55:14 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerfCenterCPL.dll
  825. [2012.04.04 21:55:14 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXP.dll
  826. [2012.04.04 21:55:14 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
  827. [2012.04.04 21:55:14 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
  828. [2012.04.04 21:55:14 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
  829. [2012.04.04 21:55:14 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapphost.dll
  830. [2012.04.04 21:55:14 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\upnp.dll
  831. [2012.04.04 21:55:14 | 000,263,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
  832. [2012.04.04 21:55:14 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scecli.dll
  833. [2012.04.04 21:55:14 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprapi.dll
  834. [2012.04.04 21:55:14 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetapi.dll
  835. [2012.04.04 21:55:14 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
  836. [2012.04.04 21:55:14 | 000,128,000 | ---- | C] (Microsoft) -- C:\Windows\SysNative\Robocopy.exe
  837. [2012.04.04 21:55:14 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
  838. [2012.04.04 21:55:14 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys
  839. [2012.04.04 21:55:13 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
  840. [2012.04.04 21:55:13 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSMPEG2ENC.DLL
  841. [2012.04.04 21:55:13 | 000,932,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
  842. [2012.04.04 21:55:13 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXPTaskRingtone.dll
  843. [2012.04.04 21:55:13 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
  844. [2012.04.04 21:55:13 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onex.dll
  845. [2012.04.04 21:55:13 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
  846. [2012.04.04 21:55:13 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
  847. [2012.04.04 21:55:13 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prncache.dll
  848. [2012.04.04 21:55:13 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
  849. [2012.04.04 21:55:12 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcenter.dll
  850. [2012.04.04 21:55:12 | 001,363,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
  851. [2012.04.04 21:55:12 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdengin2.dll
  852. [2012.04.04 21:55:12 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
  853. [2012.04.04 21:55:12 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
  854. [2012.04.04 21:55:12 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
  855. [2012.04.04 21:55:12 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlangpui.dll
  856. [2012.04.04 21:55:12 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiadefui.dll
  857. [2012.04.04 21:55:12 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
  858. [2012.04.04 21:55:12 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpeffects.dll
  859. [2012.04.04 21:55:12 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scansetting.dll
  860. [2012.04.04 21:55:12 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquoui.dll
  861. [2012.04.04 21:55:12 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
  862. [2012.04.04 21:55:12 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\net1.exe
  863. [2012.04.04 21:55:12 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
  864. [2012.04.04 21:55:11 | 002,621,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
  865. [2012.04.04 21:55:11 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlangpui.dll
  866. [2012.04.04 21:55:11 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVol.exe
  867. [2012.04.04 21:55:11 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSHVHOST.DLL
  868. [2012.04.04 21:55:11 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
  869. [2012.04.04 21:55:11 | 000,112,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
  870. [2012.04.04 21:55:11 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QUTIL.DLL
  871. [2012.04.04 21:55:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\regapi.dll
  872. [2012.04.04 21:55:11 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samcli.dll
  873. [2012.04.04 21:55:11 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
  874. [2012.04.04 21:55:10 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SyncCenter.dll
  875. [2012.04.04 21:55:10 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pnidui.dll
  876. [2012.04.04 21:55:10 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
  877. [2012.04.04 21:55:10 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TabletPC.cpl
  878. [2012.04.04 21:55:10 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
  879. [2012.04.04 21:55:10 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srchadmin.dll
  880. [2012.04.04 21:55:10 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
  881. [2012.04.04 21:55:10 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netdiagfx.dll
  882. [2012.04.04 21:55:10 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fde.dll
  883. [2012.04.04 21:55:10 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
  884. [2012.04.04 21:55:10 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupcl.exe
  885. [2012.04.04 21:55:10 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
  886. [2012.04.04 21:55:08 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
  887. [2012.04.04 21:55:08 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayCpl.dll
  888. [2012.04.04 21:55:08 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
  889. [2012.04.04 21:55:08 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
  890. [2012.04.04 21:55:08 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxclu.dll
  891. [2012.04.04 21:55:08 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgcpl.dll
  892. [2012.04.04 21:55:08 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
  893. [2012.04.04 21:55:08 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msconfig.exe
  894. [2012.04.04 21:55:08 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netiohlp.dll
  895. [2012.04.04 21:55:08 | 000,166,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
  896. [2012.04.04 21:55:08 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
  897. [2012.04.04 21:55:08 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
  898. [2012.04.04 21:55:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsmproxy.dll
  899. [2012.04.04 21:55:08 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mimefilt.dll
  900. [2012.04.04 21:55:08 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
  901. [2012.04.04 21:55:07 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
  902. [2012.04.04 21:55:07 | 000,633,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched20.dll
  903. [2012.04.04 21:55:07 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DXPTaskRingtone.dll
  904. [2012.04.04 21:55:07 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2.dll
  905. [2012.04.04 21:55:07 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscmmc.dll
  906. [2012.04.04 21:55:07 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RpcRtRemote.dll
  907. [2012.04.04 21:55:06 | 002,250,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsCpl.dll
  908. [2012.04.04 21:55:06 | 002,193,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themecpl.dll
  909. [2012.04.04 21:55:06 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPEncEn.dll
  910. [2012.04.04 21:55:06 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
  911. [2012.04.04 21:55:06 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoconv.exe
  912. [2012.04.04 21:55:06 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe
  913. [2012.04.04 21:55:06 | 000,763,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autofmt.exe
  914. [2012.04.04 21:55:06 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoconv.exe
  915. [2012.04.04 21:55:06 | 000,668,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe
  916. [2012.04.04 21:55:06 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autofmt.exe
  917. [2012.04.04 21:55:06 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
  918. [2012.04.04 21:55:06 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercpl.dll
  919. [2012.04.04 21:55:06 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ipsmsnap.dll
  920. [2012.04.04 21:55:06 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eudcedit.exe
  921. [2012.04.04 21:55:06 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sharemediacpl.dll
  922. [2012.04.04 21:55:06 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
  923. [2012.04.04 21:55:06 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
  924. [2012.04.04 21:55:06 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppcomapi.dll
  925. [2012.04.04 21:55:06 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onex.dll
  926. [2012.04.04 21:55:06 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netjoin.dll
  927. [2012.04.04 21:55:06 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoncli.dll
  928. [2012.04.04 21:55:06 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msutb.dll
  929. [2012.04.04 21:55:06 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiohlp.dll
  930. [2012.04.04 21:55:06 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
  931. [2012.04.04 21:55:06 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nci.dll
  932. [2012.04.04 21:55:06 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\regapi.dll
  933. [2012.04.04 21:55:06 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
  934. [2012.04.04 21:55:06 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mimefilt.dll
  935. [2012.04.04 21:55:06 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnikeapi.dll
  936. [2012.04.04 21:55:06 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\proquota.exe
  937. [2012.04.04 21:55:05 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdclt.exe
  938. [2012.04.04 21:55:05 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmiEngine.dll
  939. [2012.04.04 21:55:05 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
  940. [2012.04.04 21:55:05 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontext.dll
  941. [2012.04.04 21:55:05 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuxiliaryDisplayCpl.dll
  942. [2012.04.04 21:55:05 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpd_ci.dll
  943. [2012.04.04 21:55:05 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshipsec.dll
  944. [2012.04.04 21:55:05 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercpl.dll
  945. [2012.04.04 21:55:05 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanui.dll
  946. [2012.04.04 21:55:05 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
  947. [2012.04.04 21:55:05 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srchadmin.dll
  948. [2012.04.04 21:55:05 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll
  949. [2012.04.04 21:55:05 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapphost.dll
  950. [2012.04.04 21:55:05 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprddm.dll
  951. [2012.04.04 21:55:05 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedyn.dll
  952. [2012.04.04 21:55:05 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpipcfg.dll
  953. [2012.04.04 21:55:05 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe
  954. [2012.04.04 21:55:05 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QAGENT.DLL
  955. [2012.04.04 21:55:05 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys
  956. [2012.04.04 21:55:05 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
  957. [2012.04.04 21:55:05 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
  958. [2012.04.04 21:55:05 | 000,155,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscorier.dll
  959. [2012.04.04 21:55:05 | 000,154,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscorier.dll
  960. [2012.04.04 21:55:05 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shsetup.dll
  961. [2012.04.04 21:55:05 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
  962. [2012.04.04 21:55:05 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netid.dll
  963. [2012.04.04 21:55:05 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
  964. [2012.04.04 21:55:04 | 002,217,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bootres.dll
  965. [2012.04.04 21:55:04 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanpref.dll
  966. [2012.04.04 21:55:04 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
  967. [2012.04.04 21:55:04 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DiagCpl.dll
  968. [2012.04.04 21:55:04 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
  969. [2012.04.04 21:55:04 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMNetMgr.dll
  970. [2012.04.04 21:55:04 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mblctr.exe
  971. [2012.04.04 21:55:04 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Vault.dll
  972. [2012.04.04 21:55:04 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
  973. [2012.04.04 21:55:04 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
  974. [2012.04.04 21:55:04 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
  975. [2012.04.04 21:55:04 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
  976. [2012.04.04 21:55:04 | 000,433,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MCEWMDRMNDBootstrap.dll
  977. [2012.04.04 21:55:04 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
  978. [2012.04.04 21:55:04 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll
  979. [2012.04.04 21:55:04 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
  980. [2012.04.04 21:55:04 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksproxy.ax
  981. [2012.04.04 21:55:04 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpsrcwp.dll
  982. [2012.04.04 21:55:04 | 000,098,816 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\Robocopy.exe
  983. [2012.04.04 21:55:04 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSTPager.ax
  984. [2012.04.04 21:55:04 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nci.dll
  985. [2012.04.04 21:55:04 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
  986. [2012.04.04 21:55:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
  987. [2012.04.04 21:55:03 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DxpTaskSync.dll
  988. [2012.04.04 21:55:03 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
  989. [2012.04.04 21:55:03 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnfldr.dll
  990. [2012.04.04 21:55:03 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\termmgr.dll
  991. [2012.04.04 21:55:03 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
  992. [2012.04.04 21:55:03 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxclu.dll
  993. [2012.04.04 21:55:03 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pdh.dll
  994. [2012.04.04 21:55:03 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eudcedit.exe
  995. [2012.04.04 21:55:03 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxdiagn.dll
  996. [2012.04.04 21:55:03 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskmgr.exe
  997. [2012.04.04 21:55:03 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskmgr.exe
  998. [2012.04.04 21:55:03 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
  999. [2012.04.04 21:55:03 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasppp.dll
  1000. [2012.04.04 21:55:03 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
  1001. [2012.04.04 21:55:03 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
  1002. [2012.04.04 21:55:03 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hbaapi.dll
  1003. [2012.04.04 21:55:03 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3cfg.dll
  1004. [2012.04.04 21:55:03 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\proquota.exe
  1005. [2012.04.04 21:55:03 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\userinit.exe
  1006. [2012.04.04 21:55:02 | 003,745,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\accessibilitycpl.dll
  1007. [2012.04.04 21:55:02 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsCpl.dll
  1008. [2012.04.04 21:55:02 | 002,157,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themecpl.dll
  1009. [2012.04.04 21:55:02 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FirewallControlPanel.dll
  1010. [2012.04.04 21:55:02 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
  1011. [2012.04.04 21:55:02 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiadefui.dll
  1012. [2012.04.04 21:55:02 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
  1013. [2012.04.04 21:55:02 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll
  1014. [2012.04.04 21:55:02 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
  1015. [2012.04.04 21:55:02 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slui.exe
  1016. [2012.04.04 21:55:02 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
  1017. [2012.04.04 21:55:02 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hgcpl.dll
  1018. [2012.04.04 21:55:02 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAC3ENC.DLL
  1019. [2012.04.04 21:55:02 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\defaultlocationcpl.dll
  1020. [2012.04.04 21:55:02 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
  1021. [2012.04.04 21:55:02 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll
  1022. [2012.04.04 21:55:02 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasppp.dll
  1023. [2012.04.04 21:55:02 | 000,155,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
  1024. [2012.04.04 21:55:02 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
  1025. [2012.04.04 21:55:02 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logoncli.dll
  1026. [2012.04.04 21:55:02 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDShServiceObj.dll
  1027. [2012.04.04 21:55:02 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
  1028. [2012.04.04 21:55:02 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscmmc.dll
  1029. [2012.04.04 21:55:02 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userinit.exe
  1030. [2012.04.04 21:55:01 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontext.dll
  1031. [2012.04.04 21:55:01 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sud.dll
  1032. [2012.04.04 21:55:01 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCenter.dll
  1033. [2012.04.04 21:55:01 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\localsec.dll
  1034. [2012.04.04 21:55:01 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprddm.dll
  1035. [2012.04.04 21:55:01 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scecli.dll
  1036. [2012.04.04 21:55:01 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscories.dll
  1037. [2012.04.04 21:55:00 | 003,727,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\accessibilitycpl.dll
  1038. [2012.04.04 21:55:00 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkmap.dll
  1039. [2012.04.04 21:55:00 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcenter.dll
  1040. [2012.04.04 21:55:00 | 001,065,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
  1041. [2012.04.04 21:55:00 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OobeFldr.dll
  1042. [2012.04.04 21:55:00 | 000,780,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
  1043. [2012.04.04 21:55:00 | 000,740,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
  1044. [2012.04.04 21:55:00 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsuiext.dll
  1045. [2012.04.04 21:55:00 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
  1046. [2012.04.04 21:55:00 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PerfCenterCPL.dll
  1047. [2012.04.04 21:55:00 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
  1048. [2012.04.04 21:55:00 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
  1049. [2012.04.04 21:55:00 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
  1050. [2012.04.04 21:55:00 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroleui.dll
  1051. [2012.04.04 21:55:00 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanui.dll
  1052. [2012.04.04 21:55:00 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl
  1053. [2012.04.04 21:55:00 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizeng.dll
  1054. [2012.04.04 21:55:00 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdedit.exe
  1055. [2012.04.04 21:55:00 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MediaMetadataHandler.dll
  1056. [2012.04.04 21:55:00 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVol.exe
  1057. [2012.04.04 21:55:00 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroleui.dll
  1058. [2012.04.04 21:55:00 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskbarcpl.dll
  1059. [2012.04.04 21:55:00 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OnLineIDCpl.dll
  1060. [2012.04.04 21:55:00 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
  1061. [2012.04.04 21:55:00 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twext.dll
  1062. [2012.04.04 21:55:00 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxlib.dll
  1063. [2012.04.04 21:55:00 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recovery.dll
  1064. [2012.04.04 21:55:00 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prntvpt.dll
  1065. [2012.04.04 21:55:00 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cca.dll
  1066. [2012.04.04 21:55:00 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\isoburn.exe
  1067. [2012.04.04 21:55:00 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\w32tm.exe
  1068. [2012.04.04 21:55:00 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sisbkup.dll
  1069. [2012.04.04 21:54:59 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl
  1070. [2012.04.04 21:54:59 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efscore.dll
  1071. [2012.04.04 21:54:59 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzutil.exe
  1072. [2012.04.04 21:54:58 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkmap.dll
  1073. [2012.04.04 21:54:58 | 001,003,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
  1074. [2012.04.04 21:54:58 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdcpl.dll
  1075. [2012.04.04 21:54:58 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenterCPL.dll
  1076. [2012.04.04 21:54:58 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\main.cpl
  1077. [2012.04.04 21:54:58 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
  1078. [2012.04.04 21:54:58 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shwebsvc.dll
  1079. [2012.04.04 21:54:58 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizeng.dll
  1080. [2012.04.04 21:54:58 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\systemcpl.dll
  1081. [2012.04.04 21:54:58 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
  1082. [2012.04.04 21:54:58 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnfldr.dll
  1083. [2012.04.04 21:54:58 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
  1084. [2012.04.04 21:54:58 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wusa.exe
  1085. [2012.04.04 21:54:58 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCEWMDRMNDBootstrap.dll
  1086. [2012.04.04 21:54:58 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recdisc.exe
  1087. [2012.04.04 21:54:58 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAC3ENC.DLL
  1088. [2012.04.04 21:54:58 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysclass.dll
  1089. [2012.04.04 21:54:58 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syncui.dll
  1090. [2012.04.04 21:54:58 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VBICodec.ax
  1091. [2012.04.04 21:54:58 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll
  1092. [2012.04.04 21:54:58 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adsldp.dll
  1093. [2012.04.04 21:54:58 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netjoin.dll
  1094. [2012.04.04 21:54:58 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoplay.dll
  1095. [2012.04.04 21:54:58 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayServices.dll
  1096. [2012.04.04 21:54:58 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptui.dll
  1097. [2012.04.04 21:54:58 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksxbar.ax
  1098. [2012.04.04 21:54:58 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
  1099. [2012.04.04 21:54:58 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll
  1100. [2012.04.04 21:54:57 | 000,781,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
  1101. [2012.04.04 21:54:57 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sud.dll
  1102. [2012.04.04 21:54:57 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenter.dll
  1103. [2012.04.04 21:54:57 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
  1104. [2012.04.04 21:54:57 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
  1105. [2012.04.04 21:54:57 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenterCPL.dll
  1106. [2012.04.04 21:54:57 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
  1107. [2012.04.04 21:54:57 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
  1108. [2012.04.04 21:54:57 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlcese30.dll
  1109. [2012.04.04 21:54:57 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shwebsvc.dll
  1110. [2012.04.04 21:54:57 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\termmgr.dll
  1111. [2012.04.04 21:54:57 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
  1112. [2012.04.04 21:54:57 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl
  1113. [2012.04.04 21:54:57 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ssText3d.scr
  1114. [2012.04.04 21:54:57 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdm.tsp
  1115. [2012.04.04 21:54:57 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
  1116. [2012.04.04 21:54:57 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
  1117. [2012.04.04 21:54:57 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
  1118. [2012.04.04 21:54:57 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\photowiz.dll
  1119. [2012.04.04 21:54:57 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iTVData.dll
  1120. [2012.04.04 21:54:57 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iprtrmgr.dll
  1121. [2012.04.04 21:54:57 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sethc.exe
  1122. [2012.04.04 21:54:57 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iprtrmgr.dll
  1123. [2012.04.04 21:54:57 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MediaMetadataHandler.dll
  1124. [2012.04.04 21:54:57 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
  1125. [2012.04.04 21:54:57 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\defaultlocationcpl.dll
  1126. [2012.04.04 21:54:57 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OnLineIDCpl.dll
  1127. [2012.04.04 21:54:57 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efscore.dll
  1128. [2012.04.04 21:54:57 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
  1129. [2012.04.04 21:54:57 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
  1130. [2012.04.04 21:54:57 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syncui.dll
  1131. [2012.04.04 21:54:57 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifsutil.dll
  1132. [2012.04.04 21:54:57 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoplay.dll
  1133. [2012.04.04 21:54:57 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntlanman.dll
  1134. [2012.04.04 21:54:57 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srvcli.dll
  1135. [2012.04.04 21:54:57 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserAccountControlSettings.dll
  1136. [2012.04.04 21:54:57 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3cfg.dll
  1137. [2012.04.04 21:54:57 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpd3d.dll
  1138. [2012.04.04 21:54:57 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
  1139. [2012.04.04 21:54:57 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
  1140. [2012.04.04 21:54:57 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ftp.exe
  1141. [2012.04.04 21:54:57 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sisbkup.dll
  1142. [2012.04.04 21:54:57 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slwga.dll
  1143. [2012.04.04 21:54:56 | 001,911,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
  1144. [2012.04.04 21:54:56 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
  1145. [2012.04.04 21:54:56 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
  1146. [2012.04.04 21:54:56 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Bubbles.scr
  1147. [2012.04.04 21:54:56 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OobeFldr.dll
  1148. [2012.04.04 21:54:56 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
  1149. [2012.04.04 21:54:56 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
  1150. [2012.04.04 21:54:56 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
  1151. [2012.04.04 21:54:56 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
  1152. [2012.04.04 21:54:56 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsuiext.dll
  1153. [2012.04.04 21:54:56 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
  1154. [2012.04.04 21:54:56 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmdev.dll
  1155. [2012.04.04 21:54:56 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfrgui.exe
  1156. [2012.04.04 21:54:56 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll
  1157. [2012.04.04 21:54:56 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
  1158. [2012.04.04 21:54:56 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfrgui.exe
  1159. [2012.04.04 21:54:56 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceCenter.dll
  1160. [2012.04.04 21:54:56 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll
  1161. [2012.04.04 21:54:56 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
  1162. [2012.04.04 21:54:56 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll
  1163. [2012.04.04 21:54:56 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimgapi.dll
  1164. [2012.04.04 21:54:56 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpdxm.dll
  1165. [2012.04.04 21:54:56 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshipsec.dll
  1166. [2012.04.04 21:54:56 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.dll
  1167. [2012.04.04 21:54:56 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3ui.dll
  1168. [2012.04.04 21:54:56 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.dll
  1169. [2012.04.04 21:54:56 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsqmcons.exe
  1170. [2012.04.04 21:54:56 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdm.tsp
  1171. [2012.04.04 21:54:56 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srrstr.dll
  1172. [2012.04.04 21:54:56 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sethc.exe
  1173. [2012.04.04 21:54:56 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
  1174. [2012.04.04 21:54:56 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpx.dll
  1175. [2012.04.04 21:54:56 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wavemsp.dll
  1176. [2012.04.04 21:54:56 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
  1177. [2012.04.04 21:54:56 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairingFolder.dll
  1178. [2012.04.04 21:54:56 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wavemsp.dll
  1179. [2012.04.04 21:54:56 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll
  1180. [2012.04.04 21:54:56 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PkgMgr.exe
  1181. [2012.04.04 21:54:56 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstask.dll
  1182. [2012.04.04 21:54:56 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
  1183. [2012.04.04 21:54:56 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\activeds.dll
  1184. [2012.04.04 21:54:56 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetup.exe
  1185. [2012.04.04 21:54:56 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquoui.dll
  1186. [2012.04.04 21:54:56 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
  1187. [2012.04.04 21:54:56 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpsrcwp.dll
  1188. [2012.04.04 21:54:56 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
  1189. [2012.04.04 21:54:56 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll
  1190. [2012.04.04 21:54:56 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdboot.exe
  1191. [2012.04.04 21:54:56 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
  1192. [2012.04.04 21:54:56 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
  1193. [2012.04.04 21:54:56 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\remotepg.dll
  1194. [2012.04.04 21:54:56 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
  1195. [2012.04.04 21:54:56 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\net1.exe
  1196. [2012.04.04 21:54:56 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twext.dll
  1197. [2012.04.04 21:54:56 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPHLPR.DLL
  1198. [2012.04.04 21:54:56 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nslookup.exe
  1199. [2012.04.04 21:54:56 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPHLPR.DLL
  1200. [2012.04.04 21:54:56 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kstvtune.ax
  1201. [2012.04.04 21:54:56 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppnp.dll
  1202. [2012.04.04 21:54:56 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\migisol.dll
  1203. [2012.04.04 21:54:56 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabinet.dll
  1204. [2012.04.04 21:54:56 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
  1205. [2012.04.04 21:54:56 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
  1206. [2012.04.04 21:54:56 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
  1207. [2012.04.04 21:54:56 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\isoburn.exe
  1208. [2012.04.04 21:54:56 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wkscli.dll
  1209. [2012.04.04 21:54:56 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSTPager.ax
  1210. [2012.04.04 21:54:56 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsnmp32.dll
  1211. [2012.04.04 21:54:56 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acppage.dll
  1212. [2012.04.04 21:54:56 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ftp.exe
  1213. [2012.04.04 21:54:56 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzutil.exe
  1214. [2012.04.04 21:54:56 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll
  1215. [2012.04.04 21:54:56 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFaultSecure.exe
  1216. [2012.04.04 21:54:56 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
  1217. [2012.04.04 21:54:55 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
  1218. [2012.04.04 21:54:55 | 000,573,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
  1219. [2012.04.04 21:54:55 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
  1220. [2012.04.04 21:54:55 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\main.cpl
  1221. [2012.04.04 21:54:55 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskraid.exe
  1222. [2012.04.04 21:54:55 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsAnytimeUpgradeResults.exe
  1223. [2012.04.04 21:54:55 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ssText3d.scr
  1224. [2012.04.04 21:54:55 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskraid.exe
  1225. [2012.04.04 21:54:55 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mystify.scr
  1226. [2012.04.04 21:54:55 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Ribbons.scr
  1227. [2012.04.04 21:54:55 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
  1228. [2012.04.04 21:54:55 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
  1229. [2012.04.04 21:54:55 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairingFolder.dll
  1230. [2012.04.04 21:54:55 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qasf.dll
  1231. [2012.04.04 21:54:55 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qcap.dll
  1232. [2012.04.04 21:54:55 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
  1233. [2012.04.04 21:54:55 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ifsutil.dll
  1234. [2012.04.04 21:54:55 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfmon.exe
  1235. [2012.04.04 21:54:55 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpshell.dll
  1236. [2012.04.04 21:54:55 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll
  1237. [2012.04.04 21:54:55 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\uxlib.dll
  1238. [2012.04.04 21:54:55 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupugc.exe
  1239. [2012.04.04 21:54:55 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nslookup.exe
  1240. [2012.04.04 21:54:55 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
  1241. [2012.04.04 21:54:55 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdmat.dll
  1242. [2012.04.04 21:54:55 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\Windows\twain_32.dll
  1243. [2012.04.04 21:54:55 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsium.dll
  1244. [2012.04.04 21:54:55 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AzSqlExt.dll
  1245. [2012.04.04 21:54:55 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netutils.dll
  1246. [2012.04.04 21:54:55 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll
  1247. [2012.04.04 21:54:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
  1248. [2012.04.04 21:54:54 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
  1249. [2012.04.04 21:54:54 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onexui.dll
  1250. [2012.04.04 21:54:54 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbghelp.dll
  1251. [2012.04.04 21:54:54 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSDECD.DLL
  1252. [2012.04.04 21:54:54 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
  1253. [2012.04.04 21:54:54 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
  1254. [2012.04.04 21:54:54 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nltest.exe
  1255. [2012.04.04 21:54:54 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
  1256. [2012.04.04 21:54:54 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimserv.exe
  1257. [2012.04.04 21:54:54 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
  1258. [2012.04.04 21:54:54 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpdxm.dll
  1259. [2012.04.04 21:54:54 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qasf.dll
  1260. [2012.04.04 21:54:54 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstask.dll
  1261. [2012.04.04 21:54:54 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iTVData.dll
  1262. [2012.04.04 21:54:54 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdwcn.dll
  1263. [2012.04.04 21:54:54 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionQueue.dll
  1264. [2012.04.04 21:54:54 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxdiagn.dll
  1265. [2012.04.04 21:54:54 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
  1266. [2012.04.04 21:54:54 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdwcn.dll
  1267. [2012.04.04 21:54:54 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsbas.dll
  1268. [2012.04.04 21:54:54 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
  1269. [2012.04.04 21:54:54 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetapi.dll
  1270. [2012.04.04 21:54:54 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdsbas.dll
  1271. [2012.04.04 21:54:54 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfmon.exe
  1272. [2012.04.04 21:54:54 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\remotepg.dll
  1273. [2012.04.04 21:54:54 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MdSched.exe
  1274. [2012.04.04 21:54:54 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys
  1275. [2012.04.04 21:54:54 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Kswdmcap.ax
  1276. [2012.04.04 21:54:54 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiavideo.dll
  1277. [2012.04.04 21:54:54 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QUTIL.DLL
  1278. [2012.04.04 21:54:54 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserAccountControlSettings.dll
  1279. [2012.04.04 21:54:54 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tlscsp.dll
  1280. [2012.04.04 21:54:54 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
  1281. [2012.04.04 21:54:54 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\umb.dll
  1282. [2012.04.04 21:54:54 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\runonce.exe
  1283. [2012.04.04 21:54:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\runonce.exe
  1284. [2012.04.04 21:54:54 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPCRYPT.DLL
  1285. [2012.04.04 21:54:54 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PrintIsolationProxy.dll
  1286. [2012.04.04 21:54:54 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPCRYPT.DLL
  1287. [2012.04.04 21:54:54 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\acppage.dll
  1288. [2012.04.04 21:54:54 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vpnikeapi.dll
  1289. [2012.04.04 21:54:54 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syssetup.dll
  1290. [2012.04.04 21:54:53 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsadmin.exe
  1291. [2012.04.04 21:54:53 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logagent.exe
  1292. [2012.04.04 21:54:52 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
  1293. [2012.04.04 21:54:52 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10.IME
  1294. [2012.04.04 21:54:52 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
  1295. [2012.04.04 21:54:52 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
  1296. [2012.04.04 21:54:52 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Bubbles.scr
  1297. [2012.04.04 21:54:52 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
  1298. [2012.04.04 21:54:52 | 000,681,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
  1299. [2012.04.04 21:54:52 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSDECD.DLL
  1300. [2012.04.04 21:54:52 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmnet.dll
  1301. [2012.04.04 21:54:52 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmdev.dll
  1302. [2012.04.04 21:54:52 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmnet.dll
  1303. [2012.04.04 21:54:52 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceStatus.dll
  1304. [2012.04.04 21:54:52 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDSp.dll
  1305. [2012.04.04 21:54:52 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceStatus.dll
  1306. [2012.04.04 21:54:52 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
  1307. [2012.04.04 21:54:52 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WPDSp.dll
  1308. [2012.04.04 21:54:52 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
  1309. [2012.04.04 21:54:52 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
  1310. [2012.04.04 21:54:52 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3ui.dll
  1311. [2012.04.04 21:54:52 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlcese30.dll
  1312. [2012.04.04 21:54:52 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdv.dll
  1313. [2012.04.04 21:54:52 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
  1314. [2012.04.04 21:54:52 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdv.dll
  1315. [2012.04.04 21:54:52 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
  1316. [2012.04.04 21:54:52 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdh.dll
  1317. [2012.04.04 21:54:52 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
  1318. [2012.04.04 21:54:52 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceSyncProvider.dll
  1319. [2012.04.04 21:54:52 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mystify.scr
  1320. [2012.04.04 21:54:52 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Ribbons.scr
  1321. [2012.04.04 21:54:52 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\itircl.dll
  1322. [2012.04.04 21:54:52 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsadmin.exe
  1323. [2012.04.04 21:54:52 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceSyncProvider.dll
  1324. [2012.04.04 21:54:52 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qcap.dll
  1325. [2012.04.04 21:54:52 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
  1326. [2012.04.04 21:54:52 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
  1327. [2012.04.04 21:54:52 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskpart.exe
  1328. [2012.04.04 21:54:52 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprapi.dll
  1329. [2012.04.04 21:54:52 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VBICodec.ax
  1330. [2012.04.04 21:54:52 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsicli.exe
  1331. [2012.04.04 21:54:52 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsicli.exe
  1332. [2012.04.04 21:54:52 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EhStorAPI.dll
  1333. [2012.04.04 21:54:52 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mydocs.dll
  1334. [2012.04.04 21:54:52 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl
  1335. [2012.04.04 21:54:52 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shacct.dll
  1336. [2012.04.04 21:54:52 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\desk.cpl
  1337. [2012.04.04 21:54:52 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\desk.cpl
  1338. [2012.04.04 21:54:52 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSVRMGMT.DLL
  1339. [2012.04.04 21:54:52 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
  1340. [2012.04.04 21:54:52 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
  1341. [2012.04.04 21:54:52 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fphc.dll
  1342. [2012.04.04 21:54:52 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupcln.dll
  1343. [2012.04.04 21:54:52 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3msm.dll
  1344. [2012.04.04 21:54:52 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiavideo.dll
  1345. [2012.04.04 21:54:52 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shacct.dll
  1346. [2012.04.04 21:54:52 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Kswdmcap.ax
  1347. [2012.04.04 21:54:52 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpshell.dll
  1348. [2012.04.04 21:54:52 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
  1349. [2012.04.04 21:54:52 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mobsync.exe
  1350. [2012.04.04 21:54:52 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppinst.dll
  1351. [2012.04.04 21:54:52 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSVRMGMT.DLL
  1352. [2012.04.04 21:54:52 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
  1353. [2012.04.04 21:54:52 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fphc.dll
  1354. [2012.04.04 21:54:52 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmstp.exe
  1355. [2012.04.04 21:54:52 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
  1356. [2012.04.04 21:54:52 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\amstream.dll
  1357. [2012.04.04 21:54:52 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
  1358. [2012.04.04 21:54:52 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmstp.exe
  1359. [2012.04.04 21:54:52 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kstvtune.ax
  1360. [2012.04.04 21:54:52 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
  1361. [2012.04.04 21:54:52 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QCLIPROV.DLL
  1362. [2012.04.04 21:54:52 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tabcal.exe
  1363. [2012.04.04 21:54:52 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spbcd.dll
  1364. [2012.04.04 21:54:52 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\olethk32.dll
  1365. [2012.04.04 21:54:52 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapistub.dll
  1366. [2012.04.04 21:54:52 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdProxy.dll
  1367. [2012.04.04 21:54:52 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
  1368. [2012.04.04 21:54:52 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QCLIPROV.DLL
  1369. [2012.04.04 21:54:52 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertPolEng.dll
  1370. [2012.04.04 21:54:52 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MuiUnattend.exe
  1371. [2012.04.04 21:54:52 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cca.dll
  1372. [2012.04.04 21:54:52 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\takeown.exe
  1373. [2012.04.04 21:54:52 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PnPUnattend.exe
  1374. [2012.04.04 21:54:52 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WavDest.dll
  1375. [2012.04.04 21:54:52 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
  1376. [2012.04.04 21:54:52 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spbcd.dll
  1377. [2012.04.04 21:54:52 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\djoin.exe
  1378. [2012.04.04 21:54:52 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptui.dll
  1379. [2012.04.04 21:54:52 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdmat.dll
  1380. [2012.04.04 21:54:52 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\g711codc.ax
  1381. [2012.04.04 21:54:52 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vfwwdm32.dll
  1382. [2012.04.04 21:54:52 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpd3d.dll
  1383. [2012.04.04 21:54:52 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsnmp32.dll
  1384. [2012.04.04 21:54:52 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MultiDigiMon.exe
  1385. [2012.04.04 21:54:52 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
  1386. [2012.04.04 21:54:52 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\takeown.exe
  1387. [2012.04.04 21:54:52 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
  1388. [2012.04.04 21:54:52 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdhui.dll
  1389. [2012.04.04 21:54:52 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
  1390. [2012.04.04 21:54:52 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbisurf.ax
  1391. [2012.04.04 21:54:52 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
  1392. [2012.04.04 21:54:52 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
  1393. [2012.04.04 21:54:52 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimgvw.dll
  1394. [2012.04.04 21:54:52 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
  1395. [2012.04.04 21:54:52 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\utildll.dll
  1396. [2012.04.04 21:54:52 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsium.dll
  1397. [2012.04.04 21:54:52 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AzSqlExt.dll
  1398. [2012.04.04 21:54:52 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HotStartUserAgent.dll
  1399. [2012.04.04 21:54:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiougc.exe
  1400. [2012.04.04 21:54:52 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lsmproxy.dll
  1401. [2012.04.04 21:54:52 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nrpsrv.dll
  1402. [2012.04.04 21:54:52 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BWUnpairElevated.dll
  1403. [2012.04.04 21:54:52 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
  1404. [2012.04.04 21:54:51 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onexui.dll
  1405. [2012.04.04 21:54:51 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10.IME
  1406. [2012.04.04 21:54:51 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSTIFF.dll
  1407. [2012.04.04 21:54:51 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
  1408. [2012.04.04 21:54:51 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
  1409. [2012.04.04 21:54:51 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
  1410. [2012.04.04 21:54:51 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
  1411. [2012.04.04 21:54:51 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\itircl.dll
  1412. [2012.04.04 21:54:51 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppc.dll
  1413. [2012.04.04 21:54:51 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpps.dll
  1414. [2012.04.04 21:54:51 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mydocs.dll
  1415. [2012.04.04 21:54:51 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskpart.exe
  1416. [2012.04.04 21:54:51 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
  1417. [2012.04.04 21:54:51 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3msm.dll
  1418. [2012.04.04 21:54:51 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mobsync.exe
  1419. [2012.04.04 21:54:51 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
  1420. [2012.04.04 21:54:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
  1421. [2012.04.04 21:54:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
  1422. [2012.04.04 21:54:51 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\manage-bde.exe
  1423. [2012.04.04 21:54:51 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
  1424. [2012.04.04 21:54:51 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
  1425. [2012.04.04 21:54:51 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\amstream.dll
  1426. [2012.04.04 21:54:51 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tlscsp.dll
  1427. [2012.04.04 21:54:51 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastapi.dll
  1428. [2012.04.04 21:54:51 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertPolEng.dll
  1429. [2012.04.04 21:54:51 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\findstr.exe
  1430. [2012.04.04 21:54:51 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
  1431. [2012.04.04 21:54:51 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\luainstall.dll
  1432. [2012.04.04 21:54:51 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksxbar.ax
  1433. [2012.04.04 21:54:51 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciqtz32.dll
  1434. [2012.04.04 21:54:51 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
  1435. [2012.04.04 21:54:51 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\choice.exe
  1436. [2012.04.04 21:54:51 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdiasqmmodule.dll
  1437. [2012.04.04 21:54:51 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciqtz32.dll
  1438. [2012.04.04 21:54:51 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdmo.dll
  1439. [2012.04.04 21:54:51 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
  1440. [2012.04.04 21:54:51 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFaultSecure.exe
  1441. [2012.04.04 21:54:51 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schedcli.dll
  1442. [2012.04.04 21:54:51 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netbtugc.exe
  1443. [2012.04.04 21:54:51 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
  1444. [2012.04.04 21:54:51 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syssetup.dll
  1445. [2012.04.04 21:54:51 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll
  1446. [2012.04.04 21:54:50 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
  1447. [2012.04.04 21:54:50 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
  1448. [2012.04.04 21:54:50 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imkr80.ime
  1449. [2012.04.04 21:54:50 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDPENCDD.dll
  1450. [2012.04.04 21:54:50 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppc.dll
  1451. [2012.04.04 21:54:50 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
  1452. [2012.04.04 21:54:50 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\napdsnap.dll
  1453. [2012.04.04 21:54:50 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\napdsnap.dll
  1454. [2012.04.04 21:54:50 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetmib1.dll
  1455. [2012.04.04 21:54:50 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
  1456. [2012.04.04 21:54:50 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetmib1.dll
  1457. [2012.04.04 21:54:50 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\repair-bde.exe
  1458. [2012.04.04 21:54:50 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\g711codc.ax
  1459. [2012.04.04 21:54:50 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
  1460. [2012.04.04 21:54:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\luainstall.dll
  1461. [2012.04.04 21:54:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSMON.dll
  1462. [2012.04.04 21:54:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
  1463. [2012.04.04 21:54:50 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
  1464. [2012.04.04 21:54:50 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
  1465. [2012.04.04 21:54:50 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsauth.dll
  1466. [2012.04.04 21:54:50 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shimgvw.dll
  1467. [2012.04.04 21:54:50 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unlodctr.exe
  1468. [2012.04.04 21:54:50 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbisurf.ax
  1469. [2012.04.04 21:54:50 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profprov.dll
  1470. [2012.04.04 21:54:50 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
  1471. [2012.04.04 21:54:50 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys
  1472. [2012.04.04 21:54:50 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdmo.dll
  1473. [2012.04.04 21:54:50 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsauth.dll
  1474. [2012.04.04 21:54:50 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
  1475. [2012.04.04 21:54:50 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
  1476. [2012.04.04 21:54:50 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonUI.exe
  1477. [2012.04.04 21:54:50 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
  1478. [2012.04.04 21:54:50 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsdchngr.dll
  1479. [2012.04.04 21:54:50 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elsTrans.dll
  1480. [2012.04.04 21:54:50 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsperf.dll
  1481. [2012.04.04 21:54:50 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdprefdrvapi.dll
  1482. [2012.04.04 21:54:50 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elsTrans.dll
  1483. [2012.04.04 21:54:50 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TRAPI.dll
  1484. [2012.04.04 21:54:50 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TRAPI.dll
  1485. [2012.04.04 21:54:50 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdprefdrvapi.dll
  1486. [2012.04.04 21:54:50 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spopk.dll
  1487. [2012.04.04 21:54:50 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsperf.dll
  1488. [2012.04.04 21:54:50 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spopk.dll
  1489. [2012.04.04 21:54:50 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSUNATD.exe
  1490. [2012.04.04 21:54:50 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
  1491. [2012.04.04 21:54:50 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schedcli.dll
  1492. [2012.04.04 21:54:50 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfts.dll
  1493. [2012.04.04 21:54:49 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
  1494. [2012.04.04 21:54:49 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys
  1495. [2012.04.04 21:54:49 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shgina.dll
  1496. [2012.04.04 21:54:49 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
  1497. [2012.04.04 21:54:49 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shgina.dll
  1498. [2012.04.04 21:54:49 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshirda.dll
  1499. [2012.04.04 21:54:49 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshirda.dll
  1500. [2012.04.04 21:54:49 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcfgex.dll
  1501. [2012.04.04 21:54:49 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
  1502. [2012.04.04 21:54:49 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched32.dll
  1503. [2012.04.04 21:54:48 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\C_ISCII.DLL
  1504. [2012.04.04 21:54:48 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\C_ISCII.DLL
  1505. [2012.04.04 21:54:48 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched32.dll
  1506. [2012.04.04 21:54:48 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
  1507. [2012.04.04 21:54:48 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
  1508. [2012.04.04 21:54:47 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
  1509. [2012.04.04 21:54:47 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
  1510. [2012.04.04 21:54:47 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlsbres.dll
  1511. [2012.04.04 21:54:47 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nlsbres.dll
  1512. [2012.04.04 21:54:47 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BlbEvents.dll
  1513. [2012.04.04 21:54:47 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pifmgr.dll
  1514. [2012.04.04 21:54:47 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pifmgr.dll
  1515. [2012.04.04 21:54:47 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shunimpl.dll
  1516. [2012.04.04 21:54:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUQ.DLL
  1517. [2012.04.04 21:54:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUF.DLL
  1518. [2012.04.04 21:54:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSG.DLL
  1519. [2012.04.04 21:54:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdlk41a.dll
  1520. [2012.04.04 21:54:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGKL.DLL
  1521. [2012.04.04 21:54:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDCZ1.DLL
  1522. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizres.dll
  1523. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizres.dll
  1524. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUQ.DLL
  1525. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUF.DLL
  1526. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSG.DLL
  1527. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSF.DLL
  1528. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDPO.DLL
  1529. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDNEPR.DLL
  1530. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdlk41a.dll
  1531. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTAM.DLL
  1532. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINBEN.DLL
  1533. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGR1.DLL
  1534. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGR1.DLL
  1535. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGKL.DLL
  1536. [2012.04.04 21:54:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDCZ1.DLL
  1537. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUS.DLL
  1538. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUGHR1.DLL
  1539. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTURME.DLL
  1540. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAJIK.DLL
  1541. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSF.DLL
  1542. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDPO.DLL
  1543. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDNEPR.DLL
  1544. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMON.DLL
  1545. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMAORI.DLL
  1546. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDLT1.DLL
  1547. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTEL.DLL
  1548. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTAM.DLL
  1549. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINORI.DLL
  1550. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINORI.DLL
  1551. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINMAR.DLL
  1552. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINMAR.DLL
  1553. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINKAN.DLL
  1554. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINKAN.DLL
  1555. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINHIN.DLL
  1556. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINHIN.DLL
  1557. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINBEN.DLL
  1558. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBULG.DLL
  1559. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBLR.DLL
  1560. [2012.04.04 21:54:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
  1561. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUS.DLL
  1562. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUGHR1.DLL
  1563. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTURME.DLL
  1564. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAJIK.DLL
  1565. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMON.DLL
  1566. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMAORI.DLL
  1567. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDLT1.DLL
  1568. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTEL.DLL
  1569. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGEO.DLL
  1570. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGEO.DLL
  1571. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBULG.DLL
  1572. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBLR.DLL
  1573. [2012.04.04 21:54:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
  1574. [2012.04.04 21:54:47 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
  1575. [2012.04.04 21:54:47 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
  1576. [2012.04.04 21:54:47 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
  1577. [2012.04.04 21:54:47 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
  1578. [2012.04.04 21:54:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-ums-l1-1-0.dll
  1579. [2012.04.04 21:54:47 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
  1580. [2012.04.04 21:54:47 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll
  1581. [2012.04.04 21:54:45 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpx.dll
  1582. [2012.04.04 21:54:45 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdscore.dll
  1583. [2012.04.04 21:54:42 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
  1584. [2012.04.04 21:54:26 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wbemcomn.dll
  1585. [2012.04.04 21:54:24 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqmapi.dll
  1586. [2012.04.04 21:43:58 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Downloaded Installations
  1587. [2012.04.04 21:35:51 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
  1588. [2012.04.04 21:35:51 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
  1589. [2012.04.04 21:35:51 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
  1590. [2012.04.04 21:35:51 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
  1591. [2012.04.04 21:35:51 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
  1592. [2012.04.04 21:35:51 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
  1593. [2012.04.04 21:35:51 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
  1594. [2012.04.04 21:34:50 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
  1595. [2012.04.04 21:34:50 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
  1596. [2012.04.04 21:26:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
  1597. [2012.04.04 21:25:33 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
  1598. [2012.04.04 20:53:15 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Macromedia
  1599. [2012.04.04 20:53:14 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Adobe
  1600. [2012.04.04 20:53:03 | 000,418,464 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
  1601. [2012.04.04 20:53:03 | 000,070,304 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  1602. [2012.04.04 20:53:02 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
  1603. [2012.04.04 20:53:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
  1604. [2012.04.04 20:40:50 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
  1605. [2012.04.04 20:37:44 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
  1606. [2012.04.04 20:37:44 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
  1607. [2012.04.04 20:37:44 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
  1608. [2012.04.04 20:37:44 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
  1609. [2012.04.04 20:37:44 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
  1610. [2012.04.04 20:37:44 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
  1611. [2012.04.04 20:37:44 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
  1612. [2012.04.04 20:37:44 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
  1613. [2012.04.04 20:37:44 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
  1614. [2012.04.04 20:37:44 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
  1615. [2012.04.04 20:37:44 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
  1616. [2012.04.04 20:37:44 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
  1617. [2012.04.04 20:37:44 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
  1618. [2012.04.04 20:37:44 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
  1619. [2012.04.04 20:37:44 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
  1620. [2012.04.04 20:37:44 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
  1621. [2012.04.04 20:37:44 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
  1622. [2012.04.04 20:37:44 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
  1623. [2012.04.04 20:37:44 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
  1624. [2012.04.04 20:37:44 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
  1625. [2012.04.04 20:37:44 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
  1626. [2012.04.04 20:37:44 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
  1627. [2012.04.04 20:37:44 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
  1628. [2012.04.04 20:37:44 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
  1629. [2012.04.04 20:37:44 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
  1630. [2012.04.04 20:37:44 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
  1631. [2012.04.04 20:37:44 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
  1632. [2012.04.04 20:37:44 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
  1633. [2012.04.04 20:37:44 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
  1634. [2012.04.04 20:37:44 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
  1635. [2012.04.04 20:37:44 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
  1636. [2012.04.04 20:37:44 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
  1637. [2012.04.04 20:37:44 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
  1638. [2012.04.04 20:37:44 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
  1639. [2012.04.04 20:37:44 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
  1640. [2012.04.04 20:37:44 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
  1641. [2012.04.04 20:37:44 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
  1642. [2012.04.04 20:37:44 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
  1643. [2012.04.04 20:37:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
  1644. [2012.04.04 20:37:44 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
  1645. [2012.04.04 20:37:44 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
  1646. [2012.04.04 20:37:44 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
  1647. [2012.04.04 20:37:44 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
  1648. [2012.04.04 20:37:44 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
  1649. [2012.04.04 20:37:44 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
  1650. [2012.04.04 20:37:44 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
  1651. [2012.04.04 20:37:44 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
  1652. [2012.04.04 20:37:44 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
  1653. [2012.04.04 20:37:44 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
  1654. [2012.04.04 20:37:44 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
  1655. [2012.04.04 20:37:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
  1656. [2012.04.04 20:37:44 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
  1657. [2012.04.04 20:37:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
  1658. [2012.04.04 20:37:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
  1659. [2012.04.04 20:37:44 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
  1660. [2012.04.04 20:37:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
  1661. [2012.04.04 20:37:44 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
  1662. [2012.04.04 20:37:44 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
  1663. [2012.04.04 20:37:44 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
  1664. [2012.04.04 20:37:44 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
  1665. [2012.04.04 20:37:44 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
  1666. [2012.04.04 20:33:28 | 000,000,000 | ---D | C] -- C:\Windows\Panther
  1667. [2012.04.04 20:24:33 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
  1668. [2012.04.04 20:24:24 | 001,544,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
  1669. [2012.04.04 20:24:23 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
  1670. [2012.04.04 20:24:22 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
  1671. [2012.04.04 20:24:22 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
  1672. [2012.04.04 20:24:22 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
  1673. [2012.04.04 20:24:22 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
  1674. [2012.04.04 20:24:22 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
  1675. [2012.04.04 20:24:22 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
  1676. [2012.04.04 20:24:22 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
  1677. [2012.04.04 20:24:21 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
  1678. [2012.04.04 20:24:21 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
  1679. [2012.04.04 20:24:21 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
  1680. [2012.04.04 20:24:21 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
  1681. [2012.04.04 20:24:21 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
  1682. [2012.04.04 20:24:07 | 000,288,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
  1683. [2012.04.04 20:23:46 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
  1684. [2012.04.04 20:23:46 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
  1685. [2012.04.04 20:23:43 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
  1686. [2012.04.04 20:23:43 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
  1687. [2012.04.04 20:23:43 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
  1688. [2012.04.04 20:23:43 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
  1689. [2012.04.04 20:23:43 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
  1690. [2012.04.04 20:23:43 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
  1691. [2012.04.04 20:23:43 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
  1692. [2012.04.04 20:23:43 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
  1693. [2012.04.04 20:23:43 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
  1694. [2012.04.04 20:23:43 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
  1695. [2012.04.04 20:23:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
  1696. [2012.04.04 20:23:43 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
  1697. [2012.04.04 20:23:43 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
  1698. [2012.04.04 20:23:43 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
  1699. [2012.04.04 20:23:43 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
  1700. [2012.04.04 20:23:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
  1701. [2012.04.04 20:23:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
  1702. [2012.04.04 20:23:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
  1703. [2012.04.04 20:23:43 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
  1704. [2012.04.04 20:23:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
  1705. [2012.04.04 20:23:43 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
  1706. [2012.04.04 20:23:42 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
  1707. [2012.04.04 20:23:42 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
  1708. [2012.04.04 20:23:42 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
  1709. [2012.04.04 20:23:42 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
  1710. [2012.04.04 20:23:42 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
  1711. [2012.04.04 20:23:42 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
  1712. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
  1713. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
  1714. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
  1715. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
  1716. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
  1717. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
  1718. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
  1719. [2012.04.04 20:23:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
  1720. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
  1721. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
  1722. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
  1723. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
  1724. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
  1725. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
  1726. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
  1727. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
  1728. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
  1729. [2012.04.04 20:23:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
  1730. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
  1731. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
  1732. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
  1733. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
  1734. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
  1735. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
  1736. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
  1737. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
  1738. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
  1739. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
  1740. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
  1741. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
  1742. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
  1743. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
  1744. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
  1745. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
  1746. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
  1747. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
  1748. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
  1749. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
  1750. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
  1751. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
  1752. [2012.04.04 20:23:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
  1753. [2012.04.04 20:23:42 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
  1754. [2012.04.04 20:23:39 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
  1755. [2012.04.04 20:23:39 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
  1756. [2012.04.04 20:23:39 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
  1757. [2012.04.04 20:23:38 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
  1758. [2012.04.04 20:23:38 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
  1759. [2012.04.04 20:23:38 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
  1760. [2012.04.04 20:23:37 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
  1761. [2012.04.04 20:23:37 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
  1762. [2012.04.04 20:23:37 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
  1763. [2012.04.04 20:23:37 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
  1764. [2012.04.04 20:23:36 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
  1765. [2012.04.04 20:23:36 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
  1766. [2012.04.04 20:23:31 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
  1767. [2012.04.04 20:23:31 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
  1768. [2012.04.04 20:23:25 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
  1769. [2012.04.04 20:23:25 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
  1770. [2012.04.04 20:23:24 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
  1771. [2012.04.04 20:23:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
  1772. [2012.04.04 20:23:21 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
  1773. [2012.04.04 20:23:20 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
  1774. [2012.04.04 20:23:20 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
  1775. [2012.04.04 20:23:20 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
  1776. [2012.04.04 20:23:20 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
  1777. [2012.04.04 20:23:20 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
  1778. [2012.04.04 20:23:20 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
  1779. [2012.04.04 20:23:16 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
  1780. [2012.04.04 20:23:16 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
  1781. [2012.04.04 20:23:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
  1782. [2012.04.04 20:23:13 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
  1783. [2012.04.04 20:23:13 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
  1784. [2012.04.04 20:23:06 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
  1785. [2012.04.04 20:23:06 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
  1786. [2012.04.04 20:23:06 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
  1787. [2012.04.04 20:23:06 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
  1788. [2012.04.04 20:22:51 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
  1789. [2012.04.04 20:22:51 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
  1790. [2012.04.04 20:22:51 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
  1791. [2012.04.04 20:22:51 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
  1792. [2012.04.04 20:22:51 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
  1793. [2012.04.04 20:22:51 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mpeg2Data.ax
  1794. [2012.04.04 20:22:51 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
  1795. [2012.04.04 20:22:51 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSDvbNP.ax
  1796. [2012.04.04 20:22:51 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mpeg2Data.ax
  1797. [2012.04.04 20:22:51 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSDvbNP.ax
  1798. [2012.04.04 20:22:42 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
  1799. [2012.04.04 20:22:42 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
  1800. [2012.04.04 20:22:42 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
  1801. [2012.04.04 20:22:42 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
  1802. [2012.04.04 20:22:42 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
  1803. [2012.04.04 20:22:42 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
  1804. [2012.04.04 20:22:41 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
  1805. [2012.04.04 20:22:41 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
  1806. [2012.04.04 20:22:41 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
  1807. [2012.04.04 20:22:41 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
  1808. [2012.04.04 20:22:40 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
  1809. [2012.04.04 20:22:40 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
  1810. [2012.04.04 20:22:40 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
  1811. [2012.04.04 20:22:40 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
  1812. [2012.04.04 20:22:29 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
  1813. [2012.04.04 20:22:21 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
  1814. [2012.04.04 20:22:21 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
  1815. [2012.04.04 20:22:21 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
  1816. [2012.04.04 20:22:21 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
  1817. [2012.04.04 20:22:21 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
  1818. [2012.04.04 20:22:21 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
  1819. [2012.04.04 20:22:21 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
  1820. [2012.04.04 20:22:21 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
  1821. [2012.04.04 20:22:21 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
  1822. [2012.04.04 20:22:03 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
  1823. [2012.04.04 20:22:03 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
  1824. [2012.04.04 20:21:56 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
  1825. [2012.04.04 20:21:39 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
  1826. [2012.04.04 20:21:23 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
  1827. [2012.04.04 20:21:23 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
  1828. [2012.04.04 20:21:21 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
  1829. [2012.04.04 20:21:19 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
  1830. [2012.04.04 20:21:19 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cfgmgr32.dll
  1831. [2012.04.04 20:21:19 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
  1832. [2012.04.04 20:21:17 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
  1833. [2012.04.04 20:21:17 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
  1834. [2012.04.04 20:21:15 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
  1835. [2012.04.04 20:21:13 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
  1836. [2012.04.04 20:21:12 | 000,974,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFS.exe
  1837. [2012.04.04 20:21:07 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
  1838. [2012.04.04 20:21:06 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
  1839. [2012.04.04 20:19:41 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
  1840. [2012.04.04 20:12:40 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
  1841. [2012.04.04 20:12:40 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
  1842. [2012.04.04 20:06:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!WLAN
  1843. [2012.04.04 20:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\avmwlanstick
  1844. [2012.04.04 20:06:27 | 000,714,368 | ---- | C] (AVM GmbH) -- C:\Windows\SysNative\drivers\fwlanusbn.sys
  1845. [2012.04.04 20:06:27 | 000,099,328 | ---- | C] (AVM Berlin) -- C:\Windows\SysNative\fwusbnci.dll
  1846. [2012.04.04 20:05:28 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Searches
  1847. [2012.04.04 20:05:28 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
  1848. [2012.04.04 20:05:28 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
  1849. [2012.04.04 20:05:19 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Identities
  1850. [2012.04.04 20:05:17 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Contacts
  1851. [2012.04.04 20:05:16 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\VirtualStore
  1852. [2012.04.04 20:05:08 | 000,000,000 | --SD | C] -- C:\Users\Glenn\AppData\Roaming\Microsoft
  1853. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Videos
  1854. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Saved Games
  1855. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Pictures
  1856. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Music
  1857. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Links
  1858. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Favorites
  1859. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Downloads
  1860. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Documents
  1861. [2012.04.04 20:05:08 | 000,000,000 | R--D | C] -- C:\Users\Glenn\Desktop
  1862. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Vorlagen
  1863. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\AppData\Local\Verlauf
  1864. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\AppData\Local\Temporary Internet Files
  1865. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Startmenü
  1866. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\SendTo
  1867. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Recent
  1868. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Netzwerkumgebung
  1869. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Lokale Einstellungen
  1870. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Documents\Eigene Videos
  1871. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Documents\Eigene Musik
  1872. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Eigene Dateien
  1873. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Documents\Eigene Bilder
  1874. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Druckumgebung
  1875. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Cookies
  1876. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\AppData\Local\Anwendungsdaten
  1877. [2012.04.04 20:05:08 | 000,000,000 | -HSD | C] -- C:\Users\Glenn\Anwendungsdaten
  1878. [2012.04.04 20:05:08 | 000,000,000 | -H-D | C] -- C:\Users\Glenn\AppData
  1879. [2012.04.04 20:05:08 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Temp
  1880. [2012.04.04 20:05:08 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Local\Microsoft
  1881. [2012.04.04 20:05:08 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Media Center Programs
  1882. [2012.04.04 20:05:08 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
  1883. [2012.04.04 20:05:08 | 000,000,000 | ---D | C] -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  1884. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
  1885. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
  1886. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien
  1887. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
  1888. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
  1889. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
  1890. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
  1891. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
  1892. [2012.04.04 20:05:00 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
  1893. [2012.04.04 19:37:31 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
  1894. [2012.04.04 19:34:55 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
  1895.  
  1896. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  1897.  
  1898. [2012.04.19 19:52:15 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Glenn\Desktop\OTL.exe
  1899. [2012.04.19 19:46:27 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\Wise PC Engineer.lnk
  1900. [2012.04.19 19:27:01 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  1901. [2012.04.19 19:13:45 | 000,000,072 | ---- | M] () -- C:\Windows\SysWow64\91207717.sys
  1902. [2012.04.19 19:05:55 | 000,001,022 | ---- | M] () -- C:\Users\Public\Desktop\ScanMyReg.lnk
  1903. [2012.04.19 18:44:37 | 000,014,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  1904. [2012.04.19 18:44:37 | 000,014,928 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  1905. [2012.04.19 18:35:22 | 000,000,490 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Update Version3.job
  1906. [2012.04.19 18:35:17 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  1907. [2012.04.18 22:05:46 | 000,000,276 | ---- | M] () -- C:\Windows\SysNative\PSUNCpl.dat
  1908. [2012.04.18 18:00:00 | 000,000,468 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Registration3.job
  1909. [2012.04.18 17:32:11 | 000,000,569 | ---- | M] () -- C:\Users\Public\Desktop\OMSI.lnk
  1910. [2012.04.18 17:32:10 | 000,001,183 | ---- | M] () -- C:\Users\Public\Desktop\Aerosoft Launcher.lnk
  1911. [2012.04.18 14:27:30 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
  1912. [2012.04.18 14:27:30 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  1913. [2012.04.18 14:27:28 | 008,766,112 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
  1914. [2012.04.17 20:28:43 | 000,000,406 | ---- | M] () -- C:\Windows\SysWow64\ioloBootDefrag.cfg
  1915. [2012.04.17 19:18:35 | 000,001,384 | ---- | M] () -- C:\Users\Glenn\Desktop\Free Screen Video Recorder.lnk
  1916. [2012.04.17 07:16:47 | 001,537,086 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  1917. [2012.04.17 07:16:47 | 000,667,956 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
  1918. [2012.04.17 07:16:47 | 000,629,838 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  1919. [2012.04.17 07:16:47 | 000,134,766 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
  1920. [2012.04.17 07:16:47 | 000,111,156 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  1921. [2012.04.17 07:11:16 | 000,000,460 | ---- | M] () -- C:\Windows\tasks\Java(TM) Platform SE Auto Updater 2 0 MAGIX PCCT.job
  1922. [2012.04.16 22:01:49 | 000,000,030 | ---- | M] () -- C:\Windows\PCCT.INI
  1923. [2012.04.16 21:52:29 | 000,001,924 | ---- | M] () -- C:\Users\Glenn\Desktop\UpdateYeti.lnk
  1924. [2012.04.16 21:40:34 | 000,001,888 | ---- | M] () -- C:\Users\Public\Desktop\PC Fresh.lnk
  1925. [2012.04.16 18:45:09 | 000,001,904 | ---- | M] () -- C:\Users\Public\Desktop\HitmanPro.lnk
  1926. [2012.04.15 19:55:27 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
  1927. [2012.04.15 13:16:54 | 000,042,672 | ---- | M] () -- C:\Windows\SysWow64\drivers\fsbts.sys
  1928. [2012.04.15 13:10:52 | 001,573,266 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  1929. [2012.04.15 13:08:52 | 000,574,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp50.dll
  1930. [2012.04.15 12:51:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
  1931. [2012.04.15 11:10:13 | 000,001,648 | ---- | M] () -- C:\Windows\SysNative\ASOROSet.bin
  1932. [2012.04.14 21:19:13 | 000,000,400 | ---- | M] () -- C:\Windows\tasks\PC Health Advisor Defrag.job
  1933. [2012.04.14 21:19:13 | 000,000,382 | ---- | M] () -- C:\Windows\tasks\PC Health Advisor.job
  1934. [2012.04.14 19:30:47 | 000,000,406 | ---- | M] () -- C:\Windows\SysNative\ioloBootDefrag.cfg
  1935. [2012.04.14 19:19:59 | 000,074,703 | ---- | M] () -- C:\Windows\SysWow64\mfc45.dll
  1936. [2012.04.14 18:59:16 | 000,000,808 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
  1937. [2012.04.12 17:36:10 | 000,000,136 | ---- | M] () -- C:\Windows\SysWow64\_WKERNEL.SYL
  1938. [2012.04.12 08:31:02 | 000,000,306 | RHS- | M] () -- C:\ProgramData\ntuser.pol
  1939. [2012.04.12 07:08:39 | 000,288,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
  1940. [2012.04.11 20:26:58 | 000,001,169 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
  1941. [2012.04.11 14:17:46 | 000,031,432 | ---- | M] (EldoS Corporation) -- C:\Windows\SysNative\drivers\ElRawDsk.sys
  1942. [2012.04.07 16:43:09 | 000,000,829 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
  1943. [2012.04.07 13:16:48 | 000,001,133 | ---- | M] () -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Firefox.lnk
  1944. [2012.04.05 19:17:18 | 000,001,267 | ---- | M] () -- C:\Users\Glenn\Desktop\Revo Uninstaller.lnk
  1945. [2012.04.05 16:55:05 | 000,002,517 | ---- | M] () -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk
  1946. [2012.04.05 07:22:30 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
  1947. [2012.04.04 22:27:55 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
  1948. [2012.04.04 22:27:54 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
  1949. [2012.04.04 20:37:44 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
  1950. [2012.04.04 20:37:44 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
  1951. [2012.04.04 20:37:44 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
  1952. [2012.04.04 20:37:44 | 000,603,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
  1953. [2012.04.04 20:37:44 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
  1954. [2012.04.04 20:37:44 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
  1955. [2012.04.04 20:37:44 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
  1956. [2012.04.04 20:37:44 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
  1957. [2012.04.04 20:37:44 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
  1958. [2012.04.04 20:37:44 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
  1959. [2012.04.04 20:37:44 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
  1960. [2012.04.04 20:37:44 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
  1961. [2012.04.04 20:37:44 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
  1962. [2012.04.04 20:37:44 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
  1963. [2012.04.04 20:37:44 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
  1964. [2012.04.04 20:37:44 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
  1965. [2012.04.04 20:37:44 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
  1966. [2012.04.04 20:37:44 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
  1967. [2012.04.04 20:37:44 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
  1968. [2012.04.04 20:37:44 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
  1969. [2012.04.04 20:37:44 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
  1970. [2012.04.04 20:37:44 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
  1971. [2012.04.04 20:37:44 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
  1972. [2012.04.04 20:37:44 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
  1973. [2012.04.04 20:37:44 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
  1974. [2012.04.04 20:37:44 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
  1975. [2012.04.04 20:37:44 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
  1976. [2012.04.04 20:37:44 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
  1977. [2012.04.04 20:37:44 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
  1978. [2012.04.04 20:37:44 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
  1979. [2012.04.04 20:37:44 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
  1980. [2012.04.04 20:37:44 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
  1981. [2012.04.04 20:37:44 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
  1982. [2012.04.04 20:37:44 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
  1983. [2012.04.04 20:37:44 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
  1984. [2012.04.04 20:37:44 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
  1985. [2012.04.04 20:37:44 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
  1986. [2012.04.04 20:37:44 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
  1987. [2012.04.04 20:37:44 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
  1988. [2012.04.04 20:37:44 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
  1989. [2012.04.04 20:37:44 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
  1990. [2012.04.04 20:37:44 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
  1991. [2012.04.04 20:37:44 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
  1992. [2012.04.04 20:37:44 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
  1993. [2012.04.04 20:37:44 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
  1994. [2012.04.04 20:37:44 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
  1995. [2012.04.04 20:37:44 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
  1996. [2012.04.04 20:37:44 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
  1997. [2012.04.04 20:37:44 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
  1998. [2012.04.04 20:37:44 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
  1999. [2012.04.04 20:37:44 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
  2000. [2012.04.04 20:37:44 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
  2001. [2012.04.04 20:37:44 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
  2002. [2012.04.04 20:37:44 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
  2003. [2012.04.04 20:37:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
  2004. [2012.04.04 20:37:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
  2005. [2012.04.04 20:37:44 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
  2006. [2012.04.04 20:37:44 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
  2007. [2012.04.04 20:37:44 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
  2008. [2012.04.04 20:37:44 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
  2009. [2012.04.04 20:37:44 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
  2010. [2012.04.04 20:37:44 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
  2011. [2012.04.04 20:37:44 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
  2012. [2012.04.04 19:39:11 | 000,056,735 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
  2013. [2012.04.04 19:39:11 | 000,056,735 | ---- | M] () -- C:\Windows\SysNative\license.rtf
  2014. [2012.04.04 19:37:21 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
  2015.  
  2016. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  2017.  
  2018. [2012.04.19 19:46:27 | 000,001,110 | ---- | C] () -- C:\Users\Public\Desktop\Wise PC Engineer.lnk
  2019. [2012.04.19 19:05:56 | 000,000,072 | ---- | C] () -- C:\Windows\SysWow64\91207717.sys
  2020. [2012.04.19 19:05:55 | 000,001,022 | ---- | C] () -- C:\Users\Public\Desktop\ScanMyReg.lnk
  2021. [2012.04.18 22:05:46 | 000,000,276 | ---- | C] () -- C:\Windows\SysNative\PSUNCpl.dat
  2022. [2012.04.18 17:32:11 | 000,000,569 | ---- | C] () -- C:\Users\Public\Desktop\OMSI.lnk
  2023. [2012.04.18 16:06:57 | 000,016,896 | ---- | C] () -- C:\Windows\SysNative\sasnative64.exe
  2024. [2012.04.18 13:59:12 | 000,021,040 | ---- | C] () -- C:\Windows\SysNative\drivers\AQFileRestore.sys
  2025. [2012.04.18 13:59:12 | 000,001,984 | ---- | C] () -- C:\Windows\SysNative\drivers\AQFileRestore.inf
  2026. [2012.04.18 13:58:56 | 000,002,022 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fix-It Utilities Professional.lnk
  2027. [2012.04.17 20:28:43 | 000,000,406 | ---- | C] () -- C:\Windows\SysWow64\ioloBootDefrag.cfg
  2028. [2012.04.16 21:52:29 | 000,001,924 | ---- | C] () -- C:\Users\Glenn\Desktop\UpdateYeti.lnk
  2029. [2012.04.16 21:40:34 | 000,001,888 | ---- | C] () -- C:\Users\Public\Desktop\PC Fresh.lnk
  2030. [2012.04.16 20:59:20 | 000,000,460 | ---- | C] () -- C:\Windows\tasks\Java(TM) Platform SE Auto Updater 2 0 MAGIX PCCT.job
  2031. [2012.04.16 20:49:46 | 000,000,030 | ---- | C] () -- C:\Windows\PCCT.INI
  2032. [2012.04.16 18:45:09 | 000,001,904 | ---- | C] () -- C:\Users\Public\Desktop\HitmanPro.lnk
  2033. [2012.04.15 19:55:27 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
  2034. [2012.04.15 13:10:18 | 001,573,266 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  2035. [2012.04.15 11:06:46 | 000,001,648 | ---- | C] () -- C:\Windows\SysNative\ASOROSet.bin
  2036. [2012.04.14 21:09:49 | 000,000,468 | ---- | C] () -- C:\Windows\tasks\ParetoLogic Registration3.job
  2037. [2012.04.14 21:09:40 | 000,000,490 | ---- | C] () -- C:\Windows\tasks\ParetoLogic Update Version3.job
  2038. [2012.04.14 21:09:40 | 000,000,400 | ---- | C] () -- C:\Windows\tasks\PC Health Advisor Defrag.job
  2039. [2012.04.14 21:09:39 | 000,000,382 | ---- | C] () -- C:\Windows\tasks\PC Health Advisor.job
  2040. [2012.04.14 19:30:47 | 000,000,406 | ---- | C] () -- C:\Windows\SysNative\ioloBootDefrag.cfg
  2041. [2012.04.14 19:19:59 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dll
  2042. [2012.04.12 17:07:41 | 000,000,136 | ---- | C] () -- C:\Windows\SysWow64\_WKERNEL.SYL
  2043. [2012.04.12 17:07:37 | 000,000,439 | ---- | C] () -- C:\Windows\SysWow64\shfolder.inf
  2044. [2012.04.12 17:02:59 | 000,042,672 | ---- | C] () -- C:\Windows\SysWow64\drivers\fsbts.sys
  2045. [2012.04.11 21:31:14 | 000,000,306 | RHS- | C] () -- C:\ProgramData\ntuser.pol
  2046. [2012.04.11 20:26:58 | 000,001,181 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
  2047. [2012.04.11 20:26:58 | 000,001,169 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
  2048. [2012.04.09 18:26:59 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
  2049. [2012.04.08 14:40:15 | 000,001,932 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
  2050. [2012.04.07 16:43:09 | 000,000,829 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
  2051. [2012.04.07 16:19:43 | 000,001,384 | ---- | C] () -- C:\Users\Glenn\Desktop\Free Screen Video Recorder.lnk
  2052. [2012.04.07 13:16:48 | 000,001,133 | ---- | C] () -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Firefox.lnk
  2053. [2012.04.06 15:42:00 | 000,001,183 | ---- | C] () -- C:\Users\Public\Desktop\Aerosoft Launcher.lnk
  2054. [2012.04.05 19:17:18 | 000,001,267 | ---- | C] () -- C:\Users\Glenn\Desktop\Revo Uninstaller.lnk
  2055. [2012.04.05 16:55:05 | 000,002,517 | ---- | C] () -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skype.lnk
  2056. [2012.04.05 07:22:30 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
  2057. [2012.04.04 21:55:36 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
  2058. [2012.04.04 21:54:51 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
  2059. [2012.04.04 21:54:47 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
  2060. [2012.04.04 21:54:47 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
  2061. [2012.04.04 21:54:42 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
  2062. [2012.04.04 20:53:04 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  2063. [2012.04.04 20:37:44 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
  2064. [2012.04.04 20:37:44 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
  2065. [2012.04.04 20:06:41 | 000,013,189 | R--- | C] () -- C:\Windows\instwcli.inf
  2066. [2012.04.04 20:06:27 | 000,015,565 | ---- | C] () -- C:\Windows\SysNative\drivers\fwlanusbn.bin
  2067. [2012.04.04 20:05:32 | 000,001,408 | ---- | C] () -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
  2068. [2012.04.04 20:05:29 | 000,001,442 | ---- | C] () -- C:\Users\Glenn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
  2069. [2012.04.04 19:38:53 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
  2070. [2012.04.04 19:37:21 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
  2071. [2012.03.09 06:31:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
  2072. [2012.03.09 06:31:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
  2073. [2012.03.09 01:26:20 | 000,054,784 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
  2074. [2012.01.31 07:00:24 | 000,016,896 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
  2075. [2011.09.13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
  2076.  
  2077. [color=#E56717]========== LOP Check ==========[/color]
  2078.  
  2079. [2012.04.16 21:52:30 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Abelssoft
  2080. [2012.04.17 07:22:01 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\ASCOMP Software
  2081. [2012.04.19 19:54:03 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Avanquest
  2082. [2012.04.18 21:53:16 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\CheckPoint
  2083. [2012.04.16 20:49:25 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\CrashLog
  2084. [2012.04.14 21:09:47 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\DriverCure
  2085. [2012.04.17 19:18:39 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\DVDVideoSoft
  2086. [2012.04.16 21:26:51 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Engelmann Media
  2087. [2012.04.15 13:00:16 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\f-secure
  2088. [2012.04.18 14:48:42 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\IObit
  2089. [2012.04.17 20:28:41 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\iolo
  2090. [2012.04.16 20:51:12 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\MAGIX
  2091. [2012.04.17 21:11:34 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Nico Mak Computing
  2092. [2012.04.16 20:49:25 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\OnDemandDump
  2093. [2012.04.13 21:56:29 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\OptimalPC
  2094. [2012.04.13 21:57:45 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Origin
  2095. [2012.04.18 22:07:45 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Panda Security
  2096. [2012.04.15 19:53:26 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\ParetoLogic
  2097. [2012.04.18 17:02:46 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Reviversoft
  2098. [2012.04.18 17:40:06 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Software Update
  2099. [2012.04.08 14:48:59 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\SumatraPDF
  2100. [2012.04.10 15:40:58 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\TuneUp Software
  2101. [2012.04.16 21:59:44 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\WinZip
  2102. [2012.04.14 08:37:10 | 000,000,000 | ---D | M] -- C:\Users\Glenn\AppData\Roaming\Wise Disk Cleaner
  2103. [2012.04.17 07:11:16 | 000,000,460 | ---- | M] () -- C:\Windows\Tasks\Java(TM) Platform SE Auto Updater 2 0 MAGIX PCCT.job
  2104. [2012.04.18 18:00:00 | 000,000,468 | ---- | M] () -- C:\Windows\Tasks\ParetoLogic Registration3.job
  2105. [2012.04.19 18:35:22 | 000,000,490 | ---- | M] () -- C:\Windows\Tasks\ParetoLogic Update Version3.job
  2106. [2012.04.14 21:19:13 | 000,000,400 | ---- | M] () -- C:\Windows\Tasks\PC Health Advisor Defrag.job
  2107. [2012.04.14 21:19:13 | 000,000,382 | ---- | M] () -- C:\Windows\Tasks\PC Health Advisor.job
  2108. [2009.07.14 07:08:49 | 000,015,246 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
  2109.  
  2110. [color=#E56717]========== Purity Check ==========[/color]
  2111.  
  2112.  
  2113.  
  2114. [color=#E56717]========== Custom Scans ==========[/color]
  2115.  
  2116. [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
  2117. [2011.02.26 08:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
  2118. [2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
  2119. [2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
  2120. [2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
  2121. [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
  2122. [2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
  2123. [2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
  2124. [2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
  2125. [2011.02.26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
  2126. [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
  2127. [2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
  2128. [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
  2129. [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
  2130. [2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
  2131. [2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
  2132. [2010.11.20 15:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
  2133. [2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
  2134. [2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
  2135. [2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
  2136. [2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
  2137. [2011.02.26 08:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
  2138. [2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
  2139.  
  2140. [color=#A23BEC]< MD5 for: LSASS.EXE >[/color]
  2141. [2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
  2142. [2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
  2143. [2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
  2144. [2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
  2145. [2011.11.17 08:20:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
  2146. [2011.11.17 09:05:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=156F6159457D0AA7E59B62681B56EB90 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_028b374176436a30\lsass.exe
  2147. [2011.11.17 08:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\SysNative\lsass.exe
  2148. [2011.11.17 08:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe
  2149. [2011.11.17 08:42:52 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=D21BD47E528CD62E79311FB5DF0150E6 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_02bb2a0a8fa4d398\lsass.exe
  2150.  
  2151. [color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
  2152. [2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
  2153. [2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
  2154. [2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
  2155. [2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
  2156.  
  2157. [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
  2158. [2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
  2159. [2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
  2160. [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
  2161. [2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
  2162. [2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
  2163. [2010.11.20 15:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
  2164.  
  2165. [color=#A23BEC]< MD5 for: WININIT.EXE >[/color]
  2166. [2009.07.14 03:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\SysNative\wininit.exe
  2167. [2009.07.14 03:39:52 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=94355C28C1970635A31B3FE52EB7CEBA -- C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe
  2168. [2009.07.14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\SysWOW64\wininit.exe
  2169. [2009.07.14 03:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) MD5=B5C5DCAD3899512020D135600129D665 -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
  2170.  
  2171. [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
  2172. [2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
  2173. [2010.11.20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
  2174. [2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
  2175. [2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
  2176. [2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
  2177.  
  2178. [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]
  2179.  
  2180. [color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
  2181.  
  2182. [color=#A23BEC]< %APPDATA%\Adobe\Update\*.* >[/color]
  2183.  
  2184. [color=#A23BEC]< %APPDATA%\Update\*.* >[/color]
  2185.  
  2186. [color=#A23BEC]< %APPDATA%\Microsoft\*.* >[/color]
  2187.  
  2188. [color=#A23BEC]< %ALLUSERSPROFILE%\Favorites\*.* >[/color]
  2189.  
  2190. [color=#A23BEC]< %ALLUSERSPROFILE%\*.* >[/color]
  2191. [2012.04.12 08:31:02 | 000,000,306 | RHS- | M] () -- C:\ProgramData\ntuser.pol
  2192.  
  2193. [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
  2194. [2012.04.19 18:35:13 | 268,435,456 | -HS- | M] () -- C:\pagefile.sys
  2195.  
  2196. [color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
  2197. [2009.07.14 06:54:24 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini
  2198.  
  2199. [color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.* >[/color]
  2200. [2012.04.04 20:37:44 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ExtExport.exe
  2201. [2012.04.04 20:37:44 | 000,002,535 | ---- | M] () -- C:\Program Files (x86)\Internet Explorer\ie9props.propdesc
  2202. [2012.04.04 20:37:44 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iecleanup.exe
  2203. [2012.04.04 20:37:44 | 000,307,200 | ---- | M] () -- C:\Program Files (x86)\Internet Explorer\iediagcmd.exe
  2204. [2012.02.28 03:13:13 | 000,678,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iedvtool.dll
  2205. [2012.04.04 20:37:44 | 000,466,432 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
  2206. [2012.04.04 20:37:44 | 000,222,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
  2207. [2012.04.04 20:37:44 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
  2208. [2012.02.28 03:08:19 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\IEShims.dll
  2209. [2012.04.04 20:37:44 | 000,748,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  2210. [2012.04.04 20:37:44 | 000,386,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\jsdbgui.dll
  2211. [2012.04.04 20:37:44 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\jsdebuggeride.dll
  2212. [2012.04.04 20:37:44 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\JSProfilerCore.dll
  2213. [2012.04.04 20:37:44 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\jsprofilerui.dll
  2214. [2009.06.10 23:14:14 | 000,265,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\msdbg2.dll
  2215. [2012.04.04 20:37:44 | 000,301,056 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\networkinspection.dll
  2216. [2009.06.10 23:14:15 | 000,355,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\pdm.dll
  2217. [2012.02.28 03:58:29 | 000,141,112 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
  2218.  
  2219. [color=#A23BEC]< %USERPROFILE%\*.* >[/color]
  2220. [2012.04.19 20:01:05 | 001,835,008 | ---- | M] () -- C:\Users\Glenn\ntuser.dat
  2221. [2012.04.19 20:01:05 | 000,262,144 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat.LOG1
  2222. [2012.04.04 20:05:08 | 000,000,000 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat.LOG2
  2223. [2012.04.04 21:16:53 | 000,065,536 | -HS- | M] () -- C:\Users\Glenn\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
  2224. [2012.04.04 21:16:53 | 000,524,288 | -HS- | M] () -- C:\Users\Glenn\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
  2225. [2012.04.04 21:16:53 | 000,524,288 | -HS- | M] () -- C:\Users\Glenn\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
  2226. [2012.04.14 08:42:57 | 000,065,536 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat{4a557f32-85fb-11e1-af6e-bc0543095042}.TM.blf
  2227. [2012.04.14 08:42:57 | 000,524,288 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat{4a557f32-85fb-11e1-af6e-bc0543095042}.TMContainer00000000000000000001.regtrans-ms
  2228. [2012.04.14 08:42:57 | 000,524,288 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat{4a557f32-85fb-11e1-af6e-bc0543095042}.TMContainer00000000000000000002.regtrans-ms
  2229. [2012.04.15 11:21:34 | 000,065,536 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat{91da4ab2-86da-11e1-bf08-806e6f6e6963}.TM.blf
  2230. [2012.04.15 11:21:34 | 000,524,288 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat{91da4ab2-86da-11e1-bf08-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
  2231. [2012.04.15 11:21:34 | 000,524,288 | -HS- | M] () -- C:\Users\Glenn\ntuser.dat{91da4ab2-86da-11e1-bf08-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
  2232. [2012.04.04 20:05:08 | 000,000,020 | -HS- | M] () -- C:\Users\Glenn\ntuser.ini
  2233.  
  2234. [color=#A23BEC]< %USERPROFILE%\Local Settings\Temp\*.exe >[/color]
  2235.  
  2236. [color=#A23BEC]< %USERPROFILE%\Local Settings\Temp\*.dll >[/color]
  2237.  
  2238. [color=#A23BEC]< %USERPROFILE%\Application Data\*.exe >[/color]
  2239.  
  2240. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  2241.  
  2242. [color=#A23BEC]< %systemroot%\*.exe /90 >[/color]
  2243.  
  2244. [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
  2245. [2012.04.04 20:37:44 | 000,353,792 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtmsft.dll
  2246. [2012.04.04 20:37:44 | 000,223,232 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtrans.dll
  2247. [2012.02.28 03:27:13 | 009,705,984 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\ieframe.dll
  2248. [2012.04.04 20:37:44 | 000,118,784 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\iepeers.dll
  2249.  
  2250. [color=#A23BEC]< %systemroot%\system32\*.dll /90 >[/color]
  2251. [2012.04.04 20:37:44 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\admparse.dll
  2252. [2012.03.09 01:25:16 | 013,238,272 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\system32\amdocl.dll
  2253. [2012.03.09 06:05:12 | 000,053,760 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\amdpcom32.dll
  2254. [2012.03.09 07:07:50 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\system32\ati2edxx.dll
  2255. [2012.03.09 05:58:44 | 000,356,352 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\system32\atiadlxy.dll
  2256. [2012.03.09 06:18:12 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\system32\aticalcl.dll
  2257. [2012.03.09 06:12:38 | 013,715,968 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\system32\aticaldd.dll
  2258. [2012.03.09 06:18:26 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\system32\aticalrt.dll
  2259. [2012.03.09 07:16:28 | 000,791,552 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\aticfx32.dll
  2260. [2012.03.09 07:04:18 | 006,200,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atidxx32.dll
  2261. [2012.03.09 05:58:10 | 000,033,280 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atigktxx.dll
  2262. [2012.03.09 05:58:26 | 000,014,336 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atiglpxx.dll
  2263. [2012.03.09 06:05:12 | 000,053,760 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atimpc32.dll
  2264. [2012.03.09 06:39:20 | 019,739,136 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\system32\atioglxx.dll
  2265. [2012.03.09 05:56:38 | 000,030,208 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atiu9pag.dll
  2266. [2012.03.09 06:23:16 | 005,954,048 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atiumdag.dll
  2267. [2012.03.09 06:36:10 | 001,828,864 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atiumdmv.dll
  2268. [2012.03.09 06:23:44 | 005,062,656 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atiumdva.dll
  2269. [2012.03.09 05:56:56 | 000,033,280 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\system32\atiuxpag.dll
  2270. [2012.04.15 12:51:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\system32\deployJava1.dll
  2271. [2012.02.10 07:38:43 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DWrite.dll
  2272. [2012.04.04 20:37:44 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dxtmsft.dll
  2273. [2012.04.04 20:37:44 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dxtrans.dll
  2274. [2012.04.04 20:37:44 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\icardie.dll
  2275. [2012.04.04 20:37:44 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\IEAdvpack.dll
  2276. [2012.04.04 20:37:44 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieakeng.dll
  2277. [2012.04.04 20:37:44 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieaksie.dll
  2278. [2012.04.04 20:37:44 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieakui.dll
  2279. [2012.04.04 20:37:44 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieapfltr.dll
  2280. [2012.04.04 20:37:44 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iedkcs32.dll
  2281. [2012.02.28 03:27:13 | 009,705,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieframe.dll
  2282. [2012.04.04 20:37:44 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iepeers.dll
  2283. [2012.04.04 20:37:44 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iernonce.dll
  2284. [2012.02.28 03:04:32 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iertutil.dll
  2285. [2012.04.04 20:37:44 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iesetup.dll
  2286. [2012.04.04 20:37:44 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iesysprep.dll
  2287. [2012.02.28 02:59:59 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieui.dll
  2288. [2012.03.01 07:33:23 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\imagehlp.dll
  2289. [2012.04.04 20:37:44 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\imgutil.dll
  2290. [2012.04.04 20:37:44 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\inseng.dll
  2291. [2012.02.28 03:06:48 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\jscript.dll
  2292. [2012.02.28 03:18:55 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\jscript9.dll
  2293. [2012.02.28 03:08:15 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\jsproxy.dll
  2294. [2012.01.31 07:00:24 | 000,016,896 | ---- | M] () -- C:\Windows\system32\kdbsdk32.dll
  2295. [2012.04.04 20:37:44 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\licmgr10.dll
  2296. [2012.04.14 19:19:59 | 000,074,703 | ---- | M] () -- C:\Windows\system32\mfc45.dll
  2297. [2012.04.04 22:27:55 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msclmd.dll
  2298. [2012.04.04 20:37:44 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msfeeds.dll
  2299. [2012.04.04 20:37:44 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msfeedsbs.dll
  2300. [2012.02.28 03:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mshtml.dll
  2301. [2012.02.28 03:03:31 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mshtmled.dll
  2302. [2012.04.04 20:37:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mshtmler.dll
  2303. [2012.04.04 20:37:44 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msls31.dll
  2304. [2012.04.04 20:37:44 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msrating.dll
  2305. [2012.04.15 13:08:52 | 000,574,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msvcp50.dll
  2306. [2012.04.04 20:37:44 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\occache.dll
  2307. [2012.03.09 01:24:14 | 000,048,128 | ---- | M] (Khronos Group) -- C:\Windows\system32\OpenCL.dll
  2308. [2012.03.09 01:26:32 | 000,064,512 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\system32\OpenVideo.dll
  2309. [2012.03.09 01:26:20 | 000,054,784 | ---- | M] () -- C:\Windows\system32\OVDecode.dll
  2310. [2012.04.04 20:37:44 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\pngfilt.dll
  2311. [2012.02.17 07:34:22 | 000,826,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rdpcore.dll
  2312. [2012.02.28 03:09:51 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\url.dll
  2313. [2012.02.28 03:12:01 | 001,103,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\urlmon.dll
  2314. [2012.04.04 20:37:44 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\vbscript.dll
  2315. [2012.04.04 20:37:44 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\webcheck.dll
  2316. [2012.02.28 03:11:07 | 001,127,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wininet.dll
  2317. [2012.03.01 07:37:41 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wintrust.dll
  2318. [2012.03.01 07:29:16 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wmi.dll
  2319.  
  2320. [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
  2321.  
  2322. [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /90 >[/color]
  2323. [2012.04.15 13:16:54 | 000,042,672 | ---- | M] () -- C:\Windows\system32\drivers\fsbts.sys
  2324.  
  2325. [color=#A23BEC]< %systemroot%\system32\*.exe /90 >[/color]
  2326. [2012.04.18 14:27:30 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerApp.exe
  2327. [2012.04.18 14:27:28 | 008,766,112 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerInstaller.exe
  2328. [2012.04.04 20:37:44 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ie4uinit.exe
  2329. [2012.04.04 20:37:44 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieUnatt.exe
  2330. [2012.04.04 20:37:44 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iexpress.exe
  2331. [2012.04.04 20:37:44 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msfeedssync.exe
  2332. [2012.04.04 20:37:44 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mshta.exe
  2333. [2012.03.06 07:59:47 | 003,968,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ntkrnlpa.exe
  2334. [2012.03.06 07:59:41 | 003,913,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ntoskrnl.exe
  2335. [2012.04.04 20:37:44 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\RegisterIEPKEYs.exe
  2336. [2012.04.04 20:37:44 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\SetIEInstalledDate.exe
  2337. [2012.04.04 20:37:44 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wextract.exe
  2338.  
  2339. [color=#A23BEC]< %systemroot%\system32\config\*.sav >[/color]
  2340.  
  2341. [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.* >[/color]
  2342.  
  2343. [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
  2344.  
  2345. [color=#A23BEC]< %systemroot%\assembly\tmp\*.* /S /MD5 >[/color]
  2346.  
  2347. [color=#A23BEC]< %systemroot%\assembly\GAC_32\*.* /S /MD5 >[/color]
  2348. [2010.11.20 14:32:20 | 000,238,080 | ---- | M] () MD5=D6D26A698BCCD17AB0761E6221C5F3C4 -- C:\Windows\assembly\GAC_32\BDATunePIA\6.1.0.0__31bf3856ad364e35\BDATunePIA.dll
  2349. [2010.11.05 03:57:39 | 000,069,120 | ---- | M] () MD5=C80DA476BFBAD97D874A0EFE037D7113 -- C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
  2350. [2009.07.14 03:22:13 | 000,139,264 | ---- | M] () MD5=3723B29BBFE648380ED9B70B164E33A2 -- C:\Windows\assembly\GAC_32\ehexthost32\6.1.0.0__31bf3856ad364e35\ehexthost32.exe
  2351. [2009.07.13 23:04:37 | 000,002,274 | ---- | M] () MD5=C343B566A3B8DA7743C30796BE0A54D7 -- C:\Windows\assembly\GAC_32\ehexthost32\6.1.0.0__31bf3856ad364e35\ehexthost32.exe.config
  2352. [2010.11.05 03:57:43 | 000,072,192 | ---- | M] () MD5=D58D4E4AA8D6146D838BE02500F50B27 -- C:\Windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
  2353. [2010.11.20 14:32:22 | 000,134,656 | ---- | M] () MD5=7D8676EC6A6ABCF57E1F6CA5372E56EE -- C:\Windows\assembly\GAC_32\mcstoredb\6.1.0.0__31bf3856ad364e35\mcstoredb.dll
  2354. [2009.07.14 03:24:14 | 000,507,904 | ---- | M] () MD5=269691AFEE6C44C52CDCA23C24BDBB0C -- C:\Windows\assembly\GAC_32\Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Microsoft.Ink.dll
  2355. [2009.07.14 03:24:28 | 000,077,824 | ---- | M] () MD5=BB2BB7BFE455562249E922A7AA4493A5 -- C:\Windows\assembly\GAC_32\Microsoft.Interop.Security.AzRoles\2.0.0.0__31bf3856ad364e35\Microsoft.Interop.Security.AzRoles.dll
  2356. [2010.11.05 03:52:36 | 000,163,840 | ---- | M] () MD5=059B857CCA35C20F06B5DEBD51C4FB38 -- C:\Windows\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
  2357. [2009.07.14 03:26:31 | 000,008,192 | ---- | M] () MD5=FA44A672F1C12791984D9ECAB7DC3177 -- C:\Windows\assembly\GAC_32\Microsoft.Windows.Diagnosis.SDEngine\6.1.0.0__31bf3856ad364e35\Microsoft.Windows.Diagnosis.SDEngine.dll
  2358. [2009.06.10 23:14:52 | 000,087,888 | ---- | M] () MD5=2E5F1CF69F92392F8829FC9C9263AE9B -- C:\Windows\assembly\GAC_32\MSBuild\3.5.0.0__b03f5f7f11d50a3a\MSBuild.exe
  2359. [2009.06.10 23:14:53 | 000,001,581 | ---- | M] () MD5=1EA3E30080C0E256C2EF0C621E91C345 -- C:\Windows\assembly\GAC_32\MSBuild\3.5.0.0__b03f5f7f11d50a3a\msbuild.exe.config
  2360. [2009.06.10 23:22:47 | 000,066,728 | ---- | M] () MD5=C01B81BB10AD14DBC5C4ECD350638096 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\big5.nlp
  2361. [2009.06.10 23:22:47 | 000,082,172 | ---- | M] () MD5=EE1F60F8774D74BED8B13498F3FE737A -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\bopomofo.nlp
  2362. [2009.06.10 23:22:58 | 000,116,756 | ---- | M] () MD5=F6DFDA5A31162D848634504565F6D321 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\ksc.nlp
  2363. [2011.07.09 00:33:43 | 004,550,656 | ---- | M] () MD5=67A80B7ABA247E0B6D8FE0E85A58F001 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
  2364. [2009.06.10 23:23:13 | 000,059,342 | ---- | M] () MD5=DA5748A89E22A3932387E65694B25BBB -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normidna.nlp
  2365. [2009.06.10 23:23:13 | 000,045,794 | ---- | M] () MD5=3831A5E217D6FA828CCE1011DA26E677 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfc.nlp
  2366. [2009.06.10 23:23:13 | 000,039,284 | ---- | M] () MD5=DBDE664E0BA4BACD0A6A04AE2232B205 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfd.nlp
  2367. [2009.06.10 23:23:13 | 000,066,384 | ---- | M] () MD5=C9B88B759FE81D59CE8EBF5A0A8EB75A -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfkc.nlp
  2368. [2009.06.10 23:23:13 | 000,060,294 | ---- | M] () MD5=3CAB6AB66759FCDF73B61EE262C9ACF4 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\normnfkd.nlp
  2369. [2009.06.10 23:23:14 | 000,083,748 | ---- | M] () MD5=54144F43EDF5AA8F504A30E7C1D1A7B5 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\prc.nlp
  2370. [2009.06.10 23:23:14 | 000,083,748 | ---- | M] () MD5=901863C68E6523336CAC602FE9320ABC -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\prcp.nlp
  2371. [2009.06.10 23:23:17 | 000,262,148 | ---- | M] () MD5=FB59D247F7143C3B9683A547E808A88B -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\sortkey.nlp
  2372. [2009.06.10 23:23:17 | 000,020,320 | ---- | M] () MD5=FF13BA175F0013D2311827E0D438C60B -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\sorttbls.nlp
  2373. [2009.06.10 23:23:23 | 000,028,288 | ---- | M] () MD5=09E420F90A329BDA68477FA4AF43CB28 -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\xjis.nlp
  2374. [2010.11.20 14:36:00 | 000,046,080 | ---- | M] () MD5=93C4029DABC19166076BE347283AB969 -- C:\Windows\assembly\GAC_32\napcrypt\6.1.0.0__31bf3856ad364e35\NAPCRYPT.DLL
  2375. [2010.11.20 14:36:00 | 000,107,008 | ---- | M] () MD5=E9CFC1884D1E579E82073103827FA62B -- C:\Windows\assembly\GAC_32\naphlpr\6.1.0.0__31bf3856ad364e35\NAPHLPR.DLL
  2376. [2009.07.14 00:04:07 | 000,000,442 | ---- | M] () MD5=13E4BF7A255D57592EEDBD04A500C09B -- C:\Windows\assembly\GAC_32\Policy.1.0.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.1.0.Microsoft.Ink.config
  2377. [2009.07.14 03:25:25 | 000,005,632 | ---- | M] () MD5=608232474C33C71F863B0866E5165C1C -- C:\Windows\assembly\GAC_32\Policy.1.0.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.1.0.Microsoft.Ink.dll
  2378. [2009.06.10 23:32:22 | 000,000,494 | ---- | M] () MD5=453626B1A59F62F9A141AC62F4E44E75 -- C:\Windows\assembly\GAC_32\Policy.1.0.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Microsoft.Interop.Security.AzRoles.config
  2379. [2009.07.14 03:26:15 | 000,005,632 | ---- | M] () MD5=2641880E8C12BEE37DDC2813908A2A0F -- C:\Windows\assembly\GAC_32\Policy.1.0.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Policy.1.0.Microsoft.Interop.Security.AzRoles.dll
  2380. [2009.06.10 23:32:22 | 000,000,494 | ---- | M] () MD5=453626B1A59F62F9A141AC62F4E44E75 -- C:\Windows\assembly\GAC_32\Policy.1.2.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Policy.1.2.Microsoft.Interop.Security.AzRoles.config
  2381. [2009.07.14 03:23:30 | 000,005,632 | ---- | M] () MD5=D6C077082EAA747911C212A9EB64A813 -- C:\Windows\assembly\GAC_32\Policy.1.2.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Policy.1.2.Microsoft.Interop.Security.AzRoles.dll
  2382. [2009.07.14 00:04:07 | 000,000,442 | ---- | M] () MD5=13E4BF7A255D57592EEDBD04A500C09B -- C:\Windows\assembly\GAC_32\Policy.1.7.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.1.7.Microsoft.Ink.config
  2383. [2009.07.14 03:22:54 | 000,005,632 | ---- | M] () MD5=331021DA8B00A9ADCDD54B5782943204 -- C:\Windows\assembly\GAC_32\Policy.1.7.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.1.7.Microsoft.Ink.dll
  2384. [2009.07.14 00:04:08 | 000,000,442 | ---- | M] () MD5=13E4BF7A255D57592EEDBD04A500C09B -- C:\Windows\assembly\GAC_32\Policy.6.0.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.6.0.Microsoft.Ink.config
  2385. [2009.07.14 03:23:04 | 000,005,632 | ---- | M] () MD5=B3DB67C90DBBB75BFE110A86E951C2EC -- C:\Windows\assembly\GAC_32\Policy.6.0.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.6.0.Microsoft.Ink.dll
  2386. [2010.11.05 03:53:22 | 004,218,880 | ---- | M] () MD5=8A68B7F6F17377EFC0E7B12ABE54A8A4 -- C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
  2387. [2009.06.10 23:14:51 | 000,000,161 | ---- | M] () MD5=C0856EC51C8C75B8FDF02C1BBCFE7B93 -- C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationFontCache.exe.config
  2388. [2010.11.05 03:53:31 | 001,736,536 | ---- | M] () MD5=189EF45EB56724A888159C084588155D -- C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
  2389. [2010.11.05 03:58:05 | 000,486,400 | ---- | M] () MD5=ED40D020A6A82748394F1653CE324CE4 -- C:\Windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
  2390. [2010.11.05 03:58:05 | 002,927,616 | ---- | M] () MD5=35CAB7CF3754C41AEB69DCE1D5ACA5A4 -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
  2391. [2010.11.05 03:58:08 | 000,258,048 | ---- | M] () MD5=6DB969DF540BC71722848940D180AC08 -- C:\Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
  2392. [2010.11.20 06:12:59 | 000,113,664 | ---- | M] () MD5=C865DC05ADE0B41A9E14DD585E0CDF94 -- C:\Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
  2393. [2010.11.05 03:53:24 | 000,372,736 | ---- | M] () MD5=D5DB261885C0FEBF106DD3921C764F1E -- C:\Windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
  2394. [2009.06.10 23:23:19 | 000,261,632 | ---- | M] () MD5=5F3F1BF5F5B43293953FC915845910C4 -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
  2395. [2011.12.25 22:42:15 | 005,255,168 | ---- | M] () MD5=7D2B8E2CE3EF2DC633689F1E1F4A7504 -- C:\Windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
  2396.  
  2397. [color=#A23BEC]< %systemroot%\assembly\GAC_64\*.* /S /MD5 >[/color]
  2398. [2010.11.20 15:39:41 | 000,249,344 | ---- | M] () MD5=0EB9F2F8649FC0DE0DB55AFF18093E1C -- C:\Windows\assembly\GAC_64\BDATunePIA\6.1.0.0__31bf3856ad364e35\BDATunePIA.dll
  2399. [2010.11.05 03:56:37 | 000,080,896 | ---- | M] () MD5=28D0AAEB2F5D05629B287E3534FCAFB3 -- C:\Windows\assembly\GAC_64\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
  2400. [2010.11.05 03:56:43 | 000,089,600 | ---- | M] () MD5=8658D501224F8EAA18BCF8104F07AA29 -- C:\Windows\assembly\GAC_64\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
  2401. [2010.11.20 15:44:11 | 000,139,264 | ---- | M] () MD5=D32088C67317F5B64C13352E6EB5FFB1 -- C:\Windows\assembly\GAC_64\mcstoredb\6.1.0.0__31bf3856ad364e35\mcstoredb.dll
  2402. [2010.11.20 15:44:11 | 000,198,656 | ---- | M] () MD5=073C37CEFEB4D5CD86646171C5D999F2 -- C:\Windows\assembly\GAC_64\mcupdate\6.1.0.0__31bf3856ad364e35\mcupdate.exe
  2403. [2010.11.20 15:44:11 | 000,133,120 | ---- | M] () MD5=948ECE6043513473FF26B6A43DCD67C8 -- C:\Windows\assembly\GAC_64\Mcx2Dvcs\6.1.0.0__31bf3856ad364e35\Mcx2Dvcs.dll
  2404. [2009.07.14 03:51:37 | 000,507,904 | ---- | M] () MD5=80BC35C4CA953CCACFECEE0EDBA14F5A -- C:\Windows\assembly\GAC_64\Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Microsoft.Ink.dll
  2405. [2009.07.14 03:51:13 | 000,077,824 | ---- | M] () MD5=ADE7BDD9DFFFB5A965DF204114F36951 -- C:\Windows\assembly\GAC_64\Microsoft.Interop.Security.AzRoles\2.0.0.0__31bf3856ad364e35\Microsoft.Interop.Security.AzRoles.dll
  2406. [2011.08.17 07:28:23 | 000,315,392 | ---- | M] () MD5=063FDD306A93B988CBEC9C6987EB2960 -- C:\Windows\assembly\GAC_64\Microsoft.MediaCenter.Interop\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Interop.dll
  2407. [2010.11.20 15:44:11 | 000,147,968 | ---- | M] () MD5=9453A71711D51C31DD607EC19CA604B0 -- C:\Windows\assembly\GAC_64\Microsoft.MediaCenter.iTV.Media\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.iTV.Media.dll
  2408. [2010.11.20 15:44:11 | 000,056,320 | ---- | M] () MD5=6B365422C9E1417C9C99FD1234C42F48 -- C:\Windows\assembly\GAC_64\Microsoft.MediaCenter.Mheg\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Mheg.dll
  2409. [2010.11.20 15:44:11 | 000,114,688 | ---- | M] () MD5=2920CBCE0700F34AC9E27423CBD87798 -- C:\Windows\assembly\GAC_64\Microsoft.MediaCenter.Playback\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Playback.dll
  2410. [2010.11.20 15:44:12 | 000,327,168 | ---- | M] () MD5=2288CBDEBF5D78E0CB9158D251DE4016 -- C:\Windows\assembly\GAC_64\Microsoft.MediaCenter.TV.Tuners.Interop\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.TV.Tuners.Interop.dll
  2411. [2010.11.05 03:52:15 | 000,163,840 | ---- | M] () MD5=DAC8353CA6D1919C7FF87C00672FBF2E -- C:\Windows\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
  2412. [2009.07.14 03:49:27 | 000,008,192 | ---- | M] () MD5=6790FBD2C832CBB26A694E1046F7F2BA -- C:\Windows\assembly\GAC_64\Microsoft.Windows.Diagnosis.SDEngine\6.1.0.0__31bf3856ad364e35\Microsoft.Windows.Diagnosis.SDEngine.dll
  2413. [2010.11.20 15:39:46 | 000,019,968 | ---- | M] () MD5=DBE659C5CE6689D009D9414CB27FD110 -- C:\Windows\assembly\GAC_64\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop\6.1.0.0__31bf3856ad364e35\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop.dll
  2414. [2010.11.05 03:53:34 | 000,083,792 | ---- | M] () MD5=15885A86E87CC4291EF628E4F8A9BD6D -- C:\Windows\assembly\GAC_64\MSBuild\3.5.0.0__b03f5f7f11d50a3a\MSBuild.exe
  2415. [2009.06.10 22:31:02 | 000,001,581 | ---- | M] () MD5=1EA3E30080C0E256C2EF0C621E91C345 -- C:\Windows\assembly\GAC_64\MSBuild\3.5.0.0__b03f5f7f11d50a3a\msbuild.exe.config
  2416. [2009.06.10 22:39:44 | 000,066,728 | ---- | M] () MD5=C01B81BB10AD14DBC5C4ECD350638096 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\big5.nlp
  2417. [2009.06.10 22:39:44 | 000,082,172 | ---- | M] () MD5=EE1F60F8774D74BED8B13498F3FE737A -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\bopomofo.nlp
  2418. [2009.06.10 22:39:54 | 000,116,756 | ---- | M] () MD5=F6DFDA5A31162D848634504565F6D321 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\ksc.nlp
  2419. [2011.07.09 00:31:14 | 004,567,040 | ---- | M] () MD5=86AC5ED8B664B0929ACCAF500E8A3E49 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
  2420. [2009.06.10 22:40:01 | 000,059,342 | ---- | M] () MD5=DA5748A89E22A3932387E65694B25BBB -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normidna.nlp
  2421. [2009.06.10 22:40:01 | 000,045,794 | ---- | M] () MD5=3831A5E217D6FA828CCE1011DA26E677 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfc.nlp
  2422. [2009.06.10 22:40:01 | 000,039,284 | ---- | M] () MD5=DBDE664E0BA4BACD0A6A04AE2232B205 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfd.nlp
  2423. [2009.06.10 22:40:01 | 000,066,384 | ---- | M] () MD5=C9B88B759FE81D59CE8EBF5A0A8EB75A -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfkc.nlp
  2424. [2009.06.10 22:40:01 | 000,060,294 | ---- | M] () MD5=3CAB6AB66759FCDF73B61EE262C9ACF4 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\normnfkd.nlp
  2425. [2009.06.10 22:40:01 | 000,083,748 | ---- | M] () MD5=54144F43EDF5AA8F504A30E7C1D1A7B5 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\prc.nlp
  2426. [2009.06.10 22:40:01 | 000,083,748 | ---- | M] () MD5=901863C68E6523336CAC602FE9320ABC -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\prcp.nlp
  2427. [2009.06.10 22:40:02 | 000,262,148 | ---- | M] () MD5=FB59D247F7143C3B9683A547E808A88B -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\sortkey.nlp
  2428. [2009.06.10 22:40:02 | 000,020,320 | ---- | M] () MD5=FF13BA175F0013D2311827E0D438C60B -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\sorttbls.nlp
  2429. [2009.06.10 22:40:10 | 000,028,288 | ---- | M] () MD5=09E420F90A329BDA68477FA4AF43CB28 -- C:\Windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\xjis.nlp
  2430. [2010.11.20 15:44:12 | 000,050,176 | ---- | M] () MD5=E0773633E4193B183FB396192581BD86 -- C:\Windows\assembly\GAC_64\napcrypt\6.1.0.0__31bf3856ad364e35\NAPCRYPT.DLL
  2431. [2010.11.20 15:44:13 | 000,133,632 | ---- | M] () MD5=A302DA1404664CEF1D416ED4DE49EA2B -- C:\Windows\assembly\GAC_64\naphlpr\6.1.0.0__31bf3856ad364e35\NAPHLPR.DLL
  2432. [2009.06.10 22:51:13 | 000,000,494 | ---- | M] () MD5=453626B1A59F62F9A141AC62F4E44E75 -- C:\Windows\assembly\GAC_64\Policy.1.0.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Microsoft.Interop.Security.AzRoles.config
  2433. [2009.07.14 03:52:10 | 000,005,120 | ---- | M] () MD5=C3554C9F9650380CD6A292CD5E7F02C6 -- C:\Windows\assembly\GAC_64\Policy.1.0.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Policy.1.0.Microsoft.Interop.Security.AzRoles.dll
  2434. [2009.06.10 22:51:13 | 000,000,494 | ---- | M] () MD5=453626B1A59F62F9A141AC62F4E44E75 -- C:\Windows\assembly\GAC_64\Policy.1.2.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Policy.1.2.Microsoft.Interop.Security.AzRoles.config
  2435. [2009.07.14 03:50:32 | 000,005,120 | ---- | M] () MD5=265830B968EC5512E923C5482A5F5EEB -- C:\Windows\assembly\GAC_64\Policy.1.2.Microsoft.Interop.Security.AzRoles\6.1.7600.16385__31bf3856ad364e35\Policy.1.2.Microsoft.Interop.Security.AzRoles.dll
  2436. [2009.07.13 23:54:48 | 000,000,442 | ---- | M] () MD5=13E4BF7A255D57592EEDBD04A500C09B -- C:\Windows\assembly\GAC_64\Policy.6.0.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.6.0.Microsoft.Ink.config
  2437. [2009.07.14 03:50:49 | 000,005,120 | ---- | M] () MD5=6162FCE93CE4C29318C179E457CFE656 -- C:\Windows\assembly\GAC_64\Policy.6.0.Microsoft.Ink\6.1.0.0__31bf3856ad364e35\Policy.6.0.Microsoft.Ink.dll
  2438. [2010.11.05 03:52:53 | 003,997,696 | ---- | M] () MD5=B3B14A927ECE4440D58052E0B5679B8C -- C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
  2439. [2009.06.10 22:30:59 | 000,000,161 | ---- | M] () MD5=C0856EC51C8C75B8FDF02C1BBCFE7B93 -- C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationFontCache.exe.config
  2440. [2010.11.05 03:53:03 | 002,255,192 | ---- | M] () MD5=04A7A2D3B9AC06609AA93834785F0C92 -- C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
  2441. [2010.11.05 03:56:58 | 000,502,272 | ---- | M] () MD5=2D8090F04B14059E23FE68F9FF3E318C -- C:\Windows\assembly\GAC_64\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
  2442. [2010.11.05 03:56:58 | 003,095,552 | ---- | M] () MD5=98D53BB2DB8E11762D30C3CF41FA140B -- C:\Windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
  2443. [2010.11.05 03:57:00 | 000,245,760 | ---- | M] () MD5=B395F8BE6E578FAB80A1D568911857D7 -- C:\Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
  2444. [2010.11.05 03:57:02 | 000,133,120 | ---- | M] () MD5=D9C192B9CD25DC5C9C05DF98C945E3F1 -- C:\Windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
  2445. [2010.11.05 03:52:57 | 000,358,912 | ---- | M] () MD5=183FCB53541A77FCCF22CAAC19DD2BA0 -- C:\Windows\assembly\GAC_64\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
  2446. [2009.06.10 22:40:06 | 000,283,136 | ---- | M] () MD5=E4806AC8BE2D890193252D4BEE7EA95C -- C:\Windows\assembly\GAC_64\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
  2447. [2011.12.25 22:40:47 | 005,263,360 | ---- | M] () MD5=5566D4BABE2900CDB906F470F098188B -- C:\Windows\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
  2448.  
  2449. [color=#A23BEC]< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections >[/color]
  2450. "DefaultConnectionSettings" = [Binary data over 100 bytes]
  2451. "SavedLegacySettings" = [Binary data over 100 bytes]
  2452.  
  2453. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color]
  2454.  
  2455. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]
  2456.  
  2457. [color=#E56717]========== Files - Unicode (All) ==========[/color]
  2458. [2012.04.17 20:00:43 | 000,000,000 | ---D | M](C:\Users\Glenn\Documents\W?ll?aþ?rs P?¢k ? ??µs ™) -- C:\Users\Glenn\Documents\Wάllραþєrś Pά¢ķ ≠ Ехµs ™
  2459. [2012.04.17 20:00:43 | 000,000,000 | ---D | C](C:\Users\Glenn\Documents\W?ll?aþ?rs P?¢k ? ??µs ™) -- C:\Users\Glenn\Documents\Wάllραþєrś Pά¢ķ ≠ Ехµs ™
  2460.  
  2461. [color=#E56717]========== Alternate Data Streams ==========[/color]
  2462.  
  2463. @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:07BF512B
  2464.  
  2465. < End of report >
  2466.  
  2467.  
  2468.  
  2469. Extras.txt
  2470. -----------------------------------------------------------------------------------------------------------
  2471.  
  2472. OTL Extras logfile created on: 19.04.2012 19:56:20 - Run 1
  2473. OTL by OldTimer - Version 3.2.40.0 Folder = C:\Users\Glenn\Desktop
  2474. 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  2475. Internet Explorer (Version = 9.0.8112.16421)
  2476. Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
  2477.  
  2478. 8,00 Gb Total Physical Memory | 6,61 Gb Available Physical Memory | 82,63% Memory free
  2479. 8,25 Gb Paging File | 6,78 Gb Available in Paging File | 82,28% Paging File free
  2480. Paging file location(s): c:\pagefile.sys 256 512
  2481.  
  2482. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  2483. Drive C: | 923,41 Gb Total Space | 892,96 Gb Free Space | 96,70% Space Free | Partition Type: NTFS
  2484. Drive E: | 100,00 Mb Total Space | 65,79 Mb Free Space | 65,79% Space Free | Partition Type: NTFS
  2485.  
  2486. Computer Name: HYRICAN-PC | User Name: Glenn | Logged in as Administrator.
  2487. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  2488. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  2489.  
  2490. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  2491.  
  2492.  
  2493. [color=#E56717]========== File Associations ==========[/color]
  2494.  
  2495. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  2496. .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
  2497.  
  2498. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  2499. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
  2500.  
  2501. [HKEY_USERS\S-1-5-21-3086057490-25080596-496616258-1000\SOFTWARE\Classes\<extension>]
  2502. .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  2503.  
  2504. [color=#E56717]========== Shell Spawning ==========[/color]
  2505.  
  2506. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  2507. batfile [open] -- "%1" %*
  2508. cmdfile [open] -- "%1" %*
  2509. comfile [open] -- "%1" %*
  2510. exefile [open] -- "%1" %*
  2511. helpfile [open] -- Reg Error: Key error.
  2512. htmlfile [edit] -- Reg Error: Key error.
  2513. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
  2514. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  2515. InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
  2516. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
  2517. piffile [open] -- "%1" %*
  2518. regfile [merge] -- Reg Error: Key error.
  2519. scrfile [config] -- "%1"
  2520. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  2521. scrfile [open] -- "%1" /S
  2522. txtfile [edit] -- Reg Error: Key error.
  2523. Unknown [openas] -- Reg Error: Key error.
  2524. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  2525. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  2526. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  2527. Folder [explore] -- Reg Error: Value error.
  2528. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  2529.  
  2530. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  2531. batfile [open] -- "%1" %*
  2532. cmdfile [open] -- "%1" %*
  2533. comfile [open] -- "%1" %*
  2534. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
  2535. exefile [open] -- "%1" %*
  2536. helpfile [open] -- Reg Error: Key error.
  2537. htmlfile [edit] -- Reg Error: Key error.
  2538. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
  2539. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  2540. piffile [open] -- "%1" %*
  2541. regfile [merge] -- Reg Error: Key error.
  2542. scrfile [config] -- "%1"
  2543. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  2544. scrfile [open] -- "%1" /S
  2545. txtfile [edit] -- Reg Error: Key error.
  2546. Unknown [openas] -- Reg Error: Key error.
  2547. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  2548. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  2549. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  2550. Folder [explore] -- Reg Error: Value error.
  2551. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  2552.  
  2553. [color=#E56717]========== Security Center Settings ==========[/color]
  2554.  
  2555. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  2556. "cval" = 1
  2557.  
  2558. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  2559.  
  2560. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  2561. "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
  2562. "AntiVirusOverride" = 0
  2563. "AntiSpywareOverride" = 0
  2564. "FirewallOverride" = 0
  2565.  
  2566. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
  2567.  
  2568. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  2569.  
  2570. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  2571.  
  2572. [color=#E56717]========== Firewall Settings ==========[/color]
  2573.  
  2574. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  2575. "DisableNotifications" = 0
  2576. "EnableFirewall" = 1
  2577.  
  2578. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  2579. "DisableNotifications" = 0
  2580. "EnableFirewall" = 1
  2581.  
  2582. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
  2583. "DisableNotifications" = 0
  2584. "EnableFirewall" = 1
  2585.  
  2586. [color=#E56717]========== Authorized Applications List ==========[/color]
  2587.  
  2588.  
  2589. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  2590.  
  2591. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  2592. "{06DB2C4C-DC29-DA42-3B00-5581CBF545BB}" = AMD Drag and Drop Transcoding
  2593. "{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
  2594. "{13815D81-44B6-7ADA-2A41-FFFC64DD6FAB}" = ccc-utility64
  2595. "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
  2596. "{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
  2597. "{3987279A-3504-2916-D063-741B910F0747}" = AMD Accelerated Video Transcoding
  2598. "{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
  2599. "{50431EE1-C1CC-4AE7-BDE3-B60536E7BA92}" = Panda Cloud Antivirus
  2600. "{7C5CAFD6-F51C-0011-410B-001EF3E342A7}" = AMD Media Foundation Decoders
  2601. "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
  2602. "{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
  2603. "{9005CF63-F082-65AD-7431-7EBF31642279}" = AMD Fuel
  2604. "{90CB2C55-426D-0752-968D-9B0F1110202A}" = AMD Catalyst Install Manager
  2605. "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
  2606. "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
  2607. "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
  2608. "CCleaner" = CCleaner
  2609. "HitmanPro36" = HitmanPro 3.6
  2610. "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
  2611. "Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
  2612.  
  2613. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  2614. "{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime
  2615. "{0A590981-75A9-B968-4A29-718E5A8E1416}" = CCC Help Dutch
  2616. "{0E6B8EA7-4FDF-F730-8F28-05720874BE71}" = CCC Help Chinese Traditional
  2617. "{1003E625-BE5B-390B-7B60-D483D0B75A26}" = CCC Help Russian
  2618. "{1690611F-D4EA-A00D-DAAD-91D216869679}" = CCC Help Polish
  2619. "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
  2620. "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  2621. "{26EED5E6-EC40-35A9-602A-C3CF03A9C1E6}" = CCC Help Portuguese
  2622. "{2C33E65D-9187-8F2E-40D8-BD9E24E341FB}" = CCC Help Italian
  2623. "{36B6FF8B-38E3-E64C-F840-75F6AAEBE3EA}" = Catalyst Control Center Graphics Previews Common
  2624. "{38F6C932-2274-4897-479D-03AA6BA5B567}" = CCC Help Turkish
  2625. "{3AB00888-CA03-0BFD-3F3C-C877767192B0}" = CCC Help Swedish
  2626. "{3ACA2563-E786-BDD4-C87B-09909BB3F61C}" = CCC Help Thai
  2627. "{3BC2C64B-0DA0-974B-6311-AED4F3711DCE}" = CCC Help Danish
  2628. "{5BAC4DE5-4062-EE34-3337-5F92FE5D5032}" = CCC Help Spanish
  2629. "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
  2630. "{7ADCABE0-E651-6EA5-5128-26E203DAA5E1}" = CCC Help Korean
  2631. "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
  2632. "{8F80DAA3-8A1D-09E9-57E6-DB0223CF2CE4}" = CCC Help French
  2633. "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
  2634. "{9AE850A4-B89D-4875-A159-B1B64D717EFB}" = OMSI - Der Omnibussimulator
  2635. "{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
  2636. "{AFC71277-DE19-6505-8CBC-71D29163F44A}" = CCC Help German
  2637. "{B3406262-5701-E9CC-D6B3-BA38C34125A9}" = CCC Help English
  2638. "{BBC2068D-CE9C-48F5-A6EA-4B44B9DB14A5}" = Catalyst Control Center - Branding
  2639. "{C5B6078F-5D37-A122-2E6E-EDC623E8C787}" = CCC Help Czech
  2640. "{C7068E1F-22C6-9408-7B24-584F32F66D70}" = CCC Help Finnish
  2641. "{C87B855D-DD8F-E419-C640-34936E813EA9}" = CCC Help Greek
  2642. "{CC2BAF9A-926F-791D-772C-F582CD8A47B0}" = Catalyst Control Center InstallProxy
  2643. "{CE1CA06F-0AD8-CA2A-3A3A-872E8191C198}" = CCC Help Norwegian
  2644. "{CECECCED-B7F3-B1A3-3241-0C5D775F8E70}" = CCC Help Chinese Standard
  2645. "{D3CEF909-78DC-9D3D-37BD-52F5324C01DA}" = CCC Help Hungarian
  2646. "{E417E34D-30D0-4552-9B48-E0448E0CABA9}" = Fix-It
  2647. "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
  2648. "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
  2649. "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
  2650. "{F1EA61A2-B88F-44AD-3143-419ECB6C7E9A}" = CCC Help Japanese
  2651. "{F6567C5A-C3EA-2E05-E89E-C8C52E33150D}" = AMD VISION Engine Control Center
  2652. "{FC274982-5AAD-4C20-848D-A9D60D18D757}_is1" = ScanMyReg 2.01
  2653. "{FE54AF33-9364-7053-670F-A15AD658214C}" = Catalyst Control Center Localization All
  2654. "AVMWLANCLI" = AVM FRITZ!WLAN
  2655. "Free Screen Video Recorder_is1" = Free Screen Video Recorder version 2.5.21.412
  2656. "Mozilla Firefox 11.0 (x86 de)" = Mozilla Firefox 11.0 (x86 de)
  2657. "Panda Cloud Antivirus" = Panda Cloud Antivirus
  2658. "PC Fresh_is1" = PC Fresh
  2659. "Revo Uninstaller" = Revo Uninstaller 1.93
  2660. "TeamViewer 7" = TeamViewer 7
  2661. "UpdateYeti_is1" = UpdateYeti
  2662. "Wise PC Engineer_is1" = Wise PC Engineer 6.4.2
  2663.  
  2664. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  2665.  
  2666. [ Application Events ]
  2667. Error - 18.04.2012 16:00:55 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 7040
  2668. Description =
  2669.  
  2670. Error - 18.04.2012 16:00:55 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 7042
  2671. Description =
  2672.  
  2673. Error - 18.04.2012 16:00:55 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 9002
  2674. Description =
  2675.  
  2676. Error - 18.04.2012 16:00:55 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 3029
  2677. Description =
  2678.  
  2679. Error - 18.04.2012 16:00:56 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 3029
  2680. Description =
  2681.  
  2682. Error - 18.04.2012 16:00:56 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 3028
  2683. Description =
  2684.  
  2685. Error - 18.04.2012 16:00:56 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 3058
  2686. Description =
  2687.  
  2688. Error - 18.04.2012 16:00:56 | Computer Name = Hyrican-PC | Source = Windows Search Service | ID = 7010
  2689. Description =
  2690.  
  2691. Error - 18.04.2012 16:01:07 | Computer Name = Hyrican-PC | Source = PerfNet | ID = 2004
  2692. Description =
  2693.  
  2694. Error - 19.04.2012 12:37:54 | Computer Name = Hyrican-PC | Source = PerfNet | ID = 2005
  2695. Description =
  2696.  
  2697. [ System Events ]
  2698. Error - 18.04.2012 15:53:27 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7030
  2699. Description = Der Dienst "TrueVector Internet Monitor" ist als interaktiver Dienst
  2700. gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste
  2701. nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
  2702.  
  2703. Error - 18.04.2012 15:59:39 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7034
  2704. Description = Dienst "Fix-It Utilities Prozess-Monitor" wurde unerwartet beendet.
  2705. Dies ist bereits 1 Mal passiert.
  2706.  
  2707. Error - 18.04.2012 16:00:56 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7024
  2708. Description = Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem
  2709. Fehler beendet: %%-1073473535.
  2710.  
  2711. Error - 18.04.2012 16:00:56 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7031
  2712. Description = Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits
  2713. 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt:
  2714. Neustart des Diensts.
  2715.  
  2716. Error - 18.04.2012 16:01:26 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7032
  2717. Description = Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden
  2718. des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen,
  2719. ist fehlgeschlagen. Fehler: %%1056
  2720.  
  2721. Error - 18.04.2012 16:05:44 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7030
  2722. Description = Der Dienst "Panda Cloud Antivirus Service" ist als interaktiver Dienst
  2723. gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste
  2724. nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
  2725.  
  2726. Error - 18.04.2012 16:14:34 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7034
  2727. Description = Dienst "Fix-It Utilities Prozess-Monitor" wurde unerwartet beendet.
  2728. Dies ist bereits 1 Mal passiert.
  2729.  
  2730. Error - 19.04.2012 00:59:19 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7022
  2731. Description = Der Dienst "Windows Search" wurde nicht richtig gestartet.
  2732.  
  2733. Error - 19.04.2012 01:28:50 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7024
  2734. Description = Der Dienst "Fix-It Utilities Prozess-Monitor" wurde mit folgendem
  2735. dienstspezifischem Fehler beendet: %%0.
  2736.  
  2737. Error - 19.04.2012 12:37:34 | Computer Name = Hyrican-PC | Source = Service Control Manager | ID = 7022
  2738. Description = Der Dienst "Windows Search" wurde nicht richtig gestartet.
  2739.  
  2740.  
  2741. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!