Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with MBR Trojan Even After Complete HD Format


  • This topic is locked This topic is locked
27 replies to this topic

#1 Tinger

Tinger

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:11:52 AM

Posted 01 May 2012 - 10:20 PM

I finished a complete format of my machine and something still is not right. I did not do a low level format but i did run "bootsect /nt60 SYS /mbr", "bootrec /fixmbr" and "bootrec /fixboot" all to no avail.

I notice that I have an svchost.exe process that has a high memory resource load of around 190k. My machine is an i5 3.71Ghz with 16gb RAM and i shouldn't be having the stalls i have right now so my assumption is that this is a nasty MBR trojan.

I also ran catchme which had the following error:
c:\Temp>catchme
detected NTDLL code modification:
ZwEnumerateKey 0 != 47, ZwQueryKey 0 != 19, ZwOpenKey 0 != 15, ZwClose 0 != -31233876, ZwEnumerateValueKey 0 != 16, ZwQueryValueKey 0 != 20, ZwOpenFile 0 != 48, ZwQueryDirectoryFile 0 != 50, ZwQuerySystemInformation 0 != 51Initialization error

Per the forum instructions I have pasted the logs below.

=====DDS Log=====
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31
Run by JasonB at 22:04:37 on 2012-05-01
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.16382.13034 [GMT -5:00]
.
AV: Bitdefender Antivirus *Enabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Bitdefender Antispyware *Enabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
FW: Bitdefender Firewall *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Windows\system32\svchost.exe -k LocalService
D:\Program Files\Sandboxie\SbieSvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\srvany.exe
C:\Windows\KMService.exe
D:\Program Files\Raxco\PerfectDisk\PDAgent.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
D:\Program Files\Sandboxie\SbieCtrl.exe
D:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
D:\Program Files (x86)\RocketDock\RocketDock.exe
D:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe
D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe
D:\Program Files (x86)\Mindjet\MindManager 10\MmReminderService.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsURE.exe
C:\Program Files (x86)\Brother\Brmfcmon\BrMfimon.exe
C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsBatteryStatus.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
D:\Program Files (x86)\TechSmith\Snagit 10\TSCHelp.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
D:\Program Files (x86)\TechSmith\Snagit 10\SnagPriv.exe
D:\Program Files (x86)\TechSmith\Snagit 10\snagiteditor.exe
C:\Windows\splwow64.exe
C:\ProgramData\FLEXnet\Connect\11\agent.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD64.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\conhost.exe
C:\Windows\system32\prevhost.exe
C:\Windows\system32\rundll32.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\JasonB\Desktop\OTL.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit=userinit.exe
BHO: SnagIt Toolbar Loader: {00c6482d-c502-44c8-8409-fce54ad9c208} - D:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll
BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: CmjBrowserHelperObject Object: {6fe6a929-59d1-4763-91ad-29b61cffb35b} - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll
BHO: RoboForm Toolbar Helper: {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: &RoboForm Toolbar: {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
TB: Snagit: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - D:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll
TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
uRun: [SandboxieControl] "D:\Program Files\Sandboxie\SbieCtrl.exe"
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
uRun: [RocketDock] "D:\Program Files (x86)\RocketDock\RocketDock.exe"
uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
uRun: [HydraVisionMDEngine] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe"
mRun: [LWS] D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
mRun: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
mRun: [MMReminderService] D:\Program Files (x86)\Mindjet\MindManager 10\MMReminderService.exe
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [PlantronicsURE.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsURE.exe
mRun: [PlantronicsBatteryStatus.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsBatteryStatus.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [<NO NAME>]
mRun: [Adobe Acrobat Speed Launcher] "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SNAGIT~1.LNK - D:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-explorer: NoWelcomeScreen = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE:
IE: Customize Menu - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Fill Forms - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm
IE: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm
IE: Save Forms - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send Image To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/201
IE: Send Link To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/203
IE: Send Page To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/204
IE: Send Text To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/202
IE: Show RoboForm Toolbar - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {2F72393D-2472-4F82-B600-ED77F354B7FF} - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} - hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
TCP: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.150
TCP: Interfaces\{FEE59D3E-D8C6-4E29-A7D1-6CEBDD253F5C} : NameServer = 192.168.0.150,192.168.0.1
TCP: Interfaces\{FEE59D3E-D8C6-4E29-A7D1-6CEBDD253F5C} : DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.150
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
mASetup: {90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB} - D:\Program Files (x86)\Mindjet\MindManager 10\sys\MmInternetExplorerActiveSetup.vbs
BHO-X64: SnagIt Toolbar Loader: {00C6482D-C502-44C8-8409-FCE54AD9C208} - D:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll
BHO-X64: ContributeBHO Class: {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: CmjBrowserHelperObject Object: {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll
BHO-X64: RoboForm Toolbar Helper: {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
BHO-X64: RoboForm BHO - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
BHO-X64: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO-X64: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO-X64: SmartSelect - No File
TB-X64: &RoboForm Toolbar: {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
TB-X64: Snagit: {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - D:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll
TB-X64: Contribute Toolbar: {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB-X64: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
mRun-x64: [LWS] D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
mRun-x64: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
mRun-x64: [MMReminderService] D:\Program Files (x86)\Mindjet\MindManager 10\MMReminderService.exe
mRun-x64: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun-x64: [PlantronicsURE.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsURE.exe
mRun-x64: [PlantronicsBatteryStatus.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsBatteryStatus.exe
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
mRun-x64: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [(Default)]
mRun-x64: [Adobe Acrobat Speed Launcher] "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun-x64: [Acrobat Assistant 8.0] "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
Hosts: 192.168.0.150 ger2.hostsean.com
Hosts: 192.168.0.150 ks396200.kimsufi.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\JasonB\AppData\Roaming\Mozilla\Firefox\Profiles\zkbf87vm.default\
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrlui.dll
FF - plugin: C:\Users\JasonB\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: C:\Users\JasonB\AppData\Roaming\Mozilla\Firefox\Profiles\zkbf87vm.default\extensions\LogMeInClient@logmein.com\plugins\npLMI64.dll
FF - plugin: C:\Users\JasonB\AppData\Roaming\Mozilla\Firefox\Profiles\zkbf87vm.default\extensions\LogMeInClient@logmein.com\plugins\npRACtrl.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll
FF - plugin: D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
FF - plugin: D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\browser\nppdf32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 avc3;avc3;C:\Windows\system32\DRIVERS\avc3.sys --> C:\Windows\system32\DRIVERS\avc3.sys [?]
R0 mv91xx;mv91xx;C:\Windows\system32\DRIVERS\mv91xx.sys --> C:\Windows\system32\DRIVERS\mv91xx.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK;C:\Windows\system32\DRIVERS\bdvedisk.sys --> C:\Windows\system32\DRIVERS\bdvedisk.sys [?]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 KMService;KMService;C:\Windows\System32\srvany.exe [2012-4-22 8192]
R2 PDFSFilter;PDFSFilter;C:\Windows\system32\DRIVERS\PDFsFilter.sys --> C:\Windows\system32\DRIVERS\PDFsFilter.sys [?]
R2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-12-15 450848]
R2 UPDATESRV;BitDefender Desktop Update Service;C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-3-13 66096]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]
R3 avchv;avchv Function Driver;C:\Windows\system32\DRIVERS\avchv.sys --> C:\Windows\system32\DRIVERS\avchv.sys [?]
R3 avckf;avckf;C:\Windows\system32\DRIVERS\avckf.sys --> C:\Windows\system32\DRIVERS\avckf.sys [?]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\system32\DRIVERS\lvrs64.sys --> C:\Windows\system32\DRIVERS\lvrs64.sys [?]
R3 LVUVC64;Logitech HD Pro Webcam C920(UVC);C:\Windows\system32\DRIVERS\lvuvc64.sys --> C:\Windows\system32\DRIVERS\lvuvc64.sys [?]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 SbieDrv;SbieDrv;D:\Program Files\Sandboxie\SbieDrv.sys [2012-4-10 164528]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]
RUnknown SASKUTIL;SASKUTIL; [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-4-5 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-22 253088]
S3 bdsandbox;bdsandbox;\??\C:\Windows\system32\drivers\bdsandbox.sys --> C:\Windows\system32\drivers\bdsandbox.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 51740536]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-4-26 129976]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 Revoflt;Revoflt;C:\Windows\system32\DRIVERS\revoflt.sys --> C:\Windows\system32\DRIVERS\revoflt.sys [?]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 Update Server;BitDefender Update Server v2;C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-05-02 01:52:20 -------- d-----w- C:\Users\JasonB\AppData\Local\{3C0C0030-9CF5-4923-8B65-617D0C6E74D7}
2012-05-02 01:52:09 -------- d-----w- C:\Users\JasonB\AppData\Local\{DCDA4339-D4FB-413C-A612-D11AE758FD3C}
2012-05-01 23:53:58 540688 ----a-w- C:\Windows\System32\d3dx10_39.dll
2012-05-01 23:48:27 -------- d-----w- C:\Windows\SysWow64\directx
2012-05-01 13:51:46 -------- d-----w- C:\Users\JasonB\AppData\Local\{42268C6D-545B-4080-B2FB-88D3A9EF863C}
2012-05-01 01:51:26 -------- d-----w- C:\Users\JasonB\AppData\Local\{BE1DF785-22D5-4E2A-B21D-FB2FCE532C81}
2012-04-30 13:51:05 -------- d-----w- C:\Users\JasonB\AppData\Local\{A5C270ED-52C6-4ABE-91D9-27D7ABBC379D}
2012-04-30 13:50:55 -------- d-----w- C:\Users\JasonB\AppData\Local\{E24A9C87-4905-4EA2-8B86-F3EE4AC9F317}
2012-04-28 12:37:18 -------- d-----w- C:\Users\JasonB\AppData\Local\{52FBC984-540E-40DF-B944-E237C00FE40C}
2012-04-28 06:26:04 8766112 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2012-04-28 00:36:57 -------- d-----w- C:\Users\JasonB\AppData\Local\{C4C847CD-A37D-4512-A0A3-F4AF437CF0D7}
2012-04-28 00:36:47 -------- d-----w- C:\Users\JasonB\AppData\Local\{01409BA9-4585-4DAB-9623-6A185CBFC92F}
2012-04-27 23:07:17 -------- d-----w- C:\Users\JasonB\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-04-27 22:43:41 7450888 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\3105ae9f1cd24c722\bingbarsetup.exe
2012-04-27 22:41:59 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\f5177dc01cd24c614\MeshBetaRemover.exe
2012-04-27 22:40:50 89944 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\c879aaa81cd24c60b\DSETUP.dll
2012-04-27 22:40:50 537432 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\c879aaa81cd24c60b\DXSETUP.exe
2012-04-27 22:40:50 1801048 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\c879aaa81cd24c60b\dsetup32.dll
2012-04-27 22:40:22 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\ba85186e1cd24c60a\DSETUP.dll
2012-04-27 22:40:22 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\ba85186e1cd24c60a\DXSETUP.exe
2012-04-27 22:40:22 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\ba85186e1cd24c60a\dsetup32.dll
2012-04-27 21:40:16 -------- d-----w- C:\AMD
2012-04-27 14:21:54 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2012-04-27 13:58:47 -------- d-----w- C:\ProgramData\ALM
2012-04-27 13:05:23 -------- d-----w- C:\Users\JasonB\dwhelper
2012-04-27 12:36:23 -------- d-----w- C:\Users\JasonB\AppData\Local\{8585B855-AE33-45F4-A191-036DCA41FE51}
2012-04-27 00:36:02 -------- d-----w- C:\Users\JasonB\AppData\Local\{E1FFD0B7-A73D-48DA-B981-AF364B12337C}
2012-04-27 00:35:53 -------- d-----w- C:\Users\JasonB\AppData\Local\{D766080D-4B43-43F3-A4B0-E2A6AAA817A1}
2012-04-26 23:36:09 55280 ------w- C:\Windows\System32\drivers\PxHlpa64.sys
2012-04-26 23:36:09 10224 ------w- C:\Windows\System32\drivers\cdralw2k.sys
2012-04-26 23:36:09 10224 ------w- C:\Windows\System32\drivers\cdr4_xp.sys
2012-04-26 23:36:09 -------- d-----w- C:\Program Files (x86)\My Company Name
2012-04-26 23:36:09 -------- d-----w- C:\Program Files (x86)\Common Files\Sonic Shared
2012-04-26 23:36:09 -------- d-----w- C:\Program Files (x86)\Common Files\PX Storage Engine
2012-04-26 19:50:54 -------- d-----w- C:\Users\JasonB\AppData\Local\ATI
2012-04-26 19:50:54 -------- d-----w- C:\ProgramData\AMD
2012-04-26 19:50:54 -------- d-----w- C:\Program Files (x86)\AMD AVT
2012-04-26 19:50:53 -------- d-----w- C:\Program Files (x86)\AMD APP
2012-04-26 19:50:52 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2012-04-26 19:50:52 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2012-04-26 19:49:02 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2012-04-26 19:49:01 -------- d-----w- C:\Program Files\ATI
2012-04-26 19:46:58 -------- d-----w- C:\Program Files\AMD
2012-04-26 12:35:30 -------- d-----w- C:\Users\JasonB\AppData\Local\{292AF1FA-A40C-4E4B-9702-CC789B287443}
2012-04-26 11:59:55 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
2012-04-26 11:59:54 157352 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2012-04-26 11:59:54 129976 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe
2012-04-26 00:35:09 -------- d-----w- C:\Users\JasonB\AppData\Local\{3307F112-8D3E-49C6-946B-BEE65E20E714}
2012-04-26 00:34:59 -------- d-----w- C:\Users\JasonB\AppData\Local\{B3DE35E7-70E7-4379-BFF3-9B1CC2FFFEC2}
2012-04-25 12:34:36 -------- d-----w- C:\Users\JasonB\AppData\Local\{8C3836AF-5E29-4594-9A77-BADB639C23F9}
2012-04-25 00:34:15 -------- d-----w- C:\Users\JasonB\AppData\Local\{A9D9BC34-74F0-4CDF-93D1-40D22414B771}
2012-04-25 00:33:24 -------- d-----w- C:\Users\JasonB\AppData\Local\{467F644C-3FB1-4C0B-89DB-F0EE58DD948A}
2012-04-24 12:33:55 -------- d-----w- C:\Users\JasonB\AppData\Local\{BCFC49F1-AD86-4D74-AFD0-03E9FE9C2495}
2012-04-24 00:33:34 -------- d-----w- C:\Users\JasonB\AppData\Local\{535429F2-E116-488E-A073-749A7C1F2235}
2012-04-24 00:33:24 -------- d-----w- C:\Users\JasonB\AppData\Local\{20E933C8-AB50-4DDE-9B9E-126763A802CE}
2012-04-23 21:31:16 -------- d-----w- C:\Users\JasonB\AppData\Roaming\TechSmith
2012-04-23 14:21:35 -------- d-----w- C:\Users\JasonB\AppData\Roaming\FLEXnet
2012-04-23 14:21:33 -------- d-----w- C:\Users\JasonB\AppData\Local\Plantronics
2012-04-23 14:21:14 -------- d-----w- C:\ProgramData\Plantronics
2012-04-23 14:21:14 -------- d-----w- C:\Program Files (x86)\Plantronics
2012-04-23 14:09:19 -------- d-----w- C:\Users\JasonB\AppData\Local\assembly
2012-04-23 14:08:58 -------- d-----w- C:\Users\JasonB\AppData\Local\TechSmith
2012-04-23 13:12:24 83968 ----a-w- C:\Windows\System32\BrNetSti.dll
2012-04-23 13:12:23 1560576 ----a-w- C:\Windows\System32\BrWi209c.dll
2012-04-23 13:12:22 176128 ----a-w- C:\Windows\SysWow64\BROSNMP.DLL
2012-04-23 12:39:55 -------- d-----w- C:\Users\JasonB\AppData\Roaming\SQLyog
2012-04-23 12:36:02 -------- d-----w- C:\Windows\pss
2012-04-23 12:33:01 -------- d-----w- C:\Users\JasonB\AppData\Local\{E082A6AE-439B-458B-8538-44A213D7AAA3}
2012-04-23 12:32:50 -------- d-----w- C:\Users\JasonB\AppData\Local\{002F9462-B996-4D73-BC76-1E643974F98F}
2012-04-23 04:05:58 -------- d-----w- C:\Users\JasonB\AppData\Local\{8B8B80CE-3614-4963-A4AA-58855E7C9BDC}
2012-04-23 01:58:55 -------- d-----r- C:\Program Files (x86)\Skype
2012-04-23 01:54:40 16896 ----a-w- C:\Windows\AsTaskSched.dll
2012-04-23 01:53:15 414632 ------w- C:\Windows\difxapi.dll
2012-04-23 01:53:14 -------- d-----w- C:\Program Files (x86)\VIA
2012-04-23 01:48:25 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2012-04-23 01:47:24 -------- d-----w- C:\Intel
2012-04-23 01:26:09 8192 ----a-w- C:\Windows\SysWow64\srvany.exe
2012-04-23 01:26:09 151552 ----a-w- C:\Windows\KMService.exe
2012-04-23 00:40:08 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-23 00:40:08 418464 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-04-23 00:18:08 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2012-04-23 00:18:08 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2012-04-23 00:18:08 225280 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-04-23 00:18:08 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2012-04-23 00:18:07 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2012-04-22 23:48:53 -------- d-----w- C:\ProgramData\HitmanPro
2012-04-22 23:45:09 287304 ----a-w- C:\Windows\System32\drivers\TrufosAlt.sys
2012-04-22 23:07:57 -------- d-----w- C:\Temp
2012-04-22 23:02:34 -------- d-----w- C:\Users\JasonB\AppData\Local\Downloaded Installations
2012-04-22 23:00:21 -------- d-----w- C:\Program Files (x86)\Renesas Electronics
2012-04-22 22:59:49 -------- d-----w- C:\ProgramData\Downloaded Installations
2012-04-22 20:56:06 -------- d-----w- C:\Users\JasonB\AppData\Local\Mindjet
2012-04-22 20:54:29 6656 ----a-w- C:\Windows\System32\pxc35pm.dll
2012-04-22 20:53:49 -------- d-----w- C:\ProgramData\Mindjet
2012-04-22 20:36:04 -------- d-----w- C:\Users\JasonB\AppData\Local\{B466D993-193A-4641-BD61-AA0DBB63C1F1}
2012-04-22 20:33:18 -------- d-----w- C:\Program Files\Microsoft Synchronization Services
2012-04-22 20:32:31 -------- d-----w- C:\Program Files\Microsoft SQL Server Compact Edition
2012-04-22 20:30:07 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
2012-04-22 20:28:13 -------- d-----w- C:\Program Files\Microsoft Analysis Services
2012-04-22 20:28:13 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2012-04-22 20:27:29 -------- d-----w- C:\Users\JasonB\AppData\Local\Microsoft Help
2012-04-22 20:20:02 -------- d-----w- C:\Users\JasonB\AppData\Local\{8162AB6F-3DB1-4988-9EE4-D2A7861BD300}
2012-04-22 19:37:26 -------- d-----w- C:\Program Files\Common Files\Raxco
2012-04-22 18:46:24 -------- d-----w- C:\Users\JasonB\.websiteauditor
2012-04-22 18:45:56 -------- d-----w- C:\Users\JasonB\.seospyglass
2012-04-22 18:45:38 -------- d-----w- C:\Users\JasonB\.linkassistant
2012-04-22 18:44:07 -------- d-----w- C:\Users\JasonB\.ranktracker
2012-04-22 18:36:45 -------- d-----w- C:\Users\JasonB\AppData\Local\VS Revo Group
2012-04-22 18:36:42 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys
2012-04-22 17:52:30 -------- d-----w- C:\Users\JasonB\AppData\Roaming\Malwarebytes
2012-04-22 17:52:25 -------- d-----w- C:\ProgramData\Malwarebytes
2012-04-22 17:15:52 -------- d-----w- C:\Users\JasonB\AppData\Roaming\PandoraClient
2012-04-22 17:15:37 -------- d-----w- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2012-04-22 16:03:49 -------- d-----w- C:\Users\JasonB\Tracing
2012-04-22 15:14:47 -------- d-----w- C:\Windows\PCHEALTH
2012-04-22 15:09:10 217189 ----a-w- C:\ProgramData\1335106805.bdinstall.bin
2012-04-22 15:06:29 6260088 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\7e4442d81cd209905\Silverlight.4.0.exe
2012-04-22 15:06:29 -------- d-----w- C:\ProgramData\BDLogging
2012-04-22 15:03:47 -------- d-----w- C:\Users\JasonB\AppData\Roaming\Bitdefender
2012-04-22 15:03:45 -------- d-----w- C:\ProgramData\Bitdefender
2012-04-22 15:03:31 -------- d-----w- C:\Users\JasonB\AppData\Local\Windows Live
2012-04-22 15:03:30 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2012-04-22 15:01:19 -------- d-----w- C:\Users\JasonB\AppData\Roaming\QuickScan
2012-04-22 15:01:05 -------- d-----w- C:\Program Files\Bitdefender
2012-04-22 15:00:40 442088 ----a-w- C:\Windows\System32\drivers\bdfsfltr.sys
2012-04-22 15:00:40 329800 ----a-w- C:\Windows\System32\drivers\trufos.sys
2012-04-22 14:59:44 -------- d-----w- C:\Program Files\Common Files\Bitdefender
2012-04-22 04:31:02 -------- d-----w- C:\Users\JasonB\AppData\Roaming\SProxy
2012-04-21 23:23:41 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2012-04-21 23:19:50 -------- d-----w- C:\ProgramData\Brother
2012-04-21 23:17:33 -------- d-----w- C:\Users\JasonB\.crossftp
2012-04-21 23:15:56 -------- d-----r- C:\Sandbox
2012-04-21 23:14:49 -------- d-----w- C:\Users\JasonB\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
2012-04-21 22:21:24 -------- d-----w- C:\Program Files\Onkyo
2012-04-21 22:16:36 -------- d-----w- C:\Windows\Panther
2012-04-21 22:05:59 -------- d-----w- C:\Users\JasonB\AppData\Local\Adobe
2012-04-21 21:20:00 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2012-04-21 21:20:00 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2012-04-21 21:19:00 0 ----a-w- C:\Windows\ativpsrm.bin
2012-04-21 21:07:47 -------- d-----w- C:\Windows\SysWow64\Wat
2012-04-21 21:07:47 -------- d-----w- C:\Windows\System32\Wat
2012-04-21 21:06:45 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2012-04-21 20:46:01 -------- d-----w- C:\Users\JasonB\AppData\Local\Logitech® Webcam Software
2012-04-21 20:44:02 -------- d-----w- C:\Users\JasonB\AppData\Local\LogiShrd
2012-04-21 20:42:28 53248 ----a-r- C:\Users\JasonB\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2012-04-21 20:41:58 -------- d-----w- C:\Program Files (x86)\Common Files\LWS
2012-04-21 20:41:52 -------- d-sh--w- C:\Windows\Installer
2012-04-21 20:35:22 -------- d-----w- C:\Windows\System32\SPReview
2012-04-21 20:35:03 -------- d-----w- C:\Windows\System32\EventProviders
2012-04-21 20:34:38 5559152 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-04-21 20:34:38 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-04-21 20:34:37 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-04-21 20:29:59 457216 ----a-w- C:\Windows\System32\msdrm.dll
2012-04-21 20:28:59 78848 ----a-w- C:\Windows\System32\tabcal.exe
2012-04-21 20:27:46 529408 ----a-w- C:\Windows\System32\wbemcomn.dll
2012-04-21 20:27:46 244736 ----a-w- C:\Program Files\Windows Portable Devices\sqmapi.dll
2012-04-21 20:27:43 244736 ----a-w- C:\Windows\System32\sqmapi.dll
2012-04-21 20:25:21 515584 ----a-w- C:\Windows\System32\timedate.cpl
2012-04-21 20:25:21 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2012-04-21 20:25:21 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2012-04-21 20:25:21 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2012-04-21 20:24:50 870912 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2012-04-21 20:24:50 1465344 ----a-w- C:\Windows\System32\XpsPrint.dll
2012-04-21 20:24:49 2871808 ----a-w- C:\Windows\explorer.exe
2012-04-21 20:24:49 2616320 ----a-w- C:\Windows\SysWow64\explorer.exe
2012-04-21 20:24:47 902656 ----a-w- C:\Windows\System32\d2d1.dll
2012-04-21 20:24:47 739840 ----a-w- C:\Windows\SysWow64\d2d1.dll
2012-04-21 20:24:47 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2012-04-21 20:24:47 1139200 ----a-w- C:\Windows\System32\FntCache.dll
2012-04-21 20:24:46 476160 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2012-04-21 20:24:46 288256 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2012-04-21 20:21:55 -------- d-----w- C:\Users\JasonB\AppData\Local\Google
2012-04-21 20:21:52 -------- d-----w- C:\Users\JasonB\AppData\Local\Deployment
2012-04-21 20:21:52 -------- d-----w- C:\Users\JasonB\AppData\Local\Apps
2012-04-21 20:00:27 279656 ------w- C:\Windows\System32\MpSigStub.exe
2012-04-21 19:53:36 8917360 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B202A10D-B812-4025-BEBA-3C915AB19191}\mpengine.dll
2012-04-21 19:47:00 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2012-04-21 19:47:00 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2012-04-21 19:47:00 5120 ----a-w- C:\Windows\System32\wmi.dll
2012-04-21 19:47:00 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2012-04-21 19:47:00 220672 ----a-w- C:\Windows\System32\wintrust.dll
2012-04-21 19:47:00 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
2012-04-21 19:47:00 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2012-04-21 19:44:45 288640 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2012-04-21 19:43:59 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2012-04-21 19:43:59 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2012-04-21 19:43:58 723456 ----a-w- C:\Windows\System32\EncDec.dll
2012-04-21 19:43:58 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2012-04-21 19:41:44 1731920 ----a-w- C:\Windows\System32\ntdll.dll
2012-04-21 19:41:44 1292080 ----a-w- C:\Windows\SysWow64\ntdll.dll
2012-04-21 19:40:53 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-04-21 19:40:53 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-04-21 19:40:45 77312 ----a-w- C:\Windows\System32\packager.dll
2012-04-21 19:40:45 67072 ----a-w- C:\Windows\SysWow64\packager.dll
2012-04-21 19:34:02 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2012-04-21 19:34:01 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-04-21 19:34:01 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-04-21 19:34:01 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2012-04-21 19:34:01 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-04-21 19:32:47 -------- d-sh--w- C:\Recovery
2012-04-06 05:22:40 11174400 ----a-w- C:\Windows\System32\drivers\atikmdag.sys
2012-04-06 03:34:26 187392 ----a-w- C:\Windows\System32\clinfo.exe
2012-04-06 03:34:10 74752 ----a-w- C:\Windows\System32\OpenVideo64.dll
2012-04-06 03:34:04 64512 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2012-04-06 03:33:56 63488 ----a-w- C:\Windows\System32\OVDecode64.dll
2012-04-06 03:33:52 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2012-04-06 03:33:44 16457216 ----a-w- C:\Windows\System32\amdocl64.dll
2012-04-06 03:32:56 13007872 ----a-w- C:\Windows\SysWow64\amdocl.dll
2012-04-06 03:32:08 54784 ----a-w- C:\Windows\System32\OpenCL.dll
2012-04-06 03:32:04 50176 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2012-04-06 02:22:00 159744 ----a-w- C:\Windows\System32\atiapfxx.exe
2012-04-06 02:16:52 442368 ----a-w- C:\Windows\System32\ATIDEMGX.dll
2012-04-06 02:16:46 503808 ----a-w- C:\Windows\System32\atieclxx.exe
2012-04-06 02:16:02 236544 ----a-w- C:\Windows\System32\atiesrxx.exe
2012-04-06 02:14:44 120320 ----a-w- C:\Windows\System32\atitmm64.dll
2012-04-06 02:14:30 21504 ----a-w- C:\Windows\System32\atimuixx.dll
2012-04-06 02:14:26 59392 ----a-w- C:\Windows\System32\atiedu64.dll
2012-04-06 02:14:20 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll
2012-04-06 02:10:50 26181632 ----a-w- C:\Windows\System32\atio6axx.dll
2012-04-06 01:50:56 19753984 ----a-w- C:\Windows\SysWow64\atioglxx.dll
2012-04-06 01:35:24 1120768 ----a-w- C:\Windows\System32\atiumd6v.dll
2012-04-06 01:34:50 1831424 ----a-w- C:\Windows\SysWow64\atiumdmv.dll
2012-04-06 01:34:34 4731904 ----a-w- C:\Windows\System32\atiumd6a.dll
2012-04-06 01:30:16 51200 ----a-w- C:\Windows\System32\aticalrt64.dll
2012-04-06 01:30:14 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll
2012-04-06 01:30:08 44544 ----a-w- C:\Windows\System32\aticalcl64.dll
2012-04-06 01:30:06 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll
2012-04-06 01:29:54 16090624 ----a-w- C:\Windows\System32\aticaldd64.dll
2012-04-06 01:25:30 13764096 ----a-w- C:\Windows\SysWow64\aticaldd.dll
2012-04-06 01:23:24 7431680 ----a-w- C:\Windows\System32\atiumd64.dll
2012-04-06 01:11:20 360448 ----a-w- C:\Windows\SysWow64\atiadlxy.dll
2012-04-06 01:11:06 17408 ----a-w- C:\Windows\System32\atig6pxx.dll
2012-04-06 01:11:04 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll
2012-04-06 01:11:04 14848 ----a-w- C:\Windows\System32\atiglpxx.dll
2012-04-06 01:11:00 41984 ----a-w- C:\Windows\System32\atig6txx.dll
2012-04-06 01:10:52 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll
2012-04-06 01:10:44 343040 ----a-w- C:\Windows\System32\drivers\atikmpag.sys
2012-04-06 01:09:02 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll
2012-04-06 01:06:08 54784 ----a-w- C:\Windows\System32\atimpc64.dll
2012-04-06 01:06:08 54784 ----a-w- C:\Windows\System32\amdpcom64.dll
2012-04-06 01:06:04 53760 ----a-w- C:\Windows\SysWow64\atimpc32.dll
2012-04-06 01:06:04 53760 ----a-w- C:\Windows\SysWow64\amdpcom32.dll
.
==================== Find3M ====================
.
2012-04-21 21:12:29 175616 ----a-w- C:\Windows\System32\msclmd.dll
2012-04-21 21:12:29 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2012-04-06 02:21:52 909312 ----a-w- C:\Windows\SysWow64\aticfx32.dll
2012-04-06 02:20:04 1067520 ----a-w- C:\Windows\System32\aticfx64.dll
2012-04-06 02:13:42 6800896 ----a-w- C:\Windows\SysWow64\atidxx32.dll
2012-04-06 02:00:10 64000 ----a-w- C:\Windows\System32\coinst.dll
2012-04-06 01:54:46 7479296 ----a-w- C:\Windows\System32\atidxx64.dll
2012-04-06 01:34:04 6203392 ----a-w- C:\Windows\SysWow64\atiumdag.dll
2012-04-06 01:22:54 4795904 ----a-w- C:\Windows\SysWow64\atiumdva.dll
2012-04-06 01:11:28 514560 ----a-w- C:\Windows\System32\atiadlxx.dll
2012-04-06 01:09:56 54784 ----a-w- C:\Windows\System32\atiuxp64.dll
2012-04-06 01:09:48 41984 ----a-w- C:\Windows\SysWow64\atiuxpag.dll
2012-04-06 01:09:42 44544 ----a-w- C:\Windows\System32\atiu9p64.dll
2012-04-06 01:09:34 32256 ----a-w- C:\Windows\SysWow64\atiu9pag.dll
2012-03-21 01:22:46 691896 ----a-w- C:\Windows\System32\drivers\avc3.sys
2012-03-09 19:07:04 29184 ----a-w- C:\Windows\System32\kdbsdk64.dll
2012-03-09 19:06:14 24576 ----a-w- C:\Windows\SysWow64\kdbsdk32.dll
2012-03-08 23:50:28 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll
2012-02-29 08:19:36 268552 ----a-w- C:\Windows\System32\PDBoot.exe
2012-02-28 16:25:54 81424 ----a-w- C:\Windows\System32\drivers\PDFsFilter.sys
2012-02-28 06:56:48 2311168 ----a-w- C:\Windows\System32\jscript9.dll
2012-02-28 06:49:56 1390080 ----a-w- C:\Windows\System32\wininet.dll
2012-02-28 06:48:57 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-02-28 06:42:55 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-02-28 01:18:55 1799168 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-02-28 01:11:21 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-02-28 01:11:07 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-02-28 01:03:16 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-02-23 12:32:04 95760 ----a-w- C:\Windows\System32\drivers\AtihdW76.sys
2012-02-17 21:45:56 545064 ----a-w- C:\Windows\System32\drivers\avckf.sys
2012-02-10 06:36:07 1544192 ----a-w- C:\Windows\System32\DWrite.dll
2012-02-10 05:38:43 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll
2012-02-03 04:34:34 3145728 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 22:05:01.60 ===============




=====ATTACH LOG======
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 4/21/2012 2:32:48 PM
System Uptime: 5/1/2012 6:36:54 PM (4 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | P7P55D-E PRO
Processor: Intel® Core™ i5 CPU 750 @ 2.67GHz | LGA1156 | 3715/195mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 119 GiB total, 62.721 GiB free.
D: is FIXED (NTFS) - 140 GiB total, 42.497 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description: Microsoft® Fingerprint Reader
Device ID: USB\VID_045E&PID_00BD\{CBE6A879-93C2-464C-9E0A-82E73F5BE230}
Manufacturer:
Name: Microsoft® Fingerprint Reader
PNP Device ID: USB\VID_045E&PID_00BD\{CBE6A879-93C2-464C-9E0A-82E73F5BE230}
Service:
.
==== System Restore Points ===================
.
RP37: 4/30/2012 9:53:37 AM - Installed Adobe Acrobat X Pro - English, Français, Deutsch.
RP38: 5/1/2012 6:52:51 PM - Installed DirectX
.
==== Installed Programs ======================
.
Adobe Acrobat X Pro - English, Français, Deutsch
Adobe AIR
Adobe Community Help
Adobe Creative Suite 5 Master Collection
Adobe Flash Player 10 Plugin
Adobe Media Player
Brother MFL-Pro Suite MFC-9320CW
CameraHelperMsi
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CrossFTP (remove only)
D3DX10
erLT
FileZilla Client 3.5.3
Google Chrome
HandBrake 0.9.6
HydraVision
ImgBurn
Java Auto Updater
Java™ 6 Update 31
Logitech Vid HD
Logitech Webcam Software
LWS Facebook
LWS Gallery
LWS Help_main
LWS Launcher
LWS Motion Detection
LWS Pictures And Video
LWS Twitter
LWS Video Mask Maker
LWS Webcam Software
LWS WLM Plugin
LWS YouTube Plugin
marvell 91xx driver
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Mindjet MindManager 2012
Mozilla Firefox 12.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
NEC Electronics USB 3.0 Host Controller Driver
Notepad++
Orca
PDF Settings CS5
Plantronics Spokes Software
Platform
PxMergeModule
Renesas Electronics USB 3.0 Host Controller Driver
RoboForm 7-7-5 (All Users)
RocketDock 1.3.5
Saver2
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
SEO PowerSuite
Skype™ 5.9
Snagit 10.0.1
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
VIA Platform Device Manager
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Messenger
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
.
==== Event Viewer Messages From Past Week ========
.
5/1/2012 7:05:38 PM, Error: Application Popup [1060] - \??\C:\Users\JasonB\AppData\Local\Temp\mbr.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
5/1/2012 6:58:41 PM, Error: Schannel [36888] - The following fatal alert was generated: 10. The internal error state is 10.
5/1/2012 6:37:14 PM, Error: NETLOGON [5719] - This computer was not able to set up a secure session with a domain controller in domain ATOMSYSTEMS due to the following: There are currently no logon servers available to service the logon request. This may lead to authentication problems. Make sure that this computer is connected to the network. If the problem persists, please contact your domain administrator. ADDITIONAL INFO If this computer is a domain controller for the specified domain, it sets up the secure session to the primary domain controller emulator in the specified domain. Otherwise, this computer sets up the secure session to any domain controller in the specified domain.
5/1/2012 6:27:39 PM, Error: Service Control Manager [7043] - The Windows Update service did not shut down properly after receiving a preshutdown control.
5/1/2012 6:25:09 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error: An instance of the service is already running.
5/1/2012 6:25:09 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Multimedia Class Scheduler service, but this action failed with the following error: An instance of the service is already running.
5/1/2012 6:25:09 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Computer Browser service, but this action failed with the following error: An instance of the service is already running.
5/1/2012 6:24:09 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Server service, but this action failed with the following error: An instance of the service is already running.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7034] - The Application Information service terminated unexpectedly. It has done this 1 time(s).
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Windows Update service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Windows Management Instrumentation service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The User Profile Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Themes service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Task Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The System Event Notification Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Shell Hardware Detection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Server service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Multimedia Class Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The IP Helper service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Group Policy Client service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Computer Browser service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Background Intelligent Transfer Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 6:23:09 PM, Error: Service Control Manager [7031] - The Application Experience service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 5:58:21 PM, Error: Service Control Manager [7034] - The Windows Audio Endpoint Builder service terminated unexpectedly. It has done this 3 time(s).
5/1/2012 5:58:21 PM, Error: Service Control Manager [7034] - The Superfetch service terminated unexpectedly. It has done this 3 time(s).
5/1/2012 5:58:21 PM, Error: Service Control Manager [7034] - The Program Compatibility Assistant Service service terminated unexpectedly. It has done this 3 time(s).
5/1/2012 5:58:21 PM, Error: Service Control Manager [7034] - The Portable Device Enumerator Service service terminated unexpectedly. It has done this 3 time(s).
5/1/2012 5:58:21 PM, Error: Service Control Manager [7034] - The PnP-X IP Bus Enumerator service terminated unexpectedly. It has done this 3 time(s).
5/1/2012 5:58:21 PM, Error: Service Control Manager [7034] - The Network Connections service terminated unexpectedly. It has done this 3 time(s).
5/1/2012 5:58:21 PM, Error: Service Control Manager [7034] - The Distributed Link Tracking Client service terminated unexpectedly. It has done this 3 time(s).
5/1/2012 5:58:21 PM, Error: Service Control Manager [7031] - The Windows Driver Foundation - User-mode Driver Framework service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 5:58:21 PM, Error: Service Control Manager [7031] - The Human Interface Device Access service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 5:58:21 PM, Error: Service Control Manager [7031] - The Desktop Window Manager Session Manager service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 3:50:30 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Program Compatibility Assistant Service service, but this action failed with the following error: An instance of the service is already running.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Windows Driver Foundation - User-mode Driver Framework service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Windows Audio Endpoint Builder service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Superfetch service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Program Compatibility Assistant Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Portable Device Enumerator Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The PnP-X IP Bus Enumerator service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Network Connections service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 100 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Human Interface Device Access service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Distributed Link Tracking Client service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service.
5/1/2012 3:49:30 PM, Error: Service Control Manager [7031] - The Desktop Window Manager Session Manager service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service.
5/1/2012 3:47:20 PM, Error: Service Control Manager [7031] - The Windows Audio Endpoint Builder service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 3:47:20 PM, Error: Service Control Manager [7031] - The Superfetch service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 3:47:20 PM, Error: Service Control Manager [7031] - The Program Compatibility Assistant Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/1/2012 3:47:20 PM, Error: Service Control Manager [7031] - The Portable Device Enumerator Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 3:47:20 PM, Error: Service Control Manager [7031] - The PnP-X IP Bus Enumerator service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
5/1/2012 3:47:20 PM, Error: Service Control Manager [7031] - The Network Connections service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 100 milliseconds: Restart the service.
5/1/2012 3:47:20 PM, Error: Service Control Manager [7031] - The Distributed Link Tracking Client service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
4/30/2012 6:07:02 PM, Error: Service Control Manager [7034] - The Windows Driver Foundation - User-mode Driver Framework service terminated unexpectedly. It has done this 3 time(s).
4/30/2012 6:07:02 PM, Error: Service Control Manager [7034] - The Human Interface Device Access service terminated unexpectedly. It has done this 3 time(s).
4/30/2012 6:07:02 PM, Error: Service Control Manager [7034] - The Desktop Window Manager Session Manager service terminated unexpectedly. It has done this 3 time(s).
4/26/2012 6:28:12 PM, Error: Microsoft-Windows-DNS-Client [1012] - There was an error while attempting to read the local hosts file.
4/26/2012 4:31:05 PM, Error: Service Control Manager [7034] - The Diagnostic System Host service terminated unexpectedly. It has done this 1 time(s).
4/26/2012 4:08:54 PM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the User Profile Service service, but this action failed with the following error: An instance of the service is already running.
.
==== End Of File ===========================

BC AdBot (Login to Remove)

 


#2 Tinger

Tinger
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:11:52 AM

Posted 01 May 2012 - 10:24 PM

=====OTL Log=====
OTL logfile created on: 5/1/2012 10:00:51 PM - Run 1
OTL by OldTimer - Version 3.2.42.2 Folder = C:\Users\JasonB\Desktop
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

16.00 Gb Total Physical Memory | 12.83 Gb Available Physical Memory | 80.22% Memory free
29.67 Gb Paging File | 26.23 Gb Available in Paging File | 88.41% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.14 Gb Total Space | 62.72 Gb Free Space | 52.65% Space Free | Partition Type: NTFS
Drive D: | 139.73 Gb Total Space | 42.50 Gb Free Space | 30.41% Space Free | Partition Type: NTFS

Computer Name: Jason-WINDOWS7 | User Name: JasonB | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\JasonB\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe (Siber Systems)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Windows\KMService.exe ()
PRC - C:\Windows\SysWOW64\srvany.exe ()
PRC - D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Adobe Systems Inc.)
PRC - C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsBatteryStatus.exe (Plantronics, Inc.)
PRC - C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsURE.exe (Plantronics, Inc.)
PRC - D:\Program Files (x86)\Mindjet\MindManager 10\MmReminderService.exe (Mindjet)
PRC - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
PRC - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe (AMD)
PRC - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD)
PRC - D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
PRC - D:\Program Files (x86)\TechSmith\Snagit 10\TscHelp.exe (TechSmith Corporation)
PRC - D:\Program Files (x86)\TechSmith\Snagit 10\SnagPriv.exe (TechSmith Corporation)
PRC - D:\Program Files (x86)\TechSmith\Snagit 10\SnagitEditor.exe (TechSmith Corporation)
PRC - D:\Program Files (x86)\TechSmith\Snagit 10\Snagit32.exe (TechSmith Corporation)
PRC - C:\ProgramData\FLEXnet\Connect\11\agent.exe (Flexera Software, Inc.)
PRC - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
PRC - C:\Program Files (x86)\Brother\Brmfcmon\BrMfimon.exe (Brother Industries, Ltd.)
PRC - D:\Program Files (x86)\RocketDock\RocketDock.exe ()


========== Modules (No Company Name) ==========

MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\d362f68d3bf954ba55a4494a659492af\System.WorkflowServices.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.Device.#\2a79c7f57730f7909193eb3fa954c449\Plantronics.Device.Bluemax.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PlantronicsURE\1dba9a775eb23ede2b61aa33fdd46826\PlantronicsURE.ni.exe ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PlantronicsBatteryS#\f572be6dc68c2b9d0a6cae793ef85a1d\PlantronicsBatteryStatus.ni.exe ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Webe#\4d0678967bfadee9ce6907bcb8fb4c8f\Plantronics.UC.WebexConnect.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Wind#\e983ae4f47dbc89be183c74786054bbb\Plantronics.UC.WindowsMediaPlayer.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Skype\4836b3df3dd7d9f3a09c9a91c251ab87\Plantronics.UC.Skype.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Sess#\50ea7bfbb677c3d7927bac61e3fb5bb6\Plantronics.UC.SessionService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Shor#\cc51c26b4530b9b4edc168a265b87ad2\Plantronics.UC.ShoreTel.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Rest#\4b8ec79c3bf359fb4279ac47177cf5cc\Plantronics.UC.Rest.JsonpExtension.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\0113a0162fe157bb4f0130a60bbcad1a\System.ServiceModel.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Rest\63c42e02b18758395051a232df5dbbf6\Plantronics.UC.Rest.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Offi#\9d7117be14e06827b1f74365b59dba8f\Plantronics.UC.OfficeCommunicator.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.SP30SDKLib\734f905ca023320a65c82d01a8b16ff4\Interop.SP30SDKLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.NEC\fee05b0d70f96098a20aa78614c5505e\Plantronics.UC.NEC.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.iTun#\d536412da2293a93dc391eaf11a28176\Plantronics.UC.iTunes.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\d939fca96c3645bb8806ea8ae43cc0ca\System.IdentityModel.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\bc96c5c6e644452270ff7c3d066ff713\System.Runtime.Serialization.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\b74950292d5681795d9d2c1a72a79952\System.ServiceModel.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\281b67b96a2dd473dad4d222da0ca514\SMDiagnostics.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.CSFC#\1e69973728662e527fb5bfac34813d9a\Plantronics.UC.CSFClient.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.CSF\ba2be6cfbe0df0261d105f9bd05d1330\Plantronics.UC.CSF.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Cisco\cc95a298f72c5f1ace74c8fbad42c5e2\Plantronics.UC.Cisco.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.TAPI\2711c00de94f09756571a3884e490283\Plantronics.UC.TAPI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Avay#\9a99b7dd28f780e3dea1633936d068a8\Plantronics.UC.AvayaSoftphone.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Avay#\9bdf9fbf14ed1fc645553f444030b90d\Plantronics.UC.AvayaIPAgent.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Comm#\489cb7b99738c9117e0e79bcf8203f47\Plantronics.UC.Common.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.License#\7d1c1c5599fa57c88bc70965ec73a8a8\Plantronics.License.Manager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Avaya\ed64fb467c7d6f966732b5a3c0dffc8a\Plantronics.UC.Avaya.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.Globali#\709db806345b7c69cb0234d8229caf53\Plantronics.Globalization.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.UC.Util#\92bc8328bbe3c51d18ded35f076f7b4c\Plantronics.UC.Utility.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.FlexNet#\2444766d5e1126ba8a3a3b790ee9cc8c\Plantronics.FlexNet.Adapter.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.License#\a96ee1a26a598393ff4224a6ce2c0812\Plantronics.License.Common.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.Device.#\ed536beee55f2d9d77fc787c7a1c53b7\Plantronics.Device.Common.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.Device.#\8829cdcb896391f6b5b70aa2397e5e37\Plantronics.Device.Hid.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.Audio.M#\473ad5e4474f6c229c80516b03c77b77\Plantronics.Audio.Mixer.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.Config\99f966a28c0e3db5c09ed112e871c0fe\Plantronics.Config.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\a595aa31f93ed043fd02ec9d8ff40b32\System.Web.Services.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\507b4ca18da9d2fde2e51a1f04593443\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\log4net\5287dc2fbe75fe532baf765da3efa801\log4net.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Plantronics.Utility\e217779072a89801c6562440f588f2f4\Plantronics.Utility.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\262285b3d0afafc5059f3fe9be69bff5\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\8177623eac8f15cf95b587625439eac7\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.SKYPE4COMLib\d46f8acad6123cc93f79b81746fb1915\Interop.SKYPE4COMLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.FNCClient11#\88dd33bb1193cc3bda51f34229b13988\Interop.FNCClient11Lib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.Communicato#\bd96e6c08d9831a1ef83540b38273133\Interop.CommunicatorAPI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.CiscoInterf#\4dbb8c2030199116a084491f921b28a7\Interop.CiscoInterface.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Atapi\93d31bd480e09dd2c96860351d9c49d2\Atapi.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\f01c5c76d0a19516a37b7bd191a02cda\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\74a1075c047edd51ba44cebf5ecf715c\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e620323cacb5b6bfd93fd28d263440e4\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll ()
MOD - D:\Program Files (x86)\Mindjet\MindManager 10\zlib.dll ()
MOD - D:\Program Files (x86)\Logitech\LWS\Webcam Software\QTGui4.dll ()
MOD - D:\Program Files (x86)\Logitech\LWS\Webcam Software\QTXml4.dll ()
MOD - D:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll ()
MOD - D:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll ()
MOD - D:\Program Files (x86)\Logitech\LWS\Webcam Software\QTCore4.dll ()
MOD - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll ()
MOD - C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll ()
MOD - D:\Program Files (x86)\RocketDock\RocketDock.exe ()
MOD - D:\Program Files (x86)\RocketDock\RocketDock.dll ()


========== Win32 Services (SafeList) ==========

SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (VSSERV) -- C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe (Bitdefender)
SRV:64bit: - (UPDATESRV) -- C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe (Bitdefender)
SRV:64bit: - (PDEngine) -- C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe (Raxco Software, Inc.)
SRV:64bit: - (Update Server) -- C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe (BitDefender)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (KMService) -- C:\Windows\SysWOW64\srvany.exe ()
SRV - (SbieSvc) -- D:\Program Files\Sandboxie\SbieSvc.exe (SANDBOXIE L.T.D)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (PDAgent) -- D:\Program Files\Raxco\PerfectDisk\PDAgent.exe (Raxco Software, Inc.)
SRV - (UMVPFSrv) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (WinVNC4) -- D:\Program Files\RealVNC\VNC4\winvnc4.exe (RealVNC Ltd.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (avc3) -- C:\Windows\SysNative\drivers\avc3.sys (BitDefender)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (PDFSFilter) -- C:\Windows\SysNative\drivers\PDFsFilter.sys (Raxco Software, Inc.)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
DRV:64bit: - (avckf) -- C:\Windows\SysNative\drivers\avckf.sys (BitDefender)
DRV:64bit: - (DefragFS) -- C:\Windows\SysNative\drivers\DefragFs.sys (Raxco Software, Inc.)
DRV:64bit: - (LVUVC64) Logitech HD Pro Webcam C920(UVC) -- C:\Windows\SysNative\drivers\lvuvc64.sys (Logitech Inc.)
DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\drivers\lvrs64.sys (Logitech Inc.)
DRV:64bit: - (avchv) -- C:\Windows\SysNative\drivers\avchv.sys (BitDefender)
DRV:64bit: - (bdsandbox) -- C:\Windows\SysNative\drivers\bdsandbox.sys (BitDefender SRL)
DRV:64bit: - (bdfwfpf) -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (BitDefender LLC)
DRV:64bit: - (trufos) -- C:\Windows\SysNative\drivers\trufos.sys (BitDefender S.R.L.)
DRV:64bit: - (bdfsfltr) -- C:\Windows\SysNative\drivers\bdfsfltr.sys (BitDefender)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (VIAHdAudAddService) -- C:\Windows\SysNative\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV:64bit: - (mv91xx) -- C:\Windows\SysNative\drivers\mv91xx.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation)
DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation)
DRV:64bit: - (BDVEDISK) -- C:\Windows\SysNative\drivers\bdvedisk.sys (BitDefender)
DRV:64bit: - (Revoflt) -- C:\Windows\SysNative\drivers\revoflt.sys (VS Revo Group)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (SbieDrv) -- D:\Program Files\Sandboxie\SbieDrv.sys (SANDBOXIE L.T.D)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 4D E8 F5 81 F4 27 CD 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_2_202_233.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: D:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\JasonB\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\JasonB\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{22119944-ED35-4ab1-910B-E619EA06A115}: C:\Program Files (x86)\Siber Systems\AI RoboForm\Firefox [2012/04/26 07:44:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2012/04/27 12:35:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012/05/01 09:14:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/04/26 06:59:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/04/21 15:39:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\JasonB\AppData\Roaming\mozilla\Extensions
[2012/05/01 18:02:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\JasonB\AppData\Roaming\mozilla\Firefox\Profiles\zkbf87vm.default\extensions
[2012/04/26 13:04:11 | 000,000,000 | ---D | M] (ColorZilla) -- C:\Users\JasonB\AppData\Roaming\mozilla\Firefox\Profiles\zkbf87vm.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2012/04/27 08:04:41 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\JasonB\AppData\Roaming\mozilla\Firefox\Profiles\zkbf87vm.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/04/26 06:59:55 | 000,000,000 | ---D | M] (LogMeIn, Inc. Remote Access Plugin) -- C:\Users\JasonB\AppData\Roaming\mozilla\Firefox\Profiles\zkbf87vm.default\extensions\LogMeInClient@logmein.com
[2012/04/26 06:59:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/04/26 06:59:55 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
() (No name found) -- C:\USERS\JasonB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZKBF87VM.DEFAULT\EXTENSIONS\{1280606B-2510-4FE0-97EF-9B5A22EAFE30}.XPI
() (No name found) -- C:\USERS\JasonB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZKBF87VM.DEFAULT\EXTENSIONS\{73A6FE31-595D-460B-A920-FCC0F8843232}.XPI
() (No name found) -- C:\USERS\JasonB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZKBF87VM.DEFAULT\EXTENSIONS\{D57C9FF1-6389-48FC-B770-F78BD89B6E8A}.XPI
() (No name found) -- C:\USERS\JasonB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ZKBF87VM.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI
[2012/04/26 06:59:55 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/04/26 06:59:53 | 000,001,394 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom.xml
[2012/04/26 06:59:53 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/04/26 06:59:53 | 000,001,131 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay.xml
[2012/04/26 06:59:53 | 000,003,413 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\google.xml
[2012/04/26 06:59:53 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
[2012/04/26 06:59:53 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia.xml
[2012/04/26 06:59:53 | 000,001,096 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms},
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\JasonB\AppData\Local\Google\Chrome\Application\18.0.1025.168\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\JasonB\AppData\Local\Google\Chrome\Application\18.0.1025.168\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\JasonB\AppData\Local\Google\Chrome\Application\18.0.1025.168\gcswf32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\JasonB\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: SEOquake = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc\1.0.0_0\
CHR - Extension: Shortcuts for Google\u2122 = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\baohinapilmkigilbbbcccncoljkdpnd\1.6.3.6_0\
CHR - Extension: Web Developer = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm\0.3.1_0\
CHR - Extension: YouTube = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: SEO Site Tools = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\diahigjngdnkdgajdbpjdeomopbpkjjc\2.91_0\
CHR - Extension: After the Deadline = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcdjadjbdihbaodagojiomdljhjhjfho\1.2_0\
CHR - Extension: Edit This Cookie = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg\0.14.8_0\
CHR - Extension: Delicious Tools = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclkcflnjahgejhappicbhcpllkpakej\1.5.2_0\
CHR - Extension: Andrew@ChromeFans = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdkkfheckcdppiaiabobmennhijkknn\4.7.6_0\
CHR - Extension: META SEO inspector = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibkclpciafdglkjkcibmohobjkcfkaef\1.8.1_0\
CHR - Extension: Copy Links = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcpoommnneaebpfgaoejklgemonkmjpc\1.2.1_0\
CHR - Extension: Pinterest Pin It Button (by Shareaholic) = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfjkehmceppcpjoaoegdmffmkdhiegmc\1.0.1_0\
CHR - Extension: Malware Search = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgleioieeffejophokeklefchfglgmnk\0.1.2_0\
CHR - Extension: Wave Accounting = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\knpkfcpnjfbniadmfchjpcigfhookhaa\1.9.1_0\
CHR - Extension: Session Manager = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghenlmbmjcpehccoangkdpagbcbkdpc\3.4.3_0\
CHR - Extension: FastestChrome - Browse Faster = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm\6.1.8_0\
CHR - Extension: Autofill = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmmgnhgdeffjkdckmikfpnddkbbfkkk\5.5_0\
CHR - Extension: SEO for Chrome = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\oangcciaeihlfmhppegpdceadpfaoclj\0.9.5_0\
CHR - Extension: Color Pick = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohcpnigalekghcmgcdcenkpelffpdolg\0.0.1.28_0\
CHR - Extension: ScriptNo = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf\1.0.6.2_0\
CHR - Extension: Gmail = C:\Users\JasonB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/05/01 17:56:31 | 000,004,243 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 192.168.0.150 ger2.hostsean.com
O1 - Hosts: 192.168.0.150 ks396200.kimsufi.com
O1 - Hosts: 127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com
O1 - Hosts: 127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com
O1 - Hosts: 127.0.0.1 www.adobeereg.com wwis-dubc1-vip60.adobe.com www.wip.adobe.com www.wip1.adobe.com
O1 - Hosts: 127.0.0.1 www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net
O1 - Hosts: 127.0.0.1 www.link-assistant.com
O1 - Hosts: 127.0.0.1 link-assistant.com
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 51 more lines...
O2:64bit: - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - D:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitBHO64.dll (TechSmith Corporation)
O2:64bit: - BHO: (RoboForm Toolbar Helper) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - D:\Program Files (x86)\TechSmith\Snagit 10\SnagitBHO.dll (TechSmith Corporation)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (CmjBrowserHelperObject Object) - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O2 - BHO: (RoboForm Toolbar Helper) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3:64bit: - HKLM\..\Toolbar: (&RoboForm Toolbar) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O3:64bit: - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - D:\Program Files (x86)\TechSmith\Snagit 10\DLLx64\SnagitIEAddin64.dll (TechSmith Corporation)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (&RoboForm Toolbar) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - D:\Program Files (x86)\TechSmith\Snagit 10\SnagitIEAddin.dll (TechSmith Corporation)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (&RoboForm Toolbar) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (&RoboForm Toolbar) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [BDAgent] C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe (Bitdefender)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe ()
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [LWS] D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [MMReminderService] D:\Program Files (x86)\Mindjet\MindManager 10\MmReminderService.exe (Mindjet)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [PlantronicsBatteryStatus.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsBatteryStatus.exe (Plantronics, Inc.)
O4 - HKLM..\Run: [PlantronicsURE.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsURE.exe (Plantronics, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [HydraVisionDesktopManager] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD)
O4 - HKCU..\Run: [HydraVisionMDEngine] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe (AMD)
O4 - HKCU..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
O4 - HKCU..\Run: [RoboForm] C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
O4 - HKCU..\Run: [RocketDock] D:\Program Files (x86)\RocketDock\RocketDock.exe ()
O4 - HKCU..\Run: [SandboxieControl] D:\Program Files\Sandboxie\SbieCtrl.exe (SANDBOXIE L.T.D)
O4 - HKCU..\Run: [Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8:64bit: - Extra context menu item: Customize Menu - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Fill Forms - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O8:64bit: - Extra context menu item: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm File not found
O8:64bit: - Extra context menu item: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm File not found
O8:64bit: - Extra context menu item: Save Forms - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O8:64bit: - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8:64bit: - Extra context menu item: Send Image To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8:64bit: - Extra context menu item: Send Link To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8:64bit: - Extra context menu item: Send Page To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8:64bit: - Extra context menu item: Send Text To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8:64bit: - Extra context menu item: Show RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O8 - Extra context menu item: Customize Menu - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Fill Forms - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O8 - Extra context menu item: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm File not found
O8 - Extra context menu item: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm File not found
O8 - Extra context menu item: Save Forms - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Send Image To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8 - Extra context menu item: Send Link To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8 - Extra context menu item: Send Page To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8 - Extra context menu item: Send Text To MindManager - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O8 - Extra context menu item: Show RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O9:64bit: - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O9:64bit: - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O9:64bit: - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O9:64bit: - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O9:64bit: - Extra Button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O9:64bit: - Extra 'Tools' menuitem : Show RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform-x64.dll (Siber Systems Inc.)
O9:64bit: - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to Mindjet MindManager - {2F72393D-2472-4F82-B600-ED77F354B7FF} - D:\Program Files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
O9 - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O9 - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O9 - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O9 - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O9 - Extra Button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O9 - Extra 'Tools' menuitem : Show RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://support.asus.com/select/asusTek_sys_ctrl3.cab (asusTek_sysctrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.150
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = AtomSystems.local
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FEE59D3E-D8C6-4E29-A7D1-6CEBDD253F5C}: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.150
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FEE59D3E-D8C6-4E29-A7D1-6CEBDD253F5C}: NameServer = 192.168.0.150,192.168.0.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (livessp) - C:\Windows\SysNative\livessp.dll (Microsoft Corp.)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\SysWow64\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{72694d9b-8bf7-11e1-aa92-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{72694d9b-8bf7-11e1-aa92-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setup.exe
O34 - HKLM BootExecute: (PDBoot.exe)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

=====OTL CONTINUED=====

========== Files/Folders - Created Within 30 Days ==========

[2012/05/01 20:52:20 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{3C0C0030-9CF5-4923-8B65-617D0C6E74D7}
[2012/05/01 20:52:09 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{DCDA4339-D4FB-413C-A612-D11AE758FD3C}
[2012/05/01 19:13:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Office Genuine Advantage
[2012/05/01 18:54:54 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2012/05/01 18:54:54 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012/05/01 18:54:54 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012/05/01 18:54:54 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2012/05/01 18:54:54 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012/05/01 18:54:54 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2012/05/01 18:54:54 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2012/05/01 18:54:54 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012/05/01 18:54:53 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2012/05/01 18:54:53 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012/05/01 18:54:53 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2012/05/01 18:54:53 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012/05/01 18:54:53 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2012/05/01 18:54:53 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012/05/01 18:54:53 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2012/05/01 18:54:53 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012/05/01 18:54:53 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2012/05/01 18:54:53 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012/05/01 18:54:53 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2012/05/01 18:54:53 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012/05/01 18:54:52 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2012/05/01 18:54:52 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2012/05/01 18:54:52 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012/05/01 18:54:52 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012/05/01 18:54:52 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2012/05/01 18:54:52 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2012/05/01 18:54:52 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2012/05/01 18:54:52 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012/05/01 18:54:51 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2012/05/01 18:54:51 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012/05/01 18:54:51 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2012/05/01 18:54:51 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2012/05/01 18:54:51 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012/05/01 18:54:51 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012/05/01 18:54:51 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2012/05/01 18:54:51 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2012/05/01 18:54:51 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2012/05/01 18:54:51 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012/05/01 18:54:50 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2012/05/01 18:54:50 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2012/05/01 18:54:44 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2012/05/01 18:54:44 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2012/05/01 18:54:26 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2012/05/01 18:54:26 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012/05/01 18:54:26 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2012/05/01 18:54:26 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2012/05/01 18:54:13 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012/05/01 18:54:13 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2012/05/01 18:54:13 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2012/05/01 18:54:13 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012/05/01 18:54:12 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2012/05/01 18:54:12 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012/05/01 18:54:12 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2012/05/01 18:54:12 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012/05/01 18:54:12 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2012/05/01 18:54:12 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2012/05/01 18:54:12 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012/05/01 18:54:12 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012/05/01 18:54:12 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012/05/01 18:54:12 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2012/05/01 18:54:12 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2012/05/01 18:54:12 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012/05/01 18:54:11 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2012/05/01 18:54:11 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012/05/01 18:54:11 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2012/05/01 18:54:11 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012/05/01 18:54:11 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2012/05/01 18:54:11 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012/05/01 18:54:01 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012/05/01 18:54:01 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2012/05/01 18:53:58 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2012/05/01 18:53:58 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012/05/01 18:53:58 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2012/05/01 18:53:58 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012/05/01 18:53:57 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2012/05/01 18:53:57 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012/05/01 18:53:57 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2012/05/01 18:53:57 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012/05/01 18:53:57 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2012/05/01 18:53:57 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2012/05/01 18:53:57 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012/05/01 18:53:57 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012/05/01 18:53:57 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012/05/01 18:53:57 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2012/05/01 18:53:57 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2012/05/01 18:53:57 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012/05/01 18:53:57 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2012/05/01 18:53:57 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012/05/01 18:53:56 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2012/05/01 18:53:56 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012/05/01 18:53:56 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2012/05/01 18:53:56 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012/05/01 18:53:56 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012/05/01 18:53:56 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2012/05/01 18:53:56 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2012/05/01 18:53:56 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012/05/01 18:53:55 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2012/05/01 18:53:55 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012/05/01 18:53:55 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2012/05/01 18:53:55 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012/05/01 18:53:55 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2012/05/01 18:53:55 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2012/05/01 18:53:55 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012/05/01 18:53:55 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012/05/01 18:53:55 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2012/05/01 18:53:55 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012/05/01 18:53:54 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2012/05/01 18:53:54 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012/05/01 18:53:54 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2012/05/01 18:53:54 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2012/05/01 18:53:54 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012/05/01 18:53:54 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012/05/01 18:53:54 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2012/05/01 18:53:54 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012/05/01 18:53:54 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2012/05/01 18:53:54 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012/05/01 18:53:53 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2012/05/01 18:53:53 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2012/05/01 18:53:53 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012/05/01 18:53:53 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012/05/01 18:53:53 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2012/05/01 18:53:53 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012/05/01 18:53:53 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2012/05/01 18:53:53 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012/05/01 18:53:53 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2012/05/01 18:53:53 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012/05/01 18:53:53 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2012/05/01 18:53:53 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012/05/01 18:53:53 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2012/05/01 18:53:53 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012/05/01 18:53:40 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2012/05/01 18:53:40 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012/05/01 18:53:40 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2012/05/01 18:53:40 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012/05/01 18:53:40 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2012/05/01 18:53:40 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012/05/01 18:53:40 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2012/05/01 18:53:40 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2012/05/01 18:53:40 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012/05/01 18:53:40 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012/05/01 18:53:39 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2012/05/01 18:53:39 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2012/05/01 18:53:39 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2012/05/01 18:53:39 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012/05/01 18:53:39 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2012/05/01 18:53:39 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012/05/01 18:53:39 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2012/05/01 18:53:39 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2012/05/01 18:53:39 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012/05/01 18:53:39 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012/05/01 18:53:39 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2012/05/01 18:53:39 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012/05/01 18:53:38 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2012/05/01 18:53:38 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2012/05/01 18:53:38 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012/05/01 18:53:38 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012/05/01 18:53:38 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2012/05/01 18:53:38 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2012/05/01 18:53:38 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012/05/01 18:53:38 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012/05/01 18:53:37 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2012/05/01 18:53:37 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012/05/01 18:53:37 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2012/05/01 18:53:37 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012/05/01 18:53:36 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2012/05/01 18:53:36 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2012/05/01 18:53:36 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2012/05/01 18:53:36 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012/05/01 18:53:36 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2012/05/01 18:53:36 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012/05/01 18:53:36 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2012/05/01 18:53:36 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012/05/01 18:53:35 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2012/05/01 18:53:35 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2012/05/01 18:53:35 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2012/05/01 18:53:35 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012/05/01 18:53:35 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012/05/01 18:53:35 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012/05/01 18:53:34 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2012/05/01 18:53:34 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012/05/01 18:51:17 | 002,074,160 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\JasonB\Desktop\TDSSKiller.exe
[2012/05/01 18:48:27 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012/05/01 08:51:46 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{42268C6D-545B-4080-B2FB-88D3A9EF863C}
[2012/04/30 20:51:26 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{BE1DF785-22D5-4E2A-B21D-FB2FCE532C81}
[2012/04/30 09:56:53 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Documents
[2012/04/30 09:56:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
[2012/04/30 08:51:05 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{A5C270ED-52C6-4ABE-91D9-27D7ABBC379D}
[2012/04/30 08:50:55 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{E24A9C87-4905-4EA2-8B86-F3EE4AC9F317}
[2012/04/28 07:37:18 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{52FBC984-540E-40DF-B944-E237C00FE40C}
[2012/04/28 01:26:04 | 008,766,112 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/04/27 19:36:57 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{C4C847CD-A37D-4512-A0A3-F4AF437CF0D7}
[2012/04/27 19:36:47 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{01409BA9-4585-4DAB-9623-6A185CBFC92F}
[2012/04/27 18:07:17 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012/04/27 16:40:16 | 000,000,000 | ---D | C] -- C:\AMD
[2012/04/27 09:21:54 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2012/04/27 08:58:47 | 000,000,000 | ---D | C] -- C:\ProgramData\ALM
[2012/04/27 08:05:23 | 000,000,000 | ---D | C] -- C:\Users\JasonB\dwhelper
[2012/04/27 07:43:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Adobe
[2012/04/27 07:37:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Media Player
[2012/04/27 07:37:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
[2012/04/27 07:36:23 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{8585B855-AE33-45F4-A191-036DCA41FE51}
[2012/04/26 19:36:02 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{E1FFD0B7-A73D-48DA-B981-AF364B12337C}
[2012/04/26 19:35:53 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{D766080D-4B43-43F3-A4B0-E2A6AAA817A1}
[2012/04/26 18:36:09 | 000,055,280 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\PxHlpa64.sys
[2012/04/26 18:36:09 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdralw2k.sys
[2012/04/26 18:36:09 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdr4_xp.sys
[2012/04/26 18:36:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared
[2012/04/26 18:36:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2012/04/26 18:36:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\My Company Name
[2012/04/26 18:28:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/04/26 18:28:52 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/04/26 18:28:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5
[2012/04/26 18:24:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2012/04/26 17:24:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
[2012/04/26 15:40:50 | 055,154,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/04/26 14:50:54 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\ATI
[2012/04/26 14:50:54 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\ATI
[2012/04/26 14:50:54 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2012/04/26 14:50:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2012/04/26 14:50:54 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2012/04/26 14:50:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2012/04/26 14:50:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2012/04/26 14:50:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2012/04/26 14:50:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2012/04/26 14:49:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2012/04/26 14:49:01 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2012/04/26 14:46:58 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2012/04/26 07:35:30 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{292AF1FA-A40C-4E4B-9702-CC789B287443}
[2012/04/26 06:59:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/04/26 06:59:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/04/25 19:35:09 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{3307F112-8D3E-49C6-946B-BEE65E20E714}
[2012/04/25 19:34:59 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{B3DE35E7-70E7-4379-BFF3-9B1CC2FFFEC2}
[2012/04/25 07:34:36 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{8C3836AF-5E29-4594-9A77-BADB639C23F9}
[2012/04/24 19:34:15 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{A9D9BC34-74F0-4CDF-93D1-40D22414B771}
[2012/04/24 19:33:24 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{467F644C-3FB1-4C0B-89DB-F0EE58DD948A}
[2012/04/24 07:33:55 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{BCFC49F1-AD86-4D74-AFD0-03E9FE9C2495}
[2012/04/23 19:33:34 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{535429F2-E116-488E-A073-749A7C1F2235}
[2012/04/23 19:33:24 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{20E933C8-AB50-4DDE-9B9E-126763A802CE}
[2012/04/23 16:31:16 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\TechSmith
[2012/04/23 11:10:59 | 000,000,000 | ---D | C] -- \\ATOMSERVER\Users\JasonB\My Documents\Outlook Files
[2012/04/23 10:31:48 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\ImgBurn
[2012/04/23 09:21:35 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\FLEXnet
[2012/04/23 09:21:33 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Plantronics
[2012/04/23 09:21:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp
[2012/04/23 09:21:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plantronics
[2012/04/23 09:21:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Plantronics
[2012/04/23 09:21:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Plantronics
[2012/04/23 09:21:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Macrovision
[2012/04/23 09:21:14 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2012/04/23 09:09:19 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\assembly
[2012/04/23 09:09:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snagit 10
[2012/04/23 09:08:59 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2012/04/23 09:08:58 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\TechSmith
[2012/04/23 08:12:24 | 000,083,968 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrNetSti.dll
[2012/04/23 08:12:23 | 001,560,576 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrWi209c.dll
[2012/04/23 08:12:22 | 000,176,128 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysWow64\BROSNMP.DLL
[2012/04/23 07:56:01 | 000,595,456 | ---- | C] (OldTimer Tools) -- C:\Users\JasonB\Desktop\OTL.exe
[2012/04/23 07:39:55 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\SQLyog
[2012/04/23 07:36:02 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2012/04/23 07:33:01 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{E082A6AE-439B-458B-8538-44A213D7AAA3}
[2012/04/23 07:32:50 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{002F9462-B996-4D73-BC76-1E643974F98F}
[2012/04/22 23:05:58 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{8B8B80CE-3614-4963-A4AA-58855E7C9BDC}
[2012/04/22 20:58:59 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Skype
[2012/04/22 20:58:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/04/22 20:58:55 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2012/04/22 20:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/04/22 20:58:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012/04/22 20:54:40 | 000,016,896 | ---- | C] (ASUS) -- C:\Windows\AsTaskSched.dll
[2012/04/22 20:53:15 | 000,414,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\difxapi.dll
[2012/04/22 20:53:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VIA
[2012/04/22 20:49:47 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Marvell
[2012/04/22 20:48:25 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2012/04/22 20:48:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2012/04/22 20:47:24 | 000,000,000 | ---D | C] -- C:\Intel
[2012/04/22 20:03:17 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/04/22 19:40:08 | 000,418,464 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/04/22 19:40:08 | 000,070,304 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/04/22 19:40:08 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2012/04/22 19:40:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/04/22 19:18:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2012/04/22 18:48:53 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2012/04/22 18:45:09 | 000,287,304 | ---- | C] (BitDefender S.R.L.) -- C:\Windows\SysNative\drivers\TrufosAlt.sys
[2012/04/22 18:07:57 | 000,000,000 | ---D | C] -- C:\Temp
[2012/04/22 18:03:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics
[2012/04/22 18:02:34 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Downloaded Installations
[2012/04/22 18:00:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
[2012/04/22 18:00:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Renesas Electronics
[2012/04/22 17:59:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Downloaded Installations
[2012/04/22 17:47:46 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2012/04/22 17:13:04 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\vlc
[2012/04/22 17:13:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2012/04/22 15:56:06 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Mindjet
[2012/04/22 15:54:29 | 000,006,656 | ---- | C] (Tracker Software) -- C:\Windows\SysNative\pxc35pm.dll
[2012/04/22 15:54:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange 3
[2012/04/22 15:53:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mindjet MindManager 2012
[2012/04/22 15:53:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Mindjet
[2012/04/22 15:38:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
[2012/04/22 15:38:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/04/22 15:37:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012/04/22 15:36:04 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{B466D993-193A-4641-BD61-AA0DBB63C1F1}
[2012/04/22 15:33:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2012/04/22 15:32:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2012/04/22 15:32:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2012/04/22 15:30:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2012/04/22 15:28:13 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
[2012/04/22 15:28:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
[2012/04/22 15:27:29 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Microsoft Help
[2012/04/22 15:27:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012/04/22 15:27:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2012/04/22 15:27:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012/04/22 15:27:19 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2012/04/22 15:20:02 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\{8162AB6F-3DB1-4988-9EE4-D2A7861BD300}
[2012/04/22 14:46:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealVNC
[2012/04/22 14:37:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Raxco
[2012/04/22 14:37:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Raxco
[2012/04/22 13:46:24 | 000,000,000 | ---D | C] -- C:\Users\JasonB\.websiteauditor
[2012/04/22 13:45:56 | 000,000,000 | ---D | C] -- C:\Users\JasonB\.seospyglass
[2012/04/22 13:45:38 | 000,000,000 | ---D | C] -- C:\Users\JasonB\.linkassistant
[2012/04/22 13:44:07 | 000,000,000 | ---D | C] -- C:\Users\JasonB\.ranktracker
[2012/04/22 13:36:45 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\VS Revo Group
[2012/04/22 13:36:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
[2012/04/22 13:36:42 | 000,031,800 | ---- | C] (VS Revo Group) -- C:\Windows\SysNative\drivers\revoflt.sys
[2012/04/22 13:22:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEO PowerSuite
[2012/04/22 12:52:30 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Malwarebytes
[2012/04/22 12:52:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/04/22 12:47:17 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\WinRAR
[2012/04/22 12:46:46 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/04/22 12:46:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/04/22 12:15:52 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\PandoraClient
[2012/04/22 12:15:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
[2012/04/22 11:03:49 | 000,000,000 | ---D | C] -- C:\Users\JasonB\Tracing
[2012/04/22 10:18:44 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[2012/04/22 10:15:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2012/04/22 10:14:47 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2012/04/22 10:11:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012/04/22 10:08:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012/04/22 10:06:29 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging
[2012/04/22 10:03:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2012
[2012/04/22 10:03:47 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Bitdefender
[2012/04/22 10:03:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Bitdefender
[2012/04/22 10:03:31 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Windows Live
[2012/04/22 10:03:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2012/04/22 10:01:19 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\QuickScan
[2012/04/22 10:01:05 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender
[2012/04/22 10:00:40 | 000,442,088 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\bdfsfltr.sys
[2012/04/22 10:00:40 | 000,329,800 | ---- | C] (BitDefender S.R.L.) -- C:\Windows\SysNative\drivers\trufos.sys
[2012/04/22 09:59:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bitdefender
[2012/04/21 23:31:02 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\SProxy
[2012/04/21 23:31:02 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Saver2
[2012/04/21 18:23:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2012/04/21 18:22:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
[2012/04/21 18:20:28 | 000,073,728 | ---- | C] (Brother Industories Ltd. P&S Company) -- C:\Windows\SysWow64\BRCrypt.dll
[2012/04/21 18:20:28 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\BrFaxRx
[2012/04/21 18:20:25 | 000,255,488 | ---- | C] (brother) -- C:\Windows\SysNative\NSSRH64.dll
[2012/04/21 18:20:25 | 000,179,712 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrfxDA5b.dll
[2012/04/21 18:20:25 | 000,118,784 | ---- | C] (Brother Industries,LTD.) -- C:\Windows\SysWow64\BrMfNt.dll
[2012/04/21 18:20:25 | 000,073,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2.dll
[2012/04/21 18:20:25 | 000,059,392 | ---- | C] (Brother Industries,Ltd.) -- C:\Windows\SysNative\BrWiaNCp.dll
[2012/04/21 18:20:25 | 000,048,640 | ---- | C] (Brother Industries,Ltd) -- C:\Windows\SysNative\Brnsplg.dll
[2012/04/21 18:20:25 | 000,005,120 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2L.dll
[2012/04/21 18:20:25 | 000,003,072 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysWow64\BrDctF2S.dll
[2012/04/21 18:20:24 | 001,560,576 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysNative\BrWia09b.dll
[2012/04/21 18:20:24 | 000,077,824 | ---- | C] (Brother Industries, Ltd.) -- C:\Windows\SysWow64\BRLMW03A.DLL
[2012/04/21 18:20:22 | 000,167,936 | ---- | C] (brother) -- C:\Windows\SysWow64\NSSearch.dll
[2012/04/21 18:20:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Brother
[2012/04/21 18:20:20 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2012/04/21 18:19:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother
[2012/04/21 18:19:48 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\InstallShield
[2012/04/21 18:17:33 | 000,000,000 | ---D | C] -- C:\Users\JasonB\.crossftp
[2012/04/21 18:17:31 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CrossFTP
[2012/04/21 18:15:56 | 000,000,000 | R--D | C] -- C:\Sandbox
[2012/04/21 18:15:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
[2012/04/21 18:14:49 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
[2012/04/21 18:06:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/04/21 18:06:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2012/04/21 18:06:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2012/04/21 17:58:32 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
[2012/04/21 17:58:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
[2012/04/21 17:58:31 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Notepad++
[2012/04/21 17:21:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/04/21 17:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\Onkyo
[2012/04/21 17:16:36 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012/04/21 17:13:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2012/04/21 17:09:34 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
[2012/04/21 17:09:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
[2012/04/21 17:08:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/04/21 17:08:38 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/04/21 17:08:37 | 002,311,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/04/21 17:08:37 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/04/21 17:08:37 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/04/21 17:08:37 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/04/21 17:08:37 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/04/21 17:08:37 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/04/21 17:08:37 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/04/21 17:08:36 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/04/21 17:08:36 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/04/21 17:05:59 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Adobe
[2012/04/21 16:50:19 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\FileZilla
[2012/04/21 16:50:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
[2012/04/21 16:40:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2012/04/21 16:37:40 | 000,000,000 | ---D | C] -- C:\ProgramData\RoboForm
[2012/04/21 16:37:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm
[2012/04/21 16:27:34 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2012/04/21 16:27:34 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2012/04/21 16:27:34 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012/04/21 16:27:34 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012/04/21 16:27:34 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2012/04/21 16:27:34 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012/04/21 16:27:34 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2012/04/21 16:27:34 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012/04/21 16:27:34 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2012/04/21 16:27:34 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2012/04/21 16:27:34 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2012/04/21 16:27:34 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2012/04/21 16:27:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012/04/21 16:27:27 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2012/04/21 16:20:00 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012/04/21 16:20:00 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012/04/21 16:18:03 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012/04/21 16:17:51 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/04/21 16:07:47 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/04/21 16:07:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/04/21 16:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012/04/21 16:07:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/04/21 16:06:45 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012/04/21 16:06:45 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012/04/21 16:06:45 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012/04/21 16:06:45 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012/04/21 16:06:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/04/21 15:46:01 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Logitech® Webcam Software
[2012/04/21 15:46:01 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2012/04/21 15:44:02 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\LogiShrd
[2012/04/21 15:42:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2012/04/21 15:42:28 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Leadertech
[2012/04/21 15:42:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Logitech
[2012/04/21 15:41:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LWS
[2012/04/21 15:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2012/04/21 15:41:52 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2012/04/21 15:39:44 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012/04/21 15:39:44 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2012/04/21 15:39:44 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/04/21 15:39:44 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/04/21 15:39:44 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2012/04/21 15:39:44 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2012/04/21 15:39:44 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2012/04/21 15:39:44 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012/04/21 15:39:44 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012/04/21 15:39:44 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2012/04/21 15:39:44 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2012/04/21 15:39:44 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012/04/21 15:39:44 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2012/04/21 15:39:44 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2012/04/21 15:39:44 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/04/21 15:39:44 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2012/04/21 15:39:44 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012/04/21 15:39:44 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2012/04/21 15:39:44 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012/04/21 15:39:44 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2012/04/21 15:39:44 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2012/04/21 15:39:44 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012/04/21 15:39:44 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012/04/21 15:39:44 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2012/04/21 15:39:44 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2012/04/21 15:39:44 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/04/21 15:39:44 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2012/04/21 15:39:44 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012/04/21 15:39:44 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012/04/21 15:39:44 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012/04/21 15:39:44 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2012/04/21 15:39:44 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012/04/21 15:39:44 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012/04/21 15:39:44 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2012/04/21 15:39:44 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012/04/21 15:39:44 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2012/04/21 15:39:44 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2012/04/21 15:39:44 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012/04/21 15:39:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012/04/21 15:39:44 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012/04/21 15:39:44 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2012/04/21 15:39:44 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012/04/21 15:39:44 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2012/04/21 15:39:44 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012/04/21 15:39:44 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012/04/21 15:39:44 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012/04/21 15:39:44 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012/04/21 15:39:44 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012/04/21 15:39:44 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2012/04/21 15:39:44 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012/04/21 15:39:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012/04/21 15:39:44 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2012/04/21 15:39:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012/04/21 15:39:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2012/04/21 15:39:44 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012/04/21 15:39:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012/04/21 15:39:44 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2012/04/21 15:39:44 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012/04/21 15:39:44 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2012/04/21 15:39:44 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012/04/21 15:39:44 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2012/04/21 15:39:44 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Mozilla
[2012/04/21 15:39:44 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Mozilla
[2012/04/21 15:39:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/04/21 15:35:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2012/04/21 15:35:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2012/04/21 15:34:38 | 005,559,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/04/21 15:34:38 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/04/21 15:34:37 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/04/21 15:32:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2012/04/21 15:32:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2012/04/21 15:30:46 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2012/04/21 15:30:46 | 000,048,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2012/04/21 15:30:32 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2012/04/21 15:30:30 | 003,715,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/04/21 15:30:30 | 001,838,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2012/04/21 15:30:30 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/04/21 15:30:30 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/04/21 15:30:22 | 003,215,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/04/21 15:30:21 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2012/04/21 15:30:21 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2012/04/21 15:30:16 | 014,633,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2012/04/21 15:30:16 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pmcsnap.dll
[2012/04/21 15:30:15 | 004,120,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2012/04/21 15:30:15 | 003,205,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmcndmgr.dll
[2012/04/21 15:30:15 | 003,008,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xpsservices.dll
[2012/04/21 15:30:15 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2012/04/21 15:30:15 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2012/04/21 15:30:15 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2012/04/21 15:30:15 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2012/04/21 15:30:15 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2012/04/21 15:30:14 | 002,086,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2012/04/21 15:30:14 | 001,219,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2012/04/21 15:30:14 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2012/04/21 15:30:14 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2012/04/21 15:30:14 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2012/04/21 15:30:14 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizui.dll
[2012/04/21 15:30:14 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ppcsnap.dll
[2012/04/21 15:30:14 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PushPrinterConnections.exe
[2012/04/21 15:30:13 | 003,207,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2012/04/21 15:30:13 | 001,866,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2012/04/21 15:30:13 | 001,753,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
[2012/04/21 15:30:13 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
[2012/04/21 15:30:13 | 001,340,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagperf.dll
[2012/04/21 15:30:13 | 001,334,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2012/04/21 15:30:13 | 001,326,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NaturalLanguage6.dll
[2012/04/21 15:30:13 | 001,197,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
[2012/04/21 15:30:12 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2012/04/21 15:30:12 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbon.dll
[2012/04/21 15:30:12 | 003,027,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVCORE.DLL
[2012/04/21 15:30:12 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2012/04/21 15:30:12 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
[2012/04/21 15:30:12 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2012/04/21 15:30:12 | 000,109,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2012/04/21 15:30:12 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2012/04/21 15:30:11 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spinstall.exe
[2012/04/21 15:30:11 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spreview.exe
[2012/04/21 15:30:11 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpdd.dll
[2012/04/21 15:30:09 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuthFWSnapin.dll
[2012/04/21 15:30:09 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthFWSnapin.dll
[2012/04/21 15:30:09 | 003,957,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
[2012/04/21 15:30:09 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2012/04/21 15:30:09 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2012/04/21 15:30:09 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2012/04/21 15:30:09 | 001,115,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
[2012/04/21 15:30:09 | 000,867,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2012/04/21 15:30:08 | 003,391,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2012/04/21 15:30:08 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2012/04/21 15:30:08 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2012/04/21 15:30:08 | 001,456,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/04/21 15:30:08 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2012/04/21 15:30:08 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2012/04/21 15:30:07 | 001,900,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll
[2012/04/21 15:30:07 | 001,244,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2fs.dll
[2012/04/21 15:30:07 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2012/04/21 15:30:07 | 001,116,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/04/21 15:30:07 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2012/04/21 15:30:07 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll
[2012/04/21 15:30:07 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
[2012/04/21 15:30:06 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2012/04/21 15:30:06 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PushPrinterConnections.exe
[2012/04/21 15:30:02 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2012/04/21 15:30:02 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certmgr.dll
[2012/04/21 15:30:02 | 001,281,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werconcpl.dll
[2012/04/21 15:30:02 | 001,049,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/04/21 15:30:02 | 001,008,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2012/04/21 15:30:02 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
[2012/04/21 15:30:02 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2012/04/21 15:30:02 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2012/04/21 15:30:02 | 000,376,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/04/21 15:30:02 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2012/04/21 15:30:01 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2012/04/21 15:30:01 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceApi.dll
[2012/04/21 15:30:01 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2012/04/21 15:30:01 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsmf.dll
[2012/04/21 15:30:01 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/04/21 15:29:59 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2012/04/21 15:29:55 | 002,652,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netshell.dll
[2012/04/21 15:29:55 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
[2012/04/21 15:29:55 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2012/04/21 15:29:55 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2012/04/21 15:29:55 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shlwapi.dll
[2012/04/21 15:29:55 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedynos.dll
[2012/04/21 15:29:52 | 002,543,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdshext.dll
[2012/04/21 15:29:52 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Query.dll
[2012/04/21 15:29:52 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2012/04/21 15:29:52 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2012/04/21 15:29:52 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
[2012/04/21 15:29:52 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2012/04/21 15:29:52 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmicmiplugin.dll
[2012/04/21 15:29:52 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
[2012/04/21 15:29:52 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
[2012/04/21 15:29:52 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appmgr.dll
[2012/04/21 15:29:52 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2012/04/21 15:29:52 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2012/04/21 15:29:52 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.exe
[2012/04/21 15:29:52 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2012/04/21 15:29:52 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2012/04/21 15:29:52 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ws2_32.dll
[2012/04/21 15:29:52 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsmf.dll
[2012/04/21 15:29:52 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3api.dll
[2012/04/21 15:29:52 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpmonui.dll
[2012/04/21 15:29:51 | 002,522,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2012/04/21 15:29:51 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2012/04/21 15:29:51 | 001,190,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2012/04/21 15:29:51 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Vault.dll
[2012/04/21 15:29:51 | 000,897,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroles.dll
[2012/04/21 15:29:51 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2012/04/21 15:29:51 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2012/04/21 15:29:51 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
[2012/04/21 15:29:51 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxs.dll
[2012/04/21 15:29:51 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2012/04/21 15:29:51 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
[2012/04/21 15:29:51 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmd.exe
[2012/04/21 15:29:51 | 000,281,600 | ---- | C] (Microsoft) -- C:\Windows\SysNative\DShowRdpFilter.dll
[2012/04/21 15:29:51 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QAGENT.DLL
[2012/04/21 15:29:51 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpclip.exe
[2012/04/21 15:29:50 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmcndmgr.dll
[2012/04/21 15:29:50 | 001,808,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pnidui.dll
[2012/04/21 15:29:50 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2012/04/21 15:29:50 | 001,158,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webservices.dll
[2012/04/21 15:29:50 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
[2012/04/21 15:29:50 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlsrv32.dll
[2012/04/21 15:29:50 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2fs.dll
[2012/04/21 15:29:50 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ipsmsnap.dll
[2012/04/21 15:29:50 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpprefcl.dll
[2012/04/21 15:29:50 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
[2012/04/21 15:29:50 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2012/04/21 15:29:50 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
[2012/04/21 15:29:50 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2012/04/21 15:29:50 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2012/04/21 15:29:50 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2012/04/21 15:29:50 | 000,252,928 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\DShowRdpFilter.dll
[2012/04/21 15:29:50 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscobj.dll
[2012/04/21 15:29:50 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsta.dll
[2012/04/21 15:29:50 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgprint.dll
[2012/04/21 15:29:50 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2012/04/21 15:29:50 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\upnp.dll
[2012/04/21 15:29:50 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prncache.dll
[2012/04/21 15:29:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp.dll
[2012/04/21 15:29:50 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3api.dll
[2012/04/21 15:29:50 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2012/04/21 15:29:49 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certmgr.dll
[2012/04/21 15:29:49 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanpref.dll
[2012/04/21 15:29:49 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMNetMgr.dll
[2012/04/21 15:29:49 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schtasks.exe
[2012/04/21 15:29:48 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/04/21 15:29:48 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2012/04/21 15:29:47 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
[2012/04/21 15:29:46 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2012/04/21 15:29:44 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xpsservices.dll
[2012/04/21 15:29:43 | 002,262,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncCenter.dll
[2012/04/21 15:29:43 | 002,072,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPEncEn.dll
[2012/04/21 15:29:43 | 001,082,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2012/04/21 15:29:43 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2012/04/21 15:29:43 | 000,762,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroles.dll
[2012/04/21 15:29:43 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2012/04/21 15:29:43 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpeffects.dll
[2012/04/21 15:29:43 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localsec.dll
[2012/04/21 15:29:43 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2.dll
[2012/04/21 15:29:43 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
[2012/04/21 15:29:43 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012/04/21 15:29:43 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2012/04/21 15:29:43 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2012/04/21 15:29:43 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\photowiz.dll
[2012/04/21 15:29:43 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netdiagfx.dll
[2012/04/21 15:29:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmd.exe
[2012/04/21 15:29:43 | 000,298,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
[2012/04/21 15:29:43 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
[2012/04/21 15:29:43 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2012/04/21 15:29:43 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedyn.dll
[2012/04/21 15:29:43 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2012/04/21 15:29:43 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2012/04/21 15:29:43 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcpipcfg.dll
[2012/04/21 15:29:43 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmicsvc.exe
[2012/04/21 15:29:43 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spp.dll
[2012/04/21 15:29:43 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSHVHOST.DLL
[2012/04/21 15:29:43 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedynos.dll
[2012/04/21 15:29:43 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tscfgwmi.dll
[2012/04/21 15:29:43 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2012/04/21 15:29:43 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fde.dll
[2012/04/21 15:29:43 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
[2012/04/21 15:29:43 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netid.dll
[2012/04/21 15:29:43 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/04/21 15:29:43 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2012/04/21 15:29:43 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp.dll
[2012/04/21 15:29:43 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2012/04/21 15:29:42 | 002,746,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2012/04/21 15:29:42 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
[2012/04/21 15:29:42 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biocpl.dll
[2012/04/21 15:29:42 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscui.dll
[2012/04/21 15:29:42 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2012/04/21 15:29:42 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appmgr.dll
[2012/04/21 15:29:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Siber Systems
[2012/04/21 15:29:41 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scansetting.dll
[2012/04/21 15:29:40 | 000,571,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspbda.dll
[2012/04/21 15:29:39 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2012/04/21 15:29:39 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2012/04/21 15:29:39 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012/04/21 15:29:35 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2012/04/21 15:29:35 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wusa.exe
[2012/04/21 15:29:35 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
[2012/04/21 15:29:35 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitagent.exe
[2012/04/21 15:29:33 | 000,577,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AdmTmpl.dll
[2012/04/21 15:29:32 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2012/04/21 15:29:32 | 000,144,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
[2012/04/21 15:29:31 | 003,211,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012/04/21 15:29:31 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll
[2012/04/21 15:29:31 | 002,494,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netshell.dll
[2012/04/21 15:29:31 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DxpTaskSync.dll
[2012/04/21 15:29:31 | 000,934,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallControlPanel.dll
[2012/04/21 15:29:31 | 000,854,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
[2012/04/21 15:29:31 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2012/04/21 15:29:31 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2012/04/21 15:29:31 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlsrv32.dll
[2012/04/21 15:29:31 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\calc.exe
[2012/04/21 15:29:31 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerfCenterCPL.dll
[2012/04/21 15:29:31 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll
[2012/04/21 15:29:31 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2012/04/21 15:29:31 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXP.dll
[2012/04/21 15:29:31 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2012/04/21 15:29:31 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2012/04/21 15:29:31 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wisptis.exe
[2012/04/21 15:29:31 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
[2012/04/21 15:29:31 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
[2012/04/21 15:29:31 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
[2012/04/21 15:29:31 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapphost.dll
[2012/04/21 15:29:31 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\upnp.dll
[2012/04/21 15:29:31 | 000,263,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2012/04/21 15:29:31 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scecli.dll
[2012/04/21 15:29:31 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2012/04/21 15:29:31 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprapi.dll
[2012/04/21 15:29:31 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PkgMgr.exe
[2012/04/21 15:29:31 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2012/04/21 15:29:31 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetup.exe
[2012/04/21 15:29:31 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetapi.dll
[2012/04/21 15:29:31 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2012/04/21 15:29:31 | 000,128,000 | ---- | C] (Microsoft) -- C:\Windows\SysNative\Robocopy.exe
[2012/04/21 15:29:31 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
[2012/04/21 15:29:31 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys
[2012/04/21 15:29:30 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2012/04/21 15:29:30 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSMPEG2ENC.DLL
[2012/04/21 15:29:30 | 000,932,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
[2012/04/21 15:29:30 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXPTaskRingtone.dll
[2012/04/21 15:29:30 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrptadm.dll
[2012/04/21 15:29:30 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2012/04/21 15:29:30 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onex.dll
[2012/04/21 15:29:30 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
[2012/04/21 15:29:30 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
[2012/04/21 15:29:30 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prncache.dll
[2012/04/21 15:29:30 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2012/04/21 15:29:26 | 002,621,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/04/21 15:29:26 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SyncCenter.dll
[2012/04/21 15:29:26 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pnidui.dll
[2012/04/21 15:29:26 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcenter.dll
[2012/04/21 15:29:26 | 001,363,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2012/04/21 15:29:26 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdengin2.dll
[2012/04/21 15:29:26 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2012/04/21 15:29:26 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
[2012/04/21 15:29:26 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2012/04/21 15:29:26 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TabletPC.cpl
[2012/04/21 15:29:26 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2012/04/21 15:29:26 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlangpui.dll
[2012/04/21 15:29:26 | 000,464,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrptadm.dll
[2012/04/21 15:29:26 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiadefui.dll
[2012/04/21 15:29:26 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2012/04/21 15:29:26 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlangpui.dll
[2012/04/21 15:29:26 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
[2012/04/21 15:29:26 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpeffects.dll
[2012/04/21 15:29:26 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srchadmin.dll
[2012/04/21 15:29:26 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVol.exe
[2012/04/21 15:29:26 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/04/21 15:29:26 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scansetting.dll
[2012/04/21 15:29:26 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquoui.dll
[2012/04/21 15:29:26 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netdiagfx.dll
[2012/04/21 15:29:26 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSHVHOST.DLL
[2012/04/21 15:29:26 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/04/21 15:29:26 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\net1.exe
[2012/04/21 15:29:26 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2012/04/21 15:29:26 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/04/21 15:29:26 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fde.dll
[2012/04/21 15:29:26 | 000,112,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2012/04/21 15:29:26 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2012/04/21 15:29:26 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QUTIL.DLL
[2012/04/21 15:29:26 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\regapi.dll
[2012/04/21 15:29:26 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupcl.exe
[2012/04/21 15:29:26 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2012/04/21 15:29:26 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samcli.dll
[2012/04/21 15:29:26 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2012/04/21 15:29:25 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2012/04/21 15:29:25 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
[2012/04/21 15:29:25 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayCpl.dll
[2012/04/21 15:29:25 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
[2012/04/21 15:29:25 | 000,633,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched20.dll
[2012/04/21 15:29:25 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DXPTaskRingtone.dll
[2012/04/21 15:29:25 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2012/04/21 15:29:25 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercpl.dll
[2012/04/21 15:29:25 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2.dll
[2012/04/21 15:29:25 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxclu.dll
[2012/04/21 15:29:25 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgcpl.dll
[2012/04/21 15:29:25 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2012/04/21 15:29:25 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msconfig.exe
[2012/04/21 15:29:25 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netiohlp.dll
[2012/04/21 15:29:25 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoncli.dll
[2012/04/21 15:29:25 | 000,166,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
[2012/04/21 15:29:25 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscobj.dll
[2012/04/21 15:29:25 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscmmc.dll
[2012/04/21 15:29:25 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2012/04/21 15:29:25 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RpcRtRemote.dll
[2012/04/21 15:29:25 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2012/04/21 15:29:25 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsmproxy.dll
[2012/04/21 15:29:25 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mimefilt.dll
[2012/04/21 15:29:25 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/04/21 15:29:24 | 002,250,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsCpl.dll
[2012/04/21 15:29:24 | 002,193,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themecpl.dll
[2012/04/21 15:29:24 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPEncEn.dll
[2012/04/21 15:29:24 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdclt.exe
[2012/04/21 15:29:24 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2012/04/21 15:29:24 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmiEngine.dll
[2012/04/21 15:29:24 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2012/04/21 15:29:24 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontext.dll
[2012/04/21 15:29:24 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoconv.exe
[2012/04/21 15:29:24 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe
[2012/04/21 15:29:24 | 000,763,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autofmt.exe
[2012/04/21 15:29:24 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoconv.exe
[2012/04/21 15:29:24 | 000,668,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe
[2012/04/21 15:29:24 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuxiliaryDisplayCpl.dll
[2012/04/21 15:29:24 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autofmt.exe
[2012/04/21 15:29:24 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2012/04/21 15:29:24 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpd_ci.dll
[2012/04/21 15:29:24 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshipsec.dll
[2012/04/21 15:29:24 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercpl.dll
[2012/04/21 15:29:24 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanui.dll
[2012/04/21 15:29:24 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ipsmsnap.dll
[2012/04/21 15:29:24 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eudcedit.exe
[2012/04/21 15:29:24 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sharemediacpl.dll
[2012/04/21 15:29:24 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
[2012/04/21 15:29:24 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
[2012/04/21 15:29:24 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
[2012/04/21 15:29:24 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srchadmin.dll
[2012/04/21 15:29:24 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppcomapi.dll
[2012/04/21 15:29:24 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll
[2012/04/21 15:29:24 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapphost.dll
[2012/04/21 15:29:24 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprddm.dll
[2012/04/21 15:29:24 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedyn.dll
[2012/04/21 15:29:24 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onex.dll
[2012/04/21 15:29:24 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netjoin.dll
[2012/04/21 15:29:24 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpipcfg.dll
[2012/04/21 15:29:24 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe
[2012/04/21 15:29:24 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QAGENT.DLL
[2012/04/21 15:29:24 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys
[2012/04/21 15:29:24 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
[2012/04/21 15:29:24 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msutb.dll
[2012/04/21 15:29:24 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiohlp.dll
[2012/04/21 15:29:24 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2012/04/21 15:29:24 | 000,155,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscorier.dll
[2012/04/21 15:29:24 | 000,154,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscorier.dll
[2012/04/21 15:29:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2012/04/21 15:29:24 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shsetup.dll
[2012/04/21 15:29:24 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2012/04/21 15:29:24 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netid.dll
[2012/04/21 15:29:24 | 000,116,224 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2012/04/21 15:29:24 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nci.dll
[2012/04/21 15:29:24 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\regapi.dll
[2012/04/21 15:29:24 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
[2012/04/21 15:29:24 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mimefilt.dll
[2012/04/21 15:29:24 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnikeapi.dll
[2012/04/21 15:29:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\proquota.exe
[2012/04/21 15:29:23 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2012/04/21 15:29:23 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2012/04/21 15:29:23 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2012/04/21 15:29:23 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2012/04/21 15:29:21 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2012/04/21 15:29:21 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mblctr.exe
[2012/04/21 15:29:21 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2012/04/21 15:29:21 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpsrcwp.dll
[2012/04/21 15:29:20 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll
[2012/04/21 15:29:18 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanpref.dll
[2012/04/21 15:29:18 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DiagCpl.dll
[2012/04/21 15:29:18 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMNetMgr.dll
[2012/04/21 15:29:18 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Vault.dll
[2012/04/21 15:29:18 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2012/04/21 15:29:18 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nci.dll
[2012/04/21 15:29:17 | 003,745,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\accessibilitycpl.dll
[2012/04/21 15:29:17 | 002,217,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bootres.dll
[2012/04/21 15:29:17 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsCpl.dll
[2012/04/21 15:29:17 | 002,157,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themecpl.dll
[2012/04/21 15:29:17 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DxpTaskSync.dll
[2012/04/21 15:29:17 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2012/04/21 15:29:17 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FirewallControlPanel.dll
[2012/04/21 15:29:17 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
[2012/04/21 15:29:17 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
[2012/04/21 15:29:17 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2012/04/21 15:29:17 | 000,433,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MCEWMDRMNDBootstrap.dll
[2012/04/21 15:29:17 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiadefui.dll
[2012/04/21 15:29:17 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnfldr.dll
[2012/04/21 15:29:17 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll
[2012/04/21 15:29:17 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
[2012/04/21 15:29:17 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\termmgr.dll
[2012/04/21 15:29:17 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slui.exe
[2012/04/21 15:29:17 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2012/04/21 15:29:17 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2012/04/21 15:29:17 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxclu.dll
[2012/04/21 15:29:17 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pdh.dll
[2012/04/21 15:29:17 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eudcedit.exe
[2012/04/21 15:29:17 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxdiagn.dll
[2012/04/21 15:29:17 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAC3ENC.DLL
[2012/04/21 15:29:17 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskmgr.exe
[2012/04/21 15:29:17 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksproxy.ax
[2012/04/21 15:29:17 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\defaultlocationcpl.dll
[2012/04/21 15:29:17 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskmgr.exe
[2012/04/21 15:29:17 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2012/04/21 15:29:17 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2012/04/21 15:29:17 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasppp.dll
[2012/04/21 15:29:17 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2012/04/21 15:29:17 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll
[2012/04/21 15:29:17 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasppp.dll
[2012/04/21 15:29:17 | 000,155,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2012/04/21 15:29:17 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2012/04/21 15:29:17 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2012/04/21 15:29:17 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logoncli.dll
[2012/04/21 15:29:17 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDShServiceObj.dll
[2012/04/21 15:29:17 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
[2012/04/21 15:29:17 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscmmc.dll
[2012/04/21 15:29:17 | 000,098,816 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\Robocopy.exe
[2012/04/21 15:29:17 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSTPager.ax
[2012/04/21 15:29:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hbaapi.dll
[2012/04/21 15:29:17 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3cfg.dll
[2012/04/21 15:29:17 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2012/04/21 15:29:17 | 000,052,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\winhv.sys
[2012/04/21 15:29:17 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\proquota.exe
[2012/04/21 15:29:17 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userinit.exe
[2012/04/21 15:29:17 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\userinit.exe
[2012/04/21 15:29:16 | 003,727,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\accessibilitycpl.dll
[2012/04/21 15:29:16 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkmap.dll
[2012/04/21 15:29:16 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkmap.dll
[2012/04/21 15:29:16 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcenter.dll
[2012/04/21 15:29:16 | 001,065,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2012/04/21 15:29:16 | 001,003,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2012/04/21 15:29:16 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OobeFldr.dll
[2012/04/21 15:29:16 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontext.dll
[2012/04/21 15:29:16 | 000,780,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
[2012/04/21 15:29:16 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sud.dll
[2012/04/21 15:29:16 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdcpl.dll
[2012/04/21 15:29:16 | 000,740,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
[2012/04/21 15:29:16 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl
[2012/04/21 15:29:16 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsuiext.dll
[2012/04/21 15:29:16 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2012/04/21 15:29:16 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PerfCenterCPL.dll
[2012/04/21 15:29:16 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2012/04/21 15:29:16 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenterCPL.dll
[2012/04/21 15:29:16 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\main.cpl
[2012/04/21 15:29:16 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2012/04/21 15:29:16 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCenter.dll
[2012/04/21 15:29:16 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2012/04/21 15:29:16 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroleui.dll
[2012/04/21 15:29:16 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2012/04/21 15:29:16 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shwebsvc.dll
[2012/04/21 15:29:16 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\localsec.dll
[2012/04/21 15:29:16 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\systemcpl.dll
[2012/04/21 15:29:16 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2012/04/21 15:29:16 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2012/04/21 15:29:16 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanui.dll
[2012/04/21 15:29:16 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl
[2012/04/21 15:29:16 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizeng.dll
[2012/04/21 15:29:16 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdedit.exe
[2012/04/21 15:29:16 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MediaMetadataHandler.dll
[2012/04/21 15:29:16 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
[2012/04/21 15:29:16 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVol.exe
[2012/04/21 15:29:16 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroleui.dll
[2012/04/21 15:29:16 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hgcpl.dll
[2012/04/21 15:29:16 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efscore.dll
[2012/04/21 15:29:16 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprddm.dll
[2012/04/21 15:29:16 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskbarcpl.dll
[2012/04/21 15:29:16 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recdisc.exe
[2012/04/21 15:29:16 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAC3ENC.DLL
[2012/04/21 15:29:16 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OnLineIDCpl.dll
[2012/04/21 15:29:16 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2012/04/21 15:29:16 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysclass.dll
[2012/04/21 15:29:16 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syncui.dll
[2012/04/21 15:29:16 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VBICodec.ax
[2012/04/21 15:29:16 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll
[2012/04/21 15:29:16 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adsldp.dll
[2012/04/21 15:29:16 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scecli.dll
[2012/04/21 15:29:16 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twext.dll
[2012/04/21 15:29:16 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netjoin.dll
[2012/04/21 15:29:16 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoplay.dll
[2012/04/21 15:29:16 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxlib.dll
[2012/04/21 15:29:16 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recovery.dll
[2012/04/21 15:29:16 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prntvpt.dll
[2012/04/21 15:29:16 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cca.dll
[2012/04/21 15:29:16 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\isoburn.exe
[2012/04/21 15:29:16 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscories.dll
[2012/04/21 15:29:16 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\w32tm.exe
[2012/04/21 15:29:16 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptui.dll
[2012/04/21 15:29:16 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2012/04/21 15:29:16 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzutil.exe
[2012/04/21 15:29:16 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll
[2012/04/21 15:29:16 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sisbkup.dll
[2012/04/21 15:29:15 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sud.dll
[2012/04/21 15:29:15 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenter.dll
[2012/04/21 15:29:15 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
[2012/04/21 15:29:15 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2012/04/21 15:29:15 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
[2012/04/21 15:29:15 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlcese30.dll
[2012/04/21 15:29:15 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizeng.dll
[2012/04/21 15:29:15 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shwebsvc.dll
[2012/04/21 15:29:15 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\termmgr.dll
[2012/04/21 15:29:15 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnfldr.dll
[2012/04/21 15:29:15 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
[2012/04/21 15:29:15 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl
[2012/04/21 15:29:15 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wusa.exe
[2012/04/21 15:29:15 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2012/04/21 15:29:15 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCEWMDRMNDBootstrap.dll
[2012/04/21 15:29:15 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2012/04/21 15:29:15 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2012/04/21 15:29:15 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\photowiz.dll
[2012/04/21 15:29:15 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iprtrmgr.dll
[2012/04/21 15:29:15 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sethc.exe
[2012/04/21 15:29:15 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iprtrmgr.dll
[2012/04/21 15:29:15 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MediaMetadataHandler.dll
[2012/04/21 15:29:15 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2012/04/21 15:29:15 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\defaultlocationcpl.dll
[2012/04/21 15:29:15 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OnLineIDCpl.dll
[2012/04/21 15:29:15 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efscore.dll
[2012/04/21 15:29:15 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2012/04/21 15:29:15 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
[2012/04/21 15:29:15 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifsutil.dll
[2012/04/21 15:29:15 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayServices.dll
[2012/04/21 15:29:15 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntlanman.dll
[2012/04/21 15:29:15 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3cfg.dll
[2012/04/21 15:29:15 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpd3d.dll
[2012/04/21 15:29:15 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksxbar.ax
[2012/04/21 15:29:15 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2012/04/21 15:29:15 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/04/21 15:29:15 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ftp.exe
[2012/04/21 15:29:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sisbkup.dll
[2012/04/21 15:29:13 | 000,781,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2012/04/21 15:29:13 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenterCPL.dll
[2012/04/21 15:29:13 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2012/04/21 15:29:13 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ssText3d.scr
[2012/04/21 15:29:13 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdm.tsp
[2012/04/21 15:29:13 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iTVData.dll
[2012/04/21 15:29:13 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syncui.dll
[2012/04/21 15:29:13 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoplay.dll
[2012/04/21 15:29:13 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srvcli.dll
[2012/04/21 15:29:13 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserAccountControlSettings.dll
[2012/04/21 15:29:13 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slwga.dll
[2012/04/21 15:29:12 | 001,911,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2012/04/21 15:29:12 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
[2012/04/21 15:29:12 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/04/21 15:29:12 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Bubbles.scr
[2012/04/21 15:29:12 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OobeFldr.dll
[2012/04/21 15:29:12 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2012/04/21 15:29:12 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/04/21 15:29:12 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2012/04/21 15:29:12 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2012/04/21 15:29:12 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsuiext.dll
[2012/04/21 15:29:12 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2012/04/21 15:29:12 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmdev.dll
[2012/04/21 15:29:12 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfrgui.exe
[2012/04/21 15:29:12 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll
[2012/04/21 15:29:12 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2012/04/21 15:29:12 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfrgui.exe
[2012/04/21 15:29:12 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceCenter.dll
[2012/04/21 15:29:12 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll
[2012/04/21 15:29:12 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AdmTmpl.dll
[2012/04/21 15:29:12 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2012/04/21 15:29:12 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll
[2012/04/21 15:29:12 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimgapi.dll
[2012/04/21 15:29:12 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpdxm.dll
[2012/04/21 15:29:12 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshipsec.dll
[2012/04/21 15:29:12 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.dll
[2012/04/21 15:29:12 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3ui.dll
[2012/04/21 15:29:12 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.dll
[2012/04/21 15:29:12 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsqmcons.exe
[2012/04/21 15:29:12 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdm.tsp
[2012/04/21 15:29:12 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srrstr.dll
[2012/04/21 15:29:12 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sethc.exe
[2012/04/21 15:29:12 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2012/04/21 15:29:12 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpx.dll
[2012/04/21 15:29:12 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wavemsp.dll
[2012/04/21 15:29:12 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2012/04/21 15:29:12 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairingFolder.dll
[2012/04/21 15:29:12 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wavemsp.dll
[2012/04/21 15:29:12 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll
[2012/04/21 15:29:12 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PkgMgr.exe
[2012/04/21 15:29:12 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstask.dll
[2012/04/21 15:29:12 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2012/04/21 15:29:12 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\activeds.dll
[2012/04/21 15:29:12 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetup.exe
[2012/04/21 15:29:12 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquoui.dll
[2012/04/21 15:29:12 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
[2012/04/21 15:29:12 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qcap.dll
[2012/04/21 15:29:12 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/04/21 15:29:12 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpsrcwp.dll
[2012/04/21 15:29:12 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/04/21 15:29:12 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationSettings.exe
[2012/04/21 15:29:12 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll
[2012/04/21 15:29:12 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdboot.exe
[2012/04/21 15:29:12 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
[2012/04/21 15:29:12 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2012/04/21 15:29:12 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\remotepg.dll
[2012/04/21 15:29:12 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2012/04/21 15:29:12 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\net1.exe
[2012/04/21 15:29:12 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twext.dll
[2012/04/21 15:29:12 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPHLPR.DLL
[2012/04/21 15:29:12 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupugc.exe
[2012/04/21 15:29:12 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nslookup.exe
[2012/04/21 15:29:12 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPHLPR.DLL

=====OTL CONTINUED=====

[2012/04/21 15:29:12 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kstvtune.ax
[2012/04/21 15:29:12 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppnp.dll
[2012/04/21 15:29:12 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\migisol.dll
[2012/04/21 15:29:12 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabinet.dll
[2012/04/21 15:29:12 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2012/04/21 15:29:12 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
[2012/04/21 15:29:12 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
[2012/04/21 15:29:12 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\isoburn.exe
[2012/04/21 15:29:12 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdmat.dll
[2012/04/21 15:29:12 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wkscli.dll
[2012/04/21 15:29:12 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSTPager.ax
[2012/04/21 15:29:12 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsnmp32.dll
[2012/04/21 15:29:12 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acppage.dll
[2012/04/21 15:29:12 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\Windows\twain_32.dll
[2012/04/21 15:29:12 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ftp.exe
[2012/04/21 15:29:12 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzutil.exe
[2012/04/21 15:29:12 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll
[2012/04/21 15:29:12 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFaultSecure.exe
[2012/04/21 15:29:12 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/04/21 15:29:11 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2012/04/21 15:29:11 | 000,573,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/04/21 15:29:11 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2012/04/21 15:29:11 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\main.cpl
[2012/04/21 15:29:11 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskraid.exe
[2012/04/21 15:29:11 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsAnytimeUpgradeResults.exe
[2012/04/21 15:29:11 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ssText3d.scr
[2012/04/21 15:29:11 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskraid.exe
[2012/04/21 15:29:11 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mystify.scr
[2012/04/21 15:29:11 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Ribbons.scr
[2012/04/21 15:29:11 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2012/04/21 15:29:11 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2012/04/21 15:29:11 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairingFolder.dll
[2012/04/21 15:29:11 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qasf.dll
[2012/04/21 15:29:11 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ifsutil.dll
[2012/04/21 15:29:11 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfmon.exe
[2012/04/21 15:29:11 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpshell.dll
[2012/04/21 15:29:11 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll
[2012/04/21 15:29:11 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\uxlib.dll
[2012/04/21 15:29:11 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nslookup.exe
[2012/04/21 15:29:11 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2012/04/21 15:29:11 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsium.dll
[2012/04/21 15:29:11 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AzSqlExt.dll
[2012/04/21 15:29:11 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll
[2012/04/21 15:29:11 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
[2012/04/21 15:29:10 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netutils.dll
[2012/04/21 15:29:09 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbghelp.dll
[2012/04/21 15:29:09 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
[2012/04/21 15:29:09 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimserv.exe
[2012/04/21 15:29:09 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2012/04/21 15:29:09 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qasf.dll
[2012/04/21 15:29:09 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionQueue.dll
[2012/04/21 15:29:09 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
[2012/04/21 15:29:09 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfmon.exe
[2012/04/21 15:29:09 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\remotepg.dll
[2012/04/21 15:29:09 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tlscsp.dll
[2012/04/21 15:29:09 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2012/04/21 15:29:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\umb.dll
[2012/04/21 15:29:09 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\runonce.exe
[2012/04/21 15:29:09 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPCRYPT.DLL
[2012/04/21 15:29:09 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\acppage.dll
[2012/04/21 15:29:06 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2012/04/21 15:29:04 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
[2012/04/21 15:29:04 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onexui.dll
[2012/04/21 15:29:04 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSDECD.DLL
[2012/04/21 15:29:04 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2012/04/21 15:29:04 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nltest.exe
[2012/04/21 15:29:04 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpdxm.dll
[2012/04/21 15:29:04 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstask.dll
[2012/04/21 15:29:04 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsadmin.exe
[2012/04/21 15:29:04 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iTVData.dll
[2012/04/21 15:29:04 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdwcn.dll
[2012/04/21 15:29:04 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxdiagn.dll
[2012/04/21 15:29:04 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2012/04/21 15:29:04 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdwcn.dll
[2012/04/21 15:29:04 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsbas.dll
[2012/04/21 15:29:04 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetapi.dll
[2012/04/21 15:29:04 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdsbas.dll
[2012/04/21 15:29:04 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MdSched.exe
[2012/04/21 15:29:04 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys
[2012/04/21 15:29:04 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Kswdmcap.ax
[2012/04/21 15:29:04 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiavideo.dll
[2012/04/21 15:29:04 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logagent.exe
[2012/04/21 15:29:04 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QUTIL.DLL
[2012/04/21 15:29:04 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserAccountControlSettings.dll
[2012/04/21 15:29:04 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\runonce.exe
[2012/04/21 15:29:04 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PrintIsolationProxy.dll
[2012/04/21 15:29:04 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPCRYPT.DLL
[2012/04/21 15:29:04 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vpnikeapi.dll
[2012/04/21 15:29:04 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syssetup.dll
[2012/04/21 15:28:59 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmnet.dll
[2012/04/21 15:28:59 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmdev.dll
[2012/04/21 15:28:59 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
[2012/04/21 15:28:59 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2012/04/21 15:28:59 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shacct.dll
[2012/04/21 15:28:59 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSVRMGMT.DLL
[2012/04/21 15:28:59 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shacct.dll
[2012/04/21 15:28:59 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2012/04/21 15:28:59 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tabcal.exe
[2012/04/21 15:28:59 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
[2012/04/21 15:28:59 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
[2012/04/21 15:28:58 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2012/04/21 15:28:58 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10.IME
[2012/04/21 15:28:58 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10.IME
[2012/04/21 15:28:58 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
[2012/04/21 15:28:58 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
[2012/04/21 15:28:58 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Bubbles.scr
[2012/04/21 15:28:58 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
[2012/04/21 15:28:58 | 000,681,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/04/21 15:28:58 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSDECD.DLL
[2012/04/21 15:28:58 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmnet.dll
[2012/04/21 15:28:58 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceStatus.dll
[2012/04/21 15:28:58 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSTIFF.dll
[2012/04/21 15:28:58 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDSp.dll
[2012/04/21 15:28:58 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceStatus.dll
[2012/04/21 15:28:58 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2012/04/21 15:28:58 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WPDSp.dll
[2012/04/21 15:28:58 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2012/04/21 15:28:58 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2012/04/21 15:28:58 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3ui.dll
[2012/04/21 15:28:58 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlcese30.dll
[2012/04/21 15:28:58 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2012/04/21 15:28:58 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2012/04/21 15:28:58 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdv.dll
[2012/04/21 15:28:58 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2012/04/21 15:28:58 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2012/04/21 15:28:58 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdv.dll
[2012/04/21 15:28:58 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdh.dll
[2012/04/21 15:28:58 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/04/21 15:28:58 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceSyncProvider.dll
[2012/04/21 15:28:58 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mystify.scr
[2012/04/21 15:28:58 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Ribbons.scr
[2012/04/21 15:28:58 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\itircl.dll
[2012/04/21 15:28:58 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsadmin.exe
[2012/04/21 15:28:58 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceSyncProvider.dll
[2012/04/21 15:28:58 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qcap.dll
[2012/04/21 15:28:58 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
[2012/04/21 15:28:58 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskpart.exe
[2012/04/21 15:28:58 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprapi.dll
[2012/04/21 15:28:58 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\itircl.dll
[2012/04/21 15:28:58 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VBICodec.ax
[2012/04/21 15:28:58 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsicli.exe
[2012/04/21 15:28:58 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsicli.exe
[2012/04/21 15:28:58 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EhStorAPI.dll
[2012/04/21 15:28:58 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpps.dll
[2012/04/21 15:28:58 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mydocs.dll
[2012/04/21 15:28:58 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl
[2012/04/21 15:28:58 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CscMig.dll
[2012/04/21 15:28:58 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mydocs.dll
[2012/04/21 15:28:58 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskpart.exe
[2012/04/21 15:28:58 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\desk.cpl
[2012/04/21 15:28:58 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\desk.cpl
[2012/04/21 15:28:58 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2012/04/21 15:28:58 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2012/04/21 15:28:58 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fphc.dll
[2012/04/21 15:28:58 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupcln.dll
[2012/04/21 15:28:58 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3msm.dll
[2012/04/21 15:28:58 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiavideo.dll
[2012/04/21 15:28:58 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Kswdmcap.ax
[2012/04/21 15:28:58 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpshell.dll
[2012/04/21 15:28:58 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
[2012/04/21 15:28:58 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3msm.dll
[2012/04/21 15:28:58 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mobsync.exe
[2012/04/21 15:28:58 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppinst.dll
[2012/04/21 15:28:58 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSVRMGMT.DLL
[2012/04/21 15:28:58 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012/04/21 15:28:58 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fphc.dll
[2012/04/21 15:28:58 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
[2012/04/21 15:28:58 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmstp.exe
[2012/04/21 15:28:58 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2012/04/21 15:28:58 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\amstream.dll
[2012/04/21 15:28:58 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2012/04/21 15:28:58 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2012/04/21 15:28:58 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2012/04/21 15:28:58 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmstp.exe
[2012/04/21 15:28:58 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kstvtune.ax
[2012/04/21 15:28:58 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2012/04/21 15:28:58 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QCLIPROV.DLL
[2012/04/21 15:28:58 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spbcd.dll
[2012/04/21 15:28:58 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\olethk32.dll
[2012/04/21 15:28:58 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapistub.dll
[2012/04/21 15:28:58 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdProxy.dll
[2012/04/21 15:28:58 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/04/21 15:28:58 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QCLIPROV.DLL
[2012/04/21 15:28:58 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertPolEng.dll
[2012/04/21 15:28:58 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
[2012/04/21 15:28:58 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
[2012/04/21 15:28:58 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MuiUnattend.exe
[2012/04/21 15:28:58 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\amstream.dll
[2012/04/21 15:28:58 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tlscsp.dll
[2012/04/21 15:28:58 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastapi.dll
[2012/04/21 15:28:58 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cca.dll
[2012/04/21 15:28:58 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertPolEng.dll
[2012/04/21 15:28:58 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\takeown.exe
[2012/04/21 15:28:58 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PnPUnattend.exe
[2012/04/21 15:28:58 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\findstr.exe
[2012/04/21 15:28:58 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WavDest.dll
[2012/04/21 15:28:58 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spbcd.dll
[2012/04/21 15:28:58 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\djoin.exe
[2012/04/21 15:28:58 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptui.dll
[2012/04/21 15:28:58 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdmat.dll
[2012/04/21 15:28:58 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/04/21 15:28:58 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\g711codc.ax
[2012/04/21 15:28:58 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vfwwdm32.dll
[2012/04/21 15:28:58 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpd3d.dll
[2012/04/21 15:28:58 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsnmp32.dll
[2012/04/21 15:28:58 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MultiDigiMon.exe
[2012/04/21 15:28:58 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/04/21 15:28:58 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\takeown.exe
[2012/04/21 15:28:58 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksxbar.ax
[2012/04/21 15:28:58 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
[2012/04/21 15:28:58 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdhui.dll
[2012/04/21 15:28:58 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbisurf.ax
[2012/04/21 15:28:58 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2012/04/21 15:28:58 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciqtz32.dll
[2012/04/21 15:28:58 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2012/04/21 15:28:58 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimgvw.dll
[2012/04/21 15:28:58 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/04/21 15:28:58 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/04/21 15:28:58 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\choice.exe
[2012/04/21 15:28:58 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdmo.dll
[2012/04/21 15:28:58 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2012/04/21 15:28:58 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\utildll.dll
[2012/04/21 15:28:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFaultSecure.exe
[2012/04/21 15:28:58 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsium.dll
[2012/04/21 15:28:58 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AzSqlExt.dll
[2012/04/21 15:28:58 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HotStartUserAgent.dll
[2012/04/21 15:28:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qprocess.exe
[2012/04/21 15:28:58 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiougc.exe
[2012/04/21 15:28:58 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netbtugc.exe
[2012/04/21 15:28:58 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
[2012/04/21 15:28:58 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lsmproxy.dll
[2012/04/21 15:28:58 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nrpsrv.dll
[2012/04/21 15:28:58 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syssetup.dll
[2012/04/21 15:28:58 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BWUnpairElevated.dll
[2012/04/21 15:28:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
[2012/04/21 15:28:57 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
[2012/04/21 15:28:57 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2012/04/21 15:28:57 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onexui.dll
[2012/04/21 15:28:57 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2012/04/21 15:28:57 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDPENCDD.dll
[2012/04/21 15:28:57 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppc.dll
[2012/04/21 15:28:57 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppc.dll
[2012/04/21 15:28:57 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mobsync.exe
[2012/04/21 15:28:57 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2012/04/21 15:28:57 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\manage-bde.exe
[2012/04/21 15:28:57 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\napdsnap.dll
[2012/04/21 15:28:57 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetmib1.dll
[2012/04/21 15:28:57 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmicres.dll
[2012/04/21 15:28:57 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
[2012/04/21 15:28:57 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetmib1.dll
[2012/04/21 15:28:57 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\repair-bde.exe
[2012/04/21 15:28:57 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\luainstall.dll
[2012/04/21 15:28:57 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\g711codc.ax
[2012/04/21 15:28:57 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/04/21 15:28:57 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmbusres.dll
[2012/04/21 15:28:57 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\luainstall.dll
[2012/04/21 15:28:57 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSMON.dll
[2012/04/21 15:28:57 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/04/21 15:28:57 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
[2012/04/21 15:28:57 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmstorfltres.dll
[2012/04/21 15:28:57 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsauth.dll
[2012/04/21 15:28:57 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdiasqmmodule.dll
[2012/04/21 15:28:57 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciqtz32.dll
[2012/04/21 15:28:57 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shimgvw.dll
[2012/04/21 15:28:57 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unlodctr.exe
[2012/04/21 15:28:57 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbisurf.ax
[2012/04/21 15:28:57 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profprov.dll
[2012/04/21 15:28:57 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdmo.dll
[2012/04/21 15:28:57 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2012/04/21 15:28:57 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonUI.exe
[2012/04/21 15:28:57 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
[2012/04/21 15:28:57 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elsTrans.dll
[2012/04/21 15:28:57 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schedcli.dll
[2012/04/21 15:28:57 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\chgport.exe
[2012/04/21 15:28:57 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tskill.exe
[2012/04/21 15:28:57 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdprefdrvapi.dll
[2012/04/21 15:28:57 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qappsrv.exe
[2012/04/21 15:28:57 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tscon.exe
[2012/04/21 15:28:57 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elsTrans.dll
[2012/04/21 15:28:57 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\chglogon.exe
[2012/04/21 15:28:57 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsdiscon.exe
[2012/04/21 15:28:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TRAPI.dll
[2012/04/21 15:28:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TRAPI.dll
[2012/04/21 15:28:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shadow.exe
[2012/04/21 15:28:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rwinsta.exe
[2012/04/21 15:28:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdprefdrvapi.dll
[2012/04/21 15:28:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoff.exe
[2012/04/21 15:28:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\chgusr.exe
[2012/04/21 15:28:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spopk.dll
[2012/04/21 15:28:57 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spopk.dll
[2012/04/21 15:28:57 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSUNATD.exe
[2012/04/21 15:28:57 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
[2012/04/21 15:28:57 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfts.dll
[2012/04/21 15:28:57 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\reset.exe
[2012/04/21 15:28:57 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\change.exe
[2012/04/21 15:28:57 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\query.exe
[2012/04/21 15:28:57 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll
[2012/04/21 15:28:56 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys
[2012/04/21 15:28:56 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
[2012/04/21 15:28:56 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsperf.dll
[2012/04/21 15:28:56 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsperf.dll
[2012/04/21 15:28:56 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schedcli.dll
[2012/04/21 15:28:55 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\napdsnap.dll
[2012/04/21 15:28:55 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsauth.dll
[2012/04/21 15:28:52 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imkr80.ime
[2012/04/21 15:28:52 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/04/21 15:28:51 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsdchngr.dll
[2012/04/21 15:28:50 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/04/21 15:28:49 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
[2012/04/21 15:28:49 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shgina.dll
[2012/04/21 15:28:49 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2012/04/21 15:28:49 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shgina.dll
[2012/04/21 15:28:49 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2012/04/21 15:28:49 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched32.dll
[2012/04/21 15:28:48 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys
[2012/04/21 15:28:48 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshirda.dll
[2012/04/21 15:28:47 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmbuspipe.dll
[2012/04/21 15:28:47 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshirda.dll
[2012/04/21 15:28:47 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched32.dll
[2012/04/21 15:28:47 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcfgex.dll
[2012/04/21 15:28:46 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2012/04/21 15:28:46 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2012/04/21 15:28:46 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VmbusCoinstaller.dll
[2012/04/21 15:28:46 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VmdCoinstall.dll
[2012/04/21 15:28:46 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IcCoinstall.dll
[2012/04/21 15:28:46 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlsbres.dll
[2012/04/21 15:28:46 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nlsbres.dll
[2012/04/21 15:28:46 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BlbEvents.dll
[2012/04/21 15:28:46 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pifmgr.dll
[2012/04/21 15:28:46 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pifmgr.dll
[2012/04/21 15:28:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\C_ISCII.DLL
[2012/04/21 15:28:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shunimpl.dll
[2012/04/21 15:28:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\C_ISCII.DLL
[2012/04/21 15:28:46 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2012/04/21 15:28:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2012/04/21 15:28:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUQ.DLL
[2012/04/21 15:28:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUF.DLL
[2012/04/21 15:28:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSG.DLL
[2012/04/21 15:28:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdlk41a.dll
[2012/04/21 15:28:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGKL.DLL
[2012/04/21 15:28:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDCZ1.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizres.dll
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizres.dll
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUQ.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUF.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSG.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSF.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDPO.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDNEPR.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdlk41a.dll
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTAM.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINBEN.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGR1.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGR1.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGKL.DLL
[2012/04/21 15:28:46 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDCZ1.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUS.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUGHR1.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTURME.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAJIK.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSF.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDPO.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDNEPR.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMON.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMAORI.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDLT1.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTEL.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTAM.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINORI.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINORI.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINMAR.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINMAR.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINKAN.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINKAN.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINHIN.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINHIN.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINBEN.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBULG.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBLR.DLL
[2012/04/21 15:28:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUS.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUGHR1.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTURME.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAJIK.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMON.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMAORI.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDLT1.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTEL.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGEO.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGEO.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBULG.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBLR.DLL
[2012/04/21 15:28:46 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
[2012/04/21 15:28:46 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2012/04/21 15:28:46 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2012/04/21 15:28:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2012/04/21 15:28:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2012/04/21 15:28:46 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-ums-l1-1-0.dll
[2012/04/21 15:28:46 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
[2012/04/21 15:28:46 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll
[2012/04/21 15:28:35 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpx.dll
[2012/04/21 15:28:35 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdscore.dll
[2012/04/21 15:28:30 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
[2012/04/21 15:27:46 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wbemcomn.dll
[2012/04/21 15:27:43 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqmapi.dll
[2012/04/21 15:26:28 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Macromedia
[2012/04/21 15:26:28 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Adobe
[2012/04/21 15:26:01 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/04/21 15:25:21 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2012/04/21 15:25:21 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2012/04/21 15:25:21 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012/04/21 15:24:50 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2012/04/21 15:24:50 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012/04/21 15:24:49 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/04/21 15:24:49 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2012/04/21 15:24:47 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2012/04/21 15:24:47 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2012/04/21 15:24:46 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2012/04/21 15:24:46 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2012/04/21 15:24:45 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2012/04/21 15:21:55 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Google
[2012/04/21 15:21:52 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Deployment
[2012/04/21 15:21:52 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Apps
[2012/04/21 15:16:17 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2012/04/21 15:16:17 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2012/04/21 15:16:16 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2012/04/21 15:16:16 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2012/04/21 15:16:16 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2012/04/21 15:16:15 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2012/04/21 15:16:15 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2012/04/21 15:16:15 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2012/04/21 15:16:15 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2012/04/21 15:16:15 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2012/04/21 15:16:15 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2012/04/21 15:14:34 | 000,000,000 | R--D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/04/21 15:14:34 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Searches
[2012/04/21 15:14:34 | 000,000,000 | R--D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/04/21 15:14:34 | 000,000,000 | -H-D | C] -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/04/21 15:14:28 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Identities
[2012/04/21 15:14:26 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Contacts
[2012/04/21 15:14:26 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\VirtualStore
[2012/04/21 15:14:21 | 000,000,000 | --SD | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft
[2012/04/21 15:14:21 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Saved Games
[2012/04/21 15:14:21 | 000,000,000 | R--D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/04/21 15:14:21 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Links
[2012/04/21 15:14:21 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Favorites
[2012/04/21 15:14:21 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Downloads
[2012/04/21 15:14:21 | 000,000,000 | R--D | C] -- C:\Users\JasonB\Desktop
[2012/04/21 15:14:21 | 000,000,000 | R--D | C] -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\AppData\Local\Temporary Internet Files
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\Templates
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\Start Menu
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\SendTo
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\Recent
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\PrintHood
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\NetHood
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\My Documents
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\Local Settings
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\AppData\Local\History
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\Cookies
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\Application Data
[2012/04/21 15:14:21 | 000,000,000 | -HSD | C] -- C:\Users\JasonB\AppData\Local\Application Data
[2012/04/21 15:14:21 | 000,000,000 | -H-D | C] -- C:\Users\JasonB\AppData
[2012/04/21 15:14:21 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Temp
[2012/04/21 15:14:21 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Local\Microsoft
[2012/04/21 15:14:21 | 000,000,000 | ---D | C] -- C:\Users\JasonB\AppData\Roaming\Media Center Programs
[2012/04/21 14:47:00 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/04/21 14:47:00 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2012/04/21 14:47:00 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2012/04/21 14:45:13 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/04/21 14:45:13 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/04/21 14:45:12 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/04/21 14:45:12 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/04/21 14:45:12 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/04/21 14:45:12 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/04/21 14:45:12 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/04/21 14:45:12 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/04/21 14:45:12 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/04/21 14:45:12 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/04/21 14:45:12 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/04/21 14:45:12 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/04/21 14:45:12 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/04/21 14:45:12 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/04/21 14:45:12 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/04/21 14:45:12 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/04/21 14:45:12 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/04/21 14:45:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/04/21 14:45:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/04/21 14:45:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/04/21 14:45:07 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/04/21 14:45:07 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2012/04/21 14:45:06 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012/04/21 14:45:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2012/04/21 14:45:05 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2012/04/21 14:45:05 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2012/04/21 14:44:45 | 001,544,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2012/04/21 14:44:45 | 000,288,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/04/21 14:44:43 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012/04/21 14:44:43 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012/04/21 14:44:32 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2012/04/21 14:44:32 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2012/04/21 14:44:32 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2012/04/21 14:44:32 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2012/04/21 14:44:31 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2012/04/21 14:44:31 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2012/04/21 14:44:31 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2012/04/21 14:44:31 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2012/04/21 14:44:30 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2012/04/21 14:44:30 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2012/04/21 14:44:23 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2012/04/21 14:44:23 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2012/04/21 14:44:23 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2012/04/21 14:44:23 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012/04/21 14:44:23 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cfgmgr32.dll
[2012/04/21 14:44:23 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2012/04/21 14:44:23 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2012/04/21 14:44:23 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mpeg2Data.ax
[2012/04/21 14:44:23 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2012/04/21 14:44:23 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSDvbNP.ax
[2012/04/21 14:44:23 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mpeg2Data.ax
[2012/04/21 14:44:23 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSDvbNP.ax
[2012/04/21 14:44:23 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012/04/21 14:44:22 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/04/21 14:44:22 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/04/21 14:44:22 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2012/04/21 14:44:22 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2012/04/21 14:44:22 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/04/21 14:44:22 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/04/21 14:44:21 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012/04/21 14:44:21 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012/04/21 14:44:21 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012/04/21 14:44:21 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012/04/21 14:44:15 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2012/04/21 14:44:15 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2012/04/21 14:44:15 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2012/04/21 14:44:11 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2012/04/21 14:44:11 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2012/04/21 14:44:11 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2012/04/21 14:44:11 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2012/04/21 14:44:11 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012/04/21 14:44:11 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2012/04/21 14:44:11 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012/04/21 14:44:11 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2012/04/21 14:44:11 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012/04/21 14:44:11 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2012/04/21 14:44:11 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2012/04/21 14:44:11 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012/04/21 14:44:11 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012/04/21 14:44:11 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2012/04/21 14:44:11 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2012/04/21 14:44:11 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2012/04/21 14:44:11 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2012/04/21 14:44:09 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2012/04/21 14:44:07 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2012/04/21 14:44:07 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2012/04/21 14:44:00 | 000,974,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFS.exe
[2012/04/21 14:44:00 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2012/04/21 14:44:00 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2012/04/21 14:43:58 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2012/04/21 14:43:58 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2012/04/21 14:41:44 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012/04/21 14:40:45 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012/04/21 14:40:45 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012/04/21 14:34:02 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012/04/21 14:34:01 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2012/04/21 14:34:01 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012/04/21 14:32:47 | 000,000,000 | -HSD | C] -- C:\Recovery
[2012/04/21 14:32:46 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/04/06 00:22:40 | 011,174,400 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2012/04/05 22:34:10 | 000,074,752 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\OpenVideo64.dll
[2012/04/05 22:34:04 | 000,064,512 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\OpenVideo.dll
[2012/04/05 22:33:56 | 000,063,488 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\OVDecode64.dll
[2012/04/05 22:33:52 | 000,056,320 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\OVDecode.dll
[2012/04/05 22:33:44 | 016,457,216 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\amdocl64.dll
[2012/04/05 22:32:56 | 013,007,872 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\amdocl.dll
[2012/04/05 22:32:08 | 000,054,784 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012/04/05 22:32:04 | 000,050,176 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012/04/05 21:22:00 | 000,159,744 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2012/04/05 21:16:52 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2012/04/05 21:16:46 | 000,503,808 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2012/04/05 21:16:02 | 000,236,544 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2012/04/05 21:14:44 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2012/04/05 21:14:30 | 000,021,504 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2012/04/05 21:14:26 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2012/04/05 21:14:20 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2012/04/05 21:10:50 | 026,181,632 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2012/04/05 20:50:56 | 019,753,984 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2012/04/05 20:35:24 | 001,120,768 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6v.dll
[2012/04/05 20:34:50 | 001,831,424 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdmv.dll
[2012/04/05 20:34:34 | 004,731,904 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2012/04/05 20:30:16 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2012/04/05 20:30:14 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2012/04/05 20:30:08 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2012/04/05 20:30:06 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2012/04/05 20:29:54 | 016,090,624 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2012/04/05 20:25:30 | 013,764,096 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2012/04/05 20:23:24 | 007,431,680 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2012/04/05 20:11:20 | 000,360,448 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2012/04/05 20:11:06 | 000,017,408 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2012/04/05 20:11:04 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2012/04/05 20:11:04 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2012/04/05 20:11:00 | 000,041,984 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2012/04/05 20:10:52 | 000,033,280 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2012/04/05 20:10:44 | 000,343,040 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2012/04/05 20:09:02 | 000,053,248 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2012/04/05 20:06:08 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2012/04/05 20:06:08 | 000,054,784 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2012/04/05 20:06:04 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2012/04/05 20:06:04 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll

========== Files - Modified Within 30 Days ==========

[2012/05/01 21:56:34 | 000,595,456 | ---- | M] (OldTimer Tools) -- C:\Users\JasonB\Desktop\OTL.exe
[2012/05/01 21:27:00 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132UA.job
[2012/05/01 21:26:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/05/01 19:18:43 | 000,025,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/01 19:18:43 | 000,025,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/01 18:41:33 | 000,778,834 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/05/01 18:41:33 | 000,660,068 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/05/01 18:41:33 | 000,120,996 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/05/01 18:37:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/01 18:37:07 | 4293,431,294 | -HS- | M] () -- C:\hiberfil.sys
[2012/05/01 18:23:46 | 000,002,066 | ---- | M] () -- \\ATOMSERVER\Users\JasonB\My Documents\Default.rdp
[2012/05/01 17:56:31 | 000,004,243 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/05/01 16:16:09 | 000,001,908 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Important Action.LNK
[2012/05/01 15:26:11 | 000,000,864 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132Core.job
[2012/05/01 09:14:03 | 000,001,769 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
[2012/05/01 09:10:11 | 004,974,400 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/04/30 09:56:32 | 000,002,550 | ---- | M] () -- C:\Windows\Sandboxie.ini
[2012/04/30 08:56:53 | 000,000,287 | ---- | M] () -- C:\Windows\SysNative\checkdnsid.xml
[2012/04/28 01:26:14 | 000,418,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/04/28 01:26:14 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/04/28 01:26:04 | 008,766,112 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/04/27 03:02:14 | 000,772,558 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/26 17:16:55 | 005,898,240 | ---- | M] () -- C:\Windows\SysNative\USBForumTrace.etl
[2012/04/26 14:44:22 | 190,194,180 | ---- | M] () -- C:\Users\JasonB\Desktop\svchost.DMP
[2012/04/24 18:45:52 | 002,074,160 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\JasonB\Desktop\TDSSKiller.exe
[2012/04/24 12:26:47 | 001,910,784 | ---- | M] () -- \\ATOMSERVER\Users\JasonB\My Documents\db.sqlite
[2012/04/23 14:59:37 | 000,001,101 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk
[2012/04/23 09:09:01 | 000,001,829 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 10.lnk
[2012/04/23 08:14:06 | 000,000,257 | ---- | M] () -- C:\Windows\Brpfx04a.ini
[2012/04/23 08:14:06 | 000,000,094 | ---- | M] () -- C:\Windows\brpcfx.ini
[2012/04/23 08:12:27 | 000,000,050 | ---- | M] () -- C:\Windows\SysNative\BD9320CW.DAT
[2012/04/23 07:39:54 | 000,001,254 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\procexp.exe - Shortcut.lnk
[2012/04/22 20:58:56 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/04/22 20:54:40 | 000,016,896 | ---- | M] (ASUS) -- C:\Windows\AsTaskSched.dll
[2012/04/22 20:54:07 | 000,001,202 | ---- | M] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2012/04/22 20:51:45 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
[2012/04/22 20:47:09 | 000,000,017 | ---- | M] () -- C:\Users\JasonB\AppData\Local\resmon.resmoncfg
[2012/04/22 20:25:58 | 000,151,552 | ---- | M] () -- C:\Windows\KMService.exe
[2012/04/22 20:25:58 | 000,008,192 | ---- | M] () -- C:\Windows\SysWow64\srvany.exe
[2012/04/22 18:45:09 | 000,287,304 | ---- | M] (BitDefender S.R.L.) -- C:\Windows\SysNative\drivers\TrufosAlt.sys
[2012/04/22 18:36:21 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/04/22 17:26:27 | 000,000,688 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\CCleaner.lnk
[2012/04/22 17:24:53 | 000,001,175 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\whoistd - Shortcut (2).lnk
[2012/04/22 17:20:58 | 000,001,159 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\cports - Shortcut.lnk
[2012/04/22 15:53:50 | 000,002,916 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Mindjet MindManager 2012.lnk
[2012/04/22 14:06:16 | 000,331,716 | ---- | M] () -- C:\Users\JasonB\.ranktracker.properties
[2012/04/22 13:46:36 | 002,744,100 | ---- | M] () -- C:\Users\JasonB\.websiteauditor.properties
[2012/04/22 13:46:09 | 000,500,858 | ---- | M] () -- C:\Users\JasonB\.spyglass.properties
[2012/04/22 13:45:49 | 000,453,949 | ---- | M] () -- C:\Users\JasonB\.linkassistant.properties
[2012/04/22 12:38:10 | 000,000,695 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Pandora (Listen Only).lnk
[2012/04/22 12:08:39 | 000,000,385 | ---- | M] () -- C:\Windows\SysNative\user_gensett.xml
[2012/04/22 10:09:10 | 000,217,189 | ---- | M] () -- C:\ProgramData\1335106805.bdinstall.bin
[2012/04/22 10:07:03 | 000,000,270 | -H-- | M] () -- C:\bdr-conf
[2012/04/22 10:04:42 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2012/04/21 18:21:45 | 000,000,410 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2012/04/21 18:20:28 | 000,000,066 | ---- | M] () -- C:\Windows\Brfaxrx.ini
[2012/04/21 18:17:31 | 000,000,712 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\CrossFTP.lnk
[2012/04/21 18:15:18 | 000,000,856 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Sandboxed Web Browser.lnk
[2012/04/21 16:26:06 | 000,001,437 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/04/21 16:19:43 | 000,042,049 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012/04/21 16:19:43 | 000,042,049 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012/04/21 16:19:00 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2012/04/21 16:12:29 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
[2012/04/21 16:12:29 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
[2012/04/21 16:06:42 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012/04/21 16:06:42 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012/04/21 16:06:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012/04/21 16:06:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012/04/21 15:42:47 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Vid HD.lnk
[2012/04/21 15:41:53 | 000,001,624 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/04/21 15:39:44 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012/04/21 15:39:44 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2012/04/21 15:39:44 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/04/21 15:39:44 | 000,603,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/04/21 15:39:44 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2012/04/21 15:39:44 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2012/04/21 15:39:44 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2012/04/21 15:39:44 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012/04/21 15:39:44 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012/04/21 15:39:44 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2012/04/21 15:39:44 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2012/04/21 15:39:44 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012/04/21 15:39:44 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2012/04/21 15:39:44 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2012/04/21 15:39:44 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/04/21 15:39:44 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2012/04/21 15:39:44 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012/04/21 15:39:44 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2012/04/21 15:39:44 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012/04/21 15:39:44 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2012/04/21 15:39:44 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2012/04/21 15:39:44 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012/04/21 15:39:44 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012/04/21 15:39:44 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2012/04/21 15:39:44 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2012/04/21 15:39:44 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/04/21 15:39:44 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2012/04/21 15:39:44 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012/04/21 15:39:44 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012/04/21 15:39:44 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012/04/21 15:39:44 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2012/04/21 15:39:44 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012/04/21 15:39:44 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012/04/21 15:39:44 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2012/04/21 15:39:44 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012/04/21 15:39:44 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2012/04/21 15:39:44 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2012/04/21 15:39:44 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012/04/21 15:39:44 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012/04/21 15:39:44 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012/04/21 15:39:44 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2012/04/21 15:39:44 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012/04/21 15:39:44 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2012/04/21 15:39:44 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012/04/21 15:39:44 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012/04/21 15:39:44 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012/04/21 15:39:44 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012/04/21 15:39:44 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/04/21 15:39:44 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2012/04/21 15:39:44 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012/04/21 15:39:44 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2012/04/21 15:39:44 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012/04/21 15:39:44 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012/04/21 15:39:44 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2012/04/21 15:39:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012/04/21 15:39:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2012/04/21 15:39:44 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012/04/21 15:39:44 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012/04/21 15:39:44 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2012/04/21 15:39:44 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012/04/21 15:39:44 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2012/04/21 15:39:44 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012/04/21 15:39:44 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2012/04/21 15:09:20 | 000,055,488 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2012/04/16 16:24:25 | 000,001,177 | ---- | M] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\wpdesktop_v33090302 - Shortcut.lnk
[2012/04/14 11:58:01 | 000,011,909 | ---- | M] () -- \\ATOMSERVER\Users\JasonB\My Documents\twitter.csv
[2012/04/06 00:22:40 | 011,174,400 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2012/04/05 22:34:26 | 000,187,392 | ---- | M] () -- C:\Windows\SysNative\clinfo.exe
[2012/04/05 22:34:10 | 000,074,752 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\OpenVideo64.dll
[2012/04/05 22:34:04 | 000,064,512 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\OpenVideo.dll
[2012/04/05 22:33:56 | 000,063,488 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\OVDecode64.dll
[2012/04/05 22:33:52 | 000,056,320 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\OVDecode.dll
[2012/04/05 22:33:44 | 016,457,216 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\amdocl64.dll
[2012/04/05 22:32:56 | 013,007,872 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\amdocl.dll
[2012/04/05 22:32:08 | 000,054,784 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2012/04/05 22:32:04 | 000,050,176 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012/04/05 21:23:06 | 000,245,896 | ---- | M] () -- C:\Windows\SysWow64\atiapfxx.blb
[2012/04/05 21:23:06 | 000,245,896 | ---- | M] () -- C:\Windows\SysNative\atiapfxx.blb
[2012/04/05 21:22:00 | 000,159,744 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2012/04/05 21:21:52 | 000,909,312 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2012/04/05 21:20:04 | 001,067,520 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\aticfx64.dll
[2012/04/05 21:16:52 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2012/04/05 21:16:46 | 000,503,808 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2012/04/05 21:16:02 | 000,236,544 | ---- | M] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2012/04/05 21:14:44 | 000,120,320 | ---- | M] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2012/04/05 21:14:30 | 000,021,504 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2012/04/05 21:14:26 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2012/04/05 21:14:20 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2012/04/05 21:13:42 | 006,800,896 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2012/04/05 21:10:50 | 026,181,632 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2012/04/05 21:00:10 | 000,064,000 | ---- | M] (AMD) -- C:\Windows\SysNative\coinst.dll
[2012/04/05 20:54:46 | 007,479,296 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atidxx64.dll
[2012/04/05 20:50:56 | 019,753,984 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2012/04/05 20:35:24 | 001,120,768 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6v.dll
[2012/04/05 20:34:50 | 001,831,424 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdmv.dll
[2012/04/05 20:34:34 | 004,731,904 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2012/04/05 20:34:04 | 006,203,392 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2012/04/05 20:30:16 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2012/04/05 20:30:14 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2012/04/05 20:30:08 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2012/04/05 20:30:06 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2012/04/05 20:29:54 | 016,090,624 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2012/04/05 20:29:34 | 002,631,008 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap
[2012/04/05 20:29:34 | 000,204,952 | ---- | M] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/04/05 20:29:34 | 000,204,952 | ---- | M] () -- C:\Windows\SysNative\ativvsvl.dat
[2012/04/05 20:29:34 | 000,157,144 | ---- | M] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/04/05 20:29:34 | 000,157,144 | ---- | M] () -- C:\Windows\SysNative\ativvsva.dat
[2012/04/05 20:25:30 | 013,764,096 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2012/04/05 20:23:24 | 007,431,680 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2012/04/05 20:22:54 | 004,795,904 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2012/04/05 20:21:42 | 002,664,704 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap
[2012/04/05 20:11:28 | 000,514,560 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2012/04/05 20:11:20 | 000,360,448 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2012/04/05 20:11:06 | 000,017,408 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2012/04/05 20:11:04 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2012/04/05 20:11:04 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2012/04/05 20:11:00 | 000,041,984 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2012/04/05 20:10:52 | 000,033,280 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2012/04/05 20:10:44 | 000,343,040 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2012/04/05 20:09:56 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll
[2012/04/05 20:09:48 | 000,041,984 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2012/04/05 20:09:42 | 000,044,544 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2012/04/05 20:09:34 | 000,032,256 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2012/04/05 20:09:02 | 000,053,248 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2012/04/05 20:06:08 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2012/04/05 20:06:08 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2012/04/05 20:06:04 | 000,053,760 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2012/04/05 20:06:04 | 000,053,760 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll

========== Files Created - No Company Name ==========

[2012/04/30 16:39:01 | 4293,431,294 | -HS- | C] () -- C:\hiberfil.sys
[2012/04/30 09:56:11 | 000,002,453 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
[2012/04/30 09:56:11 | 000,001,769 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
[2012/04/30 09:56:09 | 000,002,465 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
[2012/04/26 18:28:19 | 000,000,997 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2012/04/26 17:16:03 | 005,898,240 | ---- | C] () -- C:\Windows\SysNative\USBForumTrace.etl
[2012/04/26 15:09:19 | 000,772,558 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/26 14:43:38 | 190,194,180 | ---- | C] () -- C:\Users\JasonB\Desktop\svchost.DMP
[2012/04/24 12:26:35 | 001,910,784 | ---- | C] () -- \\ATOMSERVER\Users\JasonB\My Documents\db.sqlite
[2012/04/23 09:09:01 | 000,001,829 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 10.lnk
[2012/04/23 07:39:54 | 000,001,254 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\procexp.exe - Shortcut.lnk
[2012/04/22 20:58:56 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/04/22 20:54:07 | 000,001,214 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
[2012/04/22 20:54:07 | 000,001,202 | ---- | C] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2012/04/22 20:47:09 | 000,000,017 | ---- | C] () -- C:\Users\JasonB\AppData\Local\resmon.resmoncfg
[2012/04/22 20:26:09 | 000,151,552 | ---- | C] () -- C:\Windows\KMService.exe
[2012/04/22 20:26:09 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe
[2012/04/22 19:40:09 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/04/22 18:36:21 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/04/22 17:59:46 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012/04/22 17:26:27 | 000,000,688 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\CCleaner.lnk
[2012/04/22 17:24:53 | 000,001,175 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\whoistd - Shortcut (2).lnk
[2012/04/22 15:53:50 | 000,002,916 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Mindjet MindManager 2012.lnk
[2012/04/22 14:37:29 | 000,001,776 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PerfectDisk 12.5.lnk
[2012/04/22 13:46:32 | 002,744,100 | ---- | C] () -- C:\Users\JasonB\.websiteauditor.properties
[2012/04/22 13:46:05 | 000,500,858 | ---- | C] () -- C:\Users\JasonB\.spyglass.properties
[2012/04/22 13:45:45 | 000,453,949 | ---- | C] () -- C:\Users\JasonB\.linkassistant.properties
[2012/04/22 13:45:21 | 000,331,716 | ---- | C] () -- C:\Users\JasonB\.ranktracker.properties
[2012/04/22 12:38:10 | 000,000,695 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Pandora (Listen Only).lnk
[2012/04/22 12:08:39 | 000,000,385 | ---- | C] () -- C:\Windows\SysNative\user_gensett.xml
[2012/04/22 10:21:45 | 000,000,287 | ---- | C] () -- C:\Windows\SysNative\checkdnsid.xml
[2012/04/22 10:17:41 | 000,002,486 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2012/04/22 10:09:10 | 000,217,189 | ---- | C] () -- C:\ProgramData\1335106805.bdinstall.bin
[2012/04/22 10:07:03 | 036,942,680 | -H-- | C] () -- C:\bdrescue.gz
[2012/04/22 10:07:03 | 002,510,608 | -H-- | C] () -- C:\bdrescue.vm
[2012/04/22 10:07:03 | 000,217,769 | -H-- | C] () -- C:\bdrescue
[2012/04/22 10:07:03 | 000,009,216 | -H-- | C] () -- C:\bdrescue.mbr
[2012/04/22 10:07:03 | 000,000,270 | -H-- | C] () -- C:\bdr-conf
[2012/04/22 10:04:42 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf
[2012/04/21 18:26:46 | 000,002,539 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orca.lnk
[2012/04/21 18:22:29 | 000,000,257 | ---- | C] () -- C:\Windows\Brpfx04a.ini
[2012/04/21 18:22:29 | 000,000,094 | ---- | C] () -- C:\Windows\brpcfx.ini
[2012/04/21 18:21:45 | 000,000,410 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2012/04/21 18:20:28 | 000,000,050 | ---- | C] () -- C:\Windows\SysNative\BD9320CW.DAT
[2012/04/21 18:20:25 | 000,143,360 | ---- | C] () -- C:\Windows\SysNative\BrSNMP64.dll
[2012/04/21 18:20:25 | 000,106,496 | ---- | C] () -- C:\Windows\SysWow64\BrMuSNMP.dll
[2012/04/21 18:20:25 | 000,000,066 | ---- | C] () -- C:\Windows\Brfaxrx.ini
[2012/04/21 18:20:25 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat
[2012/04/21 18:20:24 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\BRTCPCON.DLL
[2012/04/21 18:20:23 | 000,000,050 | ---- | C] () -- C:\Windows\SysNative\BRADC08A.DAT
[2012/04/21 18:20:22 | 000,000,114 | ---- | C] () -- C:\Windows\SysWow64\BRLMW03A.INI
[2012/04/21 18:15:24 | 000,000,856 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Sandboxed Web Browser.lnk
[2012/04/21 18:15:22 | 000,002,550 | ---- | C] () -- C:\Windows\Sandboxie.ini
[2012/04/21 17:13:11 | 000,000,786 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2012/04/21 16:34:03 | 000,001,367 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Remote Desktop Connection.lnk
[2012/04/21 16:34:03 | 000,001,220 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\QBW32 - Shortcut.lnk
[2012/04/21 16:34:03 | 000,001,194 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\WebSite Auditor.lnk
[2012/04/21 16:34:03 | 000,001,177 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\wpdesktop_v33090302 - Shortcut.lnk
[2012/04/21 16:34:03 | 000,001,175 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\SpinnerChief - Shortcut.lnk
[2012/04/21 16:34:03 | 000,001,157 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\SQL Server Management Studio.lnk
[2012/04/21 16:34:03 | 000,001,152 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\SEO SpyGlass.lnk
[2012/04/21 16:34:03 | 000,001,152 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Rank Tracker.lnk
[2012/04/21 16:34:03 | 000,001,091 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\WatchMe - Shortcut.lnk
[2012/04/21 16:34:03 | 000,000,961 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Scrapebox Link Checker - Shortcut.lnk
[2012/04/21 16:34:03 | 000,000,924 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Visual Thesaurus 3.lnk
[2012/04/21 16:34:03 | 000,000,853 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\SQLyog Enterprise.lnk
[2012/04/21 16:34:03 | 000,000,707 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\VNC Viewer.lnk
[2012/04/21 16:34:03 | 000,000,651 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\S3 Ripper.lnk
[2012/04/21 16:34:02 | 000,003,021 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Word 2010.lnk
[2012/04/21 16:34:02 | 000,002,951 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Excel 2010.lnk
[2012/04/21 16:34:02 | 000,002,428 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012/04/21 16:34:02 | 000,002,044 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/04/21 16:34:02 | 000,001,908 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Important Action.LNK
[2012/04/21 16:34:02 | 000,001,548 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Pandora - Shortcut.lnk
[2012/04/21 16:34:02 | 000,001,303 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\InstantArticleWizard - Shortcut.lnk
[2012/04/21 16:34:02 | 000,001,247 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Clear Clipboard.lnk
[2012/04/21 16:34:02 | 000,001,223 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\PerfectDisk - Shortcut.lnk
[2012/04/21 16:34:02 | 000,001,171 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\LinkAssistant.lnk
[2012/04/21 16:34:02 | 000,001,159 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\cports - Shortcut.lnk
[2012/04/21 16:34:02 | 000,001,101 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk
[2012/04/21 16:34:02 | 000,001,055 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\putty - Shortcut.lnk
[2012/04/21 16:34:02 | 000,000,953 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Article Samurai.lnk
[2012/04/21 16:34:02 | 000,000,943 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Domain Samurai.lnk
[2012/04/21 16:34:02 | 000,000,840 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\FileZilla.lnk
[2012/04/21 16:34:02 | 000,000,746 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Notepad++.lnk
[2012/04/21 16:34:02 | 000,000,736 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\G6FTP Server Administrator.lnk
[2012/04/21 16:34:02 | 000,000,720 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Market Samurai - Shortcut.lnk
[2012/04/21 16:34:02 | 000,000,712 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\CrossFTP.lnk
[2012/04/21 16:34:02 | 000,000,654 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\PaRaMeter.lnk
[2012/04/21 16:19:39 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2012/04/21 16:19:37 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2012/04/21 16:19:00 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/04/21 15:42:47 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Vid HD.lnk
[2012/04/21 15:41:53 | 000,001,624 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/04/21 15:39:44 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/04/21 15:39:44 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2012/04/21 15:39:28 | 000,001,142 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/04/21 15:30:12 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2012/04/21 15:28:57 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2012/04/21 15:28:45 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2012/04/21 15:28:45 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2012/04/21 15:28:30 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc
[2012/04/21 15:28:30 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2012/04/21 15:22:01 | 000,000,916 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132UA.job
[2012/04/21 15:21:55 | 000,000,864 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132Core.job
[2012/04/21 15:21:17 | 000,001,437 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/04/21 15:14:38 | 000,001,409 | ---- | C] () -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012/04/21 15:14:35 | 000,001,443 | ---- | C] () -- C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012/04/21 15:14:21 | 000,000,290 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/04/21 15:14:21 | 000,000,272 | ---- | C] () -- C:\Users\JasonB\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/04/21 15:09:20 | 000,055,488 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2012/04/14 10:23:57 | 000,011,909 | ---- | C] () -- \\ATOMSERVER\Users\JasonB\My Documents\twitter.csv
[2012/04/05 22:34:26 | 000,187,392 | ---- | C] () -- C:\Windows\SysNative\clinfo.exe
[2012/04/05 21:23:06 | 000,245,896 | ---- | C] () -- C:\Windows\SysWow64\atiapfxx.blb
[2012/04/05 21:23:06 | 000,245,896 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb
[2012/04/05 20:29:34 | 002,631,008 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap
[2012/04/05 20:29:34 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/04/05 20:29:34 | 000,204,952 | ---- | C] () -- C:\Windows\SysNative\ativvsvl.dat
[2012/04/05 20:29:34 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/04/05 20:29:34 | 000,157,144 | ---- | C] () -- C:\Windows\SysNative\ativvsva.dat
[2012/04/05 20:21:42 | 002,664,704 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap
[2012/03/09 14:06:14 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2011/12/15 05:23:04 | 010,920,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2011/12/15 05:23:04 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2011/12/15 05:23:04 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/09/12 17:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

========== LOP Check ==========

[2012/04/21 18:14:49 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
[2012/04/22 10:03:47 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\Bitdefender
[2012/04/30 21:14:15 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\FileZilla
[2012/04/23 11:15:30 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\ImgBurn
[2012/04/21 15:42:28 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\Leadertech
[2012/04/21 17:58:41 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\Notepad++
[2012/04/22 12:15:52 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\PandoraClient
[2012/04/22 10:01:19 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\QuickScan
[2012/04/22 12:31:41 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\SProxy
[2012/05/01 18:00:07 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\SQLyog
[2012/04/27 18:07:17 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012/04/23 16:31:16 | 000,000,000 | ---D | M] -- C:\Users\JasonB\AppData\Roaming\TechSmith
[2012/05/01 18:23:09 | 000,010,620 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >

#3 jntkwx

jntkwx

  • Malware Response Team
  • 4,339 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New England, U.S.A.
  • Local time:12:52 PM

Posted 03 May 2012 - 11:06 AM

Hi Tinger,

I will be handling your logs to help you get cleaned up. Please give me some time to look them over and I will get back to you as soon as possible. Thanks in advance for your patience.
Regards,
Jason

 

Simple and easy ways to keep your computer safe and secure on the Internet

If I am helping you and have not returned in 48 hours, please feel free to send me a PM with a link to the topic.
My help is free... however, if you wish to show appreciation and support me personally fighting against malware, please consider a donation: btn_donate_SM.gif


#4 Tinger

Tinger
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:11:52 AM

Posted 03 May 2012 - 05:30 PM

Thanks for your time Jason. I'm ready when you are.

#5 jntkwx

jntkwx

  • Malware Response Team
  • 4,339 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New England, U.S.A.
  • Local time:12:52 PM

Posted 03 May 2012 - 09:50 PM

Hi Tinger,

Please download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix. If you do not know how to do this you can find out >here< or >here<
3. Double click on combofix.exe & follow the prompts.

Important:
  • Do not mouseclick combofix's window while it's running. That may cause it to stall.
  • If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

In your next reply, please include:
  • Combofix log
  • How is your computer running now? Please be as descriptive as possible. Include any word-for-word error messages that you may have, and/or screenshots of strange behavior.

Regards,
Jason

 

Simple and easy ways to keep your computer safe and secure on the Internet

If I am helping you and have not returned in 48 hours, please feel free to send me a PM with a link to the topic.
My help is free... however, if you wish to show appreciation and support me personally fighting against malware, please consider a donation: btn_donate_SM.gif


#6 Tinger

Tinger
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:11:52 AM

Posted 04 May 2012 - 11:39 AM

My computer is running ok, but it stalls and i get "Not Responding" on my browsers and windows explorer windows sometimes. Once the system boots up and i am in windows, the screen flickers, thats when i open up task manager and go to svchost.exe which is taking up the most memory and end that process. I ran process explorer so i could see what services are attached to it and they aren't any system services that keep me from running. Even after closing down the svchost.exe which i have to do a few times because it automatically starts up after i end it. I close it down about 4 times and then it doesn't start up again.

Here is the screenshot of the processes attached to the svchost.exe that i shutdown: http://screencast.com/t/37Hs2I75

I have 16GB of Ram with a AMD Radeon 6900 w/2Gb Ram and 160GB bandwidth for the card. I shouldn't be having any "Not Responding" issues or screen flickers.

Here is the requested information below, thanks again for your help.

ComboFix 12-05-04.02 - JasonB 05/04/2012 11:21:34.2.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.16382.14150 [GMT -5:00]
Running from: c:\users\JasonB\Desktop\ComboFix.exe
AV: Bitdefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
FW: Bitdefender Firewall *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
SP: Bitdefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((( Files Created from 2012-04-04 to 2012-05-04 )))))))))))))))))))))))))))))))
.
.
2012-05-04 16:24 . 2012-05-04 16:24 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-02 00:13 . 2012-05-02 00:13 -------- d-----w- c:\programdata\Office Genuine Advantage
2012-05-01 23:53 . 2008-07-10 16:01 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
2012-04-28 06:26 . 2012-04-28 06:26 8766112 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-04-27 21:40 . 2012-04-27 21:40 -------- d-----w- C:\AMD
2012-04-27 14:21 . 2012-04-30 23:03 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2012-04-27 13:58 . 2012-04-27 13:58 -------- d-----w- c:\programdata\ALM
2012-04-27 12:37 . 2012-04-27 12:37 -------- d-----w- c:\program files (x86)\Adobe Media Player
2012-04-26 23:36 . 2012-04-27 12:37 -------- d-----w- c:\program files (x86)\Common Files\PX Storage Engine
2012-04-26 23:36 . 2012-04-26 23:36 -------- d-----w- c:\program files (x86)\My Company Name
2012-04-26 23:36 . 2012-04-26 23:36 -------- d-----w- c:\program files (x86)\Common Files\Sonic Shared
2012-04-26 23:36 . 2009-07-09 08:00 55280 ------w- c:\windows\system32\drivers\PxHlpa64.sys
2012-04-26 23:36 . 2009-06-23 08:00 10224 ------w- c:\windows\system32\drivers\cdralw2k.sys
2012-04-26 23:36 . 2009-06-23 08:00 10224 ------w- c:\windows\system32\drivers\cdr4_xp.sys
2012-04-26 23:28 . 2012-04-27 14:11 -------- d-----w- c:\program files\Common Files\Adobe
2012-04-26 23:24 . 2012-04-30 14:57 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-04-26 19:50 . 2012-04-26 19:50 -------- d-----w- c:\programdata\ATI
2012-04-26 19:50 . 2012-04-26 19:50 -------- d-----w- c:\programdata\AMD
2012-04-26 19:50 . 2012-04-26 19:50 -------- d-----w- c:\program files (x86)\AMD AVT
2012-04-26 19:50 . 2012-04-26 19:50 -------- d-----w- c:\program files (x86)\AMD APP
2012-04-26 19:50 . 2012-04-26 19:50 -------- d-----w- c:\program files\Common Files\ATI Technologies
2012-04-26 19:50 . 2012-04-26 19:50 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2012-04-26 19:49 . 2012-04-27 21:30 -------- d-----w- c:\program files (x86)\ATI Technologies
2012-04-26 19:49 . 2012-04-26 19:49 -------- d-----w- c:\program files\ATI
2012-04-26 19:46 . 2012-04-26 19:46 -------- d-----w- c:\program files\AMD
2012-04-26 11:59 . 2012-04-26 11:59 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-04-23 14:21 . 2012-04-23 14:21 -------- d-----w- c:\program files (x86)\Winamp
2012-04-23 14:21 . 2012-04-23 14:21 -------- d-----w- c:\programdata\Plantronics
2012-04-23 14:21 . 2012-04-23 14:21 -------- d-----w- c:\programdata\Macrovision
2012-04-23 14:21 . 2012-04-23 14:21 -------- d-----w- c:\programdata\FLEXnet
2012-04-23 14:21 . 2012-04-23 14:21 -------- d-----w- c:\program files (x86)\Plantronics
2012-04-23 14:08 . 2012-04-23 14:08 -------- d-----w- c:\programdata\TechSmith
2012-04-23 13:12 . 2009-08-19 00:38 83968 ----a-w- c:\windows\system32\BrNetSti.dll
2012-04-23 13:12 . 2010-01-12 16:02 1560576 ----a-w- c:\windows\system32\BrWi209c.dll
2012-04-23 13:12 . 2006-12-21 16:23 176128 ----a-w- c:\windows\SysWow64\BROSNMP.DLL
2012-04-23 01:58 . 2012-04-23 01:58 -------- d-----r- c:\program files (x86)\Skype
2012-04-23 01:58 . 2012-04-23 01:58 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-04-23 01:58 . 2012-04-23 01:58 -------- d-----w- c:\programdata\Skype
2012-04-23 01:54 . 2012-04-23 01:54 16896 ----a-w- c:\windows\AsTaskSched.dll
2012-04-23 01:53 . 2007-04-11 20:35 414632 ------w- c:\windows\difxapi.dll
2012-04-23 01:53 . 2012-04-23 01:54 -------- d-----w- c:\program files (x86)\VIA
2012-04-23 01:48 . 2012-04-23 01:48 -------- d-----w- c:\program files (x86)\Intel
2012-04-23 01:48 . 2009-08-27 04:04 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2012-04-23 01:47 . 2012-04-23 01:47 -------- d-----w- C:\Intel
2012-04-23 01:26 . 2012-04-23 01:25 8192 ----a-w- c:\windows\SysWow64\srvany.exe
2012-04-23 01:26 . 2012-04-23 01:25 151552 ----a-w- c:\windows\KMService.exe
2012-04-23 00:40 . 2012-04-28 06:26 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-23 00:40 . 2012-04-28 06:26 418464 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-04-23 00:40 . 2012-04-23 00:40 -------- d-----w- c:\windows\SysWow64\Macromed
2012-04-23 00:40 . 2012-04-23 00:40 -------- d-----w- c:\windows\system32\Macromed
2012-04-23 00:18 . 2012-04-23 14:21 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2012-04-22 23:48 . 2012-04-22 23:49 -------- d-----w- c:\programdata\HitmanPro
2012-04-22 23:45 . 2012-04-22 23:45 287304 ----a-w- c:\windows\system32\drivers\TrufosAlt.sys
2012-04-22 23:07 . 2012-05-04 16:05 -------- d-----w- C:\Temp
2012-04-22 23:00 . 2012-04-22 23:00 -------- d-----w- c:\program files (x86)\Renesas Electronics
2012-04-22 22:59 . 2012-04-22 22:59 -------- d-----w- c:\programdata\Downloaded Installations
2012-04-22 22:47 . 2012-04-22 22:47 -------- d-----w- c:\program files\DIFX
2012-04-22 20:54 . 2006-01-30 13:32 6656 ----a-w- c:\windows\system32\pxc35pm.dll
2012-04-22 20:53 . 2012-04-22 20:53 -------- d-----w- c:\programdata\Mindjet
2012-04-22 20:33 . 2012-04-22 20:33 -------- d-----w- c:\program files\Microsoft Synchronization Services
2012-04-22 20:32 . 2012-04-22 20:32 -------- d-----w- c:\program files\Microsoft Sync Framework
2012-04-22 20:32 . 2012-04-22 20:32 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2012-04-22 20:30 . 2012-04-22 20:30 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2012-04-22 20:28 . 2012-04-22 20:28 -------- d-----w- c:\program files\Microsoft Analysis Services
2012-04-22 20:28 . 2012-04-22 20:28 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2012-04-22 20:27 . 2012-04-22 22:43 -------- d-----w- c:\programdata\Microsoft Help
2012-04-22 20:27 . 2012-04-22 20:27 -------- d-----r- C:\MSOCache
2012-04-22 19:37 . 2012-04-22 19:37 -------- d-----w- c:\programdata\Raxco
2012-04-22 19:37 . 2012-04-22 19:37 -------- d-----w- c:\program files\Common Files\Raxco
2012-04-22 18:36 . 2009-12-30 15:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2012-04-22 17:52 . 2012-04-22 17:52 -------- d-----w- c:\programdata\Malwarebytes
2012-04-22 17:15 . 2012-04-22 17:15 -------- d-----w- c:\program files (x86)\Microsoft CAPICOM 2.1.0.2
2012-04-22 15:15 . 2012-04-22 15:18 -------- d-----w- c:\program files (x86)\Windows Live
2012-04-22 15:14 . 2012-04-22 15:14 -------- d-----w- c:\windows\PCHEALTH
2012-04-22 15:09 . 2012-04-22 15:09 217189 ----a-w- c:\programdata\1335106805.bdinstall.bin
2012-04-22 15:08 . 2012-04-22 17:22 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2012-04-22 15:06 . 2012-04-22 15:06 -------- d-----w- c:\programdata\BDLogging
2012-04-22 15:03 . 2012-04-22 15:06 -------- d-----w- c:\programdata\Bitdefender
2012-04-22 15:03 . 2012-04-22 15:03 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2012-04-22 15:01 . 2012-04-22 15:01 -------- d-----w- c:\program files\Bitdefender
2012-04-22 15:00 . 2011-10-27 20:07 329800 ----a-w- c:\windows\system32\drivers\trufos.sys
2012-04-22 15:00 . 2011-08-16 19:59 442088 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2012-04-22 14:59 . 2012-04-22 15:00 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-04-21 23:23 . 2012-04-21 23:23 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2012-04-21 23:19 . 2012-04-21 23:21 -------- d-----w- c:\programdata\Brother
2012-04-21 23:15 . 2012-04-21 23:15 -------- d-----r- C:\Sandbox
2012-04-21 23:06 . 2012-04-21 23:06 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
2012-04-21 22:21 . 2012-04-21 22:21 -------- d-----w- c:\program files\Onkyo
2012-04-21 22:16 . 2012-04-21 22:22 -------- d-----w- c:\windows\Panther
2012-04-21 21:40 . 2012-04-22 20:32 -------- d-----w- c:\program files (x86)\Microsoft.NET
2012-04-21 21:37 . 2012-04-21 21:37 -------- d-----w- c:\programdata\RoboForm
2012-04-21 21:20 . 2012-01-25 06:38 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2012-04-21 21:20 . 2012-01-25 06:38 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-04-21 21:19 . 2012-04-21 21:19 0 ----a-w- c:\windows\ativpsrm.bin
2012-04-21 21:07 . 2012-04-21 21:07 -------- d-----w- c:\windows\SysWow64\Wat
2012-04-21 21:07 . 2012-04-21 21:07 -------- d-----w- c:\windows\system32\Wat
2012-04-21 21:07 . 2012-04-21 21:07 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-04-21 21:06 . 2012-04-21 21:06 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-04-21 21:06 . 2012-04-21 21:06 -------- d-----w- c:\program files (x86)\Java
2012-04-21 20:46 . 2012-04-21 20:46 -------- d-----w- c:\programdata\LogiShrd
2012-04-21 20:42 . 2012-04-21 20:42 -------- d-----w- c:\program files (x86)\Logitech
2012-04-21 20:42 . 2012-04-21 20:42 -------- d-----w- c:\programdata\Logitech
2012-04-21 20:41 . 2012-04-21 20:41 -------- d-----w- c:\program files (x86)\Common Files\LWS
2012-04-21 20:41 . 2012-05-01 14:14 -------- d-sh--w- c:\windows\Installer
2012-04-21 20:35 . 2012-04-21 20:35 -------- d-----w- c:\windows\system32\SPReview
2012-04-21 20:35 . 2012-04-21 20:35 -------- d-----w- c:\windows\system32\EventProviders
2012-04-21 20:34 . 2012-03-06 06:53 5559152 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-04-21 20:34 . 2012-03-06 05:59 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-04-21 20:34 . 2012-03-06 05:59 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-04-21 20:32 . 2012-04-21 20:43 -------- d-----w- c:\program files (x86)\Common Files\logishrd
2012-04-21 20:32 . 2012-04-21 20:42 -------- d-----w- c:\program files\Common Files\logishrd
2012-04-21 20:29 . 2010-11-20 13:27 457216 ----a-w- c:\windows\system32\msdrm.dll
2012-04-21 20:28 . 2010-11-20 13:27 527872 ----a-w- c:\windows\system32\wmdrmnet.dll
2012-04-21 20:27 . 2010-11-20 13:27 529408 ----a-w- c:\windows\system32\wbemcomn.dll
2012-04-21 20:27 . 2010-11-20 13:27 244736 ----a-w- c:\program files\Windows Portable Devices\sqmapi.dll
2012-04-21 20:27 . 2010-11-20 13:27 244736 ----a-w- c:\windows\system32\sqmapi.dll
2012-04-21 20:25 . 2012-01-04 10:44 509952 ----a-w- c:\windows\system32\ntshrui.dll
2012-04-21 20:25 . 2012-01-04 08:58 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2012-04-21 20:25 . 2011-12-30 06:26 515584 ----a-w- c:\windows\system32\timedate.cpl
2012-04-21 20:25 . 2011-12-30 05:27 478720 ----a-w- c:\windows\SysWow64\timedate.cpl
2012-04-21 20:24 . 2011-03-12 12:08 1465344 ----a-w- c:\windows\system32\XpsPrint.dll
2012-04-21 20:24 . 2011-03-12 11:23 870912 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2012-04-21 20:24 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
2012-04-21 20:24 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2012-04-21 20:24 . 2011-04-22 22:15 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-22 15:11 . 2011-03-28 23:36 19352 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-04-21 21:12 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-04-21 21:12 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-04-06 02:21 . 2011-04-20 07:09 909312 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-04-06 02:20 . 2011-04-20 07:07 1067520 ----a-w- c:\windows\system32\aticfx64.dll
2012-04-06 02:13 . 2011-04-20 06:59 6800896 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-04-06 02:00 . 2011-04-20 06:27 64000 ----a-w- c:\windows\system32\coinst.dll
2012-04-06 01:54 . 2009-07-13 21:59 7479296 ----a-w- c:\windows\system32\atidxx64.dll
2012-04-06 01:34 . 2009-07-13 21:59 6203392 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-04-06 01:22 . 2009-07-13 21:59 4795904 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-04-06 01:11 . 2011-04-20 06:23 514560 ----a-w- c:\windows\system32\atiadlxx.dll
2012-04-06 01:09 . 2011-04-20 06:21 54784 ----a-w- c:\windows\system32\atiuxp64.dll
2012-04-06 01:09 . 2011-04-20 06:21 41984 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-04-06 01:09 . 2011-04-20 06:21 44544 ----a-w- c:\windows\system32\atiu9p64.dll
2012-04-06 01:09 . 2011-04-20 06:21 32256 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-03-21 01:22 . 2012-03-21 01:22 691896 ----a-w- c:\windows\system32\drivers\avc3.sys
2012-03-09 19:07 . 2012-03-09 19:07 29184 ----a-w- c:\windows\system32\kdbsdk64.dll
2012-03-09 19:06 . 2012-03-09 19:06 24576 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2012-03-08 23:50 . 2012-03-08 23:50 49016 ----a-w- c:\windows\SysWow64\sirenacm.dll
2012-02-29 08:19 . 2012-02-29 08:19 268552 ----a-w- c:\windows\system32\PDBoot.exe
2012-02-28 16:25 . 2012-02-28 16:25 81424 ----a-w- c:\windows\system32\drivers\PDFsFilter.sys
2012-02-23 12:32 . 2012-02-23 12:32 95760 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2012-02-17 21:45 . 2012-02-17 21:45 545064 ----a-w- c:\windows\system32\drivers\avckf.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2012-05-04_16.02.01 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-04-21 20:16 . 2012-05-04 16:19 34810 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-05-04 16:19 31388 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2012-04-21 20:16 . 2012-05-04 16:19 3386 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2761845265-332174530-1650960061-1132_UserData.bin
- 2012-05-04 16:01 . 2012-05-04 16:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-05-04 16:25 . 2012-05-04 16:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-05-04 16:01 . 2012-05-04 16:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-05-04 16:25 . 2012-05-04 16:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-07-14 02:36 . 2012-05-04 15:53 660068 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-05-04 16:11 660068 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-05-04 16:11 120996 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-05-04 15:53 120996 c:\windows\system32\perfc009.dat
+ 2012-04-26 19:57 . 2012-05-04 16:24 749016 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2012-04-26 19:57 . 2012-05-04 15:48 749016 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-14 05:01 . 2012-05-04 16:24 476684 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-05-04 15:48 476684 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2012-04-23 02:13 . 2012-05-04 16:24 1752028 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2761845265-332174530-1650960061-1132-12288.dat
- 2012-04-23 02:13 . 2012-05-04 15:48 1752028 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2761845265-332174530-1650960061-1132-12288.dat
+ 2012-04-21 22:22 . 2012-05-04 16:24 16687364 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2761845265-332174530-1650960061-1132-8192.dat
- 2012-04-21 22:22 . 2012-05-04 15:48 16687364 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2761845265-332174530-1650960061-1132-8192.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"="d:\program files\Sandboxie\SbieCtrl.exe" [2012-04-10 668944]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-04-05 17356424]
"RoboForm"="c:\program files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2012-04-26 109296]
"RocketDock"="d:\program files (x86)\RocketDock\RocketDock.exe" [2007-09-02 495616]
"HydraVisionMDEngine"="c:\program files (x86)\ATI Technologies\HydraVision\HydraMD.exe" [2011-12-06 573440]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2011-12-06 393216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"LWS"="d:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2011-11-11 205336]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"BrMfcWnd"="c:\program files (x86)\Brother\Brmfcmon\BrMfcWnd.exe" [2011-04-01 1163264]
"ControlCenter3"="c:\program files (x86)\Brother\ControlCenter3\brctrcen.exe" [2008-12-24 114688]
"MMReminderService"="d:\program files (x86)\Mindjet\MindManager 10\MMReminderService.exe" [2012-02-27 38248]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-04-27 113288]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-08-11 2472048]
"PlantronicsURE.exe"="c:\program files (x86)\Plantronics\PlantronicsURE\PlantronicsURE.exe" [2012-03-26 624080]
"PlantronicsBatteryStatus.exe"="c:\program files (x86)\Plantronics\PlantronicsURE\PlantronicsBatteryStatus.exe" [2012-03-26 354768]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-06 641664]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Adobe Acrobat Speed Launcher"="d:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2012-04-04 36760]
"Acrobat Assistant 8.0"="d:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2012-04-04 815512]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Snagit 10.lnk - d:\program files (x86)\TechSmith\Snagit 10\Snagit32.exe [2011-3-21 7067464]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-28 253088]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-04-26 129976]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-10 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [x]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-15 466736]
R3 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-03-13 66096]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
S0 mv91xx;mv91xx;c:\windows\system32\DRIVERS\mv91xx.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-15 103504]
S1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 PDFSFilter;PDFSFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys [x]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-04-05 158856]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-12-15 450848]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech HD Pro Webcam C920(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{90EF4A5E-85DB-4825-96F5-1AB93C2A8EEB}]
2012-02-27 09:49 1409 ----a-r- d:\program files (x86)\Mindjet\MindManager 10\sys\MmInternetExplorerActiveSetup.vbs
.
Contents of the 'Scheduled Tasks' folder
.
2012-05-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-23 06:26]
.
2012-05-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132Core.job
- c:\users\JasonB\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-21 20:21]
.
2012-05-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132UA.job
- c:\users\JasonB\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-21 20:21]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-03-22 1067256]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-09-16 497648]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE:
IE: Customize Menu - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Fill Forms - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: Open Client to monitor &1 - c:\windows\web\AOpenClient.htm
IE: Open Client to monitor &2 - c:\windows\web\AOpenClient.htm
IE: Save Forms - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send Image To MindManager - d:\program files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/201
IE: Send Link To MindManager - d:\program files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/203
IE: Send Page To MindManager - d:\program files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/204
IE: Send Text To MindManager - d:\program files (x86)\Mindjet\MindManager 10\Mm8InternetExplorer.dll/202
IE: Show RoboForm Toolbar - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
TCP: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.150
TCP: Interfaces\{FEE59D3E-D8C6-4E29-A7D1-6CEBDD253F5C}: NameServer = 192.168.0.150,192.168.0.1
FF - ProfilePath - c:\users\JasonB\AppData\Roaming\Mozilla\Firefox\Profiles\zkbf87vm.default\
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_233_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_233_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_233.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\windows\SysWOW64\srvany.exe
c:\windows\KMService.exe
.
**************************************************************************
.
Completion time: 2012-05-04 11:28:52 - machine was rebooted
ComboFix-quarantined-files.txt 2012-05-04 16:28
ComboFix2.txt 2012-05-04 16:05
.
Pre-Run: 69,395,496,960 bytes free
Post-Run: 69,166,497,792 bytes free
.
- - End Of File - - 5F9E307DC72DF6CABD090B0D5117B1F0

Edited by Tinger, 04 May 2012 - 11:57 AM.


#7 jntkwx

jntkwx

  • Malware Response Team
  • 4,339 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New England, U.S.A.
  • Local time:12:52 PM

Posted 06 May 2012 - 12:12 PM

Tinger,

Please download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select "Computer" and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list]
Regards,
Jason

 

Simple and easy ways to keep your computer safe and secure on the Internet

If I am helping you and have not returned in 48 hours, please feel free to send me a PM with a link to the topic.
My help is free... however, if you wish to show appreciation and support me personally fighting against malware, please consider a donation: btn_donate_SM.gif


#8 Tinger

Tinger
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:11:52 AM

Posted 07 May 2012 - 09:53 AM

Jason, here is the log from the scan, first section #1, section #2 will post after this.

Scan result of Farbar Recovery Scan Tool Version: 06-05-2012
Ran by SYSTEM at 07-05-2012 09:26:08
Running from G:\
Windows 7 Professional (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [BDAgent] "C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe" [1067256 2012-03-22] (Bitdefender)
HKLM\...\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [497648 2010-09-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LWS] D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide [x]
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [BrMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN [1163264 2011-04-01] ()
HKLM-x32\...\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [MMReminderService] D:\Program Files (x86)\Mindjet\MindManager 10\MMReminderService.exe [x]
HKLM-x32\...\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r [2472048 2010-08-11] (VIA)
HKLM-x32\...\Run: [PlantronicsURE.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsURE.exe [624080 2012-03-26] (Plantronics, Inc.)
HKLM-x32\...\Run: [PlantronicsBatteryStatus.exe] C:\Program Files (x86)\Plantronics\PlantronicsURE\PlantronicsBatteryStatus.exe [354768 2012-03-26] (Plantronics, Inc.)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [641664 2012-04-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml [10752 2012-02-20] ()
HKLM-x32\...\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [843712 2012-01-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [x]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] "D:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [x]
HKU\Jason\...\Run: [Google Update] "C:\Users\JasonB\AppData\Local\Google\Update\GoogleUpdate.exe" /c [116648 2012-04-21] (Google Inc.)
HKU\Jason\...\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [109296 2012-04-26] (Siber Systems)
HKU\Jason\...\Run: [SandboxieControl] "D:\Program Files\Sandboxie\SbieCtrl.exe" [x]
HKU\JasonB\...\Run: [SandboxieControl] "D:\Program Files\Sandboxie\SbieCtrl.exe" [x]
HKU\JasonB\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17356424 2012-04-05] (Skype Technologies S.A.)
HKU\JasonB\...\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [109296 2012-04-26] (Siber Systems)
HKU\JasonB\...\Run: [RocketDock] "D:\Program Files (x86)\RocketDock\RocketDock.exe" [x]
HKU\JasonB\...\Run: [HydraVisionMDEngine] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraMD.exe" [573440 2011-12-05] (AMD)
HKU\JasonB\...\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background [4280184 2012-03-08] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 208.67.222.222 208.67.220.220 192.168.0.150
Tcpip\..\Interfaces\{FEE59D3E-D8C6-4E29-A7D1-6CEBDD253F5C}: [NameServer]192.168.0.150,192.168.0.1

==================== Services (Whitelisted) ======

2 KMService; C:\Windows\SysWow64\srvany.exe [8192 2012-04-22] ()
3 Microsoft SharePoint Workspace Audit Service; "C:\Program Files\Microsoft Office\Office14\GROOVE.EXE" /auditservice [51740536 2011-06-12] (Microsoft Corporation)
3 ose64; "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE" [174440 2010-01-09] (Microsoft Corporation)
3 PDEngine; "C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe" [3291912 2012-02-29] (Raxco Software, Inc.)
3 Update Server; C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [466736 2011-10-14] (BitDefender)
3 UPDATESRV; "C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe" /service [66096 2012-03-13] (Bitdefender)
3 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe /service [1956616 2012-03-23] (Bitdefender)
2 PDAgent; "C:\Program Files\Raxco\PerfectDisk\PDAgent.exe" [x]
2 SbieSvc; "C:\Program Files\Sandboxie\SbieSvc.exe" [x]
3 WinVNC4; "C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service [x]

========================== Drivers (Whitelisted) =============

3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11174400 2012-04-05] (Advanced Micro Devices, Inc.)
3 atikmdag; C:\Windows\System32\Drivers\atikmdag.sys [11174400 2012-04-05] (Advanced Micro Devices, Inc.)
0 avc3; C:\Windows\System32\Drivers\avc3.sys [691896 2012-03-20] (BitDefender)
3 avchv; C:\Windows\System32\Drivers\avchv.sys [258736 2011-11-25] (BitDefender)
3 avckf; C:\Windows\System32\Drivers\avckf.sys [545064 2012-02-17] (BitDefender)
0 bdfsfltr; C:\Windows\System32\Drivers\bdfsfltr.sys [442088 2011-08-16] (BitDefender)
1 bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC)
3 bdsandbox; C:\Windows\System32\Drivers\bdsandbox.sys [79952 2011-11-17] (BitDefender SRL)
1 BDVEDISK; C:\Windows\System32\Drivers\BDVEDISK.sys [103944 2010-01-19] (BitDefender)
3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
0 mv91xx; C:\Windows\System32\Drivers\mv91xx.sys [293416 2010-06-30] (Marvell Semiconductor, Inc.)
2 PDFSFilter; C:\Windows\System32\Drivers\PDFSFilter.sys [81424 2012-02-28] (Raxco Software, Inc.)
3 Revoflt; C:\Windows\System32\Drivers\Revoflt.sys [31800 2009-12-30] (VS Revo Group)
0 storflt; C:\Windows\System32\drivers\vmstorfl.sys [46464 2010-11-20] (Microsoft Corporation)
0 trufos; C:\Windows\System32\Drivers\trufos.sys [329800 2011-10-27] (BitDefender S.R.L.)
3 SbieDrv; \??\D:\Program Files\Sandboxie\SbieDrv.sys [x]

========================== NetSvcs (Whitelisted) ===========

============ One Month Created Files and Folders ==============

2012-05-07 09:25 - 2009-07-13 21:08 - 0000000 ____D C:\FRST
2012-05-07 06:01 - 2012-04-21 12:32 - 1388155 ____A C:\Users\JasonB\Downloads\FRST64.exe
2012-05-07 05:59 - 2012-05-02 17:54 - 0000000 ____D C:\Users\JasonB\AppData\Local\{F07A2071-FEDB-436E-AEA8-08EDBF5944EC}
2012-05-07 05:52 - 2012-04-22 13:14 - 0001066 ____A C:\Users\JasonB\Downloads\whm (1).zip
2012-05-06 17:58 - 2012-05-07 05:59 - 0000000 ____D C:\Users\JasonB\AppData\Local\{F8EDDF54-7333-4C1E-AD0F-37BB5EC28798}
2012-05-06 06:59 - 2012-04-21 12:39 - 0000000 ____D C:\Users\JasonB\AppData\Local\PinPalBot
2012-05-06 05:58 - 2012-05-05 17:58 - 0000000 ____D C:\Users\JasonB\AppData\Local\{7BD42663-702B-4293-9FD8-95176A3ADA87}
2012-05-05 17:58 - 2012-05-07 05:59 - 0000000 ____D C:\Users\JasonB\AppData\Local\{6B8E8031-0B79-4FBA-9A4E-BF139A9EF07F}
2012-05-05 07:27 - 2012-05-07 05:52 - 0001066 ____A C:\Users\JasonB\Downloads\whm.zip
2012-05-05 05:57 - 2012-04-26 04:35 - 0000000 ____D C:\Users\JasonB\AppData\Local\{31606481-F90C-492A-BCA7-ACDA7E7C9353}
2012-05-04 17:57 - 2012-04-24 16:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{4C006677-0932-408C-84A4-019171CFCD42}
2012-05-04 17:56 - 2012-04-23 16:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{66A4353E-E451-460F-B1C1-199A347DE173}
2012-05-04 14:29 - 2012-05-07 09:26 - 4293431296 __ASH C:\hiberfil.sys
2012-05-04 11:41 - 2012-05-04 07:18 - 0220835 ____A C:\Users\JasonB\Desktop\cPanel-WHM-Bulk-Account-Generation.jpg
2012-05-04 09:29 - 2012-05-04 09:29 - 0000822 ____A C:\Users\JasonB\Desktop\Pandora (Saver2).lnk
2012-05-04 09:29 - 2012-05-04 09:29 - 0000692 ____A C:\Users\JasonB\Desktop\Saver2.lnk
2012-05-04 09:29 - 2012-05-01 19:08 - 0000695 ____A C:\Users\JasonB\Desktop\Pandora (Listen Only).lnk
2012-05-04 09:29 - 2012-04-21 15:14 - 2094690 ____A C:\Users\JasonB\Downloads\Saver2Setup (1).exe
2012-05-04 08:39 - 2012-05-02 03:13 - 0000385 ____A C:\Users\JasonB\AppData\Roaminguser_gensett.xml
2012-05-04 08:29 - 2011-09-23 12:53 - 0030410 ____A C:\ComboFix.txt
2012-05-04 08:26 - - 0000000 ____D C:\$RECYCLE.BIN
2012-05-04 07:56 - 2012-05-01 15:48 - 0208896 ____A C:\Windows\MBR.exe
2012-05-04 07:56 - 2009-07-13 23:50 - 0080412 ____A C:\Windows\grep.exe
2012-05-04 07:56 - 2009-07-13 23:46 - 0098816 ____A C:\Windows\sed.exe
2012-05-04 07:56 - 2009-07-13 21:37 - 0000000 ____D C:\Windows\ERDNT
2012-05-04 07:56 - 2009-07-13 21:32 - 0256000 ____A C:\Windows\PEV.exe
2012-05-04 07:56 - 2009-07-13 17:39 - 0068096 ____A C:\Windows\zip.exe
2012-05-04 07:56 - 2009-06-10 12:36 - 0060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2012-05-04 07:56 - 2009-06-10 12:31 - 0518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2012-05-04 07:56 - 2000-08-30 16:00 - 0406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2012-05-04 07:49 - 2009-07-13 17:39 - 0176258 ____A C:\Windows\ntbtlog.txt
2012-05-04 07:40 - 2012-05-01 16:13 - 0000000 ____D C:\Qoobox
2012-05-04 07:18 - 2012-05-01 18:56 - 4483683 ____R (Swearware) C:\Users\JasonB\Desktop\ComboFix.exe
2012-05-04 07:18 - - 0000856 ____A C:\Users\JasonB\Desktop\bleeping.txt
2012-05-04 05:55 - 2012-04-25 04:34 - 0000000 ____D C:\Users\JasonB\AppData\Local\{27E85B9B-782E-447F-A6C6-3E9E289B5982}
2012-05-03 17:55 - 2012-05-01 05:51 - 0000000 ____D C:\Users\JasonB\AppData\Local\{464373D9-9BE2-4ED4-9864-F27FC584493D}
2012-05-03 05:55 - 2012-04-27 04:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{DA98FCC2-0250-4C6D-8A5C-1178C4A452AB}
2012-05-02 17:54 - 2012-05-01 05:51 - 0000000 ____D C:\Users\JasonB\AppData\Local\{EED7F0DE-0012-4610-AF7A-B5E8C2DD4187}
2012-05-02 05:54 - 2012-05-04 05:55 - 0000000 ____D C:\Users\JasonB\AppData\Local\{1CF5FAF8-CB43-45F2-8560-4EF27EA19223}
2012-05-02 05:53 - 2012-04-28 04:37 - 0000000 ____D C:\Users\JasonB\AppData\Local\{18888CDE-7D08-40D5-8B46-88D4EDEF5BA8}
2012-05-02 05:10 - 2012-04-30 13:55 - 0001456 ____A C:\Users\JasonB\AppData\Local\Adobe Save for Web 12.0 Prefs
2012-05-01 19:09 - 2012-05-01 15:25 - 0148962 ____A C:\Users\JasonB\Desktop\Extras.Txt
2012-05-01 19:08 - 2012-05-01 18:56 - 0595436 ____A C:\Users\JasonB\Desktop\OTL.Txt
2012-05-01 19:04 - 2012-04-21 12:52 - 0607260 ____R (Swearware) C:\Users\JasonB\Downloads\dds.scr
2012-05-01 18:56 - 2012-04-21 15:26 - 0595456 ____A (OldTimer Tools) C:\Users\JasonB\Downloads\OTL.exe
2012-05-01 17:52 - 2012-05-03 05:55 - 0000000 ____D C:\Users\JasonB\AppData\Local\{DCDA4339-D4FB-413C-A612-D11AE758FD3C}
2012-05-01 17:52 - 2012-04-25 16:35 - 0000000 ____D C:\Users\JasonB\AppData\Local\{3C0C0030-9CF5-4923-8B65-617D0C6E74D7}
2012-05-01 16:13 - 2012-04-21 12:09 - 0000000 ____D C:\Users\All Users\Office Genuine Advantage
2012-05-01 16:13 - 2012-04-21 12:09 - 0000000 ____D C:\ProgramData\Office Genuine Advantage
2012-05-01 16:12 - 2012-05-01 16:10 - 2031992 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\MGADiag.exe
2012-05-01 16:10 - 2012-05-01 19:09 - 0016102 ____A C:\Users\JasonB\Desktop\MBRCheck_05.01.12_19.10.48.txt
2012-05-01 16:10 - 2012-05-01 16:03 - 0080384 ____A C:\Users\JasonB\Downloads\MBRCheck.exe
2012-05-01 16:07 - 2012-04-26 03:50 - 0879714 ____A C:\Users\JasonB\Downloads\SecurityCheck.exe
2012-05-01 16:06 - 2012-05-04 07:18 - 0000564 ____A C:\Users\JasonB\Desktop\catchme.log
2012-05-01 16:03 - 2012-05-01 16:00 - 0000227 ____A C:\Users\JasonB\Downloads\mbr.log
2012-05-01 16:00 - 2012-04-30 15:18 - 0089088 ____A C:\Users\JasonB\Downloads\mbr.exe
2012-05-01 16:00 - 2012-04-25 13:20 - 0147456 ____A C:\Users\JasonB\Downloads\catchme.exe
2012-05-01 15:59 - 2012-04-21 13:06 - 0302592 ____A C:\Users\JasonB\Downloads\cnbie1wu.exe
2012-05-01 15:55 - 2012-04-24 05:08 - 0633454 ____A C:\TDSSKiller.2.7.33.0_01.05.2012_18.55.30_log.txt
2012-05-01 15:54 - 2010-07-11 12:47 - 1974616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2012-05-01 15:54 - 2010-07-11 12:47 - 0453456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2012-05-01 15:54 - 2010-05-26 08:41 - 5554512 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2012-05-01 15:54 - 2010-05-26 08:41 - 5501792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2012-05-01 15:54 - 2010-05-26 08:41 - 0285024 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2012-05-01 15:54 - 2010-05-26 08:41 - 0235344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2012-05-01 15:54 - 2010-02-04 07:01 - 0527192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2012-05-01 15:54 - 2010-02-04 07:01 - 0518488 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2012-05-01 15:54 - 2010-02-04 07:01 - 0239960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2012-05-01 15:54 - 2010-02-04 07:01 - 0176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2012-05-01 15:54 - 2010-02-04 07:01 - 0077656 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2012-05-01 15:54 - 2010-02-04 07:01 - 0074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2012-05-01 15:54 - 2009-09-04 14:44 - 0530776 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2012-05-01 15:54 - 2009-09-04 14:44 - 0528216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2012-05-01 15:54 - 2009-09-04 14:44 - 0238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2012-05-01 15:54 - 2009-09-04 14:44 - 0176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2012-05-01 15:54 - 2009-09-04 14:44 - 0078680 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2012-05-01 15:54 - 2009-09-04 14:44 - 0074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 2526056 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 2401112 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 2106216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 1998168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 1907552 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 1868128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 0511328 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 0470880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 0276832 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2012-05-01 15:54 - 2009-09-04 14:29 - 0248672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2012-05-01 15:54 - 2009-03-16 11:18 - 0517960 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2012-05-01 15:54 - 2009-03-16 11:18 - 0515416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2012-05-01 15:54 - 2009-03-16 11:18 - 0238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2012-05-01 15:54 - 2009-03-16 11:18 - 0176968 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2012-05-01 15:54 - 2009-03-16 11:18 - 0024920 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2012-05-01 15:54 - 2009-03-16 11:18 - 0022360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2012-05-01 15:54 - 2009-03-09 12:27 - 2582888 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2012-05-01 15:54 - 2009-03-09 12:27 - 2475352 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2012-05-01 15:54 - 2009-03-09 12:27 - 1892184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2012-05-01 15:54 - 2009-03-09 12:27 - 0523088 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0521560 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0517448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0235352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0174936 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0073544 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0069464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0024920 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2012-05-01 15:54 - 2008-10-27 07:04 - 0022360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2012-05-01 15:54 - 2008-10-10 01:52 - 5425496 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2012-05-01 15:54 - 2008-10-10 01:52 - 4178264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2012-05-01 15:54 - 2008-10-10 01:52 - 2430312 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2012-05-01 15:54 - 2008-10-10 01:52 - 0520544 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2012-05-01 15:54 - 2008-07-31 07:41 - 0235856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2012-05-01 15:54 - 2008-07-31 07:41 - 0175440 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2012-05-01 15:54 - 2008-07-31 07:41 - 0074576 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2012-05-01 15:54 - 2008-07-31 07:41 - 0070992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2012-05-01 15:54 - 2008-07-31 07:40 - 0518480 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2012-05-01 15:54 - 2008-07-31 07:40 - 0514384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2012-05-01 15:54 - 2008-07-10 08:01 - 0452440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2012-05-01 15:54 - 2008-07-10 08:00 - 5631312 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2012-05-01 15:54 - 2008-07-10 08:00 - 4379984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2012-05-01 15:54 - 2008-07-10 08:00 - 2605920 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2012-05-01 15:54 - 2008-07-10 08:00 - 2036576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2012-05-01 15:54 - 2008-07-10 08:00 - 0519000 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2012-05-01 15:54 - 2008-05-30 11:19 - 0513544 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2012-05-01 15:54 - 2008-05-30 11:19 - 0509448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2012-05-01 15:54 - 2008-05-30 11:18 - 0238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2012-05-01 15:54 - 2008-05-30 11:18 - 0177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2012-05-01 15:54 - 2008-05-30 11:17 - 0072200 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2012-05-01 15:54 - 2008-05-30 11:17 - 0068616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2012-05-01 15:54 - 2008-05-30 11:17 - 0023376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2012-05-01 15:54 - 2008-05-30 11:16 - 0025936 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2012-05-01 15:53 - 2010-11-20 05:26 - 1400176 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_33.dll
2012-05-01 15:53 - 2010-11-20 04:18 - 1123696 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2012-05-01 15:53 - 2010-06-02 01:55 - 0489480 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll
2012-05-01 15:53 - 2010-06-02 01:55 - 0479752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2012-05-01 15:53 - 2010-06-02 01:55 - 0068104 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll
2012-05-01 15:53 - 2010-06-02 01:55 - 0065032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2012-05-01 15:53 - 2010-05-26 08:41 - 3544272 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_24.dll
2012-05-01 15:53 - 2010-05-26 08:41 - 2222800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2012-05-01 15:53 - 2010-05-26 08:41 - 0469264 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10.dll
2012-05-01 15:53 - 2010-02-04 07:01 - 0355536 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_0.dll
2012-05-01 15:53 - 2010-02-04 07:01 - 0230096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2012-05-01 15:53 - 2009-07-13 21:37 - 0010085 ____A C:\Windows\DirectX.log
2012-05-01 15:53 - 2009-07-13 17:41 - 0016592 ____A (Microsoft Corporation) C:\Windows\System32\x3daudio1_0.dll
2012-05-01 15:53 - 2009-07-13 17:39 - 0083664 ____A (Microsoft Corporation) C:\Windows\System32\xinput1_1.dll
2012-05-01 15:53 - 2009-07-13 17:16 - 0014032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2012-05-01 15:53 - 2009-07-13 17:15 - 0440080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2012-05-01 15:53 - 2009-07-13 17:14 - 0062672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2012-05-01 15:53 - 2008-05-30 11:11 - 4992520 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_39.dll
2012-05-01 15:53 - 2008-05-30 11:11 - 3851784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2012-05-01 15:53 - 2008-05-30 11:11 - 1942552 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_39.dll
2012-05-01 15:53 - 2008-05-30 11:11 - 1493528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2012-05-01 15:53 - 2008-05-30 11:11 - 0540688 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_39.dll
2012-05-01 15:53 - 2008-05-30 11:11 - 0467984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2012-05-01 15:53 - 2008-03-05 13:04 - 0511496 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll
2012-05-01 15:53 - 2008-03-05 13:03 - 0507400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2012-05-01 15:53 - 2008-03-05 13:03 - 0238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2012-05-01 15:53 - 2008-03-05 13:03 - 0177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll
2012-05-01 15:53 - 2008-03-05 13:00 - 0028168 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll
2012-05-01 15:53 - 2008-03-05 13:00 - 0025608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2012-05-01 15:53 - 2008-03-05 12:56 - 4991496 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll
2012-05-01 15:53 - 2008-03-05 12:56 - 3850760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2012-05-01 15:53 - 2008-03-05 12:56 - 1941528 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll
2012-05-01 15:53 - 2008-03-05 12:56 - 1491992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2012-05-01 15:53 - 2008-02-05 20:07 - 0540688 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll
2012-05-01 15:53 - 2008-02-05 20:07 - 0467984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2012-05-01 15:53 - 2007-10-22 00:40 - 0354072 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_2.dll
2012-05-01 15:53 - 2007-10-22 00:39 - 0230168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2012-05-01 15:53 - 2007-10-22 00:37 - 0028168 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll
2012-05-01 15:53 - 2007-10-22 00:37 - 0025608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2012-05-01 15:53 - 2007-10-12 12:14 - 4910088 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll
2012-05-01 15:53 - 2007-10-12 12:14 - 3786760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2012-05-01 15:53 - 2007-10-12 12:14 - 1860120 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll
2012-05-01 15:53 - 2007-10-12 12:14 - 1420824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2012-05-01 15:53 - 2007-10-02 06:56 - 0529424 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll
2012-05-01 15:53 - 2007-10-02 06:56 - 0462864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2012-05-01 15:53 - 2007-07-19 21:57 - 0238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2012-05-01 15:53 - 2007-07-19 21:57 - 0177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll
2012-05-01 15:53 - 2007-07-19 15:14 - 5081608 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_36.dll
2012-05-01 15:53 - 2007-07-19 15:14 - 3734536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2012-05-01 15:53 - 2007-07-19 15:14 - 2006552 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_36.dll
2012-05-01 15:53 - 2007-07-19 15:14 - 1374232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2012-05-01 15:53 - 2007-07-19 15:14 - 0508264 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_36.dll
2012-05-01 15:53 - 2007-07-19 15:14 - 0444776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2012-05-01 15:53 - 2007-06-20 17:49 - 0411496 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_9.dll
2012-05-01 15:53 - 2007-06-20 17:46 - 0267112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2012-05-01 15:53 - 2007-05-16 13:45 - 5073256 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll
2012-05-01 15:53 - 2007-05-16 13:45 - 3727720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2012-05-01 15:53 - 2007-05-16 13:45 - 1985904 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_35.dll
2012-05-01 15:53 - 2007-05-16 13:45 - 1358192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2012-05-01 15:53 - 2007-05-16 13:45 - 0508264 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_35.dll
2012-05-01 15:53 - 2007-05-16 13:45 - 0444776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2012-05-01 15:53 - 2007-04-04 15:55 - 0409960 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_8.dll
2012-05-01 15:53 - 2007-04-04 15:55 - 0266088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2012-05-01 15:53 - 2007-03-15 13:57 - 0506728 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_34.dll
2012-05-01 15:53 - 2007-03-15 13:57 - 0443752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2012-05-01 15:53 - 2007-03-12 13:42 - 4496232 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_34.dll
2012-05-01 15:53 - 2007-03-12 13:42 - 3497832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2012-05-01 15:53 - 2007-03-12 13:42 - 1401200 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_34.dll
2012-05-01 15:53 - 2007-03-12 13:42 - 1124720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2012-05-01 15:53 - 2007-03-05 09:42 - 0021000 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll
2012-05-01 15:53 - 2007-03-05 09:42 - 0017928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2012-05-01 15:53 - 2007-01-24 12:27 - 0403304 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_7.dll
2012-05-01 15:53 - 2007-01-24 12:27 - 0261480 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2012-05-01 15:53 - 2006-12-08 09:02 - 0255848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2012-05-01 15:53 - 2006-12-08 09:00 - 0393576 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_6.dll
2012-05-01 15:53 - 2006-11-29 10:06 - 4494184 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_33.dll
2012-05-01 15:53 - 2006-11-29 10:06 - 3495784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2012-05-01 15:53 - 2006-11-29 10:06 - 0506728 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_33.dll
2012-05-01 15:53 - 2006-11-29 10:06 - 0443752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2012-05-01 15:53 - 2006-09-28 13:05 - 4398360 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll
2012-05-01 15:53 - 2006-09-28 13:05 - 3426072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2012-05-01 15:53 - 2006-09-28 13:05 - 0251672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2012-05-01 15:53 - 2006-09-28 13:04 - 0390424 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_5.dll
2012-05-01 15:53 - 2006-07-28 06:31 - 0107368 ____A (Microsoft Corporation) C:\Windows\System32\xinput1_3.dll
2012-05-01 15:53 - 2006-07-28 06:30 - 0364824 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_4.dll
2012-05-01 15:53 - 2006-07-28 06:30 - 0237848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2012-05-01 15:53 - 2006-07-28 06:30 - 0081768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2012-05-01 15:53 - 2006-05-31 04:24 - 0236824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2012-05-01 15:53 - 2006-05-31 04:22 - 0363288 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_3.dll
2012-05-01 15:53 - 2006-03-31 09:41 - 3977496 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_31.dll
2012-05-01 15:53 - 2006-03-31 09:40 - 2414360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2012-05-01 15:53 - 2006-03-31 09:40 - 0411656 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll
2012-05-01 15:53 - 2006-03-31 09:39 - 0267272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2012-05-01 15:53 - 2006-03-31 09:39 - 0083736 ____A (Microsoft Corporation) C:\Windows\System32\xinput1_2.dll
2012-05-01 15:53 - 2006-03-31 09:39 - 0062744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2012-05-01 15:53 - 2006-02-03 05:43 - 3927248 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll
2012-05-01 15:53 - 2006-02-03 05:43 - 2388176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2012-05-01 15:53 - 2006-02-03 05:42 - 0352464 ____A (Microsoft Corporation) C:\Windows\System32\xactengine2_1.dll
2012-05-01 15:53 - 2006-02-03 05:42 - 0229584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2012-05-01 15:53 - 2006-02-03 05:41 - 0017688 ____A (Microsoft Corporation) C:\Windows\System32\x3daudio1_1.dll
2012-05-01 15:53 - 2006-02-03 05:41 - 0015128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2012-05-01 15:53 - 2005-12-05 15:09 - 3830992 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_29.dll
2012-05-01 15:53 - 2005-12-05 15:09 - 2332368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2012-05-01 15:53 - 2005-07-22 16:59 - 3815120 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_28.dll
2012-05-01 15:53 - 2005-07-22 16:59 - 2323664 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2012-05-01 15:53 - 2005-05-26 12:34 - 3807440 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_27.dll
2012-05-01 15:53 - 2005-05-26 12:34 - 2319568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2012-05-01 15:53 - 2005-03-18 14:19 - 3767504 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_26.dll
2012-05-01 15:53 - 2005-03-18 14:19 - 2297552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2012-05-01 15:53 - 2005-02-05 16:45 - 3823312 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_25.dll
2012-05-01 15:53 - 2005-02-05 16:45 - 2337488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2012-05-01 15:51 - 2012-04-26 11:44 - 2074160 ____A (Kaspersky Lab ZAO) C:\Users\JasonB\Desktop\TDSSKiller.exe
2012-05-01 15:51 - 2012-04-23 05:19 - 2054861 ____A C:\Users\JasonB\Downloads\tdsskiller (1).zip
2012-05-01 15:49 - 2012-04-26 14:23 - 0000316 ____A C:\Users\JasonB\Downloads\RootKitBusterDebug20120501_00.log
2012-05-01 15:48 - 2012-05-01 15:49 - 8656400 ____A (Trend Micro Inc.) C:\Users\JasonB\Downloads\RootkitBuster_v5_1050.exe
2012-05-01 15:48 - 2009-07-13 17:15 - 0000000 ____D C:\Windows\SysWOW64\directx
2012-05-01 12:42 - 2012-05-01 12:24 - 4734958 ____A C:\Users\JasonB\Downloads\EWP1.3.4.zip
2012-05-01 12:24 - 2012-04-21 15:23 - 1063252 ____A C:\Users\JasonB\Downloads\ewp1.3.2.rar
2012-05-01 06:03 - 2012-05-04 11:41 - 0002830 ____A C:\Users\JasonB\Desktop\Domains.txt
2012-05-01 05:51 - 2012-05-01 17:52 - 0000000 ____D C:\Users\JasonB\AppData\Local\{42268C6D-545B-4080-B2FB-88D3A9EF863C}
2012-04-30 17:51 - 2012-04-24 04:34 - 0000000 ____D C:\Users\JasonB\AppData\Local\{BE1DF785-22D5-4E2A-B21D-FB2FCE532C81}
2012-04-30 15:18 - 2012-04-23 18:07 - 0000528 ____A C:\Users\JasonB\Downloads\license.php
2012-04-30 15:17 - 2012-04-25 13:20 - 4878656 ____A C:\Users\JasonB\Downloads\activeCollab-smallbiz_2.3.9.zip
2012-04-30 06:56 - - 0001769 ____A C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
2012-04-30 05:51 - 2012-04-25 04:34 - 0000000 ____D C:\Users\JasonB\AppData\Local\{A5C270ED-52C6-4ABE-91D9-27D7ABBC379D}
2012-04-30 05:50 - 2012-04-26 16:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{E24A9C87-4905-4EA2-8B86-F3EE4AC9F317}
2012-04-30 04:33 - 2012-04-25 07:23 - 134597959 ____A C:\Users\JasonB\Downloads\2012 Straight Talk Video.zip
2012-04-28 04:37 - 2012-05-04 17:57 - 0000000 ____D C:\Users\JasonB\AppData\Local\{52FBC984-540E-40DF-B944-E237C00FE40C}
2012-04-27 22:26 - 2012-05-05 07:26 - 8744608 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2012-04-27 16:36 - 2012-04-30 17:51 - 0000000 ____D C:\Users\JasonB\AppData\Local\{C4C847CD-A37D-4512-A0A3-F4AF437CF0D7}
2012-04-27 16:36 - 2012-04-23 04:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{01409BA9-4585-4DAB-9623-6A185CBFC92F}
2012-04-27 15:15 - 2012-04-24 05:05 - 2605380 ____A C:\Users\JasonB\Downloads\vectorstock_89345.zip
2012-04-27 15:07 - 2012-05-03 13:26 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-04-27 14:38 - 2012-04-27 14:30 - 1287528 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\wlsetup-web (2).exe
2012-04-27 14:30 - 2012-04-26 12:05 - 1287528 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\wlsetup-web (1).exe
2012-04-27 13:40 - 2012-05-04 08:26 - 0000000 ____D C:\AMD
2012-04-27 06:21 - 2012-04-22 11:37 - 0000000 ____D C:\Users\All Users\regid.1986-12.com.adobe
2012-04-27 06:21 - 2012-04-22 11:37 - 0000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2012-04-27 05:58 - 2012-04-30 15:03 - 0000000 ____D C:\Users\All Users\ALM
2012-04-27 05:58 - 2012-04-30 15:03 - 0000000 ____D C:\ProgramData\ALM
2012-04-27 05:05 - 2012-05-07 06:01 - 0000000 ____D C:\Users\JasonB\dwhelper
2012-04-27 04:43 - - 0000000 ____D C:\Users\Public\Documents\Adobe
2012-04-27 04:37 - 2012-04-26 15:28 - 0000000 ____D C:\Program Files (x86)\Adobe Media Player
2012-04-27 04:36 - 2012-04-22 12:20 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8585B855-AE33-45F4-A191-036DCA41FE51}
2012-04-26 16:36 - 2012-04-23 04:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{E1FFD0B7-A73D-48DA-B981-AF364B12337C}
2012-04-26 16:35 - 2012-04-27 16:37 - 0000000 ____D C:\Users\JasonB\AppData\Local\{D766080D-4B43-43F3-A4B0-E2A6AAA817A1}
2012-04-26 15:36 - 2012-04-26 13:17 - 0000000 ____D C:\Program Files (x86)\My Company Name
2012-04-26 15:36 - 2009-07-13 15:19 - 0055280 ____N (Sonic Solutions) C:\Windows\System32\Drivers\PxHlpa64.sys
2012-04-26 15:36 - 2009-07-13 15:19 - 0010224 ____N (Sonic Solutions) C:\Windows\System32\Drivers\cdr4_xp.sys
2012-04-26 15:36 - 2009-06-23 00:00 - 0010224 ____N (Sonic Solutions) C:\Windows\System32\Drivers\cdralw2k.sys
2012-04-26 15:28 - - 0000000 ____D C:\Program Files\Common Files\Adobe
2012-04-26 15:28 - - 0000000 ____D C:\Program Files\Adobe
2012-04-26 14:23 - 2012-04-26 04:37 - 6463660 ____A (Punk Software ) C:\Users\JasonB\Downloads\RocketDock-v1.3.5.exe
2012-04-26 14:16 - 2009-07-13 17:41 - 5898240 ____A C:\Windows\System32\USBForumTrace.etl
2012-04-26 14:13 - 2012-04-22 10:19 - 5474770 ____A C:\Users\JasonB\Downloads\RCR-103 driver V1.0.rar
2012-04-26 12:41 - 2012-04-26 12:07 - 0509264 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\winsdk_web (1).exe
2012-04-26 12:40 - 2009-07-13 17:14 - 55154568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe
2012-04-26 12:09 - 2009-07-13 17:16 - 0772558 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2012-04-26 12:07 - 2012-04-22 14:24 - 15659960 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\Windows-KB890830-V4.7.exe
2012-04-26 12:07 - 2012-04-22 14:23 - 0889416 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\dotNetFx40_Full_setup.exe
2012-04-26 12:05 - 2012-04-26 12:41 - 0509264 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\winsdk_web.exe
2012-04-26 11:50 - 2012-05-04 08:47 - 0000000 ____D C:\Users\JasonB\AppData\Local\ATI
2012-04-26 11:50 - 2012-05-03 16:52 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\ATI
2012-04-26 11:50 - 2012-04-27 06:11 - 0000000 ____D C:\Program Files\Common Files\ATI Technologies
2012-04-26 11:50 - 2012-04-27 05:58 - 0000000 ____D C:\Users\All Users\AMD
2012-04-26 11:50 - 2012-04-27 05:58 - 0000000 ____D C:\ProgramData\AMD
2012-04-26 11:50 - 2012-04-27 04:37 - 0000000 ____D C:\Program Files (x86)\AMD APP
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Program Files (x86)\AMD AVT
2012-04-26 11:50 - 2009-07-13 21:08 - 0000000 ____D C:\Users\All Users\ATI
2012-04-26 11:50 - 2009-07-13 21:08 - 0000000 ____D C:\ProgramData\ATI
2012-04-26 11:49 - 2012-04-26 11:50 - 0000000 ____D C:\Program Files (x86)\ATI Technologies
2012-04-26 11:49 - 2012-04-26 11:46 - 0000000 ____D C:\Program Files\ATI
2012-04-26 11:46 - 2012-04-27 06:07 - 0000000 ____D C:\Program Files\AMD
2012-04-26 11:43 - 2012-05-04 09:29 - 190194180 ____A C:\Users\JasonB\Desktop\svchost.DMP
2012-04-26 11:42 - 2012-04-21 15:06 - 0792704 ____A (AMD) C:\Users\JasonB\Downloads\amddriverdownloader.exe
2012-04-26 11:34 - 2012-05-07 06:11 - 0000000 ____A C:\Windows\setuperr.log
2012-04-26 11:34 - 2011-06-25 22:45 - 0045568 ____A C:\Windows\PFRO.log
2012-04-26 11:34 - 2009-07-13 20:45 - 0010580 ____A C:\Windows\setupact.log
2012-04-26 04:37 - 2012-04-26 14:13 - 12512688 ____A (Siber Systems) C:\Users\JasonB\Downloads\RoboForm-Setup.exe
2012-04-26 04:35 - 2012-05-04 05:55 - 0000000 ____D C:\Users\JasonB\AppData\Local\{292AF1FA-A40C-4E4B-9702-CC789B287443}
2012-04-26 03:59 - 2012-04-26 03:59 - 0000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2012-04-26 03:59 - 2012-04-22 12:53 - 0000000 ____D C:\Users\All Users\Mozilla
2012-04-26 03:59 - 2012-04-22 12:53 - 0000000 ____D C:\ProgramData\Mozilla
2012-04-26 03:50 - 2012-04-22 09:17 - 0042000 ____A C:\Users\JasonB\Downloads\scroll bar.png
2012-04-25 16:35 - 2012-05-05 05:58 - 0000000 ____D C:\Users\JasonB\AppData\Local\{3307F112-8D3E-49C6-946B-BEE65E20E714}
2012-04-25 16:34 - 2012-04-24 16:34 - 0000000 ____D C:\Users\JasonB\AppData\Local\{B3DE35E7-70E7-4379-BFF3-9B1CC2FFFEC2}
2012-04-25 13:20 - 2012-04-30 04:38 - 0002102 ____A C:\Users\JasonB\Downloads\91387d3d31e0bf46c31a70b22ccd27a4e4f49338.csv
2012-04-25 13:20 - 2012-04-25 03:45 - 0015826 ____A C:\Users\JasonB\Downloads\c9e888cfa8a011929d66c93dee5010acea779c20.csv
2012-04-25 13:12 - 2012-04-22 16:49 - 0019210 ____A C:\Users\JasonB\Downloads\b4c1eb338123564ea38eee2500a59021292ac23b.csv
2012-04-25 07:23 - - 0008191 ____A C:\Users\JasonB\Downloads\020f1149939182b3c19bc785dce43e664baf5647.csv
2012-04-25 04:34 - 2012-04-22 20:05 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8C3836AF-5E29-4594-9A77-BADB639C23F9}
2012-04-25 03:44 - 2012-04-22 06:59 - 0135692 ____A C:\Users\JasonB\Downloads\Blogger_login details_wrong.jpg
2012-04-24 17:06 - 2012-04-22 16:53 - 0009191 ____A C:\Users\JasonB\Downloads\PageLines-PlatformPro-Settings-20120425.dat
2012-04-24 16:34 - 2012-04-30 05:51 - 0000000 ____D C:\Users\JasonB\AppData\Local\{A9D9BC34-74F0-4CDF-93D1-40D22414B771}
2012-04-24 16:33 - 2012-05-03 17:55 - 0000000 ____D C:\Users\JasonB\AppData\Local\{467F644C-3FB1-4C0B-89DB-F0EE58DD948A}
2012-04-24 09:25 - 2012-04-21 14:13 - 0581897 ____A C:\Users\JasonB\Downloads\Statement_Apr 2012.pdf
2012-04-24 05:08 - 2012-05-04 08:20 - 0249794 ____A C:\TDSSKiller.2.7.32.0_24.04.2012_08.08.12_log.txt
2012-04-24 05:05 - 2012-05-01 15:51 - 2054550 ____A C:\Users\JasonB\Downloads\tdsskiller.zip
2012-04-24 04:33 - 2012-04-22 12:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{BCFC49F1-AD86-4D74-AFD0-03E9FE9C2495}
2012-04-23 18:07 - 2012-04-22 15:39 - 0008548 ____A C:\Users\JasonB\Downloads\keyword_ideas_20120423_1907880.csv
2012-04-23 16:33 - 2012-05-02 05:54 - 0000000 ____D C:\Users\JasonB\AppData\Local\{20E933C8-AB50-4DDE-9B9E-126763A802CE}
2012-04-23 16:33 - 2012-04-28 04:37 - 0000000 ____D C:\Users\JasonB\AppData\Local\{535429F2-E116-488E-A073-749A7C1F2235}
2012-04-23 15:46 - 2012-04-25 13:12 - 27109422 ____A C:\Users\JasonB\Downloads\Belts-For-Men-720.mp4
2012-04-23 15:41 - 2012-04-26 11:42 - 11151133 ____A C:\Users\JasonB\Downloads\animoto_360p.mp4
2012-04-23 13:31 - 2012-04-27 15:07 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\TechSmith
2012-04-23 07:31 - 2012-04-21 12:14 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\ImgBurn
2012-04-23 06:21 - 2012-05-07 06:08 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\FLEXnet
2012-04-23 06:21 - 2012-05-06 06:59 - 0000000 ____D C:\Users\JasonB\AppData\Local\Plantronics
2012-04-23 06:21 - 2012-05-01 16:13 - 0000000 ____D C:\Users\All Users\Plantronics
2012-04-23 06:21 - 2012-05-01 16:13 - 0000000 ____D C:\ProgramData\Plantronics
2012-04-23 06:21 - 2012-04-26 15:36 - 0000000 ____D C:\Program Files (x86)\Plantronics
2012-04-23 06:21 - 2012-04-22 17:54 - 0000000 ____D C:\Program Files (x86)\Winamp
2012-04-23 06:21 - 2012-04-21 12:42 - 0000000 ____D C:\Users\All Users\Macrovision
2012-04-23 06:21 - 2012-04-21 12:42 - 0000000 ____D C:\ProgramData\Macrovision
2012-04-23 06:21 - 2009-07-13 21:08 - 0000000 ____D C:\Users\All Users\FLEXnet
2012-04-23 06:21 - 2009-07-13 21:08 - 0000000 ____D C:\ProgramData\FLEXnet
2012-04-23 06:09 - 2009-07-13 20:54 - 0001829 ____A C:\Users\All Users\Start Menu\Programs\Startup\Snagit 10.lnk
2012-04-23 06:08 - 2012-04-22 17:47 - 0000000 ____D C:\Users\JasonB\AppData\Local\TechSmith
2012-04-23 06:08 - 2012-04-21 13:07 - 0000000 ____D C:\Users\All Users\TechSmith
2012-04-23 06:08 - 2012-04-21 13:07 - 0000000 ____D C:\ProgramData\TechSmith
2012-04-23 05:19 - 2012-04-24 09:25 - 16057736 ____A (SUPERAntiSpyware.com) C:\Users\JasonB\Downloads\SUPERAntiSpyware.exe
2012-04-23 05:12 - 2009-07-13 17:38 - 0083968 ____A (Brother Industries, Ltd.) C:\Windows\System32\BrNetSti.dll
2012-04-23 05:12 - 2005-04-22 10:36 - 1560576 ____A (Brother Industries, Ltd.) C:\Windows\System32\BrWi209c.dll
2012-04-23 05:12 - 2002-11-26 10:43 - 0176128 ____A (Brother Industries, Ltd.) C:\Windows\SysWOW64\BROSNMP.DLL
2012-04-23 04:56 - 2012-05-01 16:11 - 0595456 ____A (OldTimer Tools) C:\Users\JasonB\Desktop\OTL.exe
2012-04-23 04:39 - 2012-05-07 05:54 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\SQLyog
2012-04-23 04:39 - 2012-05-01 13:02 - 1857786 ____A C:\Users\JasonB\Downloads\ProcessExplorer.zip
2012-04-23 04:36 - 2009-06-10 12:30 - 0000000 ____D C:\Windows\pss
2012-04-23 04:33 - 2012-05-01 17:52 - 0000000 ____D C:\Users\JasonB\AppData\Local\{E082A6AE-439B-458B-8538-44A213D7AAA3}
2012-04-23 04:32 - 2012-05-07 05:59 - 0000000 ____D C:\Users\JasonB\AppData\Local\{002F9462-B996-4D73-BC76-1E643974F98F}
2012-04-22 20:05 - 2012-04-27 04:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8B8B80CE-3614-4963-A4AA-58855E7C9BDC}
2012-04-22 17:58 - 2012-04-22 07:01 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Skype
2012-04-22 17:58 - 2012-04-21 13:37 - 0000000 ____D C:\Users\All Users\Skype
2012-04-22 17:58 - 2012-04-21 13:37 - 0000000 ____D C:\ProgramData\Skype
2012-04-22 17:58 - 2012-04-21 12:41 - 0002515 ____A C:\Users\Public\Desktop\Skype.lnk
2012-04-22 17:58 - 2012-04-21 12:29 - 0000000 ___RD C:\Program Files (x86)\Skype
2012-04-22 17:57 - 2012-04-21 14:11 - 0944264 ____A (Skype Technologies S.A.) C:\Users\JasonB\Downloads\SkypeSetup.exe
2012-04-22 17:54 - 2012-05-01 15:53 - 0016896 ____A (ASUS) C:\Windows\AsTaskSched.dll
2012-04-22 17:54 - 2012-05-01 06:14 - 0001202 ____A C:\Users\Public\Desktop\HD VDeck.lnk
2012-04-22 17:53 - 2009-07-13 21:32 - 0414632 ____N (Microsoft Corporation) C:\Windows\difxapi.dll
2012-04-22 17:53 - 2009-07-13 20:57 - 0000000 ____D C:\Program Files (x86)\VIA
2012-04-22 17:48 - 2012-04-22 17:54 - 0000000 ____D C:\Program Files (x86)\Intel
2012-04-22 17:48 - 2009-07-13 15:40 - 0053248 ____A (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2012-04-22 17:47 - 2012-05-07 06:11 - 0000000 ____D C:\Intel
2012-04-22 17:47 - 2012-04-23 19:47 - 0000017 ____A C:\Users\JasonB\AppData\Local\resmon.resmoncfg
2012-04-22 17:26 - 2012-05-05 07:26 - 0151552 ____A C:\Windows\KMService.exe
2012-04-22 17:26 - 2009-07-13 17:16 - 0008192 ____A C:\Windows\SysWOW64\srvany.exe
2012-04-22 17:03 - 2012-05-01 15:53 - 0000000 ____D C:\Windows\Minidump
2012-04-22 16:53 - 2012-04-22 16:48 - 0546008 ____A C:\Users\JasonB\Downloads\OTS.Txt
2012-04-22 16:49 - 2012-04-23 15:41 - 4731392 ____A (AVAST Software) C:\Users\JasonB\Downloads\aswMBR.exe
2012-04-22 16:48 - 2012-05-01 18:56 - 0646656 ____A (OldTimer Tools) C:\Users\JasonB\Downloads\OTS.exe
2012-04-22 16:46 - 2012-04-22 17:47 - 4995866 ____A C:\look.txt
2012-04-22 16:40 - 2012-05-05 07:26 - 0070304 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-04-22 16:40 - 2009-07-13 17:14 - 0419488 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-04-22 16:40 - 2009-06-10 13:48 - 0000000 ____D C:\Windows\SysWOW64\Macromed
2012-04-22 16:40 - 2009-06-10 13:10 - 0000000 ____D C:\Windows\System32\Macromed
2012-04-22 16:40 - - 0000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-04-22 15:49 - 2012-04-23 04:39 - 1101669 ____A C:\Users\JasonB\Downloads\ProcessMonitor.zip
2012-04-22 15:48 - 2012-04-23 06:21 - 0000000 ____D C:\Users\All Users\HitmanPro
2012-04-22 15:48 - 2012-04-23 06:21 - 0000000 ____D C:\ProgramData\HitmanPro
2012-04-22 15:45 - 2011-10-27 12:07 - 0287304 ____A (BitDefender S.R.L.) C:\Windows\System32\Drivers\TrufosAlt.sys
2012-04-22 15:39 - 2012-04-21 14:09 - 8252840 ____A (SurfRight B.V.) C:\Users\JasonB\Downloads\HitmanPro36_x64.exe
2012-04-22 15:36 - 2012-04-22 07:04 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2012-04-22 15:02 - 2012-04-21 12:21 - 0000000 ____D C:\Users\JasonB\AppData\Local\Downloaded Installations
2012-04-22 15:00 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Renesas Electronics
2012-04-22 14:59 - 2009-07-13 21:32 - 0001769 ____A C:\Windows\Language_trs.ini
2012-04-22 14:59 - 2009-07-13 21:08 - 0000000 ____D C:\Users\All Users\Downloaded Installations
2012-04-22 14:59 - 2009-07-13 21:08 - 0000000 ____D C:\ProgramData\Downloaded Installations
2012-04-22 14:47 - 2009-07-13 20:54 - 0000000 ____D C:\Program Files\DIFX
2012-04-22 14:24 - 2012-05-05 07:27 - 0047166 ____A C:\Users\JasonB\Downloads\whoistd.zip
2012-04-22 14:24 - 2012-04-22 14:24 - 0116088 ____A C:\Users\JasonB\Downloads\whoistd_setup.exe
2012-04-22 14:23 - 2012-04-21 13:26 - 0040926 ____A C:\Users\JasonB\Downloads\dnsdataview.zip
2012-04-22 14:20 - 2012-05-01 15:59 - 0089506 ____A C:\Users\JasonB\Downloads\cports-x64.zip
2012-04-22 14:13 - 2012-04-23 13:31 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\vlc
2012-04-22 14:13 - 2012-04-22 17:57 - 66248093 ____A C:\Users\JasonB\Downloads\snagi11.rar
2012-04-22 14:12 - 2012-04-22 13:12 - 22263009 ____A C:\Users\JasonB\Downloads\vlc-2.0.1-win64 (1).exe
2012-04-22 13:14 - 2012-04-22 14:12 - 22263009 ____A C:\Users\JasonB\Downloads\vlc-2.0.1-win64.exe
2012-04-22 13:12 - 2012-04-27 15:15 - 22259528 ____A C:\Users\JasonB\Downloads\vlc-2.0.1-win32.exe
2012-04-22 12:56 - 2012-04-22 12:27 - 0000000 ____D C:\Users\JasonB\AppData\Local\Mindjet
2012-04-22 12:54 - 2009-07-13 17:41 - 0006656 ____A (Tracker Software) C:\Windows\System32\pxc35pm.dll
2012-04-22 12:53 - 2012-04-22 14:43 - 0000000 ____D C:\Users\All Users\Mindjet
2012-04-22 12:53 - 2012-04-22 14:43 - 0000000 ____D C:\ProgramData\Mindjet
2012-04-22 12:37 - 2012-04-22 07:00 - 0000000 ____D C:\Program Files\Common Files\DESIGNER
2012-04-22 12:36 - 2012-04-26 04:35 - 0000000 ____D C:\Users\JasonB\AppData\Local\{B466D993-193A-4641-BD61-AA0DBB63C1F1}
2012-04-22 12:33 - 2012-04-22 12:32 - 0000000 ____D C:\Program Files\Microsoft Synchronization Services
2012-04-22 12:32 - 2012-04-22 12:32 - 0000000 ____D C:\Program Files\Microsoft Sync Framework
2012-04-22 12:32 - 2012-04-22 12:32 - 0000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2012-04-22 12:30 - 2012-04-22 09:22 - 0000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2012-04-22 12:28 - 2012-04-21 14:22 - 0000000 ____D C:\Program Files\Microsoft Analysis Services
2012-04-22 12:28 - 2012-04-21 12:42 - 0000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2012-04-22 12:27 - 2012-04-24 15:58 - 0000000 ____D C:\Users\JasonB\AppData\Local\Microsoft Help
2012-04-22 12:27 - 2012-04-22 16:46 - 0000000 ___RD C:\MSOCache
2012-04-22 12:27 - 2012-04-22 15:36 - 0000000 ____D C:\Users\All Users\Microsoft Help
2012-04-22 12:27 - 2012-04-22 15:36 - 0000000 ____D C:\ProgramData\Microsoft Help
2012-04-22 12:27 - 2012-04-22 12:28 - 0000000 ____D C:\Program Files\Microsoft Office
2012-04-22 12:27 - 2012-04-22 09:15 - 0000000 ____D C:\Program Files (x86)\Microsoft Office
2012-04-22 12:20 - 2012-05-06 05:58 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8162AB6F-3DB1-4988-9EE4-D2A7861BD300}
2012-04-22 11:44 - 2012-04-22 11:07 - 25250504 ____A C:\Users\JasonB\Downloads\SEO_PowerSuite_Enterprise_Full_Edition+By+Ibrahimprod.rar.crdownload
2012-04-22 11:37 - 2012-04-23 06:21 - 0000000 ____D C:\Users\All Users\Raxco
2012-04-22 11:37 - 2012-04-23 06:21 - 0000000 ____D C:\ProgramData\Raxco
2012-04-22 11:37 - 2012-04-22 12:37 - 0000000 ____D C:\Program Files\Common Files\Raxco
2012-04-22 11:06 - 2012-05-01 16:07 - 55979747 ____A C:\Users\JasonB\Downloads\seopowersuite-jre.zip
2012-04-22 10:46 - 2012-04-22 10:46 - 2744100 ____A C:\Users\JasonB\.websiteauditor.properties
2012-04-22 10:46 - 2012-04-22 10:46 - 0500858 ____A C:\Users\JasonB\.spyglass.properties
2012-04-22 10:46 - 2012-04-22 10:46 - 0000000 ____D C:\Users\JasonB\.websiteauditor
2012-04-22 10:45 - 2012-04-22 11:06 - 0331716 ____A C:\Users\JasonB\.ranktracker.properties
2012-04-22 10:45 - 2012-04-22 11:06 - 0000000 ____D C:\Users\JasonB\.seospyglass
2012-04-22 10:45 - 2012-04-22 10:45 - 0453949 ____A C:\Users\JasonB\.linkassistant.properties
2012-04-22 10:45 - 2012-04-21 15:18 - 0000000 ____D C:\Users\JasonB\.linkassistant
2012-04-22 10:44 - 2012-04-22 10:45 - 0000000 ____D C:\Users\JasonB\.ranktracker
2012-04-22 10:43 - 2012-04-22 10:48 - 0001152 ____A C:\Users\Jason\Desktop\SEO SpyGlass.lnk
2012-04-22 10:43 - 2012-04-22 10:48 - 0001152 ____A C:\Users\Jason\Desktop\Rank Tracker.lnk
2012-04-22 10:43 - 2012-04-22 10:47 - 0001194 ____A C:\Users\Jason\Desktop\WebSite Auditor.lnk
2012-04-22 10:43 - 2012-04-21 14:09 - 0001171 ____A C:\Users\Jason\Desktop\LinkAssistant.lnk
2012-04-22 10:36 - 2012-04-21 12:14 - 0000000 ____D C:\Users\JasonB\AppData\Local\VS Revo Group
2012-04-22 10:36 - 2010-11-20 05:33 - 0031800 ____A (VS Revo Group) C:\Windows\System32\Drivers\revoflt.sys
2012-04-22 10:02 - 2012-04-22 15:49 - 106486444 ____A C:\Users\JasonB\Downloads\Raxco_PerfectDisk_12.290_PROServer.rar
2012-04-22 09:52 - 2012-04-23 06:21 - 0000000 ____D C:\Users\All Users\Malwarebytes
2012-04-22 09:52 - 2012-04-23 06:21 - 0000000 ____D C:\ProgramData\Malwarebytes
2012-04-22 09:52 - 2012-04-21 12:26 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Malwarebytes
2012-04-22 09:51 - 2009-07-13 17:38 - 0001376 ____A C:\Windows\System32\bdsandbox.txt
2012-04-22 09:47 - 2012-04-30 17:24 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\WinRAR
2012-04-22 09:17 - 2012-05-04 09:29 - 1997353 ____A C:\Users\JasonB\Downloads\Saver2Setup.exe
2012-04-22 09:15 - 2012-04-22 12:28 - 0000000 ____D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2012-04-22 09:15 - 2012-04-21 14:58 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\PandoraClient
2012-04-22 09:13 - 2012-05-01 16:09 - 0000376 ____A C:\Users\JasonB\AppData\Roamingprivacy.xml
2012-04-22 09:08 - 2010-11-20 05:25 - 0000385 ____A C:\Windows\System32\user_gensett.xml
2012-04-22 09:01 - 2012-04-27 13:40 - 0026202 ____A C:\bdlog.txt
2012-04-22 08:03 - 2012-04-21 12:14 - 0000000 ____D C:\Users\JasonB\Tracing
2012-04-22 07:21 - 2009-07-13 15:25 - 0000287 ____A C:\Windows\System32\checkdnsid.xml
2012-04-22 07:15 - 2009-07-13 21:37 - 0000000 ____D C:\Program Files (x86)\Windows Live
2012-04-22 07:14 - 2012-04-21 14:22 - 0000000 ____D C:\Windows\PCHEALTH
2012-04-22 07:09 - - 0217189 ____A C:\Users\All Users\1335106805.bdinstall.bin
2012-04-22 07:09 - - 0217189 ____A C:\ProgramData\1335106805.bdinstall.bin
2012-04-22 07:08 - 2012-04-22 12:27 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2012-04-22 07:07 - 2012-05-07 06:08 - 0000270 ___AH C:\bdr-conf
2012-04-22 07:07 - 2012-04-22 07:07 - 0217769 ___AH C:\bdrescue
2012-04-22 07:07 - 2011-11-14 14:03 - 0009216 ___AH C:\bdrescue.mbr
2012-04-22 07:07 - 2011-09-23 12:53 - 36942680 ___AH C:\bdrescue.gz
2012-04-22 07:07 - 2011-09-23 12:53 - 2510608 ___AH C:\bdrescue.vm
2012-04-22 07:06 - 2012-04-26 11:50 - 0000000 ____D C:\Users\All Users\BDLogging
2012-04-22 07:06 - 2012-04-26 11:50 - 0000000 ____D C:\ProgramData\BDLogging
2012-04-22 07:04 - 2009-06-10 12:45 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_avchv_01009.Wdf
2012-04-22 07:03 - 2012-04-27 14:38 - 1287528 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\wlsetup-web.exe
2012-04-22 07:03 - 2012-04-22 10:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\Windows Live
2012-04-22 07:03 - 2012-04-22 07:06 - 0000000 ____D C:\Users\All Users\Bitdefender
2012-04-22 07:03 - 2012-04-22 07:06 - 0000000 ____D C:\ProgramData\Bitdefender
2012-04-22 07:03 - 2012-04-21 15:14 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Bitdefender
2012-04-22 07:01 - 2012-04-26 11:49 - 0000000 ____D C:\Program Files\Bitdefender
2012-04-22 07:01 - 2012-04-22 09:15 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\QuickScan
2012-04-22 07:00 - 2010-11-20 05:33 - 0329800 ____A (BitDefender S.R.L.) C:\Windows\System32\Drivers\trufos.sys
2012-04-22 07:00 - 2009-07-13 17:52 - 0442088 ____A (BitDefender) C:\Windows\System32\Drivers\bdfsfltr.sys
2012-04-22 06:59 - 2012-04-26 11:50 - 0000000 ____D C:\Program Files\Common Files\Bitdefender
2012-04-22 06:59 - 2012-04-23 15:46 - 2257688 ____A C:\Users\JasonB\Downloads\bitdefender_antivirus.exe
2012-04-21 20:31 - 2012-05-07 06:08 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\SProxy
2012-04-21 15:26 - 2012-04-21 14:58 - 1611428 ____A C:\Users\JasonB\Downloads\orca1.zip
2012-04-21 15:23 - 2012-04-26 12:07 - 8579136 ____A C:\Users\JasonB\Downloads\DPPM_201_ENG.exe
2012-04-21 15:22 - 2012-04-23 05:14 - 0000257 ____A C:\Windows\Brpfx04a.ini
2012-04-21 15:22 - 2012-04-21 15:20 - 0000094 ____A C:\Windows\brpcfx.ini
2012-04-21 15:21 - 2012-04-23 05:14 - 0000410 ____A C:\Windows\BRWMARK.INI
2012-04-21 15:20 - 2012-04-27 13:30 - 0000000 ____D C:\Program Files (x86)\Brother
2012-04-21 15:20 - 2012-04-27 04:43 - 0000000 ____D C:\Users\Public\Documents\BrFaxRx
2012-04-21 15:20 - 2011-03-01 15:53 - 0106496 ____N C:\Windows\SysWOW64\BrMuSNMP.dll
2012-04-21 15:20 - 2010-11-20 05:28 - 0000050 ____A C:\Windows\System32\BD9320CW.DAT
2012-04-21 15:20 - 2010-11-20 05:25 - 0255488 ____N (brother) C:\Windows\System32\NSSRH64.dll
2012-04-21 15:20 - 2010-11-20 05:25 - 0143360 ____N C:\Windows\System32\BrSNMP64.dll
2012-04-21 15:20 - 2010-11-20 04:17 - 0167936 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll
2012-04-21 15:20 - 2010-05-10 05:45 - 0045056 ____A C:\Windows\SysWOW64\BRTCPCON.DLL
2012-04-21 15:20 - 2010-04-02 02:33 - 0077824 ____A (Brother Industries, Ltd.) C:\Windows\SysWOW64\BRLMW03A.DLL
2012-04-21 15:20 - 2010-01-12 08:02 - 1560576 ____A (Brother Industries, Ltd.) C:\Windows\System32\BrWia09b.dll
2012-04-21 15:20 - 2009-08-18 16:38 - 0048640 ____N (Brother Industries,Ltd) C:\Windows\System32\Brnsplg.dll
2012-04-21 15:20 - 2009-07-13 21:32 - 0000000 ____A C:\Windows\brdfxspd.dat
2012-04-21 15:20 - 2009-07-13 20:54 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2012-04-21 15:20 - 2009-07-13 17:40 - 0179712 ____N (Brother Industries, Ltd.) C:\Windows\System32\BrfxDA5b.dll
2012-04-21 15:20 - 2009-06-10 13:30 - 0073728 ____N (Brother Industories Ltd. P&S Company) C:\Windows\SysWOW64\BRCrypt.dll
2012-04-21 15:20 - 2009-06-10 12:48 - 0000050 ____A C:\Windows\System32\BRADC08A.DAT
2012-04-21 15:20 - 2009-04-07 09:02 - 0059392 ____N (Brother Industries,Ltd.) C:\Windows\System32\BrWiaNCp.dll
2012-04-21 15:20 - 2007-12-13 19:16 - 0005120 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll
2012-04-21 15:20 - 2007-12-13 19:16 - 0003072 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll
2012-04-21 15:20 - 2006-07-07 09:40 - 0073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll
2012-04-21 15:20 - 2004-08-09 13:00 - 0118784 ____N (Brother Industries,LTD.) C:\Windows\SysWOW64\BrMfNt.dll
2012-04-21 15:20 - 2004-08-09 12:42 - 0000114 ____A C:\Windows\SysWOW64\BRLMW03A.INI
2012-04-21 15:20 - 2003-11-28 15:57 - 0000066 ____A C:\Windows\Brfaxrx.ini
2012-04-21 15:19 - 2012-04-23 08:15 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\InstallShield
2012-04-21 15:19 - 2012-04-22 07:06 - 0000000 ____D C:\Users\All Users\Brother
2012-04-21 15:19 - 2012-04-22 07:06 - 0000000 ____D C:\ProgramData\Brother
2012-04-21 15:17 - 2012-04-22 14:20 - 2502376 ____A C:\Users\JasonB\Downloads\crossftp-setup-1.76a.exe
2012-04-21 15:17 - - 0000000 ____D C:\Users\JasonB\.crossftp
2012-04-21 15:15 - 2012-04-21 11:32 - 0000000 ___RD C:\Sandbox
2012-04-21 15:15 - 2009-07-13 21:32 - 0002550 ____A C:\Windows\Sandboxie.ini
2012-04-21 15:14 - 2012-05-01 15:48 - 2308368 ____A (SANDBOXIE L.T.D) C:\Users\JasonB\Downloads\SandboxieInstall.exe
2012-04-21 15:14 - 2012-04-26 11:50 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
2012-04-21 15:06 - 2012-04-30 15:17 - 14852504 ____A (Adobe Systems Inc.) C:\Users\JasonB\Downloads\AdobeAIRInstaller.exe
2012-04-21 15:06 - 2012-04-22 07:09 - 0000000 ____D C:\Users\All Users\Adobe
2012-04-21 15:06 - 2012-04-22 07:09 - 0000000 ____D C:\ProgramData\Adobe
2012-04-21 15:06 - - 0000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2012-04-21 15:06 - - 0000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2012-04-21 15:06 - - 0000000 ____D C:\Program Files (x86)\Adobe
2012-04-21 14:58 - 2012-04-21 12:39 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Notepad++
2012-04-21 14:57 - 2012-05-01 16:12 - 5787493 ____A C:\Users\JasonB\Downloads\npp.6.1.1.Installer.exe
2012-04-21 14:21 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Onkyo
2012-04-21 14:20 - 2012-05-01 16:00 - 3645656 ____A (Piriform Ltd) C:\Users\JasonB\Downloads\ccsetup317.exe
2012-04-21 14:16 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\Panther
2012-04-21 14:15 - 2012-04-21 14:15 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (4).aspx
2012-04-21 14:14 - 2012-05-02 11:57 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (1).aspx
2012-04-21 14:14 - 2012-04-21 14:14 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (3).aspx
2012-04-21 14:14 - 2012-04-21 14:14 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (2).aspx
2012-04-21 14:13 - 2012-04-21 14:15 - 0001301 ____A C:\Users\JasonB\Downloads\sorry.aspx
2012-04-21 14:10 - 2012-04-22 12:03 - 6118990 ____A (LIGHTNING UK!) C:\Users\JasonB\Downloads\SetupImgBurn_2.5.7.0.exe
2012-04-21 14:09 - 2012-05-07 06:01 - 7205327 ____A C:\Users\JasonB\Downloads\HandBrake-0.9.6-x86_64-Win_GUI.exe
2012-04-21 14:09 - 2012-04-21 11:34 - 0000690 ____A C:\Users\Jason\Desktop\Handbrake.lnk
2012-04-21 14:08 - 2012-04-21 12:39 - 9705984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-04-21 14:08 - 2012-04-21 12:39 - 2144256 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-04-21 14:08 - 2012-04-21 12:39 - 1792000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-04-21 14:08 - 2012-04-21 12:39 - 17790976 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-04-21 14:08 - 2012-04-21 12:39 - 12281856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-04-21 14:08 - 2012-04-21 12:39 - 10888704 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-04-21 14:08 - 2012-04-21 12:39 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-04-21 14:08 - 2012-04-21 12:39 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-04-21 14:08 - 2012-02-27 23:34 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-04-21 14:08 - 2012-02-27 22:56 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-04-21 14:08 - 2012-02-27 22:48 - 1345536 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-04-21 14:08 - 2012-02-27 22:45 - 2311168 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-04-21 14:08 - 2012-02-27 22:42 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-04-21 14:08 - 2012-02-27 17:52 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-04-21 14:08 - 2012-02-27 17:18 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-04-21 14:08 - 2012-02-27 17:09 - 1103360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-04-21 14:08 - 2012-02-27 17:06 - 1799168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-04-21 14:08 - 2012-02-27 17:03 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-04-21 14:08 - 2011-05-02 21:29 - 1493504 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-04-21 14:08 - 2011-05-02 20:30 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-04-21 14:08 - 2010-11-20 05:27 - 1390080 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-04-21 14:08 - 2010-11-20 04:21 - 1127424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-04-21 14:08 - 2009-07-13 17:41 - 0237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-04-21 14:08 - 2009-07-13 17:38 - 0818688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-04-21 14:08 - 2009-07-13 17:16 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-04-21 14:08 - 2009-07-13 17:14 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-04-21 14:05 - - 0000000 ____D C:\Users\JasonB\AppData\Local\Adobe
2012-04-21 13:50 - 2012-04-22 07:03 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\FileZilla
2012-04-21 13:49 - 2012-05-01 14:05 - 4518720 ____A (FileZilla Project) C:\Users\JasonB\Downloads\FileZilla_3.5.3_win32-setup.exe
2012-04-21 13:37 - 2012-04-30 15:03 - 0000000 ____D C:\Users\All Users\RoboForm
2012-04-21 13:37 - 2012-04-30 15:03 - 0000000 ____D C:\ProgramData\RoboForm
2012-04-21 13:27 - 2011-05-03 21:22 - 0778752 ____A (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2012-04-21 13:27 - 2011-05-03 21:22 - 0288256 ____A (Microsoft Corporation) C:\Windows\System32\mssphtb.dll
2012-04-21 13:27 - 2011-05-03 21:19 - 0249856 ____A (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2012-04-21 13:27 - 2011-05-03 20:32 - 0666624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2012-04-21 13:27 - 2011-05-03 20:32 - 0197120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2012-04-21 13:27 - 2011-05-03 20:28 - 0164352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2012-04-21 13:27 - 2010-11-20 05:27 - 0591872 ____A (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2012-04-21 13:27 - 2010-11-20 05:27 - 0075264 ____A (Microsoft Corporation) C:\Windows\System32\msscntrs.dll
2012-04-21 13:27 - 2010-11-20 05:26 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2012-04-21 13:27 - 2010-11-20 04:21 - 0427520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2012-04-21 13:27 - 2010-11-20 04:19 - 0059392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2012-04-21 13:27 - 2010-11-20 04:18 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2012-04-21 13:27 - 2009-07-13 17:41 - 2223616 ____A (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2012-04-21 13:27 - 2009-07-13 17:41 - 0491520 ____A (Microsoft Corporation) C:\Windows\System32\mssph.dll
2012-04-21 13:27 - 2009-07-13 17:41 - 0113664 ____A (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
2012-04-21 13:27 - 2009-07-13 17:39 - 2315776 ____A (Microsoft Corporation) C:\Windows\System32\tquery.dll
2012-04-21 13:27 - 2009-07-13 17:16 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2012-04-21 13:27 - 2009-07-13 17:15 - 1401344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2012-04-21 13:27 - 2009-07-13 17:15 - 0337408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2012-04-21 13:27 - 2009-07-13 17:14 - 1549312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2012-04-21 13:20 - 2012-02-16 22:38 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2012-04-21 13:20 - 2010-11-20 05:27 - 0077312 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2012-04-21 13:19 - 2012-03-05 14:15 - 0000000 ____A C:\Windows\ativpsrm.bin
2012-04-21 13:07 - 2009-07-13 21:08 - 0000000 ____D C:\Users\All Users\Sun
2012-04-21 13:07 - 2009-07-13 21:08 - 0000000 ____D C:\ProgramData\Sun
2012-04-21 13:06 - 2012-04-21 14:22 - 0000000 ____D C:\Program Files (x86)\Java
2012-04-21 13:06 - 2012-04-21 14:21 - 0908576 ____A (Sun Microsystems, Inc.) C:\Users\JasonB\Downloads\chromeinstall-6u31.exe
2012-04-21 13:06 - 2012-04-21 13:06 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2012-04-21 13:06 - 2012-04-21 13:06 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2012-04-21 13:06 - 2010-11-20 04:18 - 0472808 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2012-04-21 13:06 - 2009-07-13 19:20 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2012-04-21 12:51 - 2012-04-21 15:17 - 8402527 ____A C:\Users\JasonB\Downloads\DarkSkiesTracyHymas.themepack
2012-04-21 12:46 - 2012-04-22 15:49 - 0000000 ____D C:\Users\All Users\LogiShrd
2012-04-21 12:46 - 2012-04-22 15:49 - 0000000 ____D C:\ProgramData\LogiShrd
2012-04-21 12:46 - 2012-04-21 12:44 - 0000000 ____D C:\Users\JasonB\AppData\Local\Logitech® Webcam Software
2012-04-21 12:44 - 2012-05-07 06:08 - 0000000 ____D C:\Users\JasonB\AppData\Local\LogiShrd
2012-04-21 12:42 - 2012-04-22 17:54 - 0002005 ____A C:\Users\Public\Desktop\Logitech Vid HD.lnk
2012-04-21 12:42 - 2012-04-21 15:19 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Leadertech
2012-04-21 12:42 - 2012-04-21 13:06 - 0000000 ____D C:\Program Files (x86)\Logitech
2012-04-21 12:42 - 2012-04-21 12:46 - 0000000 ____D C:\Users\All Users\Logitech
2012-04-21 12:42 - 2012-04-21 12:46 - 0000000 ____D C:\ProgramData\Logitech
2012-04-21 12:41 - 2012-04-21 12:42 - 0001624 ____A C:\Users\Public\Desktop\Logitech Webcam Software .lnk
2012-04-21 12:39 - 2012-05-03 04:35 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Mozilla
2012-04-21 12:39 - 2012-04-22 12:56 - 0000000 ____D C:\Users\JasonB\AppData\Local\Mozilla
2012-04-21 12:39 - 2012-04-22 12:32 - 0000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-04-21 12:39 - 2012-04-21 13:19 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-04-21 12:39 - 2012-04-21 13:19 - 0023552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 3695416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2012-04-21 12:39 - 2012-04-21 12:39 - 3695416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2012-04-21 12:39 - 2012-04-21 12:39 - 0534528 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0434176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0403248 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0353584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0282112 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0267776 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0227840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0223232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0165888 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0135168 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0130560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0111616 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0041472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2012-04-21 12:39 - 2012-02-27 23:02 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-04-21 12:39 - 2012-02-27 22:43 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2012-04-21 12:39 - 2012-02-27 22:43 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2012-04-21 12:39 - 2012-02-27 22:39 - 0072822 ____A C:\Windows\System32\ieuinit.inf
2012-04-21 12:39 - 2012-02-27 17:27 - 0118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2012-04-21 12:39 - 2012-02-27 17:04 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2012-04-21 12:39 - 2012-02-27 17:03 - 0048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2012-04-21 12:39 - 2012-02-27 16:59 - 0072822 ____A C:\Windows\SysWOW64\ieuinit.inf
2012-04-21 12:39 - 2010-11-20 05:26 - 0452608 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2012-04-21 12:39 - 2010-11-20 05:25 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2012-04-21 12:39 - 2010-11-20 05:24 - 0603648 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-04-21 12:39 - 2010-11-20 04:19 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2012-04-21 12:39 - 2010-11-20 04:18 - 0353792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2012-04-21 12:39 - 2010-11-20 04:17 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2012-04-21 12:39 - 2010-11-20 04:16 - 0420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-04-21 12:39 - 2009-07-13 19:20 - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-04-21 12:39 - 2009-07-13 19:20 - 0367104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2012-04-21 12:39 - 2009-07-13 19:20 - 0049664 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2012-04-21 12:39 - 2009-07-13 19:20 - 0035840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2012-04-21 12:39 - 2009-07-13 17:41 - 0222208 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2012-04-21 12:39 - 2009-07-13 17:41 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-04-21 12:39 - 2009-07-13 17:41 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2012-04-21 12:39 - 2009-07-13 17:41 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-04-21 12:39 - 2009-07-13 17:41 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2012-04-21 12:39 - 2009-07-13 17:39 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2012-04-21 12:39 - 2009-07-13 17:39 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2012-04-21 12:39 - 2009-07-13 17:39 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2012-04-21 12:39 - 2009-07-13 17:38 - 0114176 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll
2012-04-21 12:39 - 2009-07-13 17:38 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2012-04-21 12:39 - 2009-07-13 17:16 - 0123392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2012-04-21 12:39 - 2009-07-13 17:16 - 0054272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2012-04-21 12:39 - 2009-07-13 17:15 - 0580608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-04-21 12:39 - 2009-07-13 17:15 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2012-04-21 12:39 - 2009-07-13 17:15 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2012-04-21 12:39 - 2009-07-13 17:14 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2012-04-21 12:39 - 2009-07-13 17:14 - 0101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2012-04-21 12:39 - 2009-07-13 17:14 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2012-04-21 12:39 - 2009-07-13 17:14 - 0063488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2012-04-21 12:39 - 2009-07-13 17:14 - 0011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2012-04-21 12:39 - 2009-07-13 15:55 - 0249344 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2012-04-21 12:39 - 2009-07-13 15:40 - 0203776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2012-04-21 12:39 - 2009-07-13 15:31 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2012-04-21 12:39 - 2009-07-13 15:19 - 0162304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2012-04-21 12:39 - 2009-07-13 12:49 - 0697344 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-04-21 12:39 - 2009-06-10 13:14 - 0066048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2012-04-21 12:39 - 2009-06-10 12:30 - 0082432 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2012-04-21 12:35 - 2009-07-13 17:41 - 0000000 ____D C:\Windows\System32\SPReview
2012-04-21 12:35 - 2009-07-13 17:39 - 0000000 ____D C:\Windows\System32\EventProviders
2012-04-21 12:34 - 2009-07-13 17:41 - 5559152 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-04-21 12:34 - 2009-07-13 17:16 - 3968368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2012-04-21 12:34 - 2009-07-13 17:16 - 3913072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-04-21 12:32 - 2012-04-22 12:37 - 0000000 ____D C:\Program Files\Common Files\logishrd
2012-04-21 12:32 - 2012-04-21 13:49 - 16157992 ____A (Mozilla) C:\Users\JasonB\Downloads\Firefox Setup 11.0.exe
2012-04-21 12:32 - 2011-12-15 02:08 - 0024766 ____A C:\Windows\System32\lvcoinst.log
2012-04-21 12:30 - 2012-04-27 09:37 - 1197056 ____A (Microsoft Corporation) C:\Windows\System32\taskschd.dll
2012-04-21 12:30 - 2012-04-21 13:14 - 1900544 ____A (Microsoft Corporation) C:\Windows\System32\setupapi.dll
2012-04-21 12:30 - 2012-04-21 12:35 - 0301568 ____A (Microsoft Corporation) C:\Windows\System32\spreview.exe
2012-04-21 12:30 - 2012-02-23 07:18 - 0828416 ____A (Microsoft Corporation) C:\Windows\System32\MPSSVC.dll
2012-04-21 12:30 - 2012-02-16 20:57 - 0119296 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdx.sys
2012-04-21 12:30 - 2011-06-10 22:58 - 0954752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc40.dll
2012-04-21 12:30 - 2011-05-03 21:19 - 0867840 ____A (Microsoft Corporation) C:\Windows\System32\SearchFolder.dll
2012-04-21 12:30 - 2011-05-03 20:28 - 0646144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2012-04-21 12:30 - 2011-04-08 22:58 - 0758272 ____A (Microsoft Corporation) C:\Windows\System32\PortableDeviceApi.dll
2012-04-21 12:30 - 2011-02-24 21:30 - 1493504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2012-04-21 12:30 - 2010-11-20 05:33 - 0753664 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2012-04-21 12:30 - 2010-11-20 05:27 - 3650560 ____A (Microsoft Corporation) C:\Windows\System32\MSVidCtl.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 1888256 ____A (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2012-04-21 12:30 - 2010-11-20 05:27 - 1881088 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 1504256 ____A (Microsoft Corporation) C:\Windows\System32\wbengine.exe
2012-04-21 12:30 - 2010-11-20 05:27 - 14633472 ____A (Microsoft Corporation) C:\Windows\System32\wmp.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 1212416 ____A (Microsoft Corporation) C:\Windows\System32\propsys.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 1116672 ____A (Microsoft Corporation) C:\Windows\System32\mstsc.exe
2012-04-21 12:30 - 2010-11-20 05:27 - 1110016 ____A (Microsoft Corporation) C:\Windows\System32\schedsvc.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 0695808 ____A (Microsoft Corporation) C:\Windows\System32\netlogon.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 0680960 ____A (Microsoft Corporation) C:\Windows\System32\termsrv.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 0512000 ____A (Microsoft Corporation) C:\Windows\System32\rpcss.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 0485888 ____A (Microsoft Corporation) C:\Windows\System32\secproc_isv.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 0476160 ____A (Microsoft Corporation) C:\Windows\System32\QAGENTRT.DLL
2012-04-21 12:30 - 2010-11-20 05:27 - 0464384 ____A (Microsoft Corporation) C:\Windows\System32\taskeng.exe
2012-04-21 12:30 - 2010-11-20 05:27 - 0359424 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate.exe
2012-04-21 12:30 - 2010-11-20 05:27 - 0274944 ____A (Microsoft Corporation) C:\Windows\System32\rdpdd.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 0210944 ____A (Microsoft Corporation) C:\Windows\System32\ncsi.dll
2012-04-21 12:30 - 2010-11-20 05:27 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\PushPrinterConnections.exe
2012-04-21 12:30 - 2010-11-20 05:26 - 1838080 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2012-04-21 12:30 - 2010-11-20 05:26 - 1340416 ____A (Microsoft Corporation) C:\Windows\System32\diagperf.dll
2012-04-21 12:30 - 2010-11-20 05:26 - 1244160 ____A (Microsoft Corporation) C:\Windows\System32\imapi2fs.dll
2012-04-21 12:30 - 2010-11-20 05:26 - 0955904 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll
2012-04-21 12:30 - 2010-11-20 05:26 - 0787968 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2012-04-21 12:30 - 2010-11-20 05:25 - 3715584 ____A (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2012-04-21 12:30 - 2010-11-20 05:25 - 0720896 ____A (Microsoft Corporation) C:\Windows\System32\odbc32.dll
2012-04-21 12:30 - 2010-11-20 05:25 - 0679424 ____A (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2012-04-21 12:30 - 2010-11-20 05:25 - 0362496 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate_isv.exe
2012-04-21 12:30 - 2010-11-20 05:25 - 0299520 ____A (Microsoft Corporation) C:\Windows\System32\tsmf.dll
2012-04-21 12:30 - 2010-11-20 05:25 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
2012-04-21 12:30 - 2010-11-20 05:24 - 0444752 ____A (Microsoft Corporation) C:\Windows\System32\mscoree.dll
2012-04-21 12:30 - 2010-11-20 05:14 - 0263168 ____A (Microsoft Corporation) C:\Windows\System32\spwizui.dll
2012-04-21 12:30 - 2010-11-20 04:21 - 11410432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2012-04-21 12:30 - 2010-11-20 04:21 - 0322048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2012-04-21 12:30 - 2010-11-20 04:20 - 0423936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2012-04-21 12:30 - 2010-11-20 04:20 - 0051200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PushPrinterConnections.exe
2012-04-21 12:30 - 2010-11-20 04:19 - 3207680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2012-04-21 12:30 - 2010-11-20 04:19 - 0954288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc40u.dll
2012-04-21 12:30 - 2010-11-20 04:19 - 0297808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2012-04-21 12:30 - 2010-11-20 04:18 - 1171456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2012-04-21 12:30 - 2010-11-20 04:17 - 3215872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2012-04-21 12:30 - 2010-11-20 04:17 - 0327168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2012-04-21 12:30 - 2010-11-20 03:04 - 0059392 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys
2012-04-21 12:30 - 2010-11-20 01:23 - 0376192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2012-04-21 12:30 - 2010-11-09 17:48 - 0146944 ____A (Microsoft Corporation) C:\Windows\System32\scavengeui.dll
2012-04-21 12:30 - 2010-11-04 17:53 - 0109928 ____A (Microsoft Corporation) C:\Windows\System32\PresentationHostProxy.dll
2012-04-21 12:30 - 2010-11-04 17:53 - 0099176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2012-04-21 12:30 - 2010-06-30 17:54 - 0951680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2012-04-21 12:30 - 2009-07-13 19:20 - 0505856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2012-04-21 12:30 - 2009-07-13 17:54 - 1927680 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll
2012-04-21 12:30 - 2009-07-13 17:48 - 0299392 ____A (Microsoft Corporation) C:\Windows\System32\mcupdate_GenuineIntel.dll
2012-04-21 12:30 - 2009-07-13 17:48 - 0273792 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\msiscsi.sys
2012-04-21 12:30 - 2009-07-13 17:41 - 4120064 ____A (Microsoft Corporation) C:\Windows\System32\mf.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 3957760 ____A (Microsoft Corporation) C:\Windows\System32\WinSAT.exe
2012-04-21 12:30 - 2009-07-13 17:41 - 3860992 ____A (Microsoft Corporation) C:\Windows\System32\UIRibbon.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 3205120 ____A (Microsoft Corporation) C:\Windows\System32\mmcndmgr.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 3027968 ____A (Microsoft Corporation) C:\Windows\System32\WMVCORE.DLL
2012-04-21 12:30 - 2009-07-13 17:41 - 2086912 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 1646080 ____A (Microsoft Corporation) C:\Windows\System32\wevtsvc.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 1600512 ____A (Microsoft Corporation) C:\Windows\System32\VSSVC.exe
2012-04-21 12:30 - 2009-07-13 17:41 - 1326080 ____A (Microsoft Corporation) C:\Windows\System32\NaturalLanguage6.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 1281024 ____A (Microsoft Corporation) C:\Windows\System32\werconcpl.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 1008128 ____A (Microsoft Corporation) C:\Windows\System32\user32.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 0853504 ____A (Microsoft Corporation) C:\Windows\System32\IKEEXT.DLL
2012-04-21 12:30 - 2009-07-13 17:41 - 0598016 ____A (Microsoft Corporation) C:\Windows\System32\spinstall.exe
2012-04-21 12:30 - 2009-07-13 17:41 - 0444416 ____A (Microsoft Corporation) C:\Windows\System32\winhttp.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 0419880 ____A C:\Windows\System32\locale.nls
2012-04-21 12:30 - 2009-07-13 17:41 - 0312320 ____A (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2012-04-21 12:30 - 2009-07-13 17:41 - 0214528 ____A (Microsoft Corporation) C:\Windows\System32\umrdp.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 5066752 ____A (Microsoft Corporation) C:\Windows\System32\AuthFWSnapin.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 3391488 ____A (Microsoft Corporation) C:\Windows\System32\dbgeng.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 2067456 ____A (Microsoft Corporation) C:\Windows\System32\d3d9.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 1975296 ____A (Microsoft Corporation) C:\Windows\System32\CertEnroll.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 1942856 ____A (Microsoft Corporation) C:\Windows\System32\dfshim.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 1796096 ____A (Microsoft Corporation) C:\Windows\System32\certmgr.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 1632256 ____A (Microsoft Corporation) C:\Windows\System32\dwmcore.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 1456128 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2012-04-21 12:30 - 2009-07-13 17:40 - 0317952 ____A (Microsoft Corporation) C:\Windows\System32\dhcpcore.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 1866240 ____A (Microsoft Corporation) C:\Windows\System32\ExplorerFrame.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 1753088 ____A (Microsoft Corporation) C:\Windows\System32\vssapi.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 1743360 ____A (Microsoft Corporation) C:\Windows\System32\sysmain.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 1556992 ____A (Microsoft Corporation) C:\Windows\System32\RacEngn.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 1219584 ____A (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 0777728 ____A (Microsoft Corporation) C:\Windows\System32\gpsvc.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 0750080 ____A (Microsoft Corporation) C:\Windows\System32\TSWorkspace.dll
2012-04-21 12:30 - 2009-07-13 17:39 - 0347904 ____A C:\Windows\System32\systemsf.ebd
2012-04-21 12:30 - 2009-07-13 17:38 - 0577536 ____A (Microsoft Corporation) C:\Windows\System32\WSDApi.dll
2012-04-21 12:30 - 2009-07-13 17:34 - 2018304 ____A (Microsoft Corporation) C:\Windows\System32\WsmSvc.dll
2012-04-21 12:30 - 2009-07-13 17:30 - 2004480 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-04-21 12:30 - 2009-07-13 17:30 - 0048976 ____A (Microsoft Corporation) C:\Windows\System32\netfxperf.dll
2012-04-21 12:30 - 2009-07-13 17:28 - 0849920 ____A (Microsoft Corporation) C:\Windows\System32\qmgr.dll
2012-04-21 12:30 - 2009-07-13 17:16 - 1115136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2012-04-21 12:30 - 2009-07-13 17:16 - 0629760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pmcsnap.dll
2012-04-21 12:30 - 2009-07-13 17:16 - 0238080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ppcsnap.dll
2012-04-21 12:30 - 2009-07-13 17:15 - 1828352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2012-04-21 12:30 - 2009-07-13 17:15 - 1334272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2012-04-21 12:30 - 2009-07-13 17:15 - 1154048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2012-04-21 12:30 - 2009-07-13 17:15 - 1130824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2012-04-21 12:30 - 2009-07-13 17:15 - 1049600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2012-04-21 12:30 - 2009-07-13 17:15 - 0419880 ____A C:\Windows\SysWOW64\locale.nls
2012-04-21 12:30 - 2009-07-13 17:14 - 5066752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll
2012-04-21 12:30 - 2009-07-13 17:14 - 1128448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2012-04-21 12:30 - 2009-07-13 17:14 - 0428032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2012-04-21 12:30 - 2009-07-13 17:14 - 0381440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2012-04-21 12:30 - 2009-07-13 17:07 - 1390080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2012-04-21 12:30 - 2009-07-13 16:09 - 0261632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netbt.sys
2012-04-21 12:30 - 2009-07-13 15:53 - 0958464 ____A (Microsoft Corporation) C:\Windows\System32\actxprxy.dll
2012-04-21 12:30 - 2009-07-13 15:40 - 0342016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2012-04-21 12:30 - 2009-06-10 13:25 - 1414144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2012-04-21 12:30 - 2009-06-10 13:14 - 0295264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2012-04-21 12:30 - 2009-06-10 12:55 - 0488448 ____A (Microsoft Corporation) C:\Windows\System32\secproc.dll
2012-04-21 12:30 - 2009-06-10 12:47 - 0784896 ____A (Microsoft Corporation) C:\Windows\System32\gpprefcl.dll
2012-04-21 12:30 - 2009-06-10 12:31 - 3008000 ____A (Microsoft Corporation) C:\Windows\System32\xpsservices.dll
2012-04-21 12:30 - 2009-06-10 12:31 - 0320352 ____A (Microsoft Corporation) C:\Windows\System32\PresentationHost.exe
2012-04-21 12:29 - 2012-05-07 06:03 - 0658432 ____A (Microsoft Corporation) C:\Windows\System32\PerfCenterCPL.dll
2012-04-21 12:29 - 2012-05-04 08:42 - 0158720 ____A (Microsoft Corporation) C:\Windows\System32\aaclient.dll
2012-04-21 12:29 - 2012-04-30 06:57 - 0495104 ____A (Microsoft Corporation) C:\Windows\System32\drmmgrtn.dll
2012-04-21 12:29 - 2012-04-22 15:45 - 0039424 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tssecsrv.sys
2012-04-21 12:29 - 2012-04-22 15:00 - 0000000 ____D C:\Program Files (x86)\Siber Systems
2012-04-21 12:29 - 2012-04-22 09:51 - 0705024 ____A (Microsoft Corporation) C:\Windows\System32\BFE.DLL
2012-04-21 12:29 - 2012-04-21 15:21 - 0051200 ____A (Twain Working Group) C:\Windows\twain_32.dll
2012-04-21 12:29 - 2012-04-21 13:19 - 0071168 ____A (Microsoft Corporation) C:\Windows\bfsvc.exe
2012-04-21 12:29 - 2012-04-21 13:14 - 0898560 ____A (Microsoft Corporation) C:\Windows\System32\OobeFldr.dll
2012-04-21 12:29 - 2012-04-21 13:14 - 0859648 ____A (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll
2012-04-21 12:29 - 2012-04-21 13:14 - 0640512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2012-04-21 12:29 - 2012-04-21 13:14 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\mapi32.dll
2012-04-21 12:29 - 2012-04-21 13:14 - 0042496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mimefilt.dll
2012-04-21 12:29 - 2012-04-21 13:12 - 0625664 ____A (Microsoft Corporation) C:\Windows\System32\mscms.dll
2012-04-21 12:29 - 2012-04-21 13:12 - 0481792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2012-04-21 12:29 - 2012-04-21 13:07 - 0222208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wavemsp.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 3211776 ____A (Microsoft Corporation) C:\Windows\System32\msi.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 2341376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 1808384 ____A (Microsoft Corporation) C:\Windows\System32\pnidui.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 1750528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pnidui.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0799744 ____A (Microsoft Corporation) C:\Windows\System32\msftedit.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0592384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0577024 ____A (Microsoft Corporation) C:\Windows\System32\AdmTmpl.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0438272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0373248 ____A (Microsoft Corporation) C:\Windows\System32\intl.cpl
2012-04-21 12:29 - 2012-04-21 12:39 - 0258560 ____A (Microsoft Corporation) C:\Windows\System32\WebClnt.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0174592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0161792 ____A (Microsoft Corporation) C:\Windows\System32\ocsetapi.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0045056 ____A (Microsoft Corporation) C:\Windows\System32\httpapi.dll
2012-04-21 12:29 - 2012-04-21 12:39 - 0034816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll
2012-04-21 12:29 - 2012-03-08 15:50 - 0019456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sisbkup.dll
2012-04-21 12:29 - 2012-03-05 22:53 - 0344576 ____A (Microsoft Corporation) C:\Windows\System32\ntprint.dll
2012-04-21 12:29 - 2012-03-05 21:59 - 0297472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2012-04-21 12:29 - 2012-03-05 21:59 - 0069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2012-04-21 12:29 - 2012-02-29 22:46 - 0223248 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
2012-04-21 12:29 - 2012-02-29 22:28 - 0524288 ____A (Microsoft Corporation) C:\Windows\System32\wmicmiplugin.dll
2012-04-21 12:29 - 2012-02-29 00:19 - 0300032 ____A (Microsoft Corporation) C:\Windows\System32\pdh.dll
2012-04-21 12:29 - 2012-02-16 20:58 - 0213888 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdyboost.sys
2012-04-21 12:29 - 2012-02-02 20:34 - 0751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2012-04-21 12:29 - 2012-01-24 22:38 - 0068096 ____A (Microsoft Corporation) C:\Windows\System32\rdpd3d.dll
2012-04-21 12:29 - 2012-01-24 22:33 - 0313856 ____A (Microsoft Corporation) C:\Windows\System32\ReAgent.dll
2012-04-21 12:29 - 2012-01-23 10:29 - 0014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\slwga.dll
2012-04-21 12:29 - 2012-01-23 10:15 - 0349696 ____A (Microsoft Corporation) C:\Windows\System32\slui.exe
2012-04-21 12:29 - 2011-11-16 22:35 - 1158656 ____A (Microsoft Corporation) C:\Windows\System32\webservices.dll
2012-04-21 12:29 - 2011-11-16 22:33 - 0343040 ____A (Microsoft Corporation) C:\Windows\System32\lsm.exe
2012-04-21 12:29 - 2011-11-16 21:35 - 0782336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2012-04-21 12:29 - 2011-11-04 21:32 - 0058368 ____A (Microsoft Corporation) C:\Windows\System32\tzutil.exe
2012-04-21 12:29 - 2011-11-04 20:26 - 0047616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tzutil.exe
2012-04-21 12:29 - 2011-10-25 21:25 - 2055680 ____A (Microsoft Corporation) C:\Windows\System32\Query.dll
2012-04-21 12:29 - 2011-10-25 21:25 - 0624128 ____A (Microsoft Corporation) C:\Windows\System32\qedit.dll
2012-04-21 12:29 - 2011-10-25 20:32 - 1363456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2012-04-21 12:29 - 2011-10-25 20:32 - 0509440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2012-04-21 12:29 - 2011-09-29 08:29 - 0045056 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpipreg.sys
2012-04-21 12:29 - 2011-07-15 20:25 - 1667584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2012-04-21 12:29 - 2011-07-15 18:21 - 0833024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2012-04-21 12:29 - 2011-07-15 18:21 - 0345088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2012-04-21 12:29 - 2011-06-23 21:34 - 0235008 ____A (Microsoft Corporation) C:\Windows\System32\winsta.dll
2012-04-21 12:29 - 2011-06-10 22:15 - 0533504 ____A (Microsoft Corporation) C:\Windows\System32\vds.exe
2012-04-21 12:29 - 2011-06-10 03:34 - 0103808 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\sbp2port.sys
2012-04-21 12:29 - 2011-06-10 03:34 - 0052224 ____A (Microsoft Corporation) C:\Windows\System32\rtutils.dll
2012-04-21 12:29 - 2011-05-24 02:40 - 0586752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2012-04-21 12:29 - 2011-05-24 02:37 - 0323072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2012-04-21 12:29 - 2011-05-03 21:22 - 0641024 ____A (Microsoft Corporation) C:\Windows\System32\msscp.dll
2012-04-21 12:29 - 2011-05-03 20:32 - 0504320 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2012-04-21 12:29 - 2011-04-26 18:39 - 0031104 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\msahci.sys
2012-04-21 12:29 - 2011-04-08 21:56 - 0547840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceApi.dll
2012-04-21 12:29 - 2011-03-24 19:29 - 0184960 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbvideo.sys
2012-04-21 12:29 - 2011-03-12 04:08 - 0229888 ____A (Microsoft Corporation) C:\Windows\System32\XpsRasterService.dll
2012-04-21 12:29 - 2011-03-12 03:23 - 0135168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2012-04-21 12:29 - 2011-03-10 22:41 - 0034688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\storvsc.sys
2012-04-21 12:29 - 2011-03-02 22:21 - 0118272 ____A (Microsoft Corporation) C:\Windows\System32\dnscmmc.dll
2012-04-21 12:29 - 2011-03-02 21:36 - 0109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnscmmc.dll
2012-04-21 12:29 - 2011-02-19 04:05 - 0861184 ____A (Microsoft Corporation) C:\Windows\System32\fontext.dll
2012-04-21 12:29 - 2011-02-05 09:06 - 0390656 ____A (Microsoft Corporation) C:\Windows\System32\winlogon.exe
2012-04-21 12:29 - 2011-01-17 03:09 - 0321024 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2012-04-21 12:29 - 2011-01-16 21:47 - 0219136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2012-04-21 12:29 - 2010-12-23 02:42 - 0022016 ____A (Microsoft Corporation) C:\Windows\System32\credssp.dll
2012-04-21 12:29 - 2010-12-22 21:54 - 0017408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2012-04-21 12:29 - 2010-11-20 05:34 - 0363392 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\volmgrx.sys
2012-04-21 12:29 - 2010-11-20 05:34 - 0295808 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\volsnap.sys
2012-04-21 12:29 - 2010-11-20 05:34 - 0071552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\volmgr.sys
2012-04-21 12:29 - 2010-11-20 05:33 - 0258048 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2012-04-21 12:29 - 2010-11-20 05:33 - 0184704 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\pci.sys
2012-04-21 12:29 - 2010-11-20 05:33 - 0155008 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mpio.sys
2012-04-21 12:29 - 2010-11-20 05:33 - 0140672 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\msdsm.sys
2012-04-21 12:29 - 2010-11-20 05:33 - 0084992 ____A (Microsoft Corporation) C:\Windows\System32\Mcx2Svc.dll
2012-04-21 12:29 - 2010-11-20 05:33 - 0078848 ____A (Microsoft Corporation) C:\Windows\System32\hbaapi.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 3524608 ____A (Microsoft Corporation) C:\Windows\System32\sppsvc.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 2621952 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 2543616 ____A (Microsoft Corporation) C:\Windows\System32\wpdshext.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 2072576 ____A (Microsoft Corporation) C:\Windows\System32\WMPEncEn.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 1911808 ____A (Microsoft Corporation) C:\Windows\System32\OpcServices.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 1672704 ____A (Microsoft Corporation) C:\Windows\System32\networkexplorer.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 1441280 ____A (Microsoft Corporation) C:\Windows\System32\wlanpref.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 1120768 ____A (Microsoft Corporation) C:\Windows\System32\sdengin2.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 1098240 ____A (Microsoft Corporation) C:\Windows\System32\Vault.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 1082880 ____A (Microsoft Corporation) C:\Windows\System32\sppobjs.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0933888 ____A (Microsoft Corporation) C:\Windows\System32\sqlsrv32.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0781312 ____A (Microsoft Corporation) C:\Windows\System32\wmdrmsdk.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0611840 ____A (Microsoft Corporation) C:\Windows\System32\wpd_ci.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0605696 ____A (Microsoft Corporation) C:\Windows\System32\wmpeffects.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0594432 ____A (Microsoft Corporation) C:\Windows\System32\wvc.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0552960 ____A (Microsoft Corporation) C:\Windows\System32\msdri.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0481280 ____A (Microsoft Corporation) C:\Windows\System32\wmpps.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0474112 ____A (Microsoft Corporation) C:\Windows\System32\sysmon.ocx
2012-04-21 12:29 - 2010-11-20 05:27 - 0473600 ____A (Microsoft Corporation) C:\Windows\System32\taskcomp.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0459776 ____A (Microsoft Corporation) C:\Windows\System32\DXP.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0457216 ____A (Microsoft Corporation) C:\Windows\System32\msdrm.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\shlwapi.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0419840 ____A (Microsoft Corporation) C:\Windows\System32\systemcpl.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0416256 ____A (Microsoft Corporation) C:\Windows\System32\prnfldr.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0406016 ____A (Microsoft Corporation) C:\Windows\System32\scesrv.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0370688 ____A (Microsoft Corporation) C:\Windows\System32\shsvcs.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0352768 ____A (Microsoft Corporation) C:\Windows\System32\sysdm.cpl
2012-04-21 12:29 - 2010-11-20 05:27 - 0307200 ____A (Microsoft Corporation) C:\Windows\System32\wusa.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0300032 ____A (Microsoft Corporation) C:\Windows\System32\msconfig.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0285696 ____A (Microsoft Corporation) C:\Windows\System32\schtasks.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0279040 ____A (Microsoft Corporation) C:\Windows\System32\sethc.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0264192 ____A (Microsoft Corporation) C:\Windows\System32\upnp.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0255488 ____A (Microsoft Corporation) C:\Windows\System32\wavemsp.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0248832 ____A (Microsoft Corporation) C:\Windows\System32\wksprt.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0242688 ____A (Microsoft Corporation) C:\Windows\System32\Mystify.scr
2012-04-21 12:29 - 2010-11-20 05:27 - 0236032 ____A (Microsoft Corporation) C:\Windows\System32\srvsvc.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0223232 ____A (Microsoft Corporation) C:\Windows\System32\wmpsrcwp.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0221696 ____A (Microsoft Corporation) C:\Windows\System32\OnLineIDCpl.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0217600 ____A (Microsoft Corporation) C:\Windows\System32\WinSCard.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0215552 ____A (Microsoft Corporation) C:\Windows\System32\netiohlp.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0215040 ____A (Microsoft Corporation) C:\Windows\System32\wpdwcn.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0210944 ____A (Microsoft Corporation) C:\Windows\System32\rdpclip.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0209920 ____A (Microsoft Corporation) C:\Windows\System32\profsvc.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0207360 ____A (Microsoft Corporation) C:\Windows\System32\sysclass.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0200192 ____A (Microsoft Corporation) C:\Windows\System32\tscfgwmi.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0196608 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0189952 ____A (Microsoft Corporation) C:\Windows\System32\SmartcardCredentialProvider.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0186368 ____A (Microsoft Corporation) C:\Windows\System32\ocsetup.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0167424 ____A (Microsoft Corporation) C:\Windows\System32\rdpendp.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0133632 ____A (Microsoft Corporation) C:\Windows\System32\NAPHLPR.DLL
2012-04-21 12:29 - 2010-11-20 05:27 - 0132608 ____A (Microsoft Corporation) C:\Windows\System32\wmpshell.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0128000 ____A (Microsoft Corporation) C:\Windows\System32\srvcli.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0128000 ____A (Microsoft Corporation) C:\Windows\System32\msiexec.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0112640 ____A (Microsoft Corporation) C:\Windows\System32\thumbcache.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0109056 ____A (Microsoft Corporation) C:\Windows\System32\userenv.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0088576 ____A (Microsoft Corporation) C:\Windows\System32\setupcl.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0086016 ____A (Microsoft Corporation) C:\Windows\System32\TSpkg.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0084480 ____A (Microsoft Corporation) C:\Windows\System32\UserAccountControlSettings.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0078848 ____A (Microsoft Corporation) C:\Windows\System32\WUDFSvc.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0065536 ____A (Microsoft Corporation) C:\Windows\System32\RpcRtRemote.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0063488 ____A (Microsoft Corporation) C:\Windows\System32\wscapi.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0038912 ____A (Microsoft Corporation) C:\Windows\System32\vpnikeapi.dll
2012-04-21 12:29 - 2010-11-20 05:27 - 0031744 ____A (Microsoft Corporation) C:\Windows\System32\proquota.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\userinit.exe
2012-04-21 12:29 - 2010-11-20 05:27 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
2012-04-21 12:29 - 2010-11-20 05:26 - 1457664 ____A (Microsoft Corporation) C:\Windows\System32\DxpTaskSync.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 1087488 ____A (Microsoft Corporation) C:\Windows\System32\dbghelp.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0957440 ____A (Microsoft Corporation) C:\Windows\System32\mblctr.exe
2012-04-21 12:29 - 2010-11-20 05:26 - 0658944 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0584192 ____A (Microsoft Corporation) C:\Windows\System32\ipsmsnap.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0569344 ____A (Microsoft Corporation) C:\Windows\System32\iphlpsvc.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0303616 ____A (Microsoft Corporation) C:\Windows\System32\eapphost.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0295936 ____A (Microsoft Corporation) C:\Windows\System32\framedynos.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0257024 ____A (Microsoft Corporation) C:\Windows\System32\mfreadwrite.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0252416 ____A (Microsoft Corporation) C:\Windows\System32\dot3svc.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0235008 ____A (Microsoft Corporation) C:\Windows\System32\hgprint.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0211456 ____A (Microsoft Corporation) C:\Windows\System32\mprddm.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0166912 ____A (Microsoft Corporation) C:\Windows\System32\inetpp.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0128512 ____A (Microsoft Corporation) C:\Windows\System32\dwmredir.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\mapistub.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0072192 ____A (Microsoft Corporation) C:\Windows\System32\fdeploy.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0069120 ____A (Microsoft Corporation) C:\Windows\System32\dot3cfg.dll
2012-04-21 12:29 - 2010-11-20 05:26 - 0054272 ____A (Microsoft Corporation) C:\Windows\System32\iyuv_32.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 3745792 ____A (Microsoft Corporation) C:\Windows\System32\accessibilitycpl.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 2420736 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 1065984 ____A (Microsoft Corporation) C:\Windows\System32\cryptui.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0762368 ____A (Microsoft Corporation) C:\Windows\System32\sdcpl.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0726528 ____A (Microsoft Corporation) C:\Windows\System32\appwiz.cpl
2012-04-21 12:29 - 2010-11-20 05:25 - 0684032 ____A (Microsoft Corporation) C:\Windows\System32\TabletPC.cpl
2012-04-21 12:29 - 2010-11-20 05:25 - 0594432 ____A (Microsoft Corporation) C:\Windows\System32\comdlg32.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0549888 ____A (Microsoft Corporation) C:\Windows\System32\ActionCenterCPL.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0501248 ____A (Microsoft Corporation) C:\Windows\System32\WinSATAPI.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0498688 ____A (Microsoft Corporation) C:\Windows\System32\cscui.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0472064 ____A (Microsoft Corporation) C:\Windows\System32\azroleui.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0357888 ____A (Microsoft Corporation) C:\Windows\System32\sharemediacpl.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0254464 ____A (Microsoft Corporation) C:\Windows\System32\qasf.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0240640 ____A (Microsoft Corporation) C:\Windows\System32\cscobj.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0225280 ____A (Microsoft Corporation) C:\Windows\System32\SndVolSSO.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0223232 ____A (Microsoft Corporation) C:\Windows\System32\QSHVHOST.DLL
2012-04-21 12:29 - 2010-11-20 05:25 - 0213504 ____A (Microsoft Corporation) C:\Windows\System32\ActionQueue.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\credui.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0190976 ____A (Microsoft Corporation) C:\Windows\System32\vdsbas.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0187904 ____A (Microsoft Corporation) C:\Windows\System32\provsvc.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0182784 ____A (Microsoft Corporation) C:\Windows\System32\WUDFPlatform.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0178688 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0166784 ____A (Microsoft Corporation) C:\Windows\System32\basecsp.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0144384 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0139264 ____A (Microsoft Corporation) C:\Windows\System32\cabview.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0136192 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0098304 ____A (Microsoft Corporation) C:\Windows\System32\WSTPager.ax
2012-04-21 12:29 - 2010-11-20 05:25 - 0094720 ____A (Microsoft Corporation) C:\Windows\System32\cabinet.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0080384 ____A (Microsoft Corporation) C:\Windows\System32\certprop.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0071680 ____A (Microsoft Corporation) C:\Windows\System32\wkscli.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0069120 ____A (Microsoft Corporation) C:\Windows\System32\taskhost.exe
2012-04-21 12:29 - 2010-11-20 05:25 - 0067584 ____A (Microsoft Corporation) C:\Windows\System32\samcli.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0044032 ____A (Microsoft Corporation) C:\Windows\System32\tsgqec.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0031744 ____A (Microsoft Corporation) C:\Windows\System32\AzSqlExt.dll
2012-04-21 12:29 - 2010-11-20 05:25 - 0015360 ____A (Microsoft Corporation) C:\Windows\System32\slwga.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0793088 ____A (Microsoft Corporation) C:\Windows\System32\autoconv.exe
2012-04-21 12:29 - 2010-11-20 05:24 - 0763904 ____A (Microsoft Corporation) C:\Windows\System32\autofmt.exe
2012-04-21 12:29 - 2010-11-20 05:24 - 0633344 ____A (Microsoft Corporation) C:\Windows\System32\riched20.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0433512 ____A (Microsoft Corporation) C:\Windows\System32\MCEWMDRMNDBootstrap.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0409600 ____A (Microsoft Corporation) C:\Windows\System32\photowiz.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0346112 ____A (Microsoft Corporation) C:\Windows\System32\bcdedit.exe
2012-04-21 12:29 - 2010-11-20 05:24 - 0345600 ____A (Microsoft Corporation) C:\Windows\System32\MediaMetadataHandler.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0272896 ____A (Microsoft Corporation) C:\Windows\System32\mcbuilder.exe
2012-04-21 12:29 - 2010-11-20 05:24 - 0186880 ____A (Microsoft Corporation) C:\Windows\System32\logoncli.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0155136 ____A (Microsoft Corporation) C:\Windows\System32\autoplay.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0102912 ____A (Microsoft Corporation) C:\Windows\System32\kstvtune.ax
2012-04-21 12:29 - 2010-11-20 05:24 - 0092672 ____A (Microsoft Corporation) C:\Windows\System32\TabSvc.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0073216 ____A (Microsoft Corporation) C:\Windows\System32\unimdmat.dll
2012-04-21 12:29 - 2010-11-20 05:24 - 0066048 ____A (Microsoft Corporation) C:\Windows\System32\ksxbar.ax
2012-04-21 12:29 - 2010-11-20 05:24 - 0050176 ____A (Microsoft Corporation) C:\Windows\System32\lsmproxy.dll
2012-04-21 12:29 - 2010-11-20 05:16 - 1024512 ____A (Microsoft Corporation) C:\Windows\System32\wmpmde.dll
2012-04-21 12:29 - 2010-11-20 05:13 - 0222208 ____A (Microsoft Corporation) C:\Windows\System32\rdpencom.dll
2012-04-21 12:29 - 2010-11-20 05:09 - 0263168 ____A (Microsoft Corporation) C:\Windows\System32\vpnike.dll
2012-04-21 12:29 - 2010-11-20 05:09 - 0244224 ____A (Microsoft Corporation) C:\Windows\System32\vmicsvc.exe
2012-04-21 12:29 - 2010-11-20 04:55 - 1133568 ____A (Microsoft Corporation) C:\Windows\System32\cdosys.dll
2012-04-21 12:29 - 2010-11-20 04:23 - 0740864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 2755072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 1624064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPEncEn.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 1326592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wlanpref.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0933376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Vault.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0778240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0630784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DXPTaskRingtone.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0616960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0560128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0444928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0410624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0406528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0372224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0352256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0350208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0328192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shsvcs.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0327680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wimserv.exe
2012-04-21 12:29 - 2010-11-20 04:21 - 0326656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl
2012-04-21 12:29 - 2010-11-20 04:21 - 0314880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2012-04-21 12:29 - 2010-11-20 04:21 - 0307712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0270848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0270336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe
2012-04-21 12:29 - 2010-11-20 04:21 - 0206848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0198144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wpdwcn.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0192000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe
2012-04-21 12:29 - 2010-11-20 04:21 - 0186368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0182272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmpsrcwp.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0179712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0179712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
2012-04-21 12:29 - 2010-11-20 04:21 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0140800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0134656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0082944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0081920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tcpmonui.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0051712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2012-04-21 12:29 - 2010-11-20 04:21 - 0026624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\userinit.exe
2012-04-21 12:29 - 2010-11-20 04:20 - 1661440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\networkexplorer.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 1619456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2012-04-21 12:29 - 2010-11-20 04:20 - 1111552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\onexui.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0656384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0563712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0406528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0395264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\prnfldr.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0218112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\OnLineIDCpl.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0206848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0199168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\onex.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0197632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ocsetup.exe
2012-04-21 12:29 - 2010-11-20 04:20 - 0190976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qcap.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0166400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2012-04-21 12:29 - 2010-11-20 04:20 - 0107008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NAPHLPR.DLL
2012-04-21 12:29 - 2010-11-20 04:20 - 0028672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\proquota.exe
2012-04-21 12:29 - 2010-11-20 04:19 - 2291712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0828928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0732160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0341504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0268800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0257024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0206336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0167936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2012-04-21 12:29 - 2010-11-20 04:19 - 0059904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 3727872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 1400320 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DxpTaskSync.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 1003520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0854016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0805376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0744448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0649216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2012-04-21 12:29 - 2010-11-20 04:18 - 0537600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0522752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0508416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0485888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0333824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0314368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0222208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0202752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\activeds.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0168960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0144768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0139264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cscobj.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0132608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll
2012-04-21 12:29 - 2010-11-20 04:18 - 0082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dot3cfg.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 1644032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0573440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0492032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0337408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0312168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MCEWMDRMNDBootstrap.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0165376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\provsvc.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0164352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netjoin.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0146944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\remotepg.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0127488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2012-04-21 12:29 - 2010-11-20 04:17 - 0051200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\samcli.dll
2012-04-21 12:29 - 2010-11-20 04:16 - 2576384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2012-04-21 12:29 - 2010-11-20 04:16 - 0679424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2012-04-21 12:29 - 2010-11-20 04:16 - 0658944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe
2012-04-21 12:29 - 2010-11-20 04:16 - 0473600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2012-04-21 12:29 - 2010-11-20 04:16 - 0295424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll
2012-04-21 12:29 - 2010-11-20 04:16 - 0146944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\autoplay.dll
2012-04-21 12:29 - 2010-11-20 04:16 - 0040448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wtsapi32.dll
2012-04-21 12:29 - 2010-11-20 04:08 - 0738816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2012-04-21 12:29 - 2010-11-20 04:08 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.dll
2012-04-21 12:29 - 2010-11-20 04:08 - 0046080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RpcRtRemote.dll
2012-04-21 12:29 - 2010-11-20 02:52 - 0057856 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndproxy.sys
2012-04-21 12:29 - 2010-11-20 02:50 - 0164352 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndiswan.sys
2012-04-21 12:29 - 2010-11-20 02:44 - 0334208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\acpi.sys
2012-04-21 12:29 - 2010-11-20 02:43 - 0078720 ____A (Hewlett-Packard Company) C:\Windows\System32\Drivers\HpSAMD.sys
2012-04-21 12:29 - 2010-11-20 02:33 - 0243712 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ks.sys
2012-04-21 12:29 - 2010-11-20 02:09 - 0171392 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\scsiport.sys
2012-04-21 12:29 - 2010-11-20 01:57 - 0046464 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\vmstorfl.sys
2012-04-21 12:29 - 2010-11-20 01:25 - 0014720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hwpolicy.sys
2012-04-21 12:29 - 2010-11-20 01:21 - 0063360 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\termdd.sys
2012-04-21 12:29 - 2010-11-19 19:52 - 0551936 ____A (Microsoft Corporation) C:\Windows\System32\localsec.dll
2012-04-21 12:29 - 2010-11-19 19:52 - 0429056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\localsec.dll
2012-04-21 12:29 - 2010-11-04 18:11 - 0084480 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll
2012-04-21 12:29 - 2010-11-04 17:58 - 0155472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2012-04-21 12:29 - 2010-11-04 17:58 - 0080720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2012-04-21 12:29 - 2010-11-04 17:57 - 0154960 ____A (Microsoft Corporation) C:\Windows\System32\mscorier.dll
2012-04-21 12:29 - 2010-03-18 14:23 - 0084992 ____A (Microsoft Corporation) C:\Windows\System32\asycfilt.dll
2012-04-21 12:29 - 2010-03-18 13:47 - 0067584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2012-04-21 12:29 - 2010-02-17 18:41 - 0196096 ____A (Microsoft Corporation) C:\Windows\System32\VBICodec.ax
2012-04-21 12:29 - 2009-12-30 07:21 - 0146432 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rmcast.sys
2012-04-21 12:29 - 2009-07-13 23:12 - 0146944 ____A (Microsoft Corporation) C:\Windows\System32\recovery.dll
2012-04-21 12:29 - 2009-07-13 21:37 - 0402944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2012-04-21 12:29 - 2009-07-13 21:37 - 0067072 ____A (Microsoft Corporation) C:\Windows\splwow64.exe
2012-04-21 12:29 - 2009-07-13 21:37 - 0016896 ____A (Microsoft Corporation) C:\Windows\System32\muifontsetup.dll
2012-04-21 12:29 - 2009-07-13 20:57 - 0041472 ____A (Microsoft Corporation) C:\Windows\System32\mimefilt.dll
2012-04-21 12:29 - 2009-07-13 20:55 - 0220672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2012-04-21 12:29 - 2009-07-13 19:20 - 2146816 ____A (Microsoft Corporation) C:\Windows\System32\networkmap.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 2130944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\networkmap.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 1508864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 1389056 ____A (Microsoft Corporation) C:\Windows\System32\pla.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0933376 ____A (Microsoft Corporation) C:\Windows\System32\SmiEngine.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0366080 ____A (Microsoft Corporation) C:\Windows\System32\zipfldr.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0359936 ____A (Microsoft Corporation) C:\Windows\System32\eudcedit.exe
2012-04-21 12:29 - 2009-07-13 19:20 - 0340992 ____A (Microsoft Corporation) C:\Windows\System32\srchadmin.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0327680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0301568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0288256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\eudcedit.exe
2012-04-21 12:29 - 2009-07-13 19:20 - 0244224 ____A (Microsoft Corporation) C:\Windows\System32\spp.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0233984 ____A (Microsoft Corporation) C:\Windows\System32\defaultlocationcpl.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0220672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\defaultlocationcpl.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0202752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0172544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0128000 ____A (Microsoft) C:\Windows\System32\Robocopy.exe
2012-04-21 12:29 - 2009-07-13 19:20 - 0098816 ____A (Microsoft) C:\Windows\SysWOW64\Robocopy.exe
2012-04-21 12:29 - 2009-07-13 19:20 - 0070656 ____A (Microsoft Corporation) C:\Windows\System32\nlaapi.dll
2012-04-21 12:29 - 2009-07-13 19:20 - 0052224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2012-04-21 12:29 - 2009-07-13 17:52 - 0155520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ataport.sys
2012-04-21 12:29 - 2009-07-13 17:47 - 0514560 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\csc.sys
2012-04-21 12:29 - 2009-07-13 17:45 - 0483840 ____A (Microsoft Corporation) C:\Windows\System32\StructuredQuery.dll
2012-04-21 12:29 - 2009-07-13 17:45 - 0328192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\udfs.sys
2012-04-21 12:29 - 2009-07-13 17:45 - 0052096 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\winhv.sys
2012-04-21 12:29 - 2009-07-13 17:45 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\umbus.sys
2012-04-21 12:29 - 2009-07-13 17:43 - 0701440 ____A (Microsoft Corporation) C:\Windows\System32\dsuiext.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 2851840 ____A (Microsoft Corporation) C:\Windows\System32\themeui.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 2250752 ____A (Microsoft Corporation) C:\Windows\System32\SensorsCpl.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 2193920 ____A (Microsoft Corporation) C:\Windows\System32\themecpl.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 1509888 ____A (Microsoft Corporation) C:\Windows\System32\msdtctm.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 1363968 ____A (Microsoft Corporation) C:\Windows\System32\wdc.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 1243136 ____A (Microsoft Corporation) C:\Windows\System32\WMNetMgr.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 1232896 ____A (Microsoft Corporation) C:\Windows\System32\WMADMOD.DLL
2012-04-21 12:29 - 2009-07-13 17:41 - 1160192 ____A (Microsoft Corporation) C:\Windows\System32\MSMPEG2ENC.DLL
2012-04-21 12:29 - 2009-07-13 17:41 - 1009152 ____A (Microsoft Corporation) C:\Windows\System32\mcmde.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0812032 ____A (Microsoft Corporation) C:\Windows\System32\wpccpl.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0695808 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0691200 ____A (Microsoft Corporation) C:\Windows\System32\VAN.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0666112 ____A (Microsoft Corporation) C:\Windows\System32\WMVSDECD.DLL
2012-04-21 12:29 - 2009-07-13 17:41 - 0653312 ____A (Microsoft Corporation) C:\Windows\System32\lpksetup.exe
2012-04-21 12:29 - 2009-07-13 17:41 - 0636416 ____A (Microsoft Corporation) C:\Windows\System32\wmdrmdev.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0582656 ____A (Microsoft Corporation) C:\Windows\System32\sxs.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0580096 ____A (Microsoft Corporation) C:\Windows\System32\wiaservc.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0571904 ____A (Microsoft Corporation) C:\Windows\System32\mspbda.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0568832 ____A (Microsoft Corporation) C:\Windows\System32\scrptadm.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0559104 ____A (Microsoft Corporation) C:\Windows\System32\spoolsv.exe
2012-04-21 12:29 - 2009-07-13 17:41 - 0503296 ____A (Microsoft Corporation) C:\Windows\System32\srcore.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0503296 ____A (Microsoft Corporation) C:\Windows\System32\imapi2.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0501248 ____A (Microsoft Corporation) C:\Windows\System32\IPSECSVC.DLL
2012-04-21 12:29 - 2009-07-13 17:41 - 0477696 ____A (Microsoft Corporation) C:\Windows\System32\PhotoScreensaver.scr
2012-04-21 12:29 - 2009-07-13 17:41 - 0462336 ____A (Microsoft Corporation) C:\Windows\System32\wiadefui.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0455168 ____A (Microsoft Corporation) C:\Windows\System32\nshipsec.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0446976 ____A (Microsoft Corporation) C:\Windows\System32\sqlcese30.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0445952 ____A (Microsoft Corporation) C:\Windows\System32\spwizeng.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0442368 ____A (Microsoft Corporation) C:\Windows\System32\winspool.drv
2012-04-21 12:29 - 2009-07-13 17:41 - 0429568 ____A (Microsoft Corporation) C:\Windows\System32\puiobj.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0424448 ____A (Microsoft Corporation) C:\Windows\System32\rastls.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0418816 ____A (Microsoft Corporation) C:\Windows\System32\sppwinob.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0414720 ____A (Microsoft Corporation) C:\Windows\System32\wlanmsm.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0414208 ____A (Microsoft Corporation) C:\Windows\System32\wlanui.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0381440 ____A (Microsoft Corporation) C:\Windows\System32\mfds.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0378880 ____A (Microsoft Corporation) C:\Windows\System32\msinfo32.exe
2012-04-21 12:29 - 2009-07-13 17:41 - 0367104 ____A (Microsoft Corporation) C:\Windows\System32\wcncsvc.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0358400 ____A (Microsoft Corporation) C:\Windows\System32\wmpdxm.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0344064 ____A (Microsoft Corporation) C:\Windows\System32\rasmans.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0337920 ____A (Microsoft Corporation) C:\Windows\System32\raschap.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0333824 ____A (Microsoft Corporation) C:\Windows\System32\ssText3d.scr
2012-04-21 12:29 - 2009-07-13 17:41 - 0326144 ____A (Microsoft Corporation) C:\Windows\System32\mswsock.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0324096 ____A (Microsoft Corporation) C:\Windows\System32\netdiagfx.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0321536 ____A (Microsoft Corporation) C:\Windows\System32\unimdm.tsp
2012-04-21 12:29 - 2009-07-13 17:41 - 0316928 ____A (Microsoft Corporation) C:\Windows\System32\tapisrv.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0312832 ____A (Microsoft Corporation) C:\Windows\System32\Wldap32.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0303616 ____A (Microsoft Corporation) C:\Windows\System32\nlasvc.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0296960 ____A (Microsoft Corporation) C:\Windows\System32\rstrui.exe
2012-04-21 12:29 - 2009-07-13 17:41 - 0296448 ____A (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0293888 ____A (Microsoft Corporation) C:\Windows\System32\wsqmcons.exe
2012-04-21 12:29 - 2009-07-13 17:41 - 0282624 ____A (Microsoft Corporation) C:\Windows\System32\iTVData.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0281088 ____A (Microsoft Corporation) C:\Windows\System32\iprtrmgr.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0270848 ____A (Microsoft Corporation) C:\Windows\System32\srrstr.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0268288 ____A (Microsoft Corporation) C:\Windows\System32\MSAC3ENC.DLL
2012-04-21 12:29 - 2009-07-13 17:41 - 0257024 ____A (Microsoft Corporation) C:\Windows\System32\stobject.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0241664 ____A (Microsoft Corporation) C:\Windows\System32\Ribbons.scr
2012-04-21 12:29 - 2009-07-13 17:41 - 0240640 ____A (Microsoft Corporation) C:\Windows\System32\MFPlay.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0238080 ____A (Microsoft Corporation) C:\Windows\System32\mstask.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0232960 ____A (Microsoft Corporation) C:\Windows\System32\scecli.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0232448 ____A (Microsoft Corporation) C:\Windows\System32\sppcomapi.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0232448 ____A (Microsoft Corporation) C:\Windows\System32\ListSvc.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0222720 ____A (Microsoft Corporation) C:\Windows\System32\wwanconn.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0221184 ____A (Microsoft Corporation) C:\Windows\System32\mprapi.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0217088 ____A (Microsoft Corporation) C:\Windows\System32\wdmaud.drv
2012-04-21 12:29 - 2009-07-13 17:41 - 0217088 ____A (Microsoft Corporation) C:\Windows\System32\iasrad.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0211456 ____A (Microsoft Corporation) C:\Windows\System32\rasppp.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0200192 ____A (Microsoft Corporation) C:\Windows\System32\syncui.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0187904 ____A (Microsoft Corporation) C:\Windows\System32\rpchttp.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0180736 ____A (Microsoft Corporation) C:\Windows\System32\ifsutil.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0173568 ____A (Microsoft Corporation) C:\Windows\System32\powercfg.cpl
2012-04-21 12:29 - 2009-07-13 17:41 - 0172544 ____A (Microsoft Corporation) C:\Windows\System32\twext.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0170496 ____A (Microsoft Corporation) C:\Windows\System32\sdrsvc.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0156160 ____A (Microsoft Corporation) C:\Windows\System32\prntvpt.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0154624 ____A (Microsoft Corporation) C:\Windows\System32\uxlib.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0133120 ____A (Microsoft Corporation) C:\Windows\System32\Kswdmcap.ax
2012-04-21 12:29 - 2009-07-13 17:41 - 0129536 ____A (Microsoft Corporation) C:\Windows\System32\ntlanman.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0124928 ____A (Microsoft Corporation) C:\Windows\System32\wiavideo.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0121856 ____A (Microsoft Corporation) C:\Windows\System32\SessEnv.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0118784 ____A (Microsoft Corporation) C:\Windows\System32\wkssvc.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0117248 ____A (Microsoft Corporation) C:\Windows\System32\wpdbusenum.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0109568 ____A (Microsoft Corporation) C:\Windows\System32\nslookup.exe
2012-04-21 12:29 - 2009-07-13 17:41 - 0102400 ____A (Microsoft Corporation) C:\Windows\System32\sppnp.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0100864 ____A (Microsoft Corporation) C:\Windows\System32\iasacct.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\isoburn.exe
2012-04-21 12:29 - 2009-07-13 17:41 - 0090112 ____A (Microsoft Corporation) C:\Windows\System32\nci.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0067072 ____A (Microsoft Corporation) C:\Windows\System32\wsnmp32.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0066048 ____A (Microsoft Corporation) C:\Windows\System32\ncryptui.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0059904 ____A (Microsoft Corporation) C:\Windows\System32\umb.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0038912 ____A (Microsoft Corporation) C:\Windows\System32\msvidc32.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0016384 ____A (Microsoft Corporation) C:\Windows\System32\msrle32.dll
2012-04-21 12:29 - 2009-07-13 17:41 - 0014848 ____A (Microsoft Corporation) C:\Windows\System32\tsbyuv.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 2746880 ____A (Microsoft Corporation) C:\Windows\System32\gameux.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 1202176 ____A (Microsoft Corporation) C:\Windows\System32\DiagCpl.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 1066496 ____A (Microsoft Corporation) C:\Windows\System32\Display.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0934912 ____A (Microsoft Corporation) C:\Windows\System32\FirewallControlPanel.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0899584 ____A (Microsoft Corporation) C:\Windows\System32\Bubbles.scr
2012-04-21 12:29 - 2009-07-13 17:40 - 0840192 ____A (Microsoft Corporation) C:\Windows\System32\blackbox.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0780800 ____A (Microsoft Corporation) C:\Windows\System32\ActionCenter.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0780008 ____A (Microsoft Corporation) C:\Windows\System32\ci.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0777728 ____A (Microsoft Corporation) C:\Windows\System32\autochk.exe
2012-04-21 12:29 - 2009-07-13 17:40 - 0749568 ____A (Microsoft Corporation) C:\Windows\System32\batmeter.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0726528 ____A (Microsoft Corporation) C:\Windows\System32\AuxiliaryDisplayCpl.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0721408 ____A (Microsoft Corporation) C:\Windows\System32\bthprops.cpl
2012-04-21 12:29 - 2009-07-13 17:40 - 0689152 ____A (Microsoft Corporation) C:\Windows\System32\FXSSVC.exe
2012-04-21 12:29 - 2009-07-13 17:40 - 0633856 ____A (Microsoft Corporation) C:\Windows\System32\comctl32.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0623104 ____A (Microsoft Corporation) C:\Windows\System32\FXSAPI.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0573952 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0508928 ____A (Microsoft Corporation) C:\Windows\System32\DeviceCenter.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0504320 ____A (Microsoft Corporation) C:\Windows\System32\biocpl.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0479232 ____A (Microsoft Corporation) C:\Windows\System32\appmgr.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0412160 ____A (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0403968 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0345600 ____A (Microsoft Corporation) C:\Windows\System32\fveapi.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0345088 ____A (Microsoft Corporation) C:\Windows\System32\cmd.exe
2012-04-21 12:29 - 2009-07-13 17:40 - 0332288 ____A (Microsoft Corporation) C:\Windows\System32\hgcpl.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0304128 ____A (Microsoft Corporation) C:\Windows\System32\efscore.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0298104 ____A (Microsoft Corporation) C:\Windows\System32\bcryptprimitives.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0281600 ____A (Microsoft) C:\Windows\System32\DShowRdpFilter.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0239616 ____A (Microsoft Corporation) C:\Windows\System32\dskquoui.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0232448 ____A (Microsoft Corporation) C:\Windows\System32\bitsadmin.exe
2012-04-21 12:29 - 2009-07-13 17:40 - 0225280 ____A (Microsoft Corporation) C:\Windows\System32\DevicePairingFolder.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0177152 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0175616 ____A (Microsoft Corporation) C:\Windows\System32\bcdboot.exe
2012-04-21 12:29 - 2009-07-13 17:40 - 0171520 ____A (Microsoft Corporation) C:\Windows\System32\fde.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0168448 ____A (Microsoft Corporation) C:\Windows\System32\bcdsrv.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0135680 ____A (Microsoft Corporation) C:\Windows\System32\AuxiliaryDisplayServices.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0122880 ____A (Microsoft Corporation) C:\Windows\System32\aitagent.exe
2012-04-21 12:29 - 2009-07-13 17:40 - 0116224 ____A (Windows ® Codename Longhorn DDK provider) C:\Windows\System32\fms.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0114688 ____A (Microsoft Corporation) C:\Windows\System32\AxInstSv.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0112000 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe
2012-04-21 12:29 - 2009-07-13 17:40 - 0100864 ____A (Microsoft Corporation) C:\Windows\System32\davclnt.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0095232 ____A (Microsoft Corporation) C:\Windows\System32\cca.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0070656 ____A (Microsoft Corporation) C:\Windows\System32\appinfo.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0053248 ____A (Microsoft Corporation) C:\Windows\System32\acppage.dll
2012-04-21 12:29 - 2009-07-13 17:40 - 0048128 ____A (Microsoft Corporation) C:\Windows\System32\ftp.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 2652160 ____A (Microsoft Corporation) C:\Windows\System32\netshell.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 2262528 ____A (Microsoft Corporation) C:\Windows\System32\SyncCenter.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 1689600 ____A (Microsoft Corporation) C:\Windows\System32\netcenter.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 1264640 ____A (Microsoft Corporation) C:\Windows\System32\sdclt.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 1190400 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 1077248 ____A (Microsoft Corporation) C:\Windows\System32\Narrator.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0769536 ____A (Microsoft Corporation) C:\Windows\System32\sud.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0692224 ____A (Microsoft Corporation) C:\Windows\System32\cscsvc.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0675328 ____A (Microsoft Corporation) C:\Windows\System32\DXPTaskRingtone.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0625664 ____A (Microsoft Corporation) C:\Windows\System32\usercpl.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0606208 ____A (Microsoft Corporation) C:\Windows\System32\dfrgui.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0519680 ____A (Microsoft Corporation) C:\Windows\System32\netcfgx.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0497664 ____A (Microsoft Corporation) C:\Windows\System32\main.cpl
2012-04-21 12:29 - 2009-07-13 17:39 - 0486400 ____A (Microsoft Corporation) C:\Windows\System32\powercpl.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0475136 ____A (Microsoft Corporation) C:\Windows\System32\wlangpui.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0451072 ____A (Microsoft Corporation) C:\Windows\System32\shwebsvc.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0422912 ____A (Microsoft Corporation) C:\Windows\System32\drvstore.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0405504 ____A (Microsoft Corporation) C:\Windows\System32\wisptis.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0403968 ____A (Microsoft Corporation) C:\Windows\System32\untfs.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0372736 ____A (Microsoft Corporation) C:\Windows\System32\mtxclu.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0363520 ____A (Microsoft Corporation) C:\Windows\System32\diskraid.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0348160 ____A (Microsoft Corporation) C:\Windows\System32\eapp3hst.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0303616 ____A (Microsoft Corporation) C:\Windows\System32\scansetting.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0294912 ____A (Microsoft Corporation) C:\Windows\System32\WindowsAnytimeUpgradeResults.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0279552 ____A (Microsoft Corporation) C:\Windows\System32\dxdiagn.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0273920 ____A (Microsoft Corporation) C:\Windows\System32\SndVol.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0263040 ____A (Microsoft Corporation) C:\Windows\System32\hal.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0257024 ____A (Microsoft Corporation) C:\Windows\System32\taskmgr.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0250880 ____A (Microsoft Corporation) C:\Windows\System32\ksproxy.ax
2012-04-21 12:29 - 2009-07-13 17:39 - 0243712 ____A (Microsoft Corporation) C:\Windows\System32\taskbarcpl.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0238080 ____A (Microsoft Corporation) C:\Windows\System32\recdisc.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0206848 ____A (Microsoft Corporation) C:\Windows\System32\mfps.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0188928 ____A (Microsoft Corporation) C:\Windows\System32\netjoin.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0185856 ____A (Microsoft Corporation) C:\Windows\System32\vdsutil.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0183808 ____A (Microsoft Corporation) C:\Windows\System32\prncache.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0162816 ____A (Microsoft Corporation) C:\Windows\System32\dps.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0153088 ____A (Microsoft Corporation) C:\Windows\System32\remotepg.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0152064 ____A (Microsoft Corporation) C:\Windows\System32\net1.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0148992 ____A (Microsoft Corporation) C:\Windows\System32\t2embed.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0146944 ____A (Microsoft Corporation) C:\Windows\System32\MdSched.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\IPHLPAPI.DLL
2012-04-21 12:29 - 2009-07-13 17:39 - 0130048 ____A (Microsoft Corporation) C:\Windows\System32\shsetup.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0115200 ____A (Microsoft Corporation) C:\Windows\System32\WPDShServiceObj.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0107520 ____A (Microsoft Corporation) C:\Windows\System32\QUTIL.DLL
2012-04-21 12:29 - 2009-07-13 17:39 - 0095232 ____A (Microsoft Corporation) C:\Windows\System32\regapi.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0084992 ____A (Microsoft Corporation) C:\Windows\System32\dot3api.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0056832 ____A (Microsoft Corporation) C:\Windows\System32\runonce.exe
2012-04-21 12:29 - 2009-07-13 17:39 - 0048128 ____A (Microsoft Corporation) C:\Windows\System32\PrintIsolationProxy.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0040960 ____A (Microsoft Corporation) C:\Windows\System32\TsUsbGDCoInstaller.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\seclogon.dll
2012-04-21 12:29 - 2009-07-13 17:39 - 0026112 ____A (Microsoft Corporation) C:\Windows\System32\WerFaultSecure.exe
2012-04-21 12:29 - 2009-07-13 17:38 - 2217856 ____A (Microsoft Corporation) C:\Windows\System32\bootres.dll
2012-04-21 12:29 - 2009-07-13 17:38 - 0421888 ____A (Microsoft Corporation) C:\Windows\System32\termmgr.dll
2012-04-21 12:29 - 2009-07-13 17:38 - 0314368 ____A (Microsoft Corporation) C:\Windows\System32\clusapi.dll
2012-04-21 12:29 - 2009-07-13 17:38 - 0126464 ____A (Microsoft Corporation) C:\Windows\System32\audiodg.exe
2012-04-21 12:29 - 2009-07-13 17:34 - 0297984 ____A (Microsoft Corporation) C:\Windows\System32\ws2_32.dll
2012-04-21 12:29 - 2009-07-13 17:32 - 0758784 ____A (Microsoft Corporation) C:\Windows\System32\samsrv.dll
2012-04-21 12:29 - 2009-07-13 17:31 - 0395776 ____A (Microsoft Corporation) C:\Windows\System32\nltest.exe
2012-04-21 12:29 - 2009-07-13 17:31 - 0235520 ____A (Microsoft Corporation) C:\Windows\System32\onex.dll
2012-04-21 12:29 - 2009-07-13 17:30 - 0193024 ____A (Microsoft Corporation) C:\Windows\System32\netplwiz.dll
2012-04-21 12:29 - 2009-07-13 17:30 - 0165376 ____A (Microsoft Corporation) C:\Windows\System32\netid.dll
2012-04-21 12:29 - 2009-07-13 17:30 - 0025600 ____A (Microsoft Corporation) C:\Windows\System32\msyuv.dll
2012-04-21 12:29 - 2009-07-13 17:29 - 0850944 ____A (Microsoft Corporation) C:\Windows\System32\mmsys.cpl
2012-04-21 12:29 - 2009-07-13 17:29 - 0335360 ____A (Microsoft Corporation) C:\Windows\System32\msieftp.dll
2012-04-21 12:29 - 2009-07-13 17:29 - 0046592 ____A (Microsoft Corporation) C:\Windows\System32\msasn1.dll
2012-04-21 12:29 - 2009-07-13 17:28 - 0199168 ____A (Microsoft Corporation) C:\Windows\System32\PkgMgr.exe
2012-04-21 12:29 - 2009-07-13 17:28 - 0073728 ____A (Microsoft Corporation) C:\Windows\System32\tlscsp.dll
2012-04-21 12:29 - 2009-07-13 17:28 - 0037376 ____A (Microsoft Corporation) C:\Windows\System32\iscsium.dll
2012-04-21 12:29 - 2009-07-13 17:27 - 0355328 ____A (Microsoft Corporation) C:\Windows\System32\Faultrep.dll
2012-04-21 12:29 - 2009-07-13 17:24 - 0424448 ____A (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2012-04-21 12:29 - 2009-07-13 17:24 - 0342016 ____A (Microsoft Corporation) C:\Windows\System32\apphelp.dll
2012-04-21 12:29 - 2009-07-13 17:20 - 1792000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2012-04-21 12:29 - 2009-07-13 17:20 - 0101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\migisol.dll
2012-04-21 12:29 - 2009-07-13 17:17 - 0685056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dsuiext.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 2983424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 2504192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2012-04-21 12:29 - 2009-07-13 17:16 - 2311168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 2202624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SensorsCpl.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 2157568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 1227776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 1010688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 1003008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0988160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0801280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0464896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0428032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0416768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wiadefui.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0413696 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2012-04-21 12:29 - 2009-07-13 17:16 - 0410112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0380416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0363520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0352768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0351232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0346112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nshipsec.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0335872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0324608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0320000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2012-04-21 12:29 - 2009-07-13 17:16 - 0318976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0314368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2012-04-21 12:29 - 2009-07-13 17:16 - 0299520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0293888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ssText3d.scr
2012-04-21 12:29 - 2009-07-13 17:16 - 0281088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2012-04-21 12:29 - 2009-07-13 17:16 - 0276992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0269824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0242176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0228352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0225792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netdiagfx.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0195584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0194048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0193536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rasppp.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0175616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0172032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv
2012-04-21 12:29 - 2009-07-13 17:16 - 0167936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL
2012-04-21 12:29 - 2009-07-13 17:16 - 0160256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vdsbas.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\syncui.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0156672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0146432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\twext.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0139264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0120320 ____A (Microsoft Corporation) C:\Windows\SysWOW64\prntvpt.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\uxlib.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0113664 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0098304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nslookup.exe
2012-04-21 12:29 - 2009-07-13 17:16 - 0090112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nci.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0068608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WSTPager.ax
2012-04-21 12:29 - 2009-07-13 17:16 - 0066048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2012-04-21 12:29 - 2009-07-13 17:16 - 0037376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2012-04-21 12:29 - 2009-07-13 17:16 - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vpnikeapi.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 2522624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 2151936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 1555456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 1371136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 1236992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 1040384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0856576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\FirewallControlPanel.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0830464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2012-04-21 12:29 - 2009-07-13 17:15 - 0530432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0484864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0400896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ipsmsnap.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0392192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0312832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0311296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0303104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2012-04-21 12:29 - 2009-07-13 17:15 - 0302592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
2012-04-21 12:29 - 2009-07-13 17:15 - 0296448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0271360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0266752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MediaMetadataHandler.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0257024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dpx.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0254464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0252928 ____A (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll

Here is the second half, section #2
------------------------------------------


2012-04-21 12:29 - 2009-07-13 17:15 - 0232448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0226304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSAC3ENC.DLL
2012-04-21 12:29 - 2009-07-13 17:15 - 0219648 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iTVData.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0216576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2012-04-21 12:29 - 2009-07-13 17:15 - 0213504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0211456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingFolder.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0209920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mstask.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0205312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\efscore.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0202240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0196608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0196608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dskquoui.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0172032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0171520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\QAGENT.DLL
2012-04-21 12:29 - 2009-07-13 17:15 - 0148992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0136192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0124416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fde.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0093696 ____A (Windows ® Codename Longhorn DDK provider) C:\Windows\SysWOW64\fms.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\isoburn.exe
2012-04-21 12:29 - 2009-07-13 17:15 - 0080384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll
2012-04-21 12:29 - 2009-07-13 17:15 - 0042496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 2494464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 2146304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0776192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0755200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0743424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0668160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0665600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AuxiliaryDisplayCpl.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0663040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0600064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0597504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0516096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl
2012-04-21 12:29 - 2009-07-13 17:14 - 0458752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0441856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\powercpl.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0428544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shwebsvc.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0411648 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0389632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2012-04-21 12:29 - 2009-07-13 17:14 - 0352768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\termmgr.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0346624 ____A (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0339968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0320512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0305152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0276480 ____A (Microsoft Corporation) C:\Windows\SysWOW64\diskraid.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0247808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0246272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\scansetting.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0243712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\audiodev.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0230912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0227328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\taskmgr.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0210432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxdiagn.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0186880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\adsldp.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0157184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0142336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\net1.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0116736 ____A (Microsoft Corporation) C:\Windows\SysWOW64\prncache.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0113152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0111104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0105984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2012-04-21 12:29 - 2009-07-13 17:14 - 0095232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\logagent.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0091136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0072192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0066560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\hbaapi.dll
2012-04-21 12:29 - 2009-07-13 17:14 - 0050688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe
2012-04-21 12:29 - 2009-07-13 17:14 - 0045568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll
2012-04-21 12:29 - 2009-07-13 17:11 - 1175040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2012-04-21 12:29 - 2009-07-13 17:11 - 0638976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll
2012-04-21 12:29 - 2009-07-13 17:11 - 0320512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2012-04-21 12:29 - 2009-07-13 17:11 - 0206848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2012-04-21 12:29 - 2009-07-13 17:07 - 0301568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2012-04-21 12:29 - 2009-07-13 17:07 - 0175616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2012-04-21 12:29 - 2009-07-13 17:07 - 0120320 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvfw32.dll
2012-04-21 12:29 - 2009-07-13 17:07 - 0117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netid.dll
2012-04-21 12:29 - 2009-07-13 17:07 - 0049488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2012-04-21 12:29 - 2009-07-13 17:06 - 0905216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2012-04-21 12:29 - 2009-07-13 17:06 - 0209920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe
2012-04-21 12:29 - 2009-07-13 17:06 - 0080896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\QUTIL.DLL
2012-04-21 12:29 - 2009-07-13 17:06 - 0034304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll
2012-04-21 12:29 - 2009-07-13 17:03 - 0295936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2012-04-21 12:29 - 2009-07-13 17:00 - 0172544 ____A (Microsoft Corporation) C:\Windows\System32\perfmon.exe
2012-04-21 12:29 - 2009-07-13 16:28 - 0024064 ____A (Microsoft Corporation) C:\Windows\System32\sisbkup.dll
2012-04-21 12:29 - 2009-07-13 16:16 - 0165888 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpdr.sys
2012-04-21 12:29 - 2009-07-13 16:10 - 0309248 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdbss.sys
2012-04-21 12:29 - 2009-07-13 16:10 - 0129536 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rasl2tp.sys
2012-04-21 12:29 - 2009-07-13 16:10 - 0111104 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\raspptp.sys
2012-04-21 12:29 - 2009-07-13 16:08 - 0140800 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxdav.sys
2012-04-21 12:29 - 2009-07-13 16:06 - 0229888 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\1394ohci.sys
2012-04-21 12:29 - 2009-07-13 16:06 - 0179072 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Classpnp.sys
2012-04-21 12:29 - 2009-07-13 16:06 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2012-04-21 12:29 - 2009-07-13 16:02 - 0088576 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\wanarp.sys
2012-04-21 12:29 - 2009-07-13 16:00 - 0366976 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\msrpc.sys
2012-04-21 12:29 - 2009-07-13 16:00 - 0289664 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fltMgr.sys
2012-04-21 12:29 - 2009-07-13 16:00 - 0094592 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mountmgr.sys
2012-04-21 12:29 - 2009-07-13 16:00 - 0075136 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2012-04-21 12:29 - 2009-07-13 15:55 - 0800256 ____A (Microsoft Corporation) C:\Windows\System32\usp10.dll
2012-04-21 12:29 - 2009-07-13 15:55 - 0460800 ____A (Microsoft Corporation) C:\Windows\System32\certcli.dll
2012-04-21 12:29 - 2009-07-13 15:40 - 0626176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2012-04-21 12:29 - 2009-07-13 15:40 - 0600576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PerfCenterCPL.dll
2012-04-21 12:29 - 2009-07-13 15:38 - 0982912 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2012-04-21 12:29 - 2009-07-13 15:38 - 0279040 ____A (Microsoft Corporation) C:\Windows\System32\framedyn.dll
2012-04-21 12:29 - 2009-07-13 15:38 - 0215936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\vhdmp.sys
2012-04-21 12:29 - 2009-07-13 15:38 - 0199552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\vmbus.sys
2012-04-21 12:29 - 2009-07-13 15:37 - 0309760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2012-04-21 12:29 - 2009-07-13 15:19 - 0082944 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ipfltdrv.sys
2012-04-21 12:29 - 2009-06-10 13:40 - 0932352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2012-04-21 12:29 - 2009-06-10 13:39 - 0181760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll
2012-04-21 12:29 - 2009-06-10 13:38 - 0488448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2012-04-21 12:29 - 2009-06-10 13:29 - 0193536 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2012-04-21 12:29 - 2009-06-10 13:28 - 0584192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2012-04-21 12:29 - 2009-06-10 13:25 - 0046080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NAPCRYPT.DLL
2012-04-21 12:29 - 2009-06-10 13:21 - 0762880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll
2012-04-21 12:29 - 2009-06-10 13:16 - 0131584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2012-04-21 12:29 - 2009-06-10 13:15 - 1712640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2012-04-21 12:29 - 2009-06-10 13:02 - 1050624 ____A (Microsoft Corporation) C:\Windows\System32\printui.dll
2012-04-21 12:29 - 2009-06-10 13:01 - 0253440 ____A (Microsoft Corporation) C:\Windows\System32\tcpipcfg.dll
2012-04-21 12:29 - 2009-06-10 13:01 - 0017408 ____A (Microsoft Corporation) C:\Windows\System32\syssetup.dll
2012-04-21 12:29 - 2009-06-10 12:58 - 0630272 ____A (Microsoft Corporation) C:\Windows\System32\evr.dll
2012-04-21 12:29 - 2009-06-10 12:43 - 0050176 ____A (Microsoft Corporation) C:\Windows\System32\NAPCRYPT.DLL
2012-04-21 12:29 - 2009-06-10 12:38 - 0897536 ____A (Microsoft Corporation) C:\Windows\System32\azroles.dll
2012-04-21 12:29 - 2009-06-10 12:36 - 0029184 ____A (Microsoft Corporation) C:\Windows\System32\netutils.dll
2012-04-21 12:29 - 2009-06-10 12:31 - 0176640 ____A (Microsoft Corporation) C:\Windows\System32\PresentationSettings.exe
2012-04-21 12:29 - 2006-01-30 05:32 - 0266240 ____A (Microsoft Corporation) C:\Windows\System32\QAGENT.DLL
2012-04-21 12:29 - 2005-01-17 13:10 - 0692736 ____A (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2012-04-21 12:28 - 2012-05-07 05:40 - 0022528 ____A (Microsoft Corporation) C:\Windows\System32\chglogon.exe
2012-04-21 12:28 - 2012-04-27 00:02 - 0017408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2012-04-21 12:28 - 2012-04-22 17:25 - 0090112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll
2012-04-21 12:28 - 2012-04-21 13:14 - 0363008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll
2012-04-21 12:28 - 2012-04-21 13:14 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2012-04-21 12:28 - 2012-04-21 13:14 - 0046080 ____A (Microsoft Corporation) C:\Windows\System32\cscapi.dll
2012-04-21 12:28 - 2012-04-21 13:14 - 0034816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2012-04-21 12:28 - 2012-04-21 13:07 - 0061952 ____A (Microsoft Corporation) C:\Windows\System32\WavDest.dll
2012-04-21 12:28 - 2012-04-21 13:06 - 0128000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\desk.cpl
2012-04-21 12:28 - 2012-04-21 12:39 - 1148416 ____A (Microsoft Corporation) C:\Windows\System32\IMJP10.IME
2012-04-21 12:28 - 2012-04-21 12:39 - 1027584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2012-04-21 12:28 - 2012-04-05 17:06 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\amstream.dll
2012-04-21 12:28 - 2012-04-05 17:06 - 0070656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\amstream.dll
2012-04-21 12:28 - 2012-02-27 22:48 - 0065536 ____A (Microsoft Corporation) C:\Windows\System32\inetmib1.dll
2012-04-21 12:28 - 2012-02-27 17:11 - 0052736 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetmib1.dll
2012-04-21 12:28 - 2012-02-16 21:34 - 0052224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpd3d.dll
2012-04-21 12:28 - 2012-01-17 14:12 - 0102400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dfsc.sys
2012-04-21 12:28 - 2011-12-15 02:23 - 0104448 ____A (Microsoft Corporation) C:\Windows\System32\logman.exe
2012-04-21 12:28 - 2011-12-15 02:23 - 0082944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2012-04-21 12:28 - 2011-11-16 22:35 - 0024064 ____A (Microsoft Corporation) C:\Windows\System32\schedcli.dll
2012-04-21 12:28 - 2011-11-16 21:34 - 0017408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schedcli.dll
2012-04-21 12:28 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-ums-l1-1-0.dll
2012-04-21 12:28 - 2011-03-10 22:41 - 0061440 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\appid.sys
2012-04-21 12:28 - 2010-11-20 05:44 - 0072192 ____A (Microsoft Corporation) C:\Windows\System32\napdsnap.dll
2012-04-21 12:28 - 2010-11-20 05:34 - 0021760 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\VMBusHID.sys
2012-04-21 12:28 - 2010-11-20 05:33 - 0029696 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\scfilter.sys
2012-04-21 12:28 - 2010-11-20 05:32 - 0012800 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\acpipmi.sys
2012-04-21 12:28 - 2010-11-20 05:27 - 12625920 ____A (Microsoft Corporation) C:\Windows\System32\wmploc.DLL
2012-04-21 12:28 - 2010-11-20 05:27 - 1164800 ____A (Microsoft Corporation) C:\Windows\System32\UIRibbonRes.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 1080320 ____A (Microsoft Corporation) C:\Windows\System32\onexui.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0681472 ____A (Microsoft Corporation) C:\Windows\System32\WUDFx.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0527872 ____A (Microsoft Corporation) C:\Windows\System32\wmdrmnet.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0431104 ____A (Microsoft Corporation) C:\Windows\System32\WPDSp.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0392192 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0250880 ____A (Microsoft Corporation) C:\Windows\System32\qdv.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0226816 ____A (Microsoft Corporation) C:\Windows\System32\WUDFHost.exe
2012-04-21 12:28 - 2010-11-20 05:27 - 0224256 ____A (Microsoft Corporation) C:\Windows\System32\PortableDeviceSyncProvider.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0181248 ____A (Microsoft Corporation) C:\Windows\System32\qcap.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\sppc.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0124416 ____A (Microsoft Corporation) C:\Windows\System32\QSVRMGMT.DLL
2012-04-21 12:28 - 2010-11-20 05:27 - 0121856 ____A (Microsoft Corporation) C:\Windows\System32\secproc_ssp_isv.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0121856 ____A (Microsoft Corporation) C:\Windows\System32\secproc_ssp.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0098304 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0079872 ____A (Microsoft Corporation) C:\Windows\System32\QCLIPROV.DLL
2012-04-21 12:28 - 2010-11-20 05:27 - 0063488 ____A (Microsoft Corporation) C:\Windows\System32\takeown.exe
2012-04-21 12:28 - 2010-11-20 05:27 - 0044544 ____A (Microsoft Corporation) C:\Windows\System32\WUDFCoinstaller.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0037376 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0036864 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2012-04-21 12:28 - 2010-11-20 05:27 - 0033280 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0026112 ____A (Microsoft Corporation) C:\Windows\System32\wsdchngr.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0023552 ____A (Microsoft Corporation) C:\Windows\System32\tskill.exe
2012-04-21 12:28 - 2010-11-20 05:27 - 0023040 ____A (Microsoft Corporation) C:\Windows\System32\qappsrv.exe
2012-04-21 12:28 - 2010-11-20 05:27 - 0021504 ____A (Microsoft Corporation) C:\Windows\System32\shadow.exe
2012-04-21 12:28 - 2010-11-20 05:27 - 0016384 ____A (Microsoft Corporation) C:\Windows\System32\query.exe
2012-04-21 12:28 - 2010-11-20 05:27 - 0011264 ____A (Microsoft Corporation) C:\Windows\System32\shunimpl.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\riched32.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0010240 ____A (Microsoft Corporation) C:\Windows\System32\rdpcfgex.dll
2012-04-21 12:28 - 2010-11-20 05:27 - 0009728 ____A (Microsoft Corporation) C:\Windows\System32\spwmp.dll
2012-04-21 12:28 - 2010-11-20 05:26 - 0399872 ____A (Microsoft Corporation) C:\Windows\System32\dpx.dll
2012-04-21 12:28 - 2010-11-20 05:26 - 0313344 ____A (Microsoft Corporation) C:\Windows\System32\dot3ui.dll
2012-04-21 12:28 - 2010-11-20 05:26 - 0198656 ____A (Microsoft Corporation) C:\Windows\System32\iasrecst.dll
2012-04-21 12:28 - 2010-11-20 05:26 - 0027648 ____A (Microsoft Corporation) C:\Windows\System32\LogonUI.exe
2012-04-21 12:28 - 2010-11-20 05:26 - 0017920 ____A (Microsoft Corporation) C:\Windows\System32\fixmapi.exe
2012-04-21 12:28 - 2010-11-20 05:26 - 0005120 ____A (Microsoft Corporation) C:\Windows\System32\dxmasf.dll
2012-04-21 12:28 - 2010-11-20 05:25 - 0306688 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate_ssp.exe
2012-04-21 12:28 - 2010-11-20 05:25 - 0305152 ____A (Microsoft Corporation) C:\Windows\System32\RMActivate_ssp_isv.exe
2012-04-21 12:28 - 2010-11-20 05:25 - 0137216 ____A (Microsoft Corporation) C:\Windows\System32\CscMig.dll
2012-04-21 12:28 - 2010-11-20 05:25 - 0072704 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-04-21 12:28 - 2010-11-20 05:25 - 0061952 ____A (Microsoft Corporation) C:\Windows\System32\vss_ps.dll
2012-04-21 12:28 - 2010-11-20 05:25 - 0052736 ____A (Microsoft Corporation) C:\Windows\System32\BlbEvents.dll
2012-04-21 12:28 - 2010-11-20 05:25 - 0051200 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2012-04-21 12:28 - 2010-11-20 05:25 - 0030208 ____A (Microsoft Corporation) C:\Windows\System32\cscdll.dll
2012-04-21 12:28 - 2010-11-20 05:25 - 0021504 ____A (Microsoft Corporation) C:\Windows\System32\rwinsta.exe
2012-04-21 12:28 - 2010-11-20 05:25 - 0018944 ____A (Microsoft Corporation) C:\Windows\System32\spopk.dll
2012-04-21 12:28 - 2010-11-20 05:25 - 0014336 ____A (Microsoft Corporation) C:\Windows\System32\browseui.dll
2012-04-21 12:28 - 2010-11-20 05:24 - 0102400 ____A (Microsoft Corporation) C:\Windows\System32\mobsync.exe
2012-04-21 12:28 - 2010-11-20 05:24 - 0043520 ____A (Microsoft Corporation) C:\Windows\System32\vbisurf.ax
2012-04-21 12:28 - 2010-11-20 05:24 - 0024064 ____A (Microsoft Corporation) C:\Windows\System32\chgport.exe
2012-04-21 12:28 - 2010-11-20 05:24 - 0021504 ____A (Microsoft Corporation) C:\Windows\System32\logoff.exe
2012-04-21 12:28 - 2010-11-20 05:24 - 0021504 ____A (Microsoft Corporation) C:\Windows\System32\chgusr.exe
2012-04-21 12:28 - 2010-11-20 05:24 - 0005120 ____A (Microsoft Corporation) C:\Windows\System32\msdxm.ocx
2012-04-21 12:28 - 2010-11-20 05:09 - 0129024 ____A (Microsoft Corporation) C:\Windows\System32\VmdCoinstall.dll
2012-04-21 12:28 - 2010-11-20 05:02 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\KBDTUQ.DLL
2012-04-21 12:28 - 2010-11-20 05:02 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\KBDSG.DLL
2012-04-21 12:28 - 2010-11-20 05:02 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDTURME.DLL
2012-04-21 12:28 - 2010-11-20 05:02 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDINTEL.DLL
2012-04-21 12:28 - 2010-11-20 05:02 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDINORI.DLL
2012-04-21 12:28 - 2010-11-20 05:02 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDINKAN.DLL
2012-04-21 12:28 - 2010-11-20 04:36 - 0068096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\napdsnap.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 12625408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2012-04-21 12:28 - 2010-11-20 04:21 - 1164800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0436736 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0350720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WPDSp.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0318464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0144384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0121344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0115712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0105472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0085504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0085504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0051200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\takeown.exe
2012-04-21 12:28 - 2010-11-20 04:21 - 0033792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2012-04-21 12:28 - 2010-11-20 04:21 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\utildll.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0027648 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2012-04-21 12:28 - 2010-11-20 04:21 - 0021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdprefdrvapi.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0009728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2012-04-21 12:28 - 2010-11-20 04:21 - 0008704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\riched32.dll
2012-04-21 12:28 - 2010-11-20 04:20 - 1160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2012-04-21 12:28 - 2010-11-20 04:20 - 0283136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdv.dll
2012-04-21 12:28 - 2010-11-20 04:20 - 0221184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Mystify.scr
2012-04-21 12:28 - 2010-11-20 04:20 - 0183296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll
2012-04-21 12:28 - 2010-11-20 04:20 - 0099328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL
2012-04-21 12:28 - 2010-11-20 04:20 - 0071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\QCLIPROV.DLL
2012-04-21 12:28 - 2010-11-20 04:20 - 0046592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll
2012-04-21 12:28 - 2010-11-20 04:20 - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2012-04-21 12:28 - 2010-11-20 04:19 - 0122880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll
2012-04-21 12:28 - 2010-11-20 04:19 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2012-04-21 12:28 - 2010-11-20 04:19 - 0073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2012-04-21 12:28 - 2010-11-20 04:19 - 0070656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MuiUnattend.exe
2012-04-21 12:28 - 2010-11-20 04:19 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll
2012-04-21 12:28 - 2010-11-20 04:18 - 0028160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\AzSqlExt.dll
2012-04-21 12:28 - 2010-11-20 04:18 - 0023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2012-04-21 12:28 - 2010-11-20 04:18 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browseui.dll
2012-04-21 12:28 - 2010-11-20 04:18 - 0004096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2012-04-21 12:28 - 2010-11-20 04:17 - 0280064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2012-04-21 12:28 - 2010-11-20 04:17 - 0278016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2012-04-21 12:28 - 2010-11-20 04:17 - 0087552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2012-04-21 12:28 - 2010-11-20 04:17 - 0056832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2012-04-21 12:28 - 2010-11-20 04:16 - 0189952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wdscore.dll
2012-04-21 12:28 - 2010-11-20 04:16 - 0101376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mobsync.exe
2012-04-21 12:28 - 2010-11-20 04:16 - 0084480 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kstvtune.ax
2012-04-21 12:28 - 2010-11-20 04:16 - 0059392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\unimdmat.dll
2012-04-21 12:28 - 2010-11-20 04:16 - 0048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ksxbar.ax
2012-04-21 12:28 - 2010-11-20 04:16 - 0033792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbisurf.ax
2012-04-21 12:28 - 2010-11-20 04:16 - 0019456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\bitsperf.dll
2012-04-21 12:28 - 2010-11-20 04:16 - 0004096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2012-04-21 12:28 - 2010-11-20 04:08 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUQ.DLL
2012-04-21 12:28 - 2010-11-20 04:08 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDSG.DLL
2012-04-21 12:28 - 2010-11-20 04:08 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDINORI.DLL
2012-04-21 12:28 - 2010-11-20 04:08 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDINKAN.DLL
2012-04-21 12:28 - 2010-11-20 04:08 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDTURME.DLL
2012-04-21 12:28 - 2010-11-20 04:08 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTEL.DLL
2012-04-21 12:28 - 2010-11-20 04:07 - 0008192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2012-04-21 12:28 - 2010-11-20 04:00 - 0119808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll
2012-04-21 12:28 - 2010-11-20 03:07 - 0125440 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tunnel.sys
2012-04-21 12:28 - 2010-11-20 03:05 - 0147456 ____A (Microsoft Corporation) C:\Windows\System32\RDPENCDD.dll
2012-04-21 12:28 - 2010-11-20 02:52 - 0078848 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\IPMIDrv.sys
2012-04-21 12:28 - 2010-11-20 02:51 - 0026624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdi.sys
2012-04-21 12:28 - 2010-11-20 02:43 - 0350208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\HdAudio.sys
2012-04-21 12:28 - 2010-11-20 02:43 - 0032896 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBCAMD2.sys
2012-04-21 12:28 - 2010-11-20 02:42 - 0172544 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFRd.sys
2012-04-21 12:28 - 2010-11-20 01:57 - 0053760 ____A (Microsoft Corporation) C:\Windows\System32\vmicres.dll
2012-04-21 12:28 - 2010-11-20 01:57 - 0044544 ____A (Microsoft Corporation) C:\Windows\System32\vmbusres.dll
2012-04-21 12:28 - 2010-11-20 01:57 - 0038400 ____A (Microsoft Corporation) C:\Windows\System32\vmstorfltres.dll
2012-04-21 12:28 - 2010-11-20 01:57 - 0015872 ____A (Microsoft Corporation) C:\Windows\System32\vmbuspipe.dll
2012-04-21 12:28 - 2010-11-20 01:57 - 0006656 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\vms3cap.sys
2012-04-21 12:28 - 2009-10-26 07:34 - 0058880 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll
2012-04-21 12:28 - 2009-07-13 21:37 - 0146389 ____A C:\Windows\SysWOW64\printmanagement.msc
2012-04-21 12:28 - 2009-07-13 21:37 - 0013312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2012-04-21 12:28 - 2009-07-13 21:32 - 0071168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2012-04-21 12:28 - 2009-07-13 21:09 - 0018432 ____A (Microsoft Corporation) C:\Windows\System32\FXSUNATD.exe
2012-04-21 12:28 - 2009-07-13 19:20 - 0194048 ____A (Microsoft Corporation) C:\Windows\System32\itircl.dll
2012-04-21 12:28 - 2009-07-13 19:20 - 0158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2012-04-21 12:28 - 2009-07-13 19:20 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\luainstall.dll
2012-04-21 12:28 - 2009-07-13 19:20 - 0041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\luainstall.dll
2012-04-21 12:28 - 2009-07-13 17:52 - 0038912 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\CompositeBus.sys
2012-04-21 12:28 - 2009-07-13 17:48 - 0033280 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\kbdhid.sys
2012-04-21 12:28 - 2009-07-13 17:41 - 0978944 ____A (Microsoft Corporation) C:\Windows\System32\WMSPDMOD.DLL
2012-04-21 12:28 - 2009-07-13 17:41 - 0457216 ____A (Microsoft Corporation) C:\Windows\System32\imkr80.ime
2012-04-21 12:28 - 2009-07-13 17:41 - 0435712 ____A (Microsoft Corporation) C:\Windows\System32\PortableDeviceStatus.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0325632 ____A (Microsoft Corporation) C:\Windows\System32\msnetobj.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0143360 ____A (Microsoft Corporation) C:\Windows\System32\mydocs.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0135168 ____A (Microsoft Corporation) C:\Windows\System32\shacct.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0130048 ____A (Microsoft Corporation) C:\Windows\System32\VmbusCoinstaller.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0105559 ____A C:\Windows\System32\RacRules.xml
2012-04-21 12:28 - 2009-07-13 17:41 - 0078848 ____A (Microsoft Corporation) C:\Windows\System32\tabcal.exe
2012-04-21 12:28 - 2009-07-13 17:41 - 0069120 ____A (Microsoft Corporation) C:\Windows\System32\nlsbres.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0068096 ____A (Microsoft Corporation) C:\Windows\System32\vfwwdm32.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0062976 ____A (Microsoft Corporation) C:\Windows\System32\PnPUnattend.exe
2012-04-21 12:28 - 2009-07-13 17:41 - 0053248 ____A (Microsoft Corporation) C:\Windows\System32\odbcconf.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0047104 ____A (Microsoft Corporation) C:\Windows\System32\wshbth.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0041472 ____A (Microsoft Corporation) C:\Windows\System32\mciqtz32.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0037376 ____A (Microsoft Corporation) C:\Windows\System32\shimgvw.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0036352 ____A (Microsoft Corporation) C:\Windows\System32\wdiasqmmodule.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0035840 ____A (Microsoft Corporation) C:\Windows\System32\msdmo.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0035328 ____A (Microsoft Corporation) C:\Windows\System32\pifmgr.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0033792 ____A (Microsoft Corporation) C:\Windows\System32\profprov.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0028160 ____A (Microsoft Corporation) C:\Windows\System32\shgina.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0027136 ____A (Microsoft Corporation) C:\Windows\System32\HotStartUserAgent.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0026624 ____A (Microsoft Corporation) C:\Windows\System32\qprocess.exe
2012-04-21 12:28 - 2009-07-13 17:41 - 0022528 ____A (Microsoft Corporation) C:\Windows\System32\tscon.exe
2012-04-21 12:28 - 2009-07-13 17:41 - 0021504 ____A (Microsoft Corporation) C:\Windows\System32\TRAPI.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0016896 ____A (Microsoft Corporation) C:\Windows\System32\reset.exe
2012-04-21 12:28 - 2009-07-13 17:41 - 0013824 ____A (Microsoft Corporation) C:\Windows\System32\wshirda.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0013312 ____A (Microsoft Corporation) C:\Windows\System32\sscore.dll
2012-04-21 12:28 - 2009-07-13 17:41 - 0010429 ____A C:\Windows\System32\ScavengeSpace.xml
2012-04-21 12:28 - 2009-07-13 17:40 - 0434688 ____A (Microsoft Corporation) C:\Windows\System32\FXSTIFF.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0144896 ____A (Microsoft Corporation) C:\Windows\System32\EhStorAPI.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0130048 ____A (Microsoft Corporation) C:\Windows\System32\desk.cpl
2012-04-21 12:28 - 2009-07-13 17:40 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\eappgnui.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\dot3msm.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0092160 ____A (Microsoft Corporation) C:\Windows\System32\cmstp.exe
2012-04-21 12:28 - 2009-07-13 17:40 - 0074240 ____A (Microsoft Corporation) C:\Windows\System32\fdProxy.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0071168 ____A (Microsoft Corporation) C:\Windows\System32\findstr.exe
2012-04-21 12:28 - 2009-07-13 17:40 - 0057856 ____A (Microsoft Corporation) C:\Windows\System32\g711codc.ax
2012-04-21 12:28 - 2009-07-13 17:40 - 0036864 ____A (Microsoft Corporation) C:\Windows\System32\dsauth.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0036864 ____A (Microsoft Corporation) C:\Windows\System32\choice.exe
2012-04-21 12:28 - 2009-07-13 17:40 - 0025600 ____A (Microsoft Corporation) C:\Windows\System32\elsTrans.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0024576 ____A (Microsoft Corporation) C:\Windows\System32\bitsperf.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0014848 ____A (Microsoft Corporation) C:\Windows\System32\BWUnpairElevated.dll
2012-04-21 12:28 - 2009-07-13 17:40 - 0013312 ____A (Microsoft Corporation) C:\Windows\System32\C_ISCII.DLL
2012-04-21 12:28 - 2009-07-13 17:39 - 0079872 ____A (Microsoft Corporation) C:\Windows\System32\manage-bde.exe
2012-04-21 12:28 - 2009-07-13 17:39 - 0078848 ____A (Microsoft Corporation) C:\Windows\System32\spbcd.dll
2012-04-21 12:28 - 2009-07-13 17:39 - 0061440 ____A (Microsoft Corporation) C:\Windows\System32\djoin.exe
2012-04-21 12:28 - 2009-07-13 17:39 - 0051712 ____A (Microsoft Corporation) C:\Windows\System32\MultiDigiMon.exe
2012-04-21 12:28 - 2009-07-13 17:39 - 0043008 ____A (Microsoft Corporation) C:\Windows\System32\relog.exe
2012-04-21 12:28 - 2009-07-13 17:39 - 0003072 ____A (Microsoft Corporation) C:\Windows\System32\dpnaddr.dll
2012-04-21 12:28 - 2009-07-13 17:38 - 0152064 ____A (Microsoft Corporation) C:\Windows\System32\iscsicli.exe
2012-04-21 12:28 - 2009-07-13 17:38 - 0090624 ____A (Microsoft Corporation) C:\Windows\System32\KMSVC.DLL
2012-04-21 12:28 - 2009-07-13 17:33 - 0007680 ____A (Microsoft Corporation) C:\Windows\System32\spwizres.dll
2012-04-21 12:28 - 2009-07-13 17:32 - 0023040 ____A (Microsoft Corporation) C:\Windows\System32\rdprefdrvapi.dll
2012-04-21 12:28 - 2009-07-13 17:28 - 0016896 ____A (Microsoft Corporation) C:\Windows\System32\change.exe
2012-04-21 12:28 - 2009-07-13 17:28 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\KBDTUF.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\kbdlk41a.dll
2012-04-21 12:28 - 2009-07-13 17:28 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\KBDGKL.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0008192 ____A (Microsoft Corporation) C:\Windows\System32\KBDCZ1.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007680 ____A (Microsoft Corporation) C:\Windows\System32\KBDSF.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007680 ____A (Microsoft Corporation) C:\Windows\System32\KBDPO.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007680 ____A (Microsoft Corporation) C:\Windows\System32\KBDNEPR.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007680 ____A (Microsoft Corporation) C:\Windows\System32\KBDINTAM.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007680 ____A (Microsoft Corporation) C:\Windows\System32\KBDINBEN.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007680 ____A (Microsoft Corporation) C:\Windows\System32\KBDGR1.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDUS.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDUGHR1.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDTAJIK.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDMON.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDMAORI.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDLT1.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDINMAR.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDINHIN.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDBULG.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDBLR.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0007168 ____A (Microsoft Corporation) C:\Windows\System32\KBDBASH.DLL
2012-04-21 12:28 - 2009-07-13 17:28 - 0006656 ____A (Microsoft Corporation) C:\Windows\System32\KBDGEO.DLL
2012-04-21 12:28 - 2009-07-13 17:27 - 0041984 ____A (Microsoft Corporation) C:\Windows\System32\FXSMON.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0902656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2012-04-21 12:28 - 2009-07-13 17:16 - 0739328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2012-04-21 12:28 - 2009-07-13 17:16 - 0541184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2012-04-21 12:28 - 2009-07-13 17:16 - 0507392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0427520 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceStatus.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0309760 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese30.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0236544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0220672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Ribbons.scr
2012-04-21 12:28 - 2009-07-13 17:16 - 0153600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax
2012-04-21 12:28 - 2009-07-13 17:16 - 0142336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2012-04-21 12:28 - 2009-07-13 17:16 - 0136192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mydocs.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0109568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wiavideo.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0108032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0105559 ____A C:\Windows\SysWOW64\RacRules.xml
2012-04-21 12:28 - 2009-07-13 17:16 - 0100864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sppinst.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0077824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\olethk32.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0069632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0060928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncryptui.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0056832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vfwwdm32.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0051712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0040960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0036864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0036352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0035840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shimgvw.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0035328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pifmgr.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0034304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\unlodctr.exe
2012-04-21 12:28 - 2009-07-13 17:16 - 0024064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2012-04-21 12:28 - 2009-07-13 17:16 - 0021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\TRAPI.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0020992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shgina.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0019968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll
2012-04-21 12:28 - 2009-07-13 17:16 - 0011264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wshirda.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0878592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Bubbles.scr
2012-04-21 12:28 - 2009-07-13 17:15 - 0489984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0430080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2012-04-21 12:28 - 2009-07-13 17:15 - 0265216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0242176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0176128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0128512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAPI.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0115200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0107008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Kswdmcap.ax
2012-04-21 12:28 - 2009-07-13 17:15 - 0094208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0084992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cmstp.exe
2012-04-21 12:28 - 2009-07-13 17:15 - 0073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cabinet.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0066560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cca.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0062976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\findstr.exe
2012-04-21 12:28 - 2009-07-13 17:15 - 0045568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\g711codc.ax
2012-04-21 12:28 - 2009-07-13 17:15 - 0036352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz32.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0030720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msdmo.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0030208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dsauth.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0028672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0022528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elsTrans.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0013312 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll
2012-04-21 12:28 - 2009-07-13 17:15 - 0011264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL
2012-04-21 12:28 - 2009-07-13 17:15 - 0002560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2012-04-21 12:28 - 2009-07-13 17:14 - 0186368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\bitsadmin.exe
2012-04-21 12:28 - 2009-07-13 17:14 - 0144896 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iscsicli.exe
2012-04-21 12:28 - 2009-07-13 17:14 - 0091648 ____A (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll
2012-04-21 12:28 - 2009-07-13 17:14 - 0050176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll
2012-04-21 12:28 - 2009-07-13 17:14 - 0037888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2012-04-21 12:28 - 2009-07-13 17:14 - 0028672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2012-04-21 12:28 - 2009-07-13 17:14 - 0022528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netutils.dll
2012-04-21 12:28 - 2009-07-13 17:14 - 0001041 ____A C:\Windows\SysWOW64\tcpbidi.xml
2012-04-21 12:28 - 2009-07-13 17:11 - 0021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\lsmproxy.dll
2012-04-21 12:28 - 2009-07-13 17:11 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUF.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kbdlk41a.dll
2012-04-21 12:28 - 2009-07-13 17:11 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDGR1.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDGKL.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDCZ1.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDSF.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDPO.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDNEPR.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTAM.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDINMAR.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDINHIN.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0007168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDINBEN.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDUS.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDUGHR1.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAJIK.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDMON.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDMAORI.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDLT1.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDGEO.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDBULG.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDBLR.DLL
2012-04-21 12:28 - 2009-07-13 17:11 - 0006656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2012-04-21 12:28 - 2009-07-13 17:10 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\spwizres.dll
2012-04-21 12:28 - 2009-07-13 17:07 - 0176128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2012-04-21 12:28 - 2009-07-13 17:07 - 0022528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll
2012-04-21 12:28 - 2009-07-13 17:06 - 0069632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll
2012-04-21 12:28 - 2009-07-13 16:38 - 0031744 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbrpm.sys
2012-04-21 12:28 - 2009-07-13 16:16 - 0022016 ____A (Microsoft Corporation) C:\Windows\System32\tsdiscon.exe
2012-04-21 12:28 - 2009-07-13 16:10 - 0112128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFPf.sys
2012-04-21 12:28 - 2009-07-13 16:10 - 0056832 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndisuio.sys
2012-04-21 12:28 - 2009-07-13 16:09 - 0109696 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBAUDIO.sys
2012-04-21 12:28 - 2009-07-13 16:06 - 0131584 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\pacer.sys
2012-04-21 12:28 - 2009-07-13 16:06 - 0030208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hidusb.sys
2012-04-21 12:28 - 2009-07-13 16:01 - 0014336 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\sffp_sd.sys
2012-04-21 12:28 - 2009-07-13 15:31 - 0051712 ____A (Microsoft Corporation) C:\Windows\System32\repair-bde.exe
2012-04-21 12:28 - 2009-07-13 15:25 - 0121344 ____A (Microsoft Corporation) C:\Windows\System32\fphc.dll
2012-04-21 12:28 - 2009-07-13 15:15 - 0098304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fphc.dll
2012-04-21 12:28 - 2009-07-13 15:15 - 0012288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll
2012-04-21 12:28 - 2009-07-13 13:03 - 0189952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll
2012-04-21 12:28 - 2009-06-23 00:00 - 0147456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cdrom.sys
2012-04-21 12:28 - 2009-06-10 13:47 - 0133632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe
2012-04-21 12:28 - 2009-06-10 13:39 - 0014848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\syssetup.dll
2012-04-21 12:28 - 2009-06-10 13:36 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\CertPolEng.dll
2012-04-21 12:28 - 2009-06-10 13:14 - 0082944 ____A (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll
2012-04-21 12:28 - 2009-06-10 13:08 - 0166400 ____A (Microsoft Corporation) C:\Windows\System32\diskpart.exe
2012-04-21 12:28 - 2009-06-10 12:56 - 0071680 ____A (Microsoft Corporation) C:\Windows\System32\CertPolEng.dll
2012-04-21 12:28 - 2009-06-10 12:31 - 0122368 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\hdaudbus.sys
2012-04-21 12:28 - 2009-06-10 12:30 - 0128512 ____A (Microsoft Corporation) C:\Windows\System32\IcCoinstall.dll
2012-04-21 12:28 - 2007-12-04 08:28 - 0015360 ____A (Microsoft Corporation) C:\Windows\System32\nrpsrv.dll
2012-04-21 12:28 - 2006-12-21 08:23 - 0041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2012-04-21 12:28 - 2004-08-03 21:56 - 0047104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll
2012-04-21 12:27 - 2012-04-21 13:14 - 0529408 ____A (Microsoft Corporation) C:\Windows\System32\wbemcomn.dll
2012-04-21 12:27 - 2009-07-13 16:28 - 0244736 ____A (Microsoft Corporation) C:\Windows\System32\sqmapi.dll
2012-04-21 12:26 - 2012-04-21 12:42 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Macromedia
2012-04-21 12:26 - - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Adobe
2012-04-21 12:25 - 2010-11-20 05:27 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-04-21 12:25 - 2010-11-20 04:21 - 12872704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2012-04-21 12:25 - 2009-07-13 17:39 - 0509952 ____A (Microsoft Corporation) C:\Windows\System32\ntshrui.dll
2012-04-21 12:25 - 2009-07-13 17:14 - 0442880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2012-04-21 12:25 - 2009-06-10 13:15 - 0478720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2012-04-21 12:25 - 2009-06-10 12:31 - 0515584 ____A (Microsoft Corporation) C:\Windows\System32\timedate.cpl
2012-04-21 12:24 - 2012-05-04 08:02 - 2871808 ____A (Microsoft Corporation) C:\Windows\explorer.exe
2012-04-21 12:24 - 2012-05-01 06:10 - 1139200 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2012-04-21 12:24 - 2011-02-23 22:15 - 1465344 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2012-04-21 12:24 - 2011-02-23 21:38 - 0870912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2012-04-21 12:24 - 2010-11-20 05:25 - 0902656 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2012-04-21 12:24 - 2010-11-20 04:18 - 0739840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2012-04-21 12:24 - 2009-07-13 17:47 - 0027520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys
2012-04-21 12:24 - 2009-07-13 17:41 - 0476160 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2012-04-21 12:24 - 2009-07-13 17:41 - 0199680 ____A (Microsoft Corporation) C:\Windows\System32\xmllite.dll
2012-04-21 12:24 - 2009-07-13 17:16 - 0288256 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2012-04-21 12:24 - 2009-07-13 17:16 - 0180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2012-04-21 12:24 - 2009-07-13 17:14 - 2616320 ____A (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2012-04-21 12:22 - 2012-05-03 12:26 - 0000916 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132UA.job
2012-04-21 12:21 - 2012-05-04 11:26 - 0000864 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132Core.job
2012-04-21 12:21 - 2012-04-30 14:59 - 0000000 ____D C:\Users\JasonB\AppData\Local\Google
2012-04-21 12:21 - 2012-04-26 11:50 - 0000000 ____D C:\Users\JasonB\AppData\Local\Deployment
2012-04-21 12:21 - - 0000000 ____D C:\Users\JasonB\AppData\Local\Apps\2.0
2012-04-21 12:17 - 2012-04-22 15:02 - 0110464 ____A C:\Users\JasonB\AppData\Local\GDIPFONTCACHEV1.DAT
2012-04-21 12:16 - 2011-03-24 19:29 - 0343040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2012-04-21 12:16 - 2011-03-24 19:29 - 0325120 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2012-04-21 12:16 - 2011-03-24 19:29 - 0025600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2012-04-21 12:16 - 2011-03-24 19:28 - 0052736 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2012-04-21 12:16 - 2011-03-10 22:41 - 0166272 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstor.sys
2012-04-21 12:16 - 2011-03-10 20:37 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2012-04-21 12:16 - 2010-11-20 05:25 - 0031232 ____A (Microsoft Corporation) C:\Windows\System32\prevhost.exe
2012-04-21 12:16 - 2010-11-20 03:37 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBSTOR.SYS
2012-04-21 12:16 - 2010-11-20 02:44 - 0098816 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2012-04-21 12:16 - 2010-04-27 06:30 - 0148352 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvraid.sys
2012-04-21 12:16 - 2009-07-13 17:52 - 0027008 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdxata.sys
2012-04-21 12:16 - 2009-07-13 17:45 - 0189824 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2012-04-21 12:16 - 2009-07-13 17:40 - 2565632 ____A (Microsoft Corporation) C:\Windows\System32\esent.dll
2012-04-21 12:16 - 2009-07-13 17:15 - 1699328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2012-04-21 12:16 - 2009-07-13 16:06 - 0007936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2012-04-21 12:16 - 2009-07-13 15:21 - 1659776 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2012-04-21 12:16 - 2009-07-13 15:19 - 0410496 ____A (Intel Corporation) C:\Windows\System32\Drivers\iaStorV.sys
2012-04-21 12:16 - 2009-07-13 15:19 - 0107904 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdsata.sys
2012-04-21 12:16 - 2009-06-10 13:21 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2012-04-21 12:16 - 2009-06-10 13:14 - 0031232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2012-04-21 12:16 - 2009-06-10 12:38 - 0096768 ____A (Microsoft Corporation) C:\Windows\System32\fsutil.exe
2012-04-21 12:14 - 2012-05-07 06:11 - 0000000 __SHD C:\Users\JasonB\AppData\Local\Temporary Internet Files
2012-04-21 12:14 - 2012-05-07 05:59 - 0000000 ____D C:\Users\JasonB\AppData\LocalLow
2012-04-21 12:14 - 2012-04-22 09:52 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Media Center Programs
2012-04-21 12:14 - 2012-04-21 13:07 - 0000020 ___SH C:\Users\JasonB\ntuser.ini
2012-04-21 12:14 - 2012-04-21 12:25 - 0000000 __SHD C:\Users\JasonB\AppData\Local\History
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\Templates
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\Start Menu
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\PrintHood
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\NetHood
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\My Documents
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 ____D C:\Users\JasonB\AppData\Local\VirtualStore
2012-04-21 12:14 - 2012-04-21 11:33 - 0000000 ____D C:\users\JasonB
2012-04-21 12:14 - - 0000174 ___SH C:\Users\JasonB\Start Menu\Programs\Startup\desktop.ini
2012-04-21 12:14 - - 0000174 ___SH C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2012-04-21 12:09 - 2012-04-26 03:59 - 0055488 _RASH C:\Users\All Users\ntuser.pol
2012-04-21 12:09 - 2012-04-26 03:59 - 0055488 _RASH C:\ProgramData\ntuser.pol
2012-04-21 12:00 - 2009-07-13 17:41 - 0279656 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2012-04-21 11:57 - 2009-07-13 18:34 - 0000144 ____A C:\Windows\System32\config\netlogon.ftl
2012-04-21 11:52 - 2012-04-21 11:33 - 0057560 ____A C:\Users\Jason\AppData\Local\GDIPFONTCACHEV1.DAT
2012-04-21 11:47 - 2009-07-13 17:47 - 0023408 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2012-04-21 11:47 - 2009-07-13 17:41 - 0220672 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2012-04-21 11:47 - 2009-07-13 17:39 - 57249312 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-04-21 11:47 - 2009-07-13 17:38 - 0081408 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
2012-04-21 11:47 - 2009-07-13 17:33 - 0005120 ____A (Microsoft Corporation) C:\Windows\System32\wmi.dll
2012-04-21 11:47 - 2009-07-13 17:16 - 0172544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2012-04-21 11:47 - 2009-07-13 17:14 - 0159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2012-04-21 11:47 - 2009-07-13 17:11 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2012-04-21 11:45 - 2012-05-06 15:24 - 0338432 ____A (Microsoft Corporation) C:\Windows\System32\conhost.exe
2012-04-21 11:45 - 2012-04-21 13:14 - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2012-04-21 11:45 - 2012-01-04 02:44 - 0016384 ____A (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2012-04-21 11:45 - 2012-01-04 00:58 - 0014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2012-04-21 11:45 - 2011-11-16 22:49 - 0152432 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2012-04-21 11:45 - 2011-11-16 22:35 - 0031232 ____A (Microsoft Corporation) C:\Windows\System32\lsass.exe
2012-04-21 11:45 - 2011-11-16 22:35 - 0029184 ____A (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2012-04-21 11:45 - 2011-07-15 21:41 - 0362496 ____A (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2012-04-21 11:45 - 2011-07-15 21:41 - 0013312 ____A (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2012-04-21 11:45 - 2011-07-15 21:37 - 0421888 ____A (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0006144 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0005120 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0004608 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 21:21 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:24 - 0272384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0005120 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0004608 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 20:15 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 18:17 - 0006144 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 18:17 - 0003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-04-21 11:45 - 2011-07-15 18:17 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2012-04-21 11:45 - 2010-12-17 03:40 - 1162752 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2012-04-21 11:45 - 2010-12-16 23:07 - 1114112 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2012-04-21 11:45 - 2010-11-20 05:27 - 0395776 ____A (Microsoft Corporation) C:\Windows\System32\webio.dll
2012-04-21 11:45 - 2010-11-20 05:27 - 0028160 ____A (Microsoft Corporation) C:\Windows\System32\secur32.dll
2012-04-21 11:45 - 2010-11-20 04:51 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2012-04-21 11:45 - 2010-11-20 04:21 - 0314880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2012-04-21 11:45 - 2010-11-20 04:21 - 0224768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2012-04-21 11:45 - 2010-11-20 04:21 - 0022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2012-04-21 11:45 - 2010-11-20 02:33 - 0095600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2012-04-21 11:45 - 2009-07-13 19:20 - 0007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2012-04-21 11:45 - 2009-07-13 17:52 - 0459232 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2012-04-21 11:45 - 2009-07-13 17:41 - 0340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll
2012-04-21 11:45 - 2009-07-13 17:41 - 0243200 ____A (Microsoft Corporation) C:\Windows\System32\wow64.dll
2012-04-21 11:45 - 2009-07-13 17:41 - 0214528 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2012-04-21 11:45 - 2009-07-13 17:41 - 0136192 ____A (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2012-04-21 11:45 - 2009-07-13 17:40 - 0003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2012-04-21 11:45 - 2009-07-13 17:39 - 1447936 ____A (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2012-04-21 11:45 - 2009-07-13 17:16 - 0096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2012-04-21 11:45 - 2009-07-13 17:16 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2012-04-21 11:45 - 2009-07-13 17:16 - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2012-04-21 11:45 - 2009-07-13 17:14 - 0003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2012-04-21 11:44 - 2012-03-09 11:07 - 0017792 ____A (Microsoft Corporation) C:\Windows\System32\kdcom.dll
2012-04-21 11:44 - 2012-03-09 11:06 - 0542208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2012-04-21 11:44 - 2011-08-16 21:26 - 0108032 ____A (Microsoft Corporation) C:\Windows\System32\psisrndr.ax
2012-04-21 11:44 - 2011-08-16 20:24 - 0075776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2012-04-21 11:44 - 2011-07-08 18:46 - 0128000 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2012-04-21 11:44 - 2011-06-15 02:02 - 0106496 ____A (Microsoft Corporation) C:\Windows\System32\odbccu32.dll
2012-04-21 11:44 - 2011-06-15 02:02 - 0106496 ____A (Microsoft Corporation) C:\Windows\System32\odbccr32.dll
2012-04-21 11:44 - 2011-06-15 00:55 - 0163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2012-04-21 11:44 - 2011-06-15 00:55 - 0086016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2012-04-21 11:44 - 2011-06-15 00:55 - 0081920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2012-04-21 11:44 - 2011-06-10 22:15 - 1395712 ____A (Microsoft Corporation) C:\Windows\System32\mfc42.dll
2012-04-21 11:44 - 2011-06-10 22:15 - 0367616 ____A (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2012-04-21 11:44 - 2011-06-06 11:55 - 0690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2012-04-21 11:44 - 2011-06-06 11:55 - 0294912 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2012-04-21 11:44 - 2011-05-24 02:40 - 0044544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2012-04-21 11:44 - 2011-04-28 19:06 - 0410112 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2012-04-21 11:44 - 2011-04-28 19:05 - 0168448 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2012-04-21 11:44 - 2011-04-26 18:40 - 0288768 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2012-04-21 11:44 - 2011-03-10 22:34 - 1359872 ____A (Microsoft Corporation) C:\Windows\System32\mfc42u.dll
2012-04-21 11:44 - 2011-03-10 21:33 - 1164288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2012-04-21 11:44 - 2011-03-02 22:24 - 0030208 ____A (Microsoft Corporation) C:\Windows\System32\dnscacheugc.exe
2012-04-21 11:44 - 2011-03-02 21:38 - 0028672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2012-04-21 11:44 - 2011-02-19 01:00 - 0046080 ____A (Adobe Systems) C:\Windows\System32\atmlib.dll
2012-04-21 11:44 - 2011-02-18 20:34 - 0034304 ____A (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2012-04-21 11:44 - 2011-02-05 09:10 - 0715776 ____A (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2012-04-21 11:44 - 2011-02-05 09:10 - 0605552 ____A (Microsoft Corporation) C:\Windows\System32\winload.exe
2012-04-21 11:44 - 2011-02-05 09:10 - 0020352 ____A (Microsoft Corporation) C:\Windows\System32\kdusb.dll
2012-04-21 11:44 - 2011-02-05 09:06 - 0518672 ____A (Microsoft Corporation) C:\Windows\System32\winresume.exe
2012-04-21 11:44 - 2010-11-20 05:28 - 0288640 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2012-04-21 11:44 - 2010-11-20 05:27 - 1572864 ____A (Microsoft Corporation) C:\Windows\System32\quartz.dll
2012-04-21 11:44 - 2010-11-20 05:27 - 0366592 ____A (Microsoft Corporation) C:\Windows\System32\qdvd.dll
2012-04-21 11:44 - 2010-11-20 05:27 - 0331776 ____A (Microsoft Corporation) C:\Windows\System32\oleacc.dll
2012-04-21 11:44 - 2010-11-20 05:27 - 0288256 ____A (Microsoft Corporation) C:\Windows\System32\MSNP.ax
2012-04-21 11:44 - 2010-11-20 05:27 - 0063488 ____A (Microsoft Corporation) C:\Windows\System32\setbcdlocale.dll
2012-04-21 11:44 - 2010-11-20 05:26 - 1544192 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2012-04-21 11:44 - 2010-11-20 05:26 - 0100864 ____A (Microsoft Corporation) C:\Windows\System32\fontsub.dll
2012-04-21 11:44 - 2010-11-20 05:24 - 0259072 ____A (Microsoft Corporation) C:\Windows\System32\mpg2splt.ax
2012-04-21 11:44 - 2010-11-20 04:20 - 1328128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2012-04-21 11:44 - 2010-11-20 04:20 - 0514560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2012-04-21 11:44 - 2010-11-20 04:20 - 0233472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2012-04-21 11:44 - 2010-11-20 04:19 - 1137664 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2012-04-21 11:44 - 2010-11-20 04:19 - 0204288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax
2012-04-21 11:44 - 2010-11-20 04:19 - 0070656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2012-04-21 11:44 - 2010-11-20 04:18 - 1077248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2012-04-21 11:44 - 2010-11-20 04:16 - 0199680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2012-04-21 11:44 - 2010-11-20 01:26 - 0158208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2012-04-21 11:44 - 2010-03-18 11:27 - 0634880 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll
2012-04-21 11:44 - 2009-07-13 21:09 - 0974336 ____A (Microsoft Corporation) C:\Windows\System32\WFS.exe
2012-04-21 11:44 - 2009-07-13 17:52 - 0498688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2012-04-21 11:44 - 2009-07-13 17:45 - 0613888 ____A (Microsoft Corporation) C:\Windows\System32\psisdecd.dll
2012-04-21 11:44 - 2009-07-13 17:41 - 1118720 ____A (Microsoft Corporation) C:\Windows\System32\sbe.dll
2012-04-21 11:44 - 2009-07-13 17:41 - 0642944 ____A (Microsoft Corporation) C:\Windows\System32\winload.efi
2012-04-21 11:44 - 2009-07-13 17:41 - 0566208 ____A (Microsoft Corporation) C:\Windows\System32\winresume.efi
2012-04-21 11:44 - 2009-07-13 17:41 - 0404480 ____A (Microsoft Corporation) C:\Windows\System32\umpnpmgr.dll
2012-04-21 11:44 - 2009-07-13 17:41 - 0142336 ____A (Microsoft Corporation) C:\Windows\System32\poqexec.exe
2012-04-21 11:44 - 2009-07-13 17:41 - 0104960 ____A (Microsoft Corporation) C:\Windows\System32\Mpeg2Data.ax
2012-04-21 11:44 - 2009-07-13 17:40 - 0961024 ____A (Microsoft Corporation) C:\Windows\System32\CPFilters.dll
2012-04-21 11:44 - 2009-07-13 17:40 - 0207872 ____A (Microsoft Corporation) C:\Windows\System32\cfgmgr32.dll
2012-04-21 11:44 - 2009-07-13 17:40 - 0183296 ____A (Microsoft Corporation) C:\Windows\System32\dnsrslvr.dll
2012-04-21 11:44 - 2009-07-13 17:39 - 3145728 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-04-21 11:44 - 2009-07-13 17:38 - 0357888 ____A (Microsoft Corporation) C:\Windows\System32\dnsapi.dll
2012-04-21 11:44 - 2009-07-13 17:31 - 0861696 ____A (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
2012-04-21 11:44 - 2009-07-13 17:31 - 0212992 ____A (Microsoft Corporation) C:\Windows\System32\odbctrac.dll
2012-04-21 11:44 - 2009-07-13 17:29 - 0075776 ____A (Microsoft Corporation) C:\Windows\System32\MSDvbNP.ax
2012-04-21 11:44 - 2009-07-13 17:28 - 0019328 ____A (Microsoft Corporation) C:\Windows\System32\kd1394.dll
2012-04-21 11:44 - 2009-07-13 17:27 - 0267776 ____A (Microsoft Corporation) C:\Windows\System32\FXSCOVER.exe
2012-04-21 11:44 - 2009-07-13 17:19 - 0465408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2012-04-21 11:44 - 2009-07-13 17:16 - 0850944 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2012-04-21 11:44 - 2009-07-13 17:16 - 0319488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2012-04-21 11:44 - 2009-07-13 17:16 - 0123904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2012-04-21 11:44 - 2009-07-13 17:15 - 0252928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2012-04-21 11:44 - 2009-07-13 17:15 - 0145920 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2012-04-21 11:44 - 2009-07-13 17:15 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax
2012-04-21 11:44 - 2009-07-13 17:15 - 0064512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2012-04-21 11:44 - 2009-07-13 17:14 - 0642048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2012-04-21 11:44 - 2009-07-13 17:14 - 0270336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2012-04-21 11:44 - 2009-07-13 17:09 - 0571904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2012-04-21 11:44 - 2009-07-13 17:06 - 0059904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax
2012-04-21 11:44 - 2009-07-13 16:01 - 1923952 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2012-04-21 11:44 - 2009-07-13 15:55 - 0043520 ____A (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2012-04-21 11:44 - 2009-07-13 15:35 - 0090624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys
2012-04-21 11:44 - 2009-07-13 15:14 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\odbccp32.dll
2012-04-21 11:44 - 2009-07-13 15:06 - 0122880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2012-04-21 11:44 - 2009-06-10 12:48 - 0467456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2012-04-21 11:43 - 2010-11-20 04:08 - 0741376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2012-04-21 11:43 - 2009-07-13 17:41 - 0976896 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2012-04-21 11:43 - 2009-07-13 17:40 - 0723456 ____A (Microsoft Corporation) C:\Windows\System32\EncDec.dll
2012-04-21 11:43 - 2009-07-13 17:15 - 0534528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2012-04-21 11:41 - 2010-02-09 14:22 - 1731920 ____A (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2012-04-21 11:41 - 2008-06-17 12:33 - 1292080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2012-04-21 11:40 - 2009-07-13 17:41 - 0077312 ____A (Microsoft Corporation) C:\Windows\System32\packager.dll
2012-04-21 11:40 - 2009-07-13 17:39 - 0002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2012-04-21 11:40 - 2009-07-13 17:16 - 0067072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2012-04-21 11:40 - 2009-07-13 17:14 - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2012-04-21 11:34 - 2010-11-20 05:25 - 1031680 ____A (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2012-04-21 11:34 - 2010-11-20 04:21 - 0826880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2012-04-21 11:34 - 2009-07-13 17:39 - 0009216 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe
2012-04-21 11:34 - 2009-07-13 16:16 - 0210944 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-04-21 11:34 - 2009-07-13 16:16 - 0023552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2012-04-21 11:33 - 2012-05-04 08:29 - 0000000 __SHD C:\Users\Jason\AppData\Local\Temporary Internet Files
2012-04-21 11:33 - 2012-05-04 08:29 - 0000000 ____D C:\Users\Jason\AppData\LocalLow
2012-04-21 11:33 - 2012-04-21 11:52 - 0000000 __SHD C:\Users\Jason\AppData\Local\History
2012-04-21 11:33 - 2012-04-21 11:34 - 0000020 ___SH C:\Users\Jason\ntuser.ini
2012-04-21 11:33 - 2012-04-21 11:34 - 0000000 __SHD C:\Users\Jason\PrintHood
2012-04-21 11:33 - 2012-04-21 11:34 - 0000000 __SHD C:\Users\Jason\My Documents
2012-04-21 11:33 - 2012-04-21 11:34 - 0000000 __SHD C:\Users\Jason\Documents\My Music
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Templates
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Start Menu
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\NetHood
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Documents\My Videos
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Documents\My Pictures
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 ____D C:\Users\Jason\AppData\Roaming\Media Center Programs
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 ____D C:\Users\Jason\AppData\Local\VirtualStore
2012-04-21 11:33 - - 0000174 ___SH C:\Users\Jason\Start Menu\Programs\Startup\desktop.ini
2012-04-21 11:33 - - 0000174 ___SH C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2012-04-21 11:32 - 2012-05-04 08:29 - 0000000 ____D C:\Recovery
2012-04-21 11:32 - 2009-07-13 21:08 - 0000000 ____D C:\users\Jason
2012-04-21 11:32 - 2009-07-13 20:54 - 1805077 ____A C:\Windows\WindowsUpdate.log

============ 3 Months Modified Files and Folders =============

2012-05-07 09:26 - 2012-05-07 09:25 - 0000000 ____D C:\FRST
2012-05-07 06:11 - 2012-05-04 14:29 - 4293431296 __ASH C:\hiberfil.sys
2012-05-07 06:11 - 2012-04-26 11:34 - 0010580 ____A C:\Windows\setupact.log
2012-05-07 06:11 - 2009-07-13 21:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2012-05-07 06:08 - 2012-04-22 17:58 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Skype
2012-05-07 06:08 - 2012-04-22 09:01 - 0026202 ____A C:\bdlog.txt
2012-05-07 06:08 - 2012-04-21 13:50 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\FileZilla
2012-05-07 06:08 - 2012-04-21 11:32 - 1805077 ____A C:\Windows\WindowsUpdate.log
2012-05-07 06:03 - 2009-07-13 21:13 - 0778834 ____A C:\Windows\System32\PerfStringBackup.INI
2012-05-07 06:01 - 2012-05-07 06:01 - 1388155 ____A C:\Users\JasonB\Downloads\FRST64.exe
2012-05-07 05:59 - 2012-05-07 05:59 - 0000000 ____D C:\Users\JasonB\AppData\Local\{F07A2071-FEDB-436E-AEA8-08EDBF5944EC}
2012-05-07 05:59 - 2012-05-04 17:56 - 0000000 ____D C:\Users\JasonB\AppData\Local\{66A4353E-E451-460F-B1C1-199A347DE173}
2012-05-07 05:59 - 2012-04-22 07:03 - 0000000 ____D C:\Users\JasonB\AppData\Local\Windows Live
2012-05-07 05:56 - 2012-04-21 11:57 - 0000144 ____A C:\Windows\System32\config\netlogon.ftl
2012-05-07 05:54 - 2012-04-21 20:31 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\SProxy
2012-05-07 05:52 - 2012-05-07 05:52 - 0001066 ____A C:\Users\JasonB\Downloads\whm (1).zip
2012-05-07 05:40 - 2012-04-22 07:21 - 0000287 ____A C:\Windows\System32\checkdnsid.xml
2012-05-06 17:59 - 2012-05-06 17:58 - 0000000 ____D C:\Users\JasonB\AppData\Local\{F8EDDF54-7333-4C1E-AD0F-37BB5EC28798}
2012-05-06 07:05 - 2012-05-02 05:10 - 0001456 ____A C:\Users\JasonB\AppData\Local\Adobe Save for Web 12.0 Prefs
2012-05-06 06:59 - 2012-05-06 06:59 - 0000000 ____D C:\Users\JasonB\AppData\Local\PinPalBot
2012-05-06 05:58 - 2012-05-06 05:58 - 0000000 ____D C:\Users\JasonB\AppData\Local\{7BD42663-702B-4293-9FD8-95176A3ADA87}
2012-05-05 17:58 - 2012-05-05 17:58 - 0000000 ____D C:\Users\JasonB\AppData\Local\{6B8E8031-0B79-4FBA-9A4E-BF139A9EF07F}
2012-05-05 07:27 - 2012-05-05 07:27 - 0001066 ____A C:\Users\JasonB\Downloads\whm.zip
2012-05-05 07:26 - 2012-04-27 22:26 - 8744608 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2012-05-05 07:26 - 2012-04-22 16:40 - 0419488 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-05-05 07:26 - 2012-04-22 16:40 - 0070304 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-05-05 05:58 - 2012-05-05 05:57 - 0000000 ____D C:\Users\JasonB\AppData\Local\{31606481-F90C-492A-BCA7-ACDA7E7C9353}
2012-05-04 17:57 - 2012-05-04 17:57 - 0000000 ____D C:\Users\JasonB\AppData\Local\{4C006677-0932-408C-84A4-019171CFCD42}
2012-05-04 16:03 - 2009-07-13 18:34 - 0001495 ____A C:\Windows\System32\Drivers\etc\hosts
2012-05-04 11:41 - 2012-05-04 11:41 - 0220835 ____A C:\Users\JasonB\Desktop\cPanel-WHM-Bulk-Account-Generation.jpg
2012-05-04 11:27 - 2012-04-21 12:22 - 0000916 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132UA.job
2012-05-04 11:26 - 2012-04-22 16:40 - 0000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-05-04 09:29 - 2012-05-04 09:29 - 2094690 ____A C:\Users\JasonB\Downloads\Saver2Setup (1).exe
2012-05-04 09:29 - 2012-05-04 09:29 - 0000822 ____A C:\Users\JasonB\Desktop\Pandora (Saver2).lnk
2012-05-04 09:29 - 2012-05-04 09:29 - 0000695 ____A C:\Users\JasonB\Desktop\Pandora (Listen Only).lnk
2012-05-04 09:29 - 2012-05-04 09:29 - 0000692 ____A C:\Users\JasonB\Desktop\Saver2.lnk
2012-05-04 08:59 - 2012-04-21 12:32 - 0024766 ____A C:\Windows\System32\lvcoinst.log
2012-05-04 08:58 - 2012-04-21 12:32 - 0000000 ____D C:\Program Files\Common Files\logishrd
2012-05-04 08:42 - 2009-07-13 20:45 - 0025568 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-05-04 08:42 - 2009-07-13 20:45 - 0025568 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-05-04 08:39 - 2012-05-04 08:39 - 0000385 ____A C:\Users\JasonB\AppData\Roaminguser_gensett.xml
2012-05-04 08:29 - 2012-05-04 08:29 - 0030410 ____A C:\ComboFix.txt
2012-05-04 08:29 - 2012-05-04 07:40 - 0000000 ____D C:\Qoobox
2012-05-04 08:26 - 2012-05-04 08:26 - 0000000 ____D C:\$RECYCLE.BIN
2012-05-04 08:26 - 2009-07-13 18:34 - 0000215 ____A C:\Windows\system.ini
2012-05-04 08:25 - 2012-04-26 11:34 - 0045568 ____A C:\Windows\PFRO.log
2012-05-04 08:05 - 2009-07-13 19:20 - 0000000 __RHD C:\users\Default
2012-05-04 08:05 - 2009-07-13 19:20 - 0000000 ___RD C:\users\Public
2012-05-04 08:02 - 2012-05-04 07:56 - 0000000 ____D C:\Windows\ERDNT
2012-05-04 08:00 - 2012-05-04 07:49 - 0176258 ____A C:\Windows\ntbtlog.txt
2012-05-04 07:18 - 2012-05-04 07:18 - 4483683 ____R (Swearware) C:\Users\JasonB\Desktop\ComboFix.exe
2012-05-04 07:18 - 2012-05-04 07:18 - 0000856 ____A C:\Users\JasonB\Desktop\bleeping.txt
2012-05-04 05:55 - 2012-05-04 05:55 - 0000000 ____D C:\Users\JasonB\AppData\Local\{27E85B9B-782E-447F-A6C6-3E9E289B5982}
2012-05-04 05:55 - 2012-05-02 05:53 - 0000000 ____D C:\Users\JasonB\AppData\Local\{18888CDE-7D08-40D5-8B46-88D4EDEF5BA8}
2012-05-03 17:55 - 2012-05-03 17:55 - 0000000 ____D C:\Users\JasonB\AppData\Local\{464373D9-9BE2-4ED4-9864-F27FC584493D}
2012-05-03 16:52 - 2012-04-21 12:26 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Adobe
2012-05-03 13:26 - 2012-04-23 04:39 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\SQLyog
2012-05-03 12:26 - 2012-04-21 12:21 - 0000864 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2761845265-332174530-1650960061-1132Core.job
2012-05-03 05:55 - 2012-05-03 05:55 - 0000000 ____D C:\Users\JasonB\AppData\Local\{DA98FCC2-0250-4C6D-8A5C-1178C4A452AB}
2012-05-02 17:54 - 2012-05-02 17:54 - 0000000 ____D C:\Users\JasonB\AppData\Local\{EED7F0DE-0012-4610-AF7A-B5E8C2DD4187}
2012-05-02 05:54 - 2012-05-02 05:54 - 0000000 ____D C:\Users\JasonB\AppData\Local\{1CF5FAF8-CB43-45F2-8560-4EF27EA19223}
2012-05-02 03:18 - 2009-07-13 21:08 - 0012364 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-05-02 03:13 - 2012-04-22 09:13 - 0000376 ____A C:\Users\JasonB\AppData\Roamingprivacy.xml
2012-05-01 19:09 - 2012-05-01 19:09 - 0148962 ____A C:\Users\JasonB\Desktop\Extras.Txt
2012-05-01 19:08 - 2012-05-01 19:08 - 0595436 ____A C:\Users\JasonB\Desktop\OTL.Txt
2012-05-01 19:04 - 2012-05-01 19:04 - 0607260 ____R (Swearware) C:\Users\JasonB\Downloads\dds.scr
2012-05-01 18:56 - 2012-05-01 18:56 - 0595456 ____A (OldTimer Tools) C:\Users\JasonB\Downloads\OTL.exe
2012-05-01 18:56 - 2012-05-01 16:06 - 0000564 ____A C:\Users\JasonB\Desktop\catchme.log
2012-05-01 18:56 - 2012-04-23 04:56 - 0595456 ____A (OldTimer Tools) C:\Users\JasonB\Desktop\OTL.exe
2012-05-01 17:52 - 2012-05-01 17:52 - 0000000 ____D C:\Users\JasonB\AppData\Local\{DCDA4339-D4FB-413C-A612-D11AE758FD3C}
2012-05-01 17:52 - 2012-05-01 17:52 - 0000000 ____D C:\Users\JasonB\AppData\Local\{3C0C0030-9CF5-4923-8B65-617D0C6E74D7}
2012-05-01 16:13 - 2012-05-01 16:13 - 0000000 ____D C:\Users\All Users\Office Genuine Advantage
2012-05-01 16:13 - 2012-05-01 16:13 - 0000000 ____D C:\ProgramData\Office Genuine Advantage
2012-05-01 16:12 - 2012-05-01 16:12 - 2031992 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\MGADiag.exe
2012-05-01 16:11 - 2012-05-01 16:10 - 0016102 ____A C:\Users\JasonB\Desktop\MBRCheck_05.01.12_19.10.48.txt
2012-05-01 16:10 - 2012-05-01 16:10 - 0080384 ____A C:\Users\JasonB\Downloads\MBRCheck.exe
2012-05-01 16:07 - 2012-05-01 16:07 - 0879714 ____A C:\Users\JasonB\Downloads\SecurityCheck.exe
2012-05-01 16:03 - 2012-05-01 16:03 - 0000227 ____A C:\Users\JasonB\Downloads\mbr.log
2012-05-01 16:00 - 2012-05-01 16:00 - 0147456 ____A C:\Users\JasonB\Downloads\catchme.exe
2012-05-01 16:00 - 2012-05-01 16:00 - 0089088 ____A C:\Users\JasonB\Downloads\mbr.exe
2012-05-01 15:59 - 2012-05-01 15:59 - 0302592 ____A C:\Users\JasonB\Downloads\cnbie1wu.exe
2012-05-01 15:57 - 2012-05-01 15:55 - 0633454 ____A C:\TDSSKiller.2.7.33.0_01.05.2012_18.55.30_log.txt
2012-05-01 15:54 - 2012-05-01 15:48 - 0000000 ____D C:\Windows\SysWOW64\directx
2012-05-01 15:53 - 2012-05-01 15:53 - 0010085 ____A C:\Windows\DirectX.log
2012-05-01 15:51 - 2012-05-01 15:51 - 2054861 ____A C:\Users\JasonB\Downloads\tdsskiller (1).zip
2012-05-01 15:49 - 2012-05-01 15:49 - 0000316 ____A C:\Users\JasonB\Downloads\RootKitBusterDebug20120501_00.log
2012-05-01 15:48 - 2012-05-01 15:48 - 8656400 ____A (Trend Micro Inc.) C:\Users\JasonB\Downloads\RootkitBuster_v5_1050.exe
2012-05-01 15:25 - 2012-05-01 06:03 - 0002830 ____A C:\Users\JasonB\Desktop\Domains.txt
2012-05-01 14:22 - 2012-04-21 12:14 - 0000000 ____D C:\Users\JasonB\AppData\LocalLow
2012-05-01 12:42 - 2012-05-01 12:42 - 4734958 ____A C:\Users\JasonB\Downloads\EWP1.3.4.zip
2012-05-01 12:24 - 2012-05-01 12:24 - 1063252 ____A C:\Users\JasonB\Downloads\ewp1.3.2.rar
2012-05-01 06:14 - 2012-04-30 06:56 - 0001769 ____A C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
2012-05-01 06:10 - 2009-07-13 20:45 - 4974400 ____A C:\Windows\System32\FNTCACHE.DAT
2012-05-01 05:51 - 2012-05-01 05:51 - 0000000 ____D C:\Users\JasonB\AppData\Local\{42268C6D-545B-4080-B2FB-88D3A9EF863C}
2012-05-01 05:51 - 2012-04-30 05:50 - 0000000 ____D C:\Users\JasonB\AppData\Local\{E24A9C87-4905-4EA2-8B86-F3EE4AC9F317}
2012-04-30 17:51 - 2012-04-30 17:51 - 0000000 ____D C:\Users\JasonB\AppData\Local\{BE1DF785-22D5-4E2A-B21D-FB2FCE532C81}
2012-04-30 17:24 - 2012-04-22 14:13 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\vlc
2012-04-30 15:18 - 2012-04-30 15:18 - 0000528 ____A C:\Users\JasonB\Downloads\license.php
2012-04-30 15:17 - 2012-04-30 15:17 - 4878656 ____A C:\Users\JasonB\Downloads\activeCollab-smallbiz_2.3.9.zip
2012-04-30 15:03 - 2012-04-27 06:21 - 0000000 ____D C:\Users\All Users\regid.1986-12.com.adobe
2012-04-30 15:03 - 2012-04-27 06:21 - 0000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2012-04-30 15:03 - 2012-04-21 15:06 - 0000000 ____D C:\Users\All Users\Adobe
2012-04-30 15:03 - 2012-04-21 15:06 - 0000000 ____D C:\ProgramData\Adobe
2012-04-30 14:59 - 2012-04-21 12:17 - 0110464 ____A C:\Users\JasonB\AppData\Local\GDIPFONTCACHEV1.DAT
2012-04-30 13:55 - 2012-04-21 14:05 - 0000000 ____D C:\Users\JasonB\AppData\Local\Adobe
2012-04-30 06:56 - 2012-04-21 15:15 - 0002550 ____A C:\Windows\Sandboxie.ini
2012-04-30 06:56 - 2012-04-21 12:14 - 0000000 ____D C:\users\JasonB
2012-04-30 05:51 - 2012-04-30 05:51 - 0000000 ____D C:\Users\JasonB\AppData\Local\{A5C270ED-52C6-4ABE-91D9-27D7ABBC379D}
2012-04-30 04:38 - 2012-04-30 04:33 - 134597959 ____A C:\Users\JasonB\Downloads\2012 Straight Talk Video.zip
2012-04-28 04:37 - 2012-04-28 04:37 - 0000000 ____D C:\Users\JasonB\AppData\Local\{52FBC984-540E-40DF-B944-E237C00FE40C}
2012-04-28 04:37 - 2012-04-27 16:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{01409BA9-4585-4DAB-9623-6A185CBFC92F}
2012-04-27 16:37 - 2012-04-27 16:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{C4C847CD-A37D-4512-A0A3-F4AF437CF0D7}
2012-04-27 15:15 - 2012-04-27 15:15 - 2605380 ____A C:\Users\JasonB\Downloads\vectorstock_89345.zip
2012-04-27 15:07 - 2012-04-27 15:07 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-04-27 14:38 - 2012-04-27 14:38 - 1287528 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\wlsetup-web (2).exe
2012-04-27 14:30 - 2012-04-27 14:30 - 1287528 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\wlsetup-web (1).exe
2012-04-27 13:40 - 2012-04-27 13:40 - 0000000 ____D C:\AMD
2012-04-27 13:30 - 2012-04-26 11:49 - 0000000 ____D C:\Program Files (x86)\ATI Technologies
2012-04-27 06:11 - 2012-04-26 15:28 - 0000000 ____D C:\Program Files\Common Files\Adobe
2012-04-27 06:07 - 2012-04-26 15:28 - 0000000 ____D C:\Program Files\Adobe
2012-04-27 05:58 - 2012-04-27 05:58 - 0000000 ____D C:\Users\All Users\ALM
2012-04-27 05:58 - 2012-04-27 05:58 - 0000000 ____D C:\ProgramData\ALM
2012-04-27 05:05 - 2012-04-27 05:05 - 0000000 ____D C:\Users\JasonB\dwhelper
2012-04-27 04:43 - 2012-04-27 04:43 - 0000000 ____D C:\Users\Public\Documents\Adobe
2012-04-27 04:37 - 2012-04-27 04:37 - 0000000 ____D C:\Program Files (x86)\Adobe Media Player
2012-04-27 04:36 - 2012-04-27 04:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8585B855-AE33-45F4-A191-036DCA41FE51}
2012-04-27 04:36 - 2012-04-26 16:35 - 0000000 ____D C:\Users\JasonB\AppData\Local\{D766080D-4B43-43F3-A4B0-E2A6AAA817A1}
2012-04-27 00:02 - 2012-04-26 12:09 - 0772558 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2012-04-26 16:36 - 2012-04-26 16:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{E1FFD0B7-A73D-48DA-B981-AF364B12337C}
2012-04-26 15:36 - 2012-04-26 15:36 - 0000000 ____D C:\Program Files (x86)\My Company Name
2012-04-26 15:28 - 2012-04-21 15:06 - 0000000 ____D C:\Program Files (x86)\Adobe
2012-04-26 14:23 - 2012-04-26 14:23 - 6463660 ____A (Punk Software ) C:\Users\JasonB\Downloads\RocketDock-v1.3.5.exe
2012-04-26 14:16 - 2012-04-26 14:16 - 5898240 ____A C:\Windows\System32\USBForumTrace.etl
2012-04-26 14:13 - 2012-04-26 14:13 - 5474770 ____A C:\Users\JasonB\Downloads\RCR-103 driver V1.0.rar
2012-04-26 13:17 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\MSBuild
2012-04-26 12:41 - 2012-04-26 12:41 - 0509264 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\winsdk_web (1).exe
2012-04-26 12:07 - 2012-04-26 12:07 - 15659960 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\Windows-KB890830-V4.7.exe
2012-04-26 12:07 - 2012-04-26 12:07 - 0889416 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\dotNetFx40_Full_setup.exe
2012-04-26 12:05 - 2012-04-26 12:05 - 0509264 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\winsdk_web.exe
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\ATI
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Users\JasonB\AppData\Local\ATI
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Users\All Users\ATI
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Users\All Users\AMD
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\ProgramData\ATI
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\ProgramData\AMD
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Program Files\Common Files\ATI Technologies
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Program Files (x86)\AMD AVT
2012-04-26 11:50 - 2012-04-26 11:50 - 0000000 ____D C:\Program Files (x86)\AMD APP
2012-04-26 11:49 - 2012-04-26 11:49 - 0000000 ____D C:\Program Files\ATI
2012-04-26 11:46 - 2012-04-26 11:46 - 0000000 ____D C:\Program Files\AMD
2012-04-26 11:44 - 2012-04-26 11:43 - 190194180 ____A C:\Users\JasonB\Desktop\svchost.DMP
2012-04-26 11:42 - 2012-04-26 11:42 - 0792704 ____A (AMD) C:\Users\JasonB\Downloads\amddriverdownloader.exe
2012-04-26 11:34 - 2012-04-26 11:34 - 0000000 ____A C:\Windows\setuperr.log
2012-04-26 04:37 - 2012-04-26 04:37 - 12512688 ____A (Siber Systems) C:\Users\JasonB\Downloads\RoboForm-Setup.exe
2012-04-26 04:35 - 2012-04-26 04:35 - 0000000 ____D C:\Users\JasonB\AppData\Local\{292AF1FA-A40C-4E4B-9702-CC789B287443}
2012-04-26 04:35 - 2012-04-25 16:34 - 0000000 ____D C:\Users\JasonB\AppData\Local\{B3DE35E7-70E7-4379-BFF3-9B1CC2FFFEC2}
2012-04-26 03:59 - 2012-04-26 03:59 - 0000000 ____D C:\Users\All Users\Mozilla
2012-04-26 03:59 - 2012-04-26 03:59 - 0000000 ____D C:\ProgramData\Mozilla
2012-04-26 03:59 - 2012-04-26 03:59 - 0000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2012-04-26 03:59 - 2012-04-21 12:39 - 0000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-04-26 03:50 - 2012-04-26 03:50 - 0042000 ____A C:\Users\JasonB\Downloads\scroll bar.png
2012-04-25 16:35 - 2012-04-25 16:35 - 0000000 ____D C:\Users\JasonB\AppData\Local\{3307F112-8D3E-49C6-946B-BEE65E20E714}
2012-04-25 13:20 - 2012-04-25 13:20 - 0015826 ____A C:\Users\JasonB\Downloads\c9e888cfa8a011929d66c93dee5010acea779c20.csv
2012-04-25 13:20 - 2012-04-25 13:20 - 0002102 ____A C:\Users\JasonB\Downloads\91387d3d31e0bf46c31a70b22ccd27a4e4f49338.csv
2012-04-25 13:12 - 2012-04-25 13:12 - 0019210 ____A C:\Users\JasonB\Downloads\b4c1eb338123564ea38eee2500a59021292ac23b.csv
2012-04-25 07:23 - 2012-04-25 07:23 - 0008191 ____A C:\Users\JasonB\Downloads\020f1149939182b3c19bc785dce43e664baf5647.csv
2012-04-25 04:34 - 2012-04-25 04:34 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8C3836AF-5E29-4594-9A77-BADB639C23F9}
2012-04-25 04:34 - 2012-04-23 16:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{20E933C8-AB50-4DDE-9B9E-126763A802CE}
2012-04-25 04:31 - 2012-04-22 17:03 - 0000000 ____D C:\Windows\Minidump
2012-04-25 04:31 - 2012-04-22 08:03 - 0000000 ____D C:\Users\JasonB\Tracing
2012-04-25 03:45 - 2012-04-25 03:44 - 0135692 ____A C:\Users\JasonB\Downloads\Blogger_login details_wrong.jpg
2012-04-24 17:06 - 2012-04-24 17:06 - 0009191 ____A C:\Users\JasonB\Downloads\PageLines-PlatformPro-Settings-20120425.dat
2012-04-24 16:34 - 2012-04-24 16:34 - 0000000 ____D C:\Users\JasonB\AppData\Local\{A9D9BC34-74F0-4CDF-93D1-40D22414B771}
2012-04-24 16:33 - 2012-04-24 16:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{467F644C-3FB1-4C0B-89DB-F0EE58DD948A}
2012-04-24 15:45 - 2012-05-01 15:51 - 2074160 ____A (Kaspersky Lab ZAO) C:\Users\JasonB\Desktop\TDSSKiller.exe
2012-04-24 09:25 - 2012-04-24 09:25 - 0581897 ____A C:\Users\JasonB\Downloads\Statement_Apr 2012.pdf
2012-04-24 05:08 - 2012-04-24 05:08 - 0249794 ____A C:\TDSSKiller.2.7.32.0_24.04.2012_08.08.12_log.txt
2012-04-24 05:05 - 2012-04-24 05:05 - 2054550 ____A C:\Users\JasonB\Downloads\tdsskiller.zip
2012-04-24 04:34 - 2012-04-24 04:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{BCFC49F1-AD86-4D74-AFD0-03E9FE9C2495}
2012-04-23 19:47 - 2012-04-23 06:21 - 0000000 ____D C:\Users\JasonB\AppData\Local\Plantronics
2012-04-23 18:07 - 2012-04-23 18:07 - 0008548 ____A C:\Users\JasonB\Downloads\keyword_ideas_20120423_1907880.csv
2012-04-23 16:33 - 2012-04-23 16:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{535429F2-E116-488E-A073-749A7C1F2235}
2012-04-23 15:46 - 2012-04-23 15:46 - 27109422 ____A C:\Users\JasonB\Downloads\Belts-For-Men-720.mp4
2012-04-23 15:41 - 2012-04-23 15:41 - 11151133 ____A C:\Users\JasonB\Downloads\animoto_360p.mp4
2012-04-23 13:31 - 2012-04-23 13:31 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\TechSmith
2012-04-23 08:15 - 2012-04-23 07:31 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\ImgBurn
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\FLEXnet
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\Users\All Users\Plantronics
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\Users\All Users\Macrovision
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\Users\All Users\FLEXnet
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\ProgramData\Plantronics
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\ProgramData\Macrovision
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\ProgramData\FLEXnet
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\Program Files (x86)\Winamp
2012-04-23 06:21 - 2012-04-23 06:21 - 0000000 ____D C:\Program Files (x86)\Plantronics
2012-04-23 06:09 - 2012-04-23 06:09 - 0001829 ____A C:\Users\All Users\Start Menu\Programs\Startup\Snagit 10.lnk
2012-04-23 06:08 - 2012-04-23 06:08 - 0000000 ____D C:\Users\JasonB\AppData\Local\TechSmith
2012-04-23 06:08 - 2012-04-23 06:08 - 0000000 ____D C:\Users\All Users\TechSmith
2012-04-23 06:08 - 2012-04-23 06:08 - 0000000 ____D C:\ProgramData\TechSmith
2012-04-23 05:19 - 2012-04-23 05:19 - 16057736 ____A (SUPERAntiSpyware.com) C:\Users\JasonB\Downloads\SUPERAntiSpyware.exe
2012-04-23 05:14 - 2012-04-21 15:22 - 0000257 ____A C:\Windows\Brpfx04a.ini
2012-04-23 05:14 - 2012-04-21 15:22 - 0000094 ____A C:\Windows\brpcfx.ini
2012-04-23 05:12 - 2012-04-21 15:20 - 0000050 ____A C:\Windows\System32\BD9320CW.DAT
2012-04-23 04:39 - 2012-04-23 04:39 - 1857786 ____A C:\Users\JasonB\Downloads\ProcessExplorer.zip
2012-04-23 04:36 - 2012-04-23 04:36 - 0000000 ____D C:\Windows\pss
2012-04-23 04:33 - 2012-04-23 04:33 - 0000000 ____D C:\Users\JasonB\AppData\Local\{E082A6AE-439B-458B-8538-44A213D7AAA3}
2012-04-23 04:33 - 2012-04-23 04:32 - 0000000 ____D C:\Users\JasonB\AppData\Local\{002F9462-B996-4D73-BC76-1E643974F98F}
2012-04-22 20:05 - 2012-04-22 20:05 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8B8B80CE-3614-4963-A4AA-58855E7C9BDC}
2012-04-22 17:58 - 2012-04-22 17:58 - 0002515 ____A C:\Users\Public\Desktop\Skype.lnk
2012-04-22 17:58 - 2012-04-22 17:58 - 0000000 ___RD C:\Program Files (x86)\Skype
2012-04-22 17:58 - 2012-04-22 17:58 - 0000000 ____D C:\Users\All Users\Skype
2012-04-22 17:58 - 2012-04-22 17:58 - 0000000 ____D C:\ProgramData\Skype
2012-04-22 17:57 - 2012-04-22 17:57 - 0944264 ____A (Skype Technologies S.A.) C:\Users\JasonB\Downloads\SkypeSetup.exe
2012-04-22 17:54 - 2012-04-22 17:54 - 0016896 ____A (ASUS) C:\Windows\AsTaskSched.dll
2012-04-22 17:54 - 2012-04-22 17:54 - 0001202 ____A C:\Users\Public\Desktop\HD VDeck.lnk
2012-04-22 17:54 - 2012-04-22 17:53 - 0000000 ____D C:\Program Files (x86)\VIA
2012-04-22 17:54 - 2012-04-21 15:20 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2012-04-22 17:51 - 2012-04-22 14:59 - 0001769 ____A C:\Windows\Language_trs.ini
2012-04-22 17:48 - 2012-04-22 17:48 - 0000000 ____D C:\Program Files (x86)\Intel
2012-04-22 17:47 - 2012-04-22 17:47 - 0000017 ____A C:\Users\JasonB\AppData\Local\resmon.resmoncfg
2012-04-22 17:47 - 2012-04-22 17:47 - 0000000 ____D C:\Intel
2012-04-22 17:25 - 2012-04-22 17:26 - 0151552 ____A C:\Windows\KMService.exe
2012-04-22 17:25 - 2012-04-22 17:26 - 0008192 ____A C:\Windows\SysWOW64\srvany.exe
2012-04-22 17:04 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\Downloaded Program Files
2012-04-22 16:53 - 2012-04-22 16:53 - 0546008 ____A C:\Users\JasonB\Downloads\OTS.Txt
2012-04-22 16:49 - 2012-04-22 16:49 - 4731392 ____A (AVAST Software) C:\Users\JasonB\Downloads\aswMBR.exe
2012-04-22 16:48 - 2012-04-22 16:48 - 0646656 ____A (OldTimer Tools) C:\Users\JasonB\Downloads\OTS.exe
2012-04-22 16:46 - 2012-04-22 16:46 - 4995866 ____A C:\look.txt
2012-04-22 16:40 - 2012-04-22 16:40 - 0000000 ____D C:\Windows\SysWOW64\Macromed
2012-04-22 16:40 - 2012-04-22 16:40 - 0000000 ____D C:\Windows\System32\Macromed
2012-04-22 15:49 - 2012-04-22 15:49 - 1101669 ____A C:\Users\JasonB\Downloads\ProcessMonitor.zip
2012-04-22 15:49 - 2012-04-22 15:48 - 0000000 ____D C:\Users\All Users\HitmanPro
2012-04-22 15:49 - 2012-04-22 15:48 - 0000000 ____D C:\ProgramData\HitmanPro
2012-04-22 15:45 - 2012-04-22 15:45 - 0287304 ____A (BitDefender S.R.L.) C:\Windows\System32\Drivers\TrufosAlt.sys
2012-04-22 15:39 - 2012-04-22 15:39 - 8252840 ____A (SurfRight B.V.) C:\Users\JasonB\Downloads\HitmanPro36_x64.exe
2012-04-22 15:36 - 2012-04-22 15:36 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2012-04-22 15:02 - 2012-04-22 15:02 - 0000000 ____D C:\Users\JasonB\AppData\Local\Downloaded Installations
2012-04-22 15:00 - 2012-04-22 15:00 - 0000000 ____D C:\Program Files (x86)\Renesas Electronics
2012-04-22 14:59 - 2012-04-22 14:59 - 0000000 ____D C:\Users\All Users\Downloaded Installations
2012-04-22 14:59 - 2012-04-22 14:59 - 0000000 ____D C:\ProgramData\Downloaded Installations
2012-04-22 14:47 - 2012-04-22 14:47 - 0000000 ____D C:\Program Files\DIFX
2012-04-22 14:43 - 2012-04-22 12:27 - 0000000 ____D C:\Users\All Users\Microsoft Help
2012-04-22 14:43 - 2012-04-22 12:27 - 0000000 ____D C:\ProgramData\Microsoft Help
2012-04-22 14:41 - 2012-04-22 14:13 - 66248093 ____A C:\Users\JasonB\Downloads\snagi11.rar
2012-04-22 14:39 - 2009-07-13 18:34 - 0000478 ____A C:\Windows\win.ini
2012-04-22 14:24 - 2012-04-22 14:24 - 0116088 ____A C:\Users\JasonB\Downloads\whoistd_setup.exe
2012-04-22 14:24 - 2012-04-22 14:24 - 0047166 ____A C:\Users\JasonB\Downloads\whoistd.zip
2012-04-22 14:23 - 2012-04-22 14:23 - 0040926 ____A C:\Users\JasonB\Downloads\dnsdataview.zip
2012-04-22 14:20 - 2012-04-22 14:20 - 0089506 ____A C:\Users\JasonB\Downloads\cports-x64.zip
2012-04-22 14:12 - 2012-04-22 14:12 - 22263009 ____A C:\Users\JasonB\Downloads\vlc-2.0.1-win64 (1).exe
2012-04-22 13:14 - 2012-04-22 13:14 - 22263009 ____A C:\Users\JasonB\Downloads\vlc-2.0.1-win64.exe
2012-04-22 13:12 - 2012-04-22 13:12 - 22259528 ____A C:\Users\JasonB\Downloads\vlc-2.0.1-win32.exe
2012-04-22 12:56 - 2012-04-22 12:56 - 0000000 ____D C:\Users\JasonB\AppData\Local\Mindjet
2012-04-22 12:53 - 2012-04-22 12:53 - 0000000 ____D C:\Users\All Users\Mindjet
2012-04-22 12:53 - 2012-04-22 12:53 - 0000000 ____D C:\ProgramData\Mindjet
2012-04-22 12:47 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Common Files\System
2012-04-22 12:37 - 2012-04-22 12:37 - 0000000 ____D C:\Program Files\Common Files\DESIGNER
2012-04-22 12:37 - 2009-07-13 23:46 - 0000000 ____D C:\Windows\ShellNew
2012-04-22 12:37 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Common Files\Microsoft Shared
2012-04-22 12:36 - 2012-04-22 12:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\{B466D993-193A-4641-BD61-AA0DBB63C1F1}
2012-04-22 12:33 - 2012-04-22 12:33 - 0000000 ____D C:\Program Files\Microsoft Synchronization Services
2012-04-22 12:32 - 2012-04-22 12:32 - 0000000 ____D C:\Program Files\Microsoft Sync Framework
2012-04-22 12:32 - 2012-04-22 12:32 - 0000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2012-04-22 12:32 - 2012-04-22 12:27 - 0000000 ____D C:\Program Files\Microsoft Office
2012-04-22 12:30 - 2012-04-22 12:30 - 0000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2012-04-22 12:28 - 2012-04-22 12:28 - 0000000 ____D C:\Program Files\Microsoft Analysis Services
2012-04-22 12:28 - 2012-04-22 12:28 - 0000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2012-04-22 12:27 - 2012-04-22 12:27 - 0000000 ___RD C:\MSOCache
2012-04-22 12:27 - 2012-04-22 12:27 - 0000000 ____D C:\Users\JasonB\AppData\Local\Microsoft Help
2012-04-22 12:27 - 2012-04-22 12:27 - 0000000 ____D C:\Program Files (x86)\Microsoft Office
2012-04-22 12:20 - 2012-04-22 12:20 - 0000000 ____D C:\Users\JasonB\AppData\Local\{8162AB6F-3DB1-4988-9EE4-D2A7861BD300}
2012-04-22 12:03 - 2012-04-22 11:44 - 25250504 ____A C:\Users\JasonB\Downloads\SEO_PowerSuite_Enterprise_Full_Edition+By+Ibrahimprod.rar.crdownload
2012-04-22 11:37 - 2012-04-22 11:37 - 0000000 ____D C:\Users\All Users\Raxco
2012-04-22 11:37 - 2012-04-22 11:37 - 0000000 ____D C:\ProgramData\Raxco
2012-04-22 11:37 - 2012-04-22 11:37 - 0000000 ____D C:\Program Files\Common Files\Raxco
2012-04-22 11:07 - 2012-04-22 11:06 - 55979747 ____A C:\Users\JasonB\Downloads\seopowersuite-jre.zip
2012-04-22 11:06 - 2012-04-22 10:45 - 0331716 ____A C:\Users\JasonB\.ranktracker.properties
2012-04-22 11:06 - 2012-04-22 10:44 - 0000000 ____D C:\Users\JasonB\.ranktracker
2012-04-22 10:48 - 2012-04-22 10:43 - 0001194 ____A C:\Users\Jason\Desktop\WebSite Auditor.lnk
2012-04-22 10:48 - 2012-04-22 10:43 - 0001171 ____A C:\Users\Jason\Desktop\LinkAssistant.lnk
2012-04-22 10:48 - 2012-04-22 10:43 - 0001152 ____A C:\Users\Jason\Desktop\Rank Tracker.lnk
2012-04-22 10:47 - 2012-04-22 10:43 - 0001152 ____A C:\Users\Jason\Desktop\SEO SpyGlass.lnk
2012-04-22 10:46 - 2012-04-22 10:46 - 2744100 ____A C:\Users\JasonB\.websiteauditor.properties
2012-04-22 10:46 - 2012-04-22 10:46 - 0500858 ____A C:\Users\JasonB\.spyglass.properties
2012-04-22 10:46 - 2012-04-22 10:46 - 0000000 ____D C:\Users\JasonB\.websiteauditor
2012-04-22 10:46 - 2012-04-22 10:45 - 0000000 ____D C:\Users\JasonB\.seospyglass
2012-04-22 10:45 - 2012-04-22 10:45 - 0453949 ____A C:\Users\JasonB\.linkassistant.properties
2012-04-22 10:45 - 2012-04-22 10:45 - 0000000 ____D C:\Users\JasonB\.linkassistant
2012-04-22 10:36 - 2012-04-22 10:36 - 0000000 ____D C:\Users\JasonB\AppData\Local\VS Revo Group
2012-04-22 10:19 - 2012-04-22 10:02 - 106486444 ____A C:\Users\JasonB\Downloads\Raxco_PerfectDisk_12.290_PROServer.rar
2012-04-22 09:52 - 2012-04-22 09:52 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Malwarebytes
2012-04-22 09:52 - 2012-04-22 09:52 - 0000000 ____D C:\Users\All Users\Malwarebytes
2012-04-22 09:52 - 2012-04-22 09:52 - 0000000 ____D C:\ProgramData\Malwarebytes
2012-04-22 09:51 - 2012-04-22 09:51 - 0001376 ____A C:\Windows\System32\bdsandbox.txt
2012-04-22 09:47 - 2012-04-22 09:47 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\WinRAR
2012-04-22 09:22 - 2012-04-22 07:08 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2012-04-22 09:17 - 2012-04-22 09:17 - 1997353 ____A C:\Users\JasonB\Downloads\Saver2Setup.exe
2012-04-22 09:15 - 2012-04-22 09:15 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\PandoraClient
2012-04-22 09:15 - 2012-04-22 09:15 - 0000000 ____D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2012-04-22 09:08 - 2012-04-22 09:08 - 0000385 ____A C:\Windows\System32\user_gensett.xml
2012-04-22 07:18 - 2012-04-22 07:15 - 0000000 ____D C:\Program Files (x86)\Windows Live
2012-04-22 07:14 - 2012-04-22 07:14 - 0000000 ____D C:\Windows\PCHEALTH
2012-04-22 07:09 - 2012-04-22 07:09 - 0217189 ____A C:\Users\All Users\1335106805.bdinstall.bin
2012-04-22 07:09 - 2012-04-22 07:09 - 0217189 ____A C:\ProgramData\1335106805.bdinstall.bin
2012-04-22 07:07 - 2012-04-22 07:07 - 0000270 ___AH C:\bdr-conf
2012-04-22 07:06 - 2012-04-22 07:06 - 0000000 ____D C:\Users\All Users\BDLogging
2012-04-22 07:06 - 2012-04-22 07:06 - 0000000 ____D C:\ProgramData\BDLogging
2012-04-22 07:06 - 2012-04-22 07:03 - 0000000 ____D C:\Users\All Users\Bitdefender
2012-04-22 07:06 - 2012-04-22 07:03 - 0000000 ____D C:\ProgramData\Bitdefender
2012-04-22 07:04 - 2012-04-22 07:04 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_avchv_01009.Wdf
2012-04-22 07:03 - 2012-04-22 07:03 - 1287528 ____A (Microsoft Corporation) C:\Users\JasonB\Downloads\wlsetup-web.exe
2012-04-22 07:03 - 2012-04-22 07:03 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Bitdefender
2012-04-22 07:01 - 2012-04-22 07:01 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\QuickScan
2012-04-22 07:01 - 2012-04-22 07:01 - 0000000 ____D C:\Program Files\Bitdefender
2012-04-22 07:00 - 2012-04-22 06:59 - 0000000 ____D C:\Program Files\Common Files\Bitdefender
2012-04-22 06:59 - 2012-04-22 06:59 - 2257688 ____A C:\Users\JasonB\Downloads\bitdefender_antivirus.exe
2012-04-21 16:19 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\rescache
2012-04-21 15:26 - 2012-04-21 15:26 - 1611428 ____A C:\Users\JasonB\Downloads\orca1.zip
2012-04-21 15:23 - 2012-04-21 15:23 - 8579136 ____A C:\Users\JasonB\Downloads\DPPM_201_ENG.exe
2012-04-21 15:21 - 2012-04-21 15:21 - 0000410 ____A C:\Windows\BRWMARK.INI
2012-04-21 15:21 - 2012-04-21 15:19 - 0000000 ____D C:\Users\All Users\Brother
2012-04-21 15:21 - 2012-04-21 15:19 - 0000000 ____D C:\ProgramData\Brother
2012-04-21 15:20 - 2012-04-21 15:20 - 0000066 ____A C:\Windows\Brfaxrx.ini
2012-04-21 15:20 - 2012-04-21 15:20 - 0000000 ____D C:\Users\Public\Documents\BrFaxRx
2012-04-21 15:20 - 2012-04-21 15:20 - 0000000 ____D C:\Program Files (x86)\Brother
2012-04-21 15:19 - 2012-04-21 15:19 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\InstallShield
2012-04-21 15:18 - 2012-04-21 15:17 - 0000000 ____D C:\Users\JasonB\.crossftp
2012-04-21 15:17 - 2012-04-21 15:17 - 2502376 ____A C:\Users\JasonB\Downloads\crossftp-setup-1.76a.exe
2012-04-21 15:15 - 2012-04-21 15:15 - 0000000 ___RD C:\Sandbox
2012-04-21 15:14 - 2012-04-21 15:14 - 2308368 ____A (SANDBOXIE L.T.D) C:\Users\JasonB\Downloads\SandboxieInstall.exe
2012-04-21 15:14 - 2012-04-21 15:14 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
2012-04-21 15:06 - 2012-04-21 15:06 - 14852504 ____A (Adobe Systems Inc.) C:\Users\JasonB\Downloads\AdobeAIRInstaller.exe
2012-04-21 15:06 - 2012-04-21 15:06 - 0000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2012-04-21 15:06 - 2012-04-21 15:06 - 0000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2012-04-21 14:58 - 2012-04-21 14:58 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Notepad++
2012-04-21 14:58 - 2012-04-21 14:57 - 5787493 ____A C:\Users\JasonB\Downloads\npp.6.1.1.Installer.exe
2012-04-21 14:22 - 2012-04-21 14:16 - 0000000 ____D C:\Windows\Panther
2012-04-21 14:21 - 2012-04-21 14:21 - 0000000 ____D C:\Program Files\Onkyo
2012-04-21 14:21 - 2012-04-21 14:20 - 3645656 ____A (Piriform Ltd) C:\Users\JasonB\Downloads\ccsetup317.exe
2012-04-21 14:16 - 2009-07-13 21:38 - 0025600 __ASH C:\Windows\System32\config\BCD-Template.LOG
2012-04-21 14:16 - 2009-07-13 21:32 - 0028672 ____A C:\Windows\System32\config\BCD-Template
2012-04-21 14:15 - 2012-04-21 14:15 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (4).aspx
2012-04-21 14:15 - 2012-04-21 14:14 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (3).aspx
2012-04-21 14:14 - 2012-04-21 14:14 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (2).aspx
2012-04-21 14:14 - 2012-04-21 14:14 - 0001301 ____A C:\Users\JasonB\Downloads\sorry (1).aspx
2012-04-21 14:13 - 2012-04-21 14:13 - 0001301 ____A C:\Users\JasonB\Downloads\sorry.aspx
2012-04-21 14:11 - 2012-04-21 14:10 - 6118990 ____A (LIGHTNING UK!) C:\Users\JasonB\Downloads\SetupImgBurn_2.5.7.0.exe
2012-04-21 14:09 - 2012-04-21 14:09 - 7205327 ____A C:\Users\JasonB\Downloads\HandBrake-0.9.6-x86_64-Win_GUI.exe
2012-04-21 14:09 - 2012-04-21 14:09 - 0000690 ____A C:\Users\Jason\Desktop\Handbrake.lnk
2012-04-21 13:49 - 2012-04-21 13:49 - 4518720 ____A (FileZilla Project) C:\Users\JasonB\Downloads\FileZilla_3.5.3_win32-setup.exe
2012-04-21 13:37 - 2012-04-21 13:37 - 0000000 ____D C:\Users\All Users\RoboForm
2012-04-21 13:37 - 2012-04-21 13:37 - 0000000 ____D C:\ProgramData\RoboForm
2012-04-21 13:26 - 2012-04-21 12:14 - 0000174 ___SH C:\Users\JasonB\Start Menu\Programs\Startup\desktop.ini
2012-04-21 13:26 - 2012-04-21 12:14 - 0000174 ___SH C:\Users\JasonB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2012-04-21 13:19 - 2012-04-21 13:19 - 0000000 ____A C:\Windows\ativpsrm.bin
2012-04-21 13:19 - 2009-07-13 21:01 - 0042049 ____A C:\Windows\SysWOW64\license.rtf
2012-04-21 13:19 - 2009-07-13 21:01 - 0042049 ____A C:\Windows\System32\license.rtf
2012-04-21 13:19 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sysprep
2012-04-21 13:18 - 2009-07-13 23:46 - 0000000 ____D C:\Windows\CSC
2012-04-21 13:14 - 2009-07-13 23:47 - 0000000 ____D C:\Program Files\Windows Journal
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Sidebar
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Portable Devices
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Photo Viewer
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\Windows Defender
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files\DVD Maker
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Windows Sidebar
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Windows Portable Devices
2012-04-21 13:14 - 2009-07-13 21:32 - 0000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\sppui
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\Setup
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\oobe
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\migwiz
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\manifeststore
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\es-ES
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\Dism
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\da-DK
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\cs-CZ
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sppui
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\Setup
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\oobe
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\migwiz
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\manifeststore
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\es-ES
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\Dism
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\da-DK
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\cs-CZ
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\config\TxR
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\AdvancedInstallers
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\servicing
2012-04-21 13:14 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\PolicyDefinitions
2012-04-21 13:12 - 2009-07-13 18:36 - 0175616 ____A (Microsoft Corporation) C:\Windows\System32\msclmd.dll
2012-04-21 13:12 - 2009-07-13 18:36 - 0152576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2012-04-21 13:07 - 2012-04-21 13:07 - 0000000 ____D C:\Users\All Users\Sun
2012-04-21 13:07 - 2012-04-21 13:07 - 0000000 ____D C:\ProgramData\Sun
2012-04-21 13:06 - 2012-04-21 13:06 - 0908576 ____A (Sun Microsystems, Inc.) C:\Users\JasonB\Downloads\chromeinstall-6u31.exe
2012-04-21 13:06 - 2012-04-21 13:06 - 0472808 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2012-04-21 13:06 - 2012-04-21 13:06 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2012-04-21 13:06 - 2012-04-21 13:06 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2012-04-21 13:06 - 2012-04-21 13:06 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2012-04-21 13:06 - 2012-04-21 13:06 - 0000000 ____D C:\Program Files (x86)\Java
2012-04-21 12:52 - 2012-04-21 12:51 - 8402527 ____A C:\Users\JasonB\Downloads\DarkSkiesTracyHymas.themepack
2012-04-21 12:46 - 2012-04-21 12:46 - 0000000 ____D C:\Users\JasonB\AppData\Local\Logitech® Webcam Software
2012-04-21 12:46 - 2012-04-21 12:46 - 0000000 ____D C:\Users\All Users\LogiShrd
2012-04-21 12:46 - 2012-04-21 12:46 - 0000000 ____D C:\ProgramData\LogiShrd
2012-04-21 12:44 - 2012-04-21 12:44 - 0000000 ____D C:\Users\JasonB\AppData\Local\LogiShrd
2012-04-21 12:42 - 2012-04-21 12:42 - 0002005 ____A C:\Users\Public\Desktop\Logitech Vid HD.lnk
2012-04-21 12:42 - 2012-04-21 12:42 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Leadertech
2012-04-21 12:42 - 2012-04-21 12:42 - 0000000 ____D C:\Users\All Users\Logitech
2012-04-21 12:42 - 2012-04-21 12:42 - 0000000 ____D C:\ProgramData\Logitech
2012-04-21 12:42 - 2012-04-21 12:42 - 0000000 ____D C:\Program Files (x86)\Logitech
2012-04-21 12:41 - 2012-04-21 12:41 - 0001624 ____A C:\Users\Public\Desktop\Logitech Webcam Software .lnk
2012-04-21 12:39 - 2012-04-21 12:39 - 3695416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2012-04-21 12:39 - 2012-04-21 12:39 - 3695416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2012-04-21 12:39 - 2012-04-21 12:39 - 0697344 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0603648 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0580608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0534528 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0452608 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-04-21 12:39 - 2012-04-21 12:39 - 0434176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0403248 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0367104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2012-04-21 12:39 - 2012-04-21 12:39 - 0353792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0353584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0282112 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0267776 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0249344 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0227840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0223232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0222208 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0203776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0165888 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0162304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0135168 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0130560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0123392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0114176 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0111616 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0082432 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2012-04-21 12:39 - 2012-04-21 12:39 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0072822 ____A C:\Windows\SysWOW64\ieuinit.inf
2012-04-21 12:39 - 2012-04-21 12:39 - 0072822 ____A C:\Windows\System32\ieuinit.inf
2012-04-21 12:39 - 2012-04-21 12:39 - 0066048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0063488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2012-04-21 12:39 - 2012-04-21 12:39 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0054272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0049664 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0041472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0035840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0023552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2012-04-21 12:39 - 2012-04-21 12:39 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2012-04-21 12:39 - 2012-04-21 12:39 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Mozilla
2012-04-21 12:39 - 2012-04-21 12:39 - 0000000 ____D C:\Users\JasonB\AppData\Local\Mozilla
2012-04-21 12:35 - 2012-04-21 12:35 - 0000000 ____D C:\Windows\System32\SPReview
2012-04-21 12:35 - 2012-04-21 12:35 - 0000000 ____D C:\Windows\System32\EventProviders
2012-04-21 12:32 - 2012-04-21 12:32 - 16157992 ____A (Mozilla) C:\Users\JasonB\Downloads\Firefox Setup 11.0.exe
2012-04-21 12:29 - 2012-04-21 12:29 - 0000000 ____D C:\Program Files (x86)\Siber Systems
2012-04-21 12:26 - 2012-04-21 12:26 - 0000000 ____D C:\Users\JasonB\AppData\Roaming\Macromedia
2012-04-21 12:25 - 2012-04-21 12:21 - 0000000 ____D C:\Users\JasonB\AppData\Local\Google
2012-04-21 12:21 - 2012-04-21 12:21 - 0000000 ____D C:\Users\JasonB\AppData\Local\Deployment
2012-04-21 12:21 - 2012-04-21 12:21 - 0000000 ____D C:\Users\JasonB\AppData\Local\Apps\2.0
2012-04-21 12:14 - 2012-04-21 12:14 - 0000020 ___SH C:\Users\JasonB\ntuser.ini
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\Templates
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\Start Menu
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\PrintHood
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\NetHood
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\My Documents
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\AppData\Local\Temporary Internet Files
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 __SHD C:\Users\JasonB\AppData\Local\History
2012-04-21 12:14 - 2012-04-21 12:14 - 0000000 ____D C:\Users\JasonB\AppData\Local\VirtualStore
2012-04-21 12:09 - 2012-04-21 12:09 - 0055488 _RASH C:\Users\All Users\ntuser.pol
2012-04-21 12:09 - 2012-04-21 12:09 - 0055488 _RASH C:\ProgramData\ntuser.pol
2012-04-21 11:52 - 2012-04-21 11:52 - 0057560 ____A C:\Users\Jason\AppData\Local\GDIPFONTCACHEV1.DAT
2012-04-21 11:34 - 2012-04-21 11:33 - 0000174 ___SH C:\Users\Jason\Start Menu\Programs\Startup\desktop.ini
2012-04-21 11:34 - 2012-04-21 11:33 - 0000174 ___SH C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2012-04-21 11:34 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\System32\restore
2012-04-21 11:33 - 2012-04-21 11:33 - 0000020 ___SH C:\Users\Jason\ntuser.ini
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Templates
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Start Menu
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\PrintHood
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\NetHood
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\My Documents
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Documents\My Videos
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Documents\My Pictures
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\Documents\My Music
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\AppData\Local\Temporary Internet Files
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 __SHD C:\Users\Jason\AppData\Local\History
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 ____D C:\Users\Jason\AppData\LocalLow
2012-04-21 11:33 - 2012-04-21 11:33 - 0000000 ____D C:\Users\Jason\AppData\Local\VirtualStore
2012-04-21 11:33 - 2012-04-21 11:32 - 0000000 ____D C:\users\Jason
2012-04-21 11:32 - 2012-04-21 11:32 - 0000000 ____D C:\Recovery
2012-04-05 21:22 - 2012-04-05 21:22 - 11174400 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\atikmdag.sys
2012-04-05 19:34 - 2012-04-05 19:34 - 0187392 ____A C:\Windows\System32\clinfo.exe
2012-04-05 19:34 - 2012-04-05 19:34 - 0074752 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\OpenVideo64.dll
2012-04-05 19:34 - 2012-04-05 19:34 - 0064512 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2012-04-05 19:33 - 2012-04-05 19:33 - 16457216 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\amdocl64.dll
2012-04-05 19:33 - 2012-04-05 19:33 - 0063488 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\OVDecode64.dll
2012-04-05 19:33 - 2012-04-05 19:33 - 0056320 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2012-04-05 19:32 - 2012-04-05 19:32 - 13007872 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2012-04-05 19:32 - 2012-04-05 19:32 - 0054784 ____A (Khronos Group) C:\Windows\System32\OpenCL.dll
2012-04-05 19:32 - 2012-04-05 19:32 - 0050176 ____A (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2012-04-05 18:23 - 2012-04-05 18:23 - 0245896 ____A C:\Windows\SysWOW64\atiapfxx.blb
2012-04-05 18:23 - 2012-04-05 18:23 - 0245896 ____A C:\Windows\System32\atiapfxx.blb
2012-04-05 18:22 - 2012-04-05 18:22 - 0159744 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\atiapfxx.exe
2012-04-05 18:21 - 2011-04-19 23:09 - 0909312 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2012-04-05 18:20 - 2011-04-19 23:07 - 1067520 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\aticfx64.dll
2012-04-05 18:16 - 2012-04-05 18:16 - 0503808 ____A (AMD) C:\Windows\System32\atieclxx.exe
2012-04-05 18:16 - 2012-04-05 18:16 - 0442368 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\ATIDEMGX.dll
2012-04-05 18:16 - 2012-04-05 18:16 - 0236544 ____A (AMD) C:\Windows\System32\atiesrxx.exe
2012-04-05 18:14 - 2012-04-05 18:14 - 0120320 ____A (AMD) C:\Windows\System32\atitmm64.dll
2012-04-05 18:14 - 2012-04-05 18:14 - 0059392 ____A (ATI Technologies, Inc.) C:\Windows\System32\atiedu64.dll
2012-04-05 18:14 - 2012-04-05 18:14 - 0043520 ____A (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2012-04-05 18:14 - 2012-04-05 18:14 - 0021504 ____A (AMD) C:\Windows\System32\atimuixx.dll
2012-04-05 18:13 - 2011-04-19 22:59 - 6800896 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2012-04-05 18:10 - 2012-04-05 18:10 - 26181632 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\atio6axx.dll
2012-04-05 18:00 - 2011-04-19 22:27 - 0064000 ____A (AMD) C:\Windows\System32\coinst.dll
2012-04-05 17:54 - 2009-07-13 13:59 - 7479296 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atidxx64.dll
2012-04-05 17:50 - 2012-04-05 17:50 - 19753984 ____A (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2012-04-05 17:35 - 2012-04-05 17:35 - 1120768 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiumd6v.dll
2012-04-05 17:34 - 2012-04-05 17:34 - 4731904 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiumd6a.dll
2012-04-05 17:34 - 2012-04-05 17:34 - 1831424 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll
2012-04-05 17:34 - 2009-07-13 13:59 - 6203392 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2012-04-05 17:30 - 2012-04-05 17:30 - 0051200 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\aticalrt64.dll
2012-04-05 17:30 - 2012-04-05 17:30 - 0046080 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2012-04-05 17:30 - 2012-04-05 17:30 - 0044544 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\aticalcl64.dll
2012-04-05 17:30 - 2012-04-05 17:30 - 0044032 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2012-04-05 17:29 - 2012-04-05 17:29 - 2631008 ____A C:\Windows\System32\atiumd6a.cap
2012-04-05 17:29 - 2012-04-05 17:29 - 16090624 ____A (Advanced Micro Devices Inc.) C:\Windows\System32\aticaldd64.dll
2012-04-05 17:29 - 2012-04-05 17:29 - 0204952 ____A C:\Windows\SysWOW64\ativvsvl.dat
2012-04-05 17:29 - 2012-04-05 17:29 - 0204952 ____A C:\Windows\System32\ativvsvl.dat
2012-04-05 17:29 - 2012-04-05 17:29 - 0157144 ____A C:\Windows\SysWOW64\ativvsva.dat
2012-04-05 17:29 - 2012-04-05 17:29 - 0157144 ____A C:\Windows\System32\ativvsva.dat
2012-04-05 17:25 - 2012-04-05 17:25 - 13764096 ____A (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2012-04-05 17:23 - 2012-04-05 17:23 - 7431680 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiumd64.dll
2012-04-05 17:22 - 2009-07-13 13:59 - 4795904 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2012-04-05 17:21 - 2012-04-05 17:21 - 2664704 ____A C:\Windows\SysWOW64\atiumdva.cap
2012-04-05 17:11 - 2012-04-05 17:11 - 0360448 ____A (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2012-04-05 17:11 - 2012-04-05 17:11 - 0041984 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atig6txx.dll
2012-04-05 17:11 - 2012-04-05 17:11 - 0017408 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atig6pxx.dll
2012-04-05 17:11 - 2012-04-05 17:11 - 0014848 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2012-04-05 17:11 - 2012-04-05 17:11 - 0014848 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiglpxx.dll
2012-04-05 17:11 - 2011-04-19 22:23 - 0514560 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\atiadlxx.dll
2012-04-05 17:10 - 2012-04-05 17:10 - 0343040 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\atikmpag.sys
2012-04-05 17:10 - 2012-04-05 17:10 - 0033280 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2012-04-05 17:09 - 2012-04-05 17:09 - 0053248 ____A (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\ati2erec.dll
2012-04-05 17:09 - 2011-04-19 22:21 - 0054784 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiuxp64.dll
2012-04-05 17:09 - 2011-04-19 22:21 - 0044544 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiu9p64.dll
2012-04-05 17:09 - 2011-04-19 22:21 - 0041984 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2012-04-05 17:09 - 2011-04-19 22:21 - 0032256 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2012-04-05 17:06 - 2012-04-05 17:06 - 0054784 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\atimpc64.dll
2012-04-05 17:06 - 2012-04-05 17:06 - 0054784 ____A (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdpcom64.dll
2012-04-05 17:06 - 2012-04-05 17:06 - 0053760 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2012-04-05 17:06 - 2012-04-05 17:06 - 0053760 ____A (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2012-03-29 00:02 - 2012-04-26 12:40 - 55154568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe
2012-03-29 00:00 - 2012-04-21 11:47 - 57249312 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-03-20 17:22 - 2012-03-20 17:22 - 0691896 ____A (BitDefender) C:\Windows\System32\Drivers\avc3.sys
2012-03-09 11:07 - 2012-03-09 11:07 - 0029184 ____A C:\Windows\System32\kdbsdk64.dll
2012-03-09 11:06 - 2012-03-09 11:06 - 0024576 ____A C:\Windows\SysWOW64\kdbsdk32.dll
2012-03-08 15:50 - 2012-03-08 15:50 - 0049016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sirenacm.dll
2012-03-05 22:53 - 2012-04-21 12:34 - 5559152 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-03-05 21:59 - 2012-04-21 12:34 - 3968368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2012-03-05 21:59 - 2012-04-21 12:34 - 3913072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-03-05 14:15 - 2012-03-05 14:15 - 0038159 ____A C:\Windows\atiogl.xml
2012-02-29 22:46 - 2012-04-21 11:47 - 0023408 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2012-02-29 22:38 - 2012-04-21 11:47 - 0220672 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2012-02-29 22:33 - 2012-04-21 11:47 - 0081408 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
2012-02-29 22:28 - 2012-04-21 11:47 - 0005120 ____A (Microsoft Corporation) C:\Windows\System32\wmi.dll
2012-02-29 21:37 - 2012-04-21 11:47 - 0172544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2012-02-29 21:33 - 2012-04-21 11:47 - 0159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2012-02-29 21:29 - 2012-04-21 11:47 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2012-02-29 00:19 - 2012-02-29 00:19 - 0268552 ____A (Raxco Software, Inc.) C:\Windows\System32\PDBoot.exe
2012-02-28 08:25 - 2012-02-28 08:25 - 0081424 ____A (Raxco Software, Inc.) C:\Windows\System32\Drivers\PDFsFilter.sys
2012-02-27 23:34 - 2012-04-21 14:08 - 17790976 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-02-27 23:02 - 2012-04-21 14:08 - 10888704 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-02-27 22:56 - 2012-04-21 14:08 - 2311168 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-02-27 22:50 - 2012-04-21 14:08 - 1345536 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-02-27 22:49 - 2012-04-21 14:08 - 1390080 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-02-27 22:48 - 2012-04-21 14:08 - 1493504 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-02-27 22:48 - 2012-04-21 14:08 - 0237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-02-27 22:47 - 2012-04-21 14:08 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-02-27 22:45 - 2012-04-21 14:08 - 0818688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-02-27 22:43 - 2012-04-21 14:08 - 2144256 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-02-27 22:43 - 2012-04-21 14:08 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-02-27 22:42 - 2012-04-21 14:08 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-02-27 22:39 - 2012-04-21 14:08 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-02-27 17:52 - 2012-04-21 14:08 - 12281856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-02-27 17:27 - 2012-04-21 14:08 - 9705984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-02-27 17:18 - 2012-04-21 14:08 - 1799168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-02-27 17:12 - 2012-04-21 14:08 - 1103360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-02-27 17:11 - 2012-04-21 14:08 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-02-27 17:11 - 2012-04-21 14:08 - 1127424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-02-27 17:09 - 2012-04-21 14:08 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-02-27 17:08 - 2012-04-21 14:08 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-02-27 17:06 - 2012-04-21 14:08 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-02-27 17:04 - 2012-04-21 14:08 - 1792000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-02-27 17:03 - 2012-04-21 14:08 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-02-27 17:03 - 2012-04-21 14:08 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-02-27 16:59 - 2012-04-21 14:08 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-02-23 07:18 - 2012-04-21 12:00 - 0279656 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2012-02-23 04:32 - 2012-02-23 04:32 - 0095760 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\AtihdW76.sys
2012-02-17 13:45 - 2012-02-17 13:45 - 0545064 ____A (BitDefender) C:\Windows\System32\Drivers\avckf.sys
2012-02-16 22:38 - 2012-04-21 11:34 - 1031680 ____A (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2012-02-16 21:34 - 2012-04-21 11:34 - 0826880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2012-02-16 20:58 - 2012-04-21 11:34 - 0210944 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-02-16 20:57 - 2012-04-21 11:34 - 0023552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2012-02-09 22:36 - 2012-04-21 11:44 - 1544192 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2012-02-09 21:38 - 2012-04-21 11:44 - 1077248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 7%
Total physical RAM: 16382.05 MB
Available physical RAM: 15183.57 MB
Total Pagefile: 16380.2 MB
Available Pagefile: 15197.19 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:119.14 GB) (Free:61.02 GB) NTFS
2 Drive d: () (Fixed) (Total:139.73 GB) (Free:41.72 GB) NTFS
3 Drive f: (GRMCPRXFRER_EN_DVD) (CDROM) (Total:3 GB) (Free:0 GB) UDF
4 Drive g: (MULTIBOOT) (Removable) (Total:7.44 GB) (Free:1.6 GB) FAT32 ==>[System with boot components (obtained from reading drive)]
9 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
10 Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 119 GB 0 B
Disk 1 Online 139 GB 1024 KB
Disk 2 Online 7648 MB 0 B
Disk 3 No Media 0 B 0 B
Disk 4 No Media 0 B 0 B
Disk 5 No Media 0 B 0 B
Disk 6 No Media 0 B 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 100 MB 1024 KB
Partition 2 Primary 119 GB 101 MB

======================================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 Y System Rese NTFS Partition 100 MB Healthy

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C NTFS Partition 119 GB Healthy

======================================================================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 139 GB 31 KB

======================================================================================================

Disk: 1
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 D NTFS Partition 139 GB Healthy

======================================================================================================

Partitions of Disk 2:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 7647 MB 1024 KB

======================================================================================================

Disk: 2
Partition 1
Type : 0C
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 G MULTIBOOT FAT32 Removable 7647 MB Healthy

======================================================================================================

==========================================================

Last Boot: 2012-04-28 21:18

======================= End Of Log ==========================

#9 jntkwx

jntkwx

  • Malware Response Team
  • 4,339 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New England, U.S.A.
  • Local time:12:52 PM

Posted 08 May 2012 - 05:47 PM

Tinger,

:step1: Please open notepad and copy/paste the text in the quotebox below into it:

http://www.bleepingcomputer.com/forums/topic452154.html

Suspect::[89]
C:\Windows\SysWow64\srvany.exe
C:\Windows\KMService.exe

DirLook::
C:\Users\JasonB\AppData\Local\{F07A2071-FEDB-436E-AEA8-08EDBF5944EC}
C:\Users\JasonB\AppData\Local\{F8EDDF54-7333-4C1E-AD0F-37BB5EC28798}
C:\Users\JasonB\AppData\Local\{7BD42663-702B-4293-9FD8-95176A3ADA87}
C:\Users\JasonB\AppData\Local\{6B8E8031-0B79-4FBA-9A4E-BF139A9EF07F}
C:\Users\JasonB\AppData\Local\{31606481-F90C-492A-BCA7-ACDA7E7C9353}
C:\Users\JasonB\AppData\Local\{4C006677-0932-408C-84A4-019171CFCD42}
C:\Users\JasonB\AppData\Local\{66A4353E-E451-460F-B1C1-199A347DE173}
C:\Users\JasonB\AppData\Local\{27E85B9B-782E-447F-A6C6-3E9E289B5982}
C:\Users\JasonB\AppData\Local\{464373D9-9BE2-4ED4-9864-F27FC584493D}
C:\Users\JasonB\AppData\Local\{DA98FCC2-0250-4C6D-8A5C-1178C4A452AB}
C:\Users\JasonB\AppData\Local\{EED7F0DE-0012-4610-AF7A-B5E8C2DD4187}
C:\Users\JasonB\AppData\Local\{1CF5FAF8-CB43-45F2-8560-4EF27EA19223}
C:\Users\JasonB\AppData\Local\{18888CDE-7D08-40D5-8B46-88D4EDEF5BA8}
C:\Users\JasonB\AppData\Local\{DCDA4339-D4FB-413C-A612-D11AE758FD3C}
C:\Users\JasonB\AppData\Local\{3C0C0030-9CF5-4923-8B65-617D0C6E74D7}
C:\Users\JasonB\AppData\Local\{42268C6D-545B-4080-B2FB-88D3A9EF863C}
C:\Users\JasonB\AppData\Local\{BE1DF785-22D5-4E2A-B21D-FB2FCE532C81}
C:\Users\JasonB\AppData\Local\{A5C270ED-52C6-4ABE-91D9-27D7ABBC379D}
C:\Users\JasonB\AppData\Local\{E24A9C87-4905-4EA2-8B86-F3EE4AC9F317}
C:\Users\JasonB\AppData\Local\{C4C847CD-A37D-4512-A0A3-F4AF437CF0D7}
C:\Users\JasonB\AppData\Local\{01409BA9-4585-4DAB-9623-6A185CBFC92F}
C:\Users\JasonB\AppData\Local\{8585B855-AE33-45F4-A191-036DCA41FE51}
C:\Users\JasonB\AppData\Local\{E1FFD0B7-A73D-48DA-B981-AF364B12337C}
C:\Users\JasonB\AppData\Local\{D766080D-4B43-43F3-A4B0-E2A6AAA817A1}
C:\Users\JasonB\AppData\Local\{292AF1FA-A40C-4E4B-9702-CC789B287443}
C:\Users\JasonB\AppData\Local\{3307F112-8D3E-49C6-946B-BEE65E20E714}
C:\Users\JasonB\AppData\Local\{B3DE35E7-70E7-4379-BFF3-9B1CC2FFFEC2}
C:\Users\JasonB\AppData\Local\{8C3836AF-5E29-4594-9A77-BADB639C23F9}
C:\Users\JasonB\AppData\Local\{A9D9BC34-74F0-4CDF-93D1-40D22414B771}
C:\Users\JasonB\AppData\Local\{467F644C-3FB1-4C0B-89DB-F0EE58DD948A}
C:\Users\JasonB\AppData\Local\{BCFC49F1-AD86-4D74-AFD0-03E9FE9C2495}
C:\Users\JasonB\AppData\Local\{20E933C8-AB50-4DDE-9B9E-126763A802CE}
C:\Users\JasonB\AppData\Local\{E082A6AE-439B-458B-8538-44A213D7AAA3}
C:\Users\JasonB\AppData\Local\{002F9462-B996-4D73-BC76-1E643974F98F}
C:\Users\JasonB\AppData\Local\{8B8B80CE-3614-4963-A4AA-58855E7C9BDC}
C:\Users\JasonB\AppData\Local\{535429F2-E116-488E-A073-749A7C1F2235}
C:\Users\JasonB\AppData\Local\{B466D993-193A-4641-BD61-AA0DBB63C1F1}
C:\Users\JasonB\AppData\Local\{8162AB6F-3DB1-4988-9EE4-D2A7861BD300}


Save this as CFScript.txt


Posted Image


Refering to the picture above, drag CFScript.txt into ComboFix.exe

If asked to update Combofix, please allow it to do so.

When finished, it shall produce a log for you. Post that log in your next reply.

**Note**

When CF finishes running, the ComboFix log will open along with a message box--do not be alarmed. With the above script, ComboFix will capture files to submit for analysis.
Ensure you are connected to the internet and click OK on the message box.


:step2: Please do the following. You will need a USB drive with no less than 64 MB of space.

  • Insert your USB drive.
  • Press Start > My Computer > right click your USB drive > choose Format > Quick format (NOTE: make sure to move any files on your USB drive you want to keep, as this will erase all files on your USB drive!)
  • Download xPUD 0.9.2 iso, saving the file to your Desktop.
  • Download UNetbootin and save it to your Desktop as well.
  • Double click the unetbootin-windows-latest.exe that you just downloaded.
  • Select the DiskImage option then click the browse button located on the right side of the textbox field.
  • Browse to and select the xpud-0.9.2.iso file you downloaded
  • Verify the correct drive letter is selected for your USB device then click OK
  • It will write files to your USB device and make it bootable
  • Once the files have been written to the device you will be prompted to reboot ~ do NOT reboot and instead just Exit the UNetbootin interface
  • Next, download dumpit and save it to the same flash drive where you installed xPUD.
  • Remove the USB and insert it in the ailing computer
  • Power on the computer and press F12 then choose to boot from the USB
  • After selecting a language and readying the system, a Welcome to xPUD screen will appear
  • Click the File tab
  • Expand mnt by clicking the plus sign to it's left
  • sda1,2...usually corresponds to your HDD
  • sdb1 is likely your USB
  • Double click dumpit.
  • It will create some MBR copies on the USB drive.
  • When it completes press Enter to exit the Terminal window.
  • Remove the USB drive, then locate on it an mbr.zip file, and upload that here as an attachment please.
mbr.zip should be created on your flash drive, please attach it to your next reply.
Regards,
Jason

 

Simple and easy ways to keep your computer safe and secure on the Internet

If I am helping you and have not returned in 48 hours, please feel free to send me a PM with a link to the topic.
My help is free... however, if you wish to show appreciation and support me personally fighting against malware, please consider a donation: btn_donate_SM.gif


#10 Tinger

Tinger
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:11:52 AM

Posted 09 May 2012 - 08:06 AM

I placed the Combofix log below the screenshots.

I formatted the USB and setup the ISO as well as copied over dumpit. I tried to boot via the USB and got the errors below. I tried reformatting again (regular formatting, not quick) and ran through the procedure again but still had the same error. I used a separate laptop to setup the USB but still ran into the issue. I removed all USB devices except my keyboard and the USB drive to see if there was a drive conflict but i got the same error. You can see the errors in the screenshots below.

Posted Image

Posted Image

This is the file output on the USB drive

Directory of F:\

05/09/2012  07:25 AM    <DIR>          boot
05/09/2012  07:25 AM    <DIR>          opt
05/09/2012  07:25 AM                11 ubnpathl.txt
12/07/2009  07:04 AM             2,048 boot.cat
12/07/2009  07:04 AM            14,336 isolinux.bin
12/07/2009  07:03 AM             2,859 isolinux.cfg
05/09/2012  07:25 AM               102 ubnfilel.txt
05/09/2012  07:25 AM            60,928 menu.c32
05/09/2012  07:25 AM             2,961 syslinux.cfg
05/09/2012  07:06 AM            88,711 dumpit.txt
05/09/2012  08:05 AM                 0 list.txt
               9 File(s)        171,956 bytes
               2 Dir(s)   4,045,754,368 bytes free

ComboFix Log
ComboFix 12-05-08.02 - JasonB 05/08/2012  22:29:50.3.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.16382.13120 [GMT -5:00]
Running from: c:\users\JasonB\Desktop\ComboFix.exe
Command switches used :: c:\users\JasonB\Desktop\CFScript.txt
AV: Bitdefender Antivirus *Enabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
FW: Bitdefender Firewall *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
SP: Bitdefender Antispyware *Enabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1335106805.bdinstall.bin
c:\users\JasonB\AppData\Local\assembly\tmp
.
.
(((((((((((((((((((((((((   Files Created from 2012-04-09 to 2012-05-09  )))))))))))))))))))))))))))))))
.
.
2012-05-09 03:35 . 2012-05-09 03:35	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-05-09 03:02 . 2012-04-09 05:47	92160	----a-w-	c:\windows\system32\ff_vfw.dll
2012-05-09 02:57 . 2012-05-09 02:57	--------	d-----w-	c:\programdata\Ant.com
2012-05-09 02:57 . 2012-05-09 02:57	--------	d-----w-	c:\program files (x86)\Ant.com
2012-05-07 17:25 . 2012-05-07 17:27	--------	d-----w-	C:\FRST
2012-05-02 00:13 . 2012-05-02 00:13	--------	d-----w-	c:\programdata\Office Genuine Advantage
2012-05-01 23:53 . 2008-07-10 16:01	467984	----a-w-	c:\windows\SysWow64\d3dx10_39.dll
2012-04-28 06:26 . 2012-05-05 15:26	8744608	----a-w-	c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-04-27 21:40 . 2012-04-27 21:40	--------	d-----w-	C:\AMD
2012-04-27 14:21 . 2012-05-07 15:28	--------	d-----w-	c:\programdata\regid.1986-12.com.adobe
2012-04-27 13:58 . 2012-04-27 13:58	--------	d-----w-	c:\programdata\ALM
2012-04-27 12:37 . 2012-04-27 12:37	--------	d-----w-	c:\program files (x86)\Adobe Media Player
2012-04-26 23:36 . 2012-04-27 12:37	--------	d-----w-	c:\program files (x86)\Common Files\PX Storage Engine
2012-04-26 23:36 . 2012-04-26 23:36	--------	d-----w-	c:\program files (x86)\My Company Name
2012-04-26 23:36 . 2012-04-26 23:36	--------	d-----w-	c:\program files (x86)\Common Files\Sonic Shared
2012-04-26 23:36 . 2009-07-09 08:00	55280	------w-	c:\windows\system32\drivers\PxHlpa64.sys
2012-04-26 23:36 . 2009-06-23 08:00	10224	------w-	c:\windows\system32\drivers\cdralw2k.sys
2012-04-26 23:36 . 2009-06-23 08:00	10224	------w-	c:\windows\system32\drivers\cdr4_xp.sys
2012-04-26 23:28 . 2012-04-27 14:11	--------	d-----w-	c:\program files\Common Files\Adobe
2012-04-26 23:24 . 2012-04-30 14:57	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2012-04-26 19:50 . 2012-04-26 19:50	--------	d-----w-	c:\programdata\ATI
2012-04-26 19:50 . 2012-04-26 19:50	--------	d-----w-	c:\programdata\AMD
2012-04-26 19:50 . 2012-04-26 19:50	--------	d-----w-	c:\program files (x86)\AMD AVT
2012-04-26 19:50 . 2012-04-26 19:50	--------	d-----w-	c:\program files (x86)\AMD APP
2012-04-26 19:50 . 2012-04-26 19:50	--------	d-----w-	c:\program files\Common Files\ATI Technologies
2012-04-26 19:50 . 2012-04-26 19:50	--------	d-----w-	c:\program files (x86)\Common Files\ATI Technologies
2012-04-26 19:49 . 2012-04-27 21:30	--------	d-----w-	c:\program files (x86)\ATI Technologies
2012-04-26 19:49 . 2012-04-26 19:49	--------	d-----w-	c:\program files\ATI
2012-04-26 19:46 . 2012-04-26 19:46	--------	d-----w-	c:\program files\AMD
2012-04-26 11:59 . 2012-04-26 11:59	--------	d-----w-	c:\program files (x86)\Mozilla Maintenance Service
2012-04-23 14:21 . 2012-04-23 14:21	--------	d-----w-	c:\program files (x86)\Winamp
2012-04-23 14:21 . 2012-04-23 14:21	--------	d-----w-	c:\programdata\Plantronics
2012-04-23 14:21 . 2012-04-23 14:21	--------	d-----w-	c:\programdata\Macrovision
2012-04-23 14:21 . 2012-04-23 14:21	--------	d-----w-	c:\programdata\FLEXnet
2012-04-23 14:21 . 2012-04-23 14:21	--------	d-----w-	c:\program files (x86)\Plantronics
2012-04-23 14:08 . 2012-04-23 14:08	--------	d-----w-	c:\programdata\TechSmith
2012-04-23 13:12 . 2009-08-19 00:38	83968	----a-w-	c:\windows\system32\BrNetSti.dll
2012-04-23 13:12 . 2010-01-12 16:02	1560576	----a-w-	c:\windows\system32\BrWi209c.dll
2012-04-23 13:12 . 2006-12-21 16:23	176128	----a-w-	c:\windows\SysWow64\BROSNMP.DLL
2012-04-23 01:58 . 2012-04-23 01:58	--------	d-----r-	c:\program files (x86)\Skype
2012-04-23 01:58 . 2012-04-23 01:58	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2012-04-23 01:58 . 2012-04-23 01:58	--------	d-----w-	c:\programdata\Skype
2012-04-23 01:54 . 2012-04-23 01:54	16896	----a-w-	c:\windows\AsTaskSched.dll
2012-04-23 01:53 . 2007-04-11 20:35	414632	------w-	c:\windows\difxapi.dll
2012-04-23 01:53 . 2012-04-23 01:54	--------	d-----w-	c:\program files (x86)\VIA
2012-04-23 01:48 . 2012-04-23 01:48	--------	d-----w-	c:\program files (x86)\Intel
2012-04-23 01:48 . 2009-08-27 04:04	53248	----a-w-	c:\windows\SysWow64\CSVer.dll
2012-04-23 01:47 . 2012-04-23 01:47	--------	d-----w-	C:\Intel
2012-04-23 01:26 . 2012-04-23 01:25	8192	------w-	c:\windows\SysWow64\srvany.exe
2012-04-23 01:26 . 2012-04-23 01:25	151552	------w-	c:\windows\KMService.exe
2012-04-23 00:40 . 2012-05-05 15:26	70304	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-23 00:40 . 2012-05-05 15:26	419488	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-04-23 00:40 . 2012-04-23 00:40	--------	d-----w-	c:\windows\SysWow64\Macromed
2012-04-23 00:40 . 2012-04-23 00:40	--------	d-----w-	c:\windows\system32\Macromed
2012-04-23 00:18 . 2012-04-23 14:21	--------	d-----w-	c:\program files (x86)\Common Files\InstallShield
2012-04-22 23:48 . 2012-04-22 23:49	--------	d-----w-	c:\programdata\HitmanPro
2012-04-22 23:45 . 2012-04-22 23:45	287304	----a-w-	c:\windows\system32\drivers\TrufosAlt.sys
2012-04-22 23:07 . 2012-05-04 16:33	--------	d-----w-	C:\Temp
2012-04-22 23:00 . 2012-04-22 23:00	--------	d-----w-	c:\program files (x86)\Renesas Electronics
2012-04-22 22:59 . 2012-04-22 22:59	--------	d-----w-	c:\programdata\Downloaded Installations
2012-04-22 22:47 . 2012-04-22 22:47	--------	d-----w-	c:\program files\DIFX
2012-04-22 20:54 . 2006-01-30 13:32	6656	----a-w-	c:\windows\system32\pxc35pm.dll
2012-04-22 20:53 . 2012-04-22 20:53	--------	d-----w-	c:\programdata\Mindjet
2012-04-22 20:33 . 2012-04-22 20:33	--------	d-----w-	c:\program files\Microsoft Synchronization Services
2012-04-22 20:32 . 2012-04-22 20:32	--------	d-----w-	c:\program files\Microsoft Sync Framework
2012-04-22 20:32 . 2012-04-22 20:32	--------	d-----w-	c:\program files\Microsoft SQL Server Compact Edition
2012-04-22 20:30 . 2012-04-22 20:30	--------	d-----w-	c:\program files (x86)\Microsoft Visual Studio 8
2012-04-22 20:28 . 2012-04-22 20:28	--------	d-----w-	c:\program files\Microsoft Analysis Services
2012-04-22 20:28 . 2012-04-22 20:28	--------	d-----w-	c:\program files (x86)\Microsoft Analysis Services
2012-04-22 20:27 . 2012-04-22 22:43	--------	d-----w-	c:\programdata\Microsoft Help
2012-04-22 20:27 . 2012-04-22 20:27	--------	d-----r-	C:\MSOCache
2012-04-22 19:37 . 2012-04-22 19:37	--------	d-----w-	c:\programdata\Raxco
2012-04-22 19:37 . 2012-04-22 19:37	--------	d-----w-	c:\program files\Common Files\Raxco
2012-04-22 18:36 . 2009-12-30 15:21	31800	----a-w-	c:\windows\system32\drivers\revoflt.sys
2012-04-22 17:52 . 2012-04-22 17:52	--------	d-----w-	c:\programdata\Malwarebytes
2012-04-22 17:15 . 2012-04-22 17:15	--------	d-----w-	c:\program files (x86)\Microsoft CAPICOM 2.1.0.2
2012-04-22 15:15 . 2012-04-22 15:18	--------	d-----w-	c:\program files (x86)\Windows Live
2012-04-22 15:14 . 2012-04-22 15:14	--------	d-----w-	c:\windows\PCHEALTH
2012-04-22 15:08 . 2012-04-22 17:22	--------	d-----w-	c:\program files (x86)\Microsoft Silverlight
2012-04-22 15:06 . 2012-04-22 15:06	--------	d-----w-	c:\programdata\BDLogging
2012-04-22 15:03 . 2012-04-22 15:06	--------	d-----w-	c:\programdata\Bitdefender
2012-04-22 15:03 . 2012-04-22 15:03	--------	d-----w-	c:\program files (x86)\Common Files\Windows Live
2012-04-22 15:01 . 2012-04-22 15:01	--------	d-----w-	c:\program files\Bitdefender
2012-04-22 15:00 . 2011-10-27 20:07	329800	----a-w-	c:\windows\system32\drivers\trufos.sys
2012-04-22 15:00 . 2011-08-16 19:59	442088	----a-w-	c:\windows\system32\drivers\bdfsfltr.sys
2012-04-22 14:59 . 2012-04-22 15:00	--------	d-----w-	c:\program files\Common Files\Bitdefender
2012-04-21 23:23 . 2012-04-21 23:23	--------	d-----w-	c:\program files (x86)\Common Files\Wise Installation Wizard
2012-04-21 23:19 . 2012-04-21 23:21	--------	d-----w-	c:\programdata\Brother
2012-04-21 23:15 . 2012-04-21 23:15	--------	d-----r-	C:\Sandbox
2012-04-21 23:06 . 2012-04-21 23:06	--------	d-----w-	c:\program files (x86)\Common Files\Adobe AIR
2012-04-21 22:21 . 2012-04-21 22:21	--------	d-----w-	c:\program files\Onkyo
2012-04-21 22:16 . 2012-04-21 22:22	--------	d-----w-	c:\windows\Panther
2012-04-21 21:40 . 2012-04-22 20:32	--------	d-----w-	c:\program files (x86)\Microsoft.NET
2012-04-21 21:37 . 2012-04-21 21:37	--------	d-----w-	c:\programdata\RoboForm
2012-04-21 21:20 . 2012-01-25 06:38	77312	----a-w-	c:\windows\system32\rdpwsx.dll
2012-04-21 21:20 . 2012-01-25 06:38	149504	----a-w-	c:\windows\system32\rdpcorekmts.dll
2012-04-21 21:19 . 2012-04-21 21:19	0	----a-w-	c:\windows\ativpsrm.bin
2012-04-21 21:07 . 2012-04-21 21:07	--------	d-----w-	c:\windows\SysWow64\Wat
2012-04-21 21:07 . 2012-04-21 21:07	--------	d-----w-	c:\windows\system32\Wat
2012-04-21 21:07 . 2012-04-21 21:07	--------	d-----w-	c:\program files (x86)\Common Files\Java
2012-04-21 21:06 . 2012-04-21 21:06	472808	----a-w-	c:\windows\SysWow64\deployJava1.dll
2012-04-21 21:06 . 2012-04-21 21:06	--------	d-----w-	c:\program files (x86)\Java
2012-04-21 20:46 . 2012-04-21 20:46	--------	d-----w-	c:\programdata\LogiShrd
2012-04-21 20:42 . 2012-04-21 20:42	--------	d-----w-	c:\program files (x86)\Logitech
2012-04-21 20:42 . 2012-04-21 20:42	--------	d-----w-	c:\programdata\Logitech
2012-04-21 20:41 . 2012-04-21 20:41	--------	d-----w-	c:\program files (x86)\Common Files\LWS
2012-04-21 20:41 . 2012-05-09 02:58	--------	d-sh--w-	c:\windows\Installer
2012-04-21 20:35 . 2012-04-21 20:35	--------	d-----w-	c:\windows\system32\SPReview
2012-04-21 20:35 . 2012-04-21 20:35	--------	d-----w-	c:\windows\system32\EventProviders
2012-04-21 20:34 . 2012-03-06 06:53	5559152	----a-w-	c:\windows\system32\ntoskrnl.exe
2012-04-21 20:34 . 2012-03-06 05:59	3968368	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2012-04-21 20:34 . 2012-03-06 05:59	3913072	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2012-04-21 20:32 . 2012-05-04 16:58	--------	d-----w-	c:\program files\Common Files\logishrd
2012-04-21 20:32 . 2012-05-04 16:58	--------	d-----w-	c:\program files (x86)\Common Files\logishrd
2012-04-21 20:29 . 2010-11-20 13:27	457216	----a-w-	c:\windows\system32\msdrm.dll
2012-04-21 20:28 . 2010-11-20 13:27	527872	----a-w-	c:\windows\system32\wmdrmnet.dll
2012-04-21 20:27 . 2010-11-20 13:27	529408	----a-w-	c:\windows\system32\wbemcomn.dll
2012-04-21 20:27 . 2010-11-20 13:27	244736	----a-w-	c:\program files\Windows Portable Devices\sqmapi.dll
2012-04-21 20:27 . 2010-11-20 13:27	244736	----a-w-	c:\windows\system32\sqmapi.dll
2012-04-21 20:25 . 2012-01-04 10:44	509952	----a-w-	c:\windows\system32\ntshrui.dll
2012-04-21 20:25 . 2012-01-04 08:58	442880	----a-w-	c:\windows\SysWow64\ntshrui.dll
2012-04-21 20:25 . 2011-12-30 06:26	515584	----a-w-	c:\windows\system32\timedate.cpl
2012-04-21 20:25 . 2011-12-30 05:27	478720	----a-w-	c:\windows\SysWow64\timedate.cpl
2012-04-21 20:24 . 2011-03-12 12:08	1465344	----a-w-	c:\windows\system32\XpsPrint.dll
2012-04-21 20:24 . 2011-03-12 11:23	870912	----a-w-	c:\windows\SysWow64\XpsPrint.dll
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-22 15:11 . 2011-03-28 23:36	19352	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-04-21 21:12 . 2009-07-14 02:36	175616	----a-w-	c:\windows\system32\msclmd.dll
2012-04-21 21:12 . 2009-07-14 02:36	152576	----a-w-	c:\windows\SysWow64\msclmd.dll
2012-04-06 05:22 . 2012-04-06 05:22	11174400	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2012-04-06 03:34 . 2012-04-06 03:34	187392	----a-w-	c:\windows\system32\clinfo.exe
2012-04-06 03:34 . 2012-04-06 03:34	74752	----a-w-	c:\windows\system32\OpenVideo64.dll
2012-04-06 03:34 . 2012-04-06 03:34	64512	----a-w-	c:\windows\SysWow64\OpenVideo.dll
2012-04-06 03:33 . 2012-04-06 03:33	63488	----a-w-	c:\windows\system32\OVDecode64.dll
2012-04-06 03:33 . 2012-04-06 03:33	56320	----a-w-	c:\windows\SysWow64\OVDecode.dll
2012-04-06 03:33 . 2012-04-06 03:33	16457216	----a-w-	c:\windows\system32\amdocl64.dll
2012-04-06 03:32 . 2012-04-06 03:32	13007872	----a-w-	c:\windows\SysWow64\amdocl.dll
2012-04-06 03:32 . 2012-04-06 03:32	54784	----a-w-	c:\windows\system32\OpenCL.dll
2012-04-06 03:32 . 2012-04-06 03:32	50176	----a-w-	c:\windows\SysWow64\OpenCL.dll
2012-04-06 02:22 . 2012-04-06 02:22	159744	----a-w-	c:\windows\system32\atiapfxx.exe
2012-04-06 02:21 . 2011-04-20 07:09	909312	----a-w-	c:\windows\SysWow64\aticfx32.dll
2012-04-06 02:20 . 2011-04-20 07:07	1067520	----a-w-	c:\windows\system32\aticfx64.dll
2012-04-06 02:16 . 2012-04-06 02:16	442368	----a-w-	c:\windows\system32\ATIDEMGX.dll
2012-04-06 02:16 . 2012-04-06 02:16	503808	----a-w-	c:\windows\system32\atieclxx.exe
2012-04-06 02:16 . 2012-04-06 02:16	236544	----a-w-	c:\windows\system32\atiesrxx.exe
2012-04-06 02:14 . 2012-04-06 02:14	120320	----a-w-	c:\windows\system32\atitmm64.dll
2012-04-06 02:14 . 2012-04-06 02:14	21504	----a-w-	c:\windows\system32\atimuixx.dll
2012-04-06 02:14 . 2012-04-06 02:14	59392	----a-w-	c:\windows\system32\atiedu64.dll
2012-04-06 02:14 . 2012-04-06 02:14	43520	----a-w-	c:\windows\SysWow64\ati2edxx.dll
2012-04-06 02:13 . 2011-04-20 06:59	6800896	----a-w-	c:\windows\SysWow64\atidxx32.dll
2012-04-06 02:10 . 2012-04-06 02:10	26181632	----a-w-	c:\windows\system32\atio6axx.dll
2012-04-06 02:00 . 2011-04-20 06:27	64000	----a-w-	c:\windows\system32\coinst.dll
2012-04-06 01:54 . 2009-07-13 21:59	7479296	----a-w-	c:\windows\system32\atidxx64.dll
2012-04-06 01:50 . 2012-04-06 01:50	19753984	----a-w-	c:\windows\SysWow64\atioglxx.dll
2012-04-06 01:35 . 2012-04-06 01:35	1120768	----a-w-	c:\windows\system32\atiumd6v.dll
2012-04-06 01:34 . 2012-04-06 01:34	1831424	----a-w-	c:\windows\SysWow64\atiumdmv.dll
2012-04-06 01:34 . 2012-04-06 01:34	4731904	----a-w-	c:\windows\system32\atiumd6a.dll
2012-04-06 01:34 . 2009-07-13 21:59	6203392	----a-w-	c:\windows\SysWow64\atiumdag.dll
2012-04-06 01:30 . 2012-04-06 01:30	51200	----a-w-	c:\windows\system32\aticalrt64.dll
2012-04-06 01:30 . 2012-04-06 01:30	46080	----a-w-	c:\windows\SysWow64\aticalrt.dll
2012-04-06 01:30 . 2012-04-06 01:30	44544	----a-w-	c:\windows\system32\aticalcl64.dll
2012-04-06 01:30 . 2012-04-06 01:30	44032	----a-w-	c:\windows\SysWow64\aticalcl.dll
2012-04-06 01:29 . 2012-04-06 01:29	16090624	----a-w-	c:\windows\system32\aticaldd64.dll
2012-04-06 01:25 . 2012-04-06 01:25	13764096	----a-w-	c:\windows\SysWow64\aticaldd.dll
2012-04-06 01:23 . 2012-04-06 01:23	7431680	----a-w-	c:\windows\system32\atiumd64.dll
2012-04-06 01:22 . 2009-07-13 21:59	4795904	----a-w-	c:\windows\SysWow64\atiumdva.dll
2012-04-06 01:11 . 2011-04-20 06:23	514560	----a-w-	c:\windows\system32\atiadlxx.dll
2012-04-06 01:11 . 2012-04-06 01:11	360448	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2012-04-06 01:11 . 2012-04-06 01:11	17408	----a-w-	c:\windows\system32\atig6pxx.dll
2012-04-06 01:11 . 2012-04-06 01:11	14848	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11	14848	----a-w-	c:\windows\system32\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11	41984	----a-w-	c:\windows\system32\atig6txx.dll
2012-04-06 01:10 . 2012-04-06 01:10	33280	----a-w-	c:\windows\SysWow64\atigktxx.dll
2012-04-06 01:10 . 2012-04-06 01:10	343040	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2012-04-06 01:09 . 2011-04-20 06:21	54784	----a-w-	c:\windows\system32\atiuxp64.dll
2012-04-06 01:09 . 2011-04-20 06:21	41984	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2012-04-06 01:09 . 2011-04-20 06:21	44544	----a-w-	c:\windows\system32\atiu9p64.dll
2012-04-06 01:09 . 2011-04-20 06:21	32256	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2012-04-06 01:09 . 2012-04-06 01:09	53248	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2012-04-06 01:06 . 2012-04-06 01:06	54784	----a-w-	c:\windows\system32\atimpc64.dll
2012-04-06 01:06 . 2012-04-06 01:06	54784	----a-w-	c:\windows\system32\amdpcom64.dll
2012-04-06 01:06 . 2012-04-06 01:06	53760	----a-w-	c:\windows\SysWow64\atimpc32.dll
2012-04-06 01:06 . 2012-04-06 01:06	53760	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2012-03-21 01:22 . 2012-03-21 01:22	691896	----a-w-	c:\windows\system32\drivers\avc3.sys
2012-03-09 19:07 . 2012-03-09 19:07	29184	----a-w-	c:\windows\system32\kdbsdk64.dll
2012-03-09 19:06 . 2012-03-09 19:06	24576	----a-w-	c:\windows\SysWow64\kdbsdk32.dll
2012-03-08 23:50 . 2012-03-08 23:50	49016	----a-w-	c:\windows\SysWow64\sirenacm.dll
2012-02-29 08:19 . 2012-02-29 08:19	268552	----a-w-	c:\windows\system32\PDBoot.exe
2012-02-28 16:25 . 2012-02-28 16:25	81424	----a-w-	c:\windows\system32\drivers\PDFsFilter.sys
2012-02-23 12:32 . 2012-02-23 12:32	95760	----a-w-	c:\windows\system32\drivers\AtihdW76.sys
2012-02-17 21:45 . 2012-02-17 21:45	545064	----a-w-	c:\windows\system32\drivers\avckf.sys
.
.
((((((((((((((((((((((((((((((((((((((((((((   Look   )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of c:\users\JasonB\AppData\Local\{002F9462-B996-4D73-BC76-1E643974F98F} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{01409BA9-4585-4DAB-9623-6A185CBFC92F} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{18888CDE-7D08-40D5-8B46-88D4EDEF5BA8} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{1CF5FAF8-CB43-45F2-8560-4EF27EA19223} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{20E933C8-AB50-4DDE-9B9E-126763A802CE} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{27E85B9B-782E-447F-A6C6-3E9E289B5982} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{292AF1FA-A40C-4E4B-9702-CC789B287443} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{31606481-F90C-492A-BCA7-ACDA7E7C9353} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{3307F112-8D3E-49C6-946B-BEE65E20E714} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{3C0C0030-9CF5-4923-8B65-617D0C6E74D7} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{42268C6D-545B-4080-B2FB-88D3A9EF863C} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{464373D9-9BE2-4ED4-9864-F27FC584493D} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{467F644C-3FB1-4C0B-89DB-F0EE58DD948A} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{4C006677-0932-408C-84A4-019171CFCD42} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{535429F2-E116-488E-A073-749A7C1F2235} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{66A4353E-E451-460F-B1C1-199A347DE173} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{6B8E8031-0B79-4FBA-9A4E-BF139A9EF07F} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{7BD42663-702B-4293-9FD8-95176A3ADA87} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{8162AB6F-3DB1-4988-9EE4-D2A7861BD300} ----
.
2012-04-22 20:20 . 2012-04-22 20:51	100154880	----a-w-	c:\users\JasonB\AppData\Local\{8162AB6F-3DB1-4988-9EE4-D2A7861BD300}\Mindjet MindManager 2012.msi
.
---- Directory of c:\users\JasonB\AppData\Local\{8585B855-AE33-45F4-A191-036DCA41FE51} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{8B8B80CE-3614-4963-A4AA-58855E7C9BDC} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{8C3836AF-5E29-4594-9A77-BADB639C23F9} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{A5C270ED-52C6-4ABE-91D9-27D7ABBC379D} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{A9D9BC34-74F0-4CDF-93D1-40D22414B771} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{B3DE35E7-70E7-4379-BFF3-9B1CC2FFFEC2} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{B466D993-193A-4641-BD61-AA0DBB63C1F1} ----
.
2012-04-22 20:36 . 2012-04-22 20:36	100277760	----a-w-	c:\users\JasonB\AppData\Local\{B466D993-193A-4641-BD61-AA0DBB63C1F1}\Mindjet MindManager 9.msi
.
---- Directory of c:\users\JasonB\AppData\Local\{BCFC49F1-AD86-4D74-AFD0-03E9FE9C2495} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{BE1DF785-22D5-4E2A-B21D-FB2FCE532C81} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{C4C847CD-A37D-4512-A0A3-F4AF437CF0D7} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{D766080D-4B43-43F3-A4B0-E2A6AAA817A1} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{DA98FCC2-0250-4C6D-8A5C-1178C4A452AB} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{DCDA4339-D4FB-413C-A612-D11AE758FD3C} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{E082A6AE-439B-458B-8538-44A213D7AAA3} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{E1FFD0B7-A73D-48DA-B981-AF364B12337C} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{E24A9C87-4905-4EA2-8B86-F3EE4AC9F317} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{EED7F0DE-0012-4610-AF7A-B5E8C2DD4187} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{F07A2071-FEDB-436E-AEA8-08EDBF5944EC} ----
.
.
---- Directory of c:\users\JasonB\AppData\Local\{F8EDDF54-7333-4C1E-AD0F-37BB5EC28798} ----
.
.
.
(((((((((((((((((((((((((((((   SnapShot@2012-05-04_16.02.01   )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-14 04:54 . 2012-05-09 02:57	16384              c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-04-28 06:26	16384              c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-04-28 06:26	32768              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-05-09 02:57	32768              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-04-28 06:26	16384              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-05-09 02:57	16384              c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 00:21 . 2009-07-14 01:41	88064              c:\windows\system32\WpdMtpUS.dll
+ 2012-04-21 20:16 . 2012-05-07 14:43	36038              c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-05-07 14:43	31500              c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
- 2009-07-14 05:30 . 2012-04-30 14:57	86016              c:\windows\system32\DriverStore\infpub.dat
+ 2009-07-14 05:30 . 2012-05-08 21:43	86016              c:\windows\system32\DriverStore\infpub.dat
+ 2012-04-21 20:29 . 2010-11-20 10:43	41984              c:\windows\system32\drivers\winusb.sys
+ 2012-04-21 21:21 . 2012-05-09 03:02	16384              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2012-04-21 21:21 . 2012-05-01 15:48	16384              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2012-04-21 21:21 . 2012-05-09 03:02	32768              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2012-04-21 21:21 . 2012-05-01 15:48	32768              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-05-09 03:02	16384              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2012-05-01 15:48	16384              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-04-21 20:16 . 2012-05-07 14:43	3748              c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2761845265-332174530-1650960061-1132_UserData.bin
+ 2012-05-09 03:37 . 2012-05-09 03:37	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-05-04 16:01 . 2012-05-04 16:01	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-05-09 03:37 . 2012-05-09 03:37	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-05-04 16:01 . 2012-05-04 16:01	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-05-05 15:26 . 2012-05-05 15:26	351904              c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_235_Plugin.exe
+ 2012-05-05 14:26 . 2012-05-05 14:26	351904              c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_235_ActiveX.exe
+ 2012-05-05 14:26 . 2012-05-05 14:26	424096              c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_235_ActiveX.dll
+ 2012-04-23 00:40 . 2012-05-05 15:26	257696              c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
+ 2009-07-14 00:21 . 2009-07-14 01:41	297984              c:\windows\system32\WpdMtp.dll
+ 2009-07-14 02:36 . 2012-05-07 14:42	660068              c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-05-04 15:53	660068              c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-05-07 14:42	120996              c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-05-04 15:53	120996              c:\windows\system32\perfc009.dat
+ 2012-05-05 15:26 . 2012-05-05 15:26	630944              c:\windows\system32\Macromed\Flash\FlashUtil64_11_2_202_235_Plugin.exe
+ 2012-05-05 14:26 . 2012-05-05 14:26	631456              c:\windows\system32\Macromed\Flash\FlashUtil64_11_2_202_235_ActiveX.exe
+ 2012-05-05 14:26 . 2012-05-05 14:26	461984              c:\windows\system32\Macromed\Flash\FlashUtil64_11_2_202_235_ActiveX.dll
+ 2009-07-14 05:30 . 2012-05-08 21:43	143360              c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2012-04-30 14:57	143360              c:\windows\system32\DriverStore\infstrng.dat
- 2012-04-26 19:57 . 2012-05-04 15:48	749016              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2012-04-26 19:57 . 2012-05-09 03:35	749016              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-14 05:01 . 2012-05-09 03:35	476684              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-05-04 15:48	476684              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2012-05-05 15:26 . 2012-05-05 15:26	8797856              c:\windows\SysWOW64&