Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firefox crashes upon opening


  • Please log in to reply
21 replies to this topic

#1 12thman

12thman

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 27 January 2013 - 10:39 PM

When I click to open Firefox all I get is a mozilla crash reporter and it says firefox had a problem and crashed. I have uninstalled and installed, also ran malewarebytes, superantispware, tddskilller and still can't get it. I did notice some google searches being redirected prior to crash and don't know if it's related. What do I do?

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 PM

Posted 28 January 2013 - 01:02 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 28 January 2013 - 01:32 AM

22:25:32.0250 0788 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:25:33.0343 0788 ============================================================
22:25:33.0343 0788 Current date / time: 2013/01/27 22:25:33.0343
22:25:33.0343 0788 SystemInfo:
22:25:33.0343 0788
22:25:33.0343 0788 OS Version: 5.1.2600 ServicePack: 3.0
22:25:33.0343 0788 Product type: Workstation
22:25:33.0343 0788 ComputerName: HOME2
22:25:33.0359 0788 UserName: HP_Administrator
22:25:33.0359 0788 Windows directory: C:\WINDOWS
22:25:33.0359 0788 System windows directory: C:\WINDOWS
22:25:33.0359 0788 Processor architecture: Intel x86
22:25:33.0359 0788 Number of processors: 2
22:25:33.0359 0788 Page size: 0x1000
22:25:33.0359 0788 Boot type: Normal boot
22:25:33.0359 0788 ============================================================
22:25:34.0062 0788 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:25:34.0187 0788 ============================================================
22:25:34.0187 0788 \Device\Harddisk0\DR0:
22:25:34.0187 0788 MBR partitions:
22:25:34.0187 0788 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x23F5F2B4
22:25:34.0187 0788 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x23F5F2F3, BlocksNum 0x14CE3CE
22:25:34.0187 0788 ============================================================
22:25:34.0218 0788 C: <-> \Device\Harddisk0\DR0\Partition1
22:25:34.0250 0788 D: <-> \Device\Harddisk0\DR0\Partition2
22:25:34.0250 0788 ============================================================
22:25:34.0250 0788 Initialize success
22:25:34.0250 0788 ============================================================
22:26:29.0031 4928 ============================================================
22:26:29.0031 4928 Scan started
22:26:29.0031 4928 Mode: Manual; TDLFS;
22:26:29.0031 4928 ============================================================
22:26:29.0312 4928 ================ Scan system memory ========================
22:26:29.0312 4928 System memory - ok
22:26:29.0312 4928 ================ Scan services =============================
22:26:29.0390 4928 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
22:26:29.0390 4928 !SASCORE - ok
22:26:29.0546 4928 Abiosdsk - ok
22:26:29.0562 4928 abp480n5 - ok
22:26:29.0609 4928 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:26:29.0609 4928 ACPI - ok
22:26:29.0656 4928 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
22:26:29.0656 4928 ACPIEC - ok
22:26:29.0718 4928 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:26:29.0718 4928 AdobeFlashPlayerUpdateSvc - ok
22:26:29.0734 4928 adpu160m - ok
22:26:29.0781 4928 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
22:26:29.0796 4928 aec - ok
22:26:29.0828 4928 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
22:26:29.0843 4928 AFD - ok
22:26:29.0906 4928 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
22:26:29.0906 4928 AFS2K - ok
22:26:29.0906 4928 Aha154x - ok
22:26:29.0921 4928 aic78u2 - ok
22:26:29.0921 4928 aic78xx - ok
22:26:29.0968 4928 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
22:26:29.0968 4928 Alerter - ok
22:26:30.0015 4928 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
22:26:30.0015 4928 ALG - ok
22:26:30.0015 4928 AliIde - ok
22:26:30.0015 4928 amsint - ok
22:26:30.0093 4928 [ D89562A6AE8E07A457452E5B5560EB43 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
22:26:30.0093 4928 AntiVirSchedulerService - ok
22:26:30.0125 4928 [ E953EB70B3C4F0BA108C35D45420B86B ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
22:26:30.0140 4928 AntiVirService - ok
22:26:30.0203 4928 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:26:30.0218 4928 Apple Mobile Device - ok
22:26:30.0250 4928 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:26:30.0265 4928 AppMgmt - ok
22:26:30.0296 4928 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:26:30.0296 4928 Arp1394 - ok
22:26:30.0312 4928 asc - ok
22:26:30.0312 4928 asc3350p - ok
22:26:30.0328 4928 asc3550 - ok
22:26:30.0468 4928 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:26:30.0546 4928 aspnet_state - ok
22:26:30.0578 4928 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:26:30.0578 4928 AsyncMac - ok
22:26:30.0625 4928 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
22:26:30.0625 4928 atapi - ok
22:26:30.0640 4928 Atdisk - ok
22:26:30.0656 4928 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:26:30.0671 4928 Atmarpc - ok
22:26:30.0703 4928 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
22:26:30.0718 4928 AudioSrv - ok
22:26:30.0734 4928 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
22:26:30.0750 4928 audstub - ok
22:26:30.0765 4928 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
22:26:30.0765 4928 avgntflt - ok
22:26:30.0812 4928 [ 0189056DDBF23C7DEF09D2B5999C5405 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
22:26:30.0812 4928 avipbb - ok
22:26:30.0859 4928 [ FFB78D74E1EA5F811341A6E7AC547A46 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
22:26:30.0859 4928 avkmgr - ok
22:26:30.0906 4928 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:26:30.0906 4928 Beep - ok
22:26:30.0953 4928 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
22:26:31.0015 4928 BITS - ok
22:26:31.0062 4928 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:26:31.0078 4928 Bonjour Service - ok
22:26:31.0125 4928 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
22:26:31.0125 4928 Browser - ok
22:26:31.0140 4928 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
22:26:31.0140 4928 cbidf2k - ok
22:26:31.0218 4928 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
22:26:31.0218 4928 CCALib8 - ok
22:26:31.0250 4928 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:26:31.0250 4928 CCDECODE - ok
22:26:31.0265 4928 cd20xrnt - ok
22:26:31.0281 4928 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
22:26:31.0296 4928 Cdaudio - ok
22:26:31.0328 4928 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
22:26:31.0343 4928 Cdfs - ok
22:26:31.0390 4928 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:26:31.0390 4928 Cdrom - ok
22:26:31.0406 4928 Changer - ok
22:26:31.0437 4928 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
22:26:31.0437 4928 CiSvc - ok
22:26:31.0468 4928 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
22:26:31.0484 4928 ClipSrv - ok
22:26:31.0515 4928 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:26:31.0625 4928 clr_optimization_v2.0.50727_32 - ok
22:26:31.0640 4928 CLTNetCnService - ok
22:26:31.0656 4928 CmdIde - ok
22:26:31.0656 4928 COMSysApp - ok
22:26:31.0671 4928 Cpqarray - ok
22:26:31.0703 4928 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
22:26:31.0718 4928 CryptSvc - ok
22:26:31.0718 4928 dac2w2k - ok
22:26:31.0734 4928 dac960nt - ok
22:26:31.0781 4928 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:26:31.0796 4928 DcomLaunch - ok
22:26:31.0843 4928 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
22:26:31.0843 4928 Dhcp - ok
22:26:31.0875 4928 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
22:26:31.0890 4928 Disk - ok
22:26:31.0890 4928 dmadmin - ok
22:26:31.0921 4928 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
22:26:31.0968 4928 dmboot - ok
22:26:32.0000 4928 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
22:26:32.0000 4928 dmio - ok
22:26:32.0031 4928 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
22:26:32.0031 4928 dmload - ok
22:26:32.0078 4928 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
22:26:32.0078 4928 dmserver - ok
22:26:32.0125 4928 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
22:26:32.0125 4928 DMusic - ok
22:26:32.0171 4928 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:26:32.0171 4928 Dnscache - ok
22:26:32.0203 4928 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
22:26:32.0218 4928 Dot3svc - ok
22:26:32.0265 4928 [ 02E5D9216994B7C77BBFE01ADCB783A4 ] Dot4 HPH11 C:\WINDOWS\system32\DRIVERS\hphid411.sys
22:26:32.0265 4928 Dot4 HPH11 - ok
22:26:32.0281 4928 [ 0FCC3ED5A97260EEC98CEAE8167E940A ] Dot4Print HPH11 C:\WINDOWS\system32\DRIVERS\hphipr11.sys
22:26:32.0281 4928 Dot4Print HPH11 - ok
22:26:32.0296 4928 [ 93C5582EB9A04CF25B29CA0F1FE57A87 ] Dot4Storage HPH11 C:\WINDOWS\system32\Drivers\hphs2k11.sys
22:26:32.0296 4928 Dot4Storage HPH11 - ok
22:26:32.0312 4928 [ 08B9BF9C88867D3B70473657AE4307B3 ] Dot4Usb HPH11 C:\WINDOWS\system32\drivers\hphius11.sys
22:26:32.0312 4928 Dot4Usb HPH11 - ok
22:26:32.0328 4928 dpti2o - ok
22:26:32.0343 4928 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
22:26:32.0343 4928 drmkaud - ok
22:26:32.0359 4928 [ 95974E66D3DE4951D29E28E8BC0B644C ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:26:32.0359 4928 E100B - ok
22:26:32.0390 4928 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
22:26:32.0406 4928 EapHost - ok
22:26:32.0453 4928 [ 96BCD90ED9235A21629EFFDE5E941FB1 ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:26:32.0484 4928 eeCtrl - ok
22:26:32.0562 4928 [ 8301243BDE5B6CD316D79C0191D50D9A ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
22:26:32.0578 4928 ehRecvr - ok
22:26:32.0593 4928 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
22:26:32.0609 4928 ehSched - ok
22:26:32.0640 4928 [ 1976FEDF6D7F87135C9B7F5CB4C8C868 ] ELacpi C:\WINDOWS\system32\DRIVERS\ELacpi.sys
22:26:32.0640 4928 ELacpi - ok
22:26:32.0656 4928 [ AE65C02444907966378454138B9F99F0 ] ELhid C:\WINDOWS\system32\DRIVERS\ELhid.sys
22:26:32.0656 4928 ELhid - ok
22:26:32.0671 4928 [ E485C3BA1DADDEEF3E14FEA1E8FDA6E1 ] ELkbd C:\WINDOWS\system32\DRIVERS\ELkbd.sys
22:26:32.0671 4928 ELkbd - ok
22:26:32.0671 4928 [ 0D87CB825ED6CB2EBCC147A10A42F1D6 ] ELmon C:\WINDOWS\system32\DRIVERS\ELmon.sys
22:26:32.0687 4928 ELmon - ok
22:26:32.0687 4928 [ A4ADD3847B67BACAB6FC851A2B60FDB3 ] ELmou C:\WINDOWS\system32\DRIVERS\ELmou.sys
22:26:32.0687 4928 ELmou - ok
22:26:32.0750 4928 [ D1DE16926C682DCD3D99AE5500CA5522 ] ELService C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
22:26:32.0750 4928 ELService - ok
22:26:32.0765 4928 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
22:26:32.0781 4928 ERSvc - ok
22:26:32.0796 4928 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
22:26:32.0812 4928 Eventlog - ok
22:26:32.0859 4928 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
22:26:32.0859 4928 EventSystem - ok
22:26:32.0906 4928 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
22:26:32.0921 4928 Fastfat - ok
22:26:32.0953 4928 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:26:32.0968 4928 FastUserSwitchingCompatibility - ok
22:26:33.0015 4928 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
22:26:33.0046 4928 Fax - ok
22:26:33.0078 4928 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
22:26:33.0093 4928 Fdc - ok
22:26:33.0125 4928 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
22:26:33.0140 4928 Fips - ok
22:26:33.0140 4928 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
22:26:33.0140 4928 Flpydisk - ok
22:26:33.0171 4928 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
22:26:33.0187 4928 FltMgr - ok
22:26:33.0234 4928 [ 8EFA9BFC940D9EB9348D9DAFB839FE25 ] FlyUsb C:\WINDOWS\system32\DRIVERS\FlyUsb.sys
22:26:33.0234 4928 FlyUsb - ok
22:26:33.0296 4928 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:26:33.0312 4928 FontCache3.0.0.0 - ok
22:26:33.0328 4928 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:26:33.0328 4928 Fs_Rec - ok
22:26:33.0359 4928 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:26:33.0375 4928 Ftdisk - ok
22:26:33.0390 4928 ftsata2 - ok
22:26:33.0421 4928 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:26:33.0437 4928 GEARAspiWDM - ok
22:26:33.0484 4928 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:26:33.0484 4928 Gpc - ok
22:26:33.0578 4928 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:26:33.0578 4928 gupdate - ok
22:26:33.0593 4928 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:26:33.0593 4928 gupdatem - ok
22:26:33.0640 4928 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:26:33.0656 4928 gusvc - ok
22:26:33.0718 4928 [ C25C70FD4D49391091D9EB8C747F19E6 ] hamachi_oem C:\WINDOWS\system32\DRIVERS\gan_adapter.sys
22:26:33.0718 4928 hamachi_oem - ok
22:26:33.0750 4928 [ 41BBAD646A8C842BC30EF6745A4F6FF3 ] hcwPP2 C:\WINDOWS\system32\DRIVERS\hcwPP2.sys
22:26:33.0750 4928 hcwPP2 - ok
22:26:33.0765 4928 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:26:33.0765 4928 HDAudBus - ok
22:26:33.0859 4928 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:26:33.0875 4928 helpsvc - ok
22:26:33.0890 4928 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
22:26:33.0890 4928 HidServ - ok
22:26:33.0906 4928 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:26:33.0921 4928 HidUsb - ok
22:26:33.0953 4928 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
22:26:33.0968 4928 hkmsvc - ok
22:26:33.0984 4928 hpn - ok
22:26:34.0015 4928 [ 1F5C64B0C6B2E2F48735A77AE714CCB8 ] HSXHWBS2 C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
22:26:34.0031 4928 HSXHWBS2 - ok
22:26:34.0046 4928 [ A7F8C9228898A1E871D2AE7082F50AC3 ] HSX_DP C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
22:26:34.0093 4928 HSX_DP - ok
22:26:34.0140 4928 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
22:26:34.0140 4928 HTTP - ok
22:26:34.0187 4928 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
22:26:34.0203 4928 HTTPFilter - ok
22:26:34.0203 4928 i2omgmt - ok
22:26:34.0218 4928 i2omp - ok
22:26:34.0250 4928 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:26:34.0265 4928 i8042prt - ok
22:26:34.0328 4928 [ 9A65E42664D1534B68512CAAD0EFE963 ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
22:26:34.0328 4928 iaStor - ok
22:26:34.0390 4928 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
22:26:34.0390 4928 IDriverT - ok
22:26:34.0468 4928 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:26:34.0562 4928 idsvc - ok
22:26:34.0593 4928 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
22:26:34.0609 4928 Imapi - ok
22:26:34.0625 4928 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
22:26:34.0625 4928 ImapiService - ok
22:26:34.0640 4928 ini910u - ok
22:26:34.0750 4928 [ 90E1B42E49D9E91E5ACCAAAAEFA10CE8 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
22:26:34.0890 4928 IntcAzAudAddService - ok
22:26:34.0890 4928 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
22:26:34.0906 4928 IntelIde - ok
22:26:34.0937 4928 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:26:34.0953 4928 intelppm - ok
22:26:34.0984 4928 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
22:26:34.0984 4928 Ip6Fw - ok
22:26:35.0015 4928 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:26:35.0015 4928 IpFilterDriver - ok
22:26:35.0062 4928 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:26:35.0062 4928 IpInIp - ok
22:26:35.0093 4928 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:26:35.0093 4928 IpNat - ok
22:26:35.0171 4928 [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:26:35.0171 4928 iPod Service - ok
22:26:35.0218 4928 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:26:35.0234 4928 IPSec - ok
22:26:35.0250 4928 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
22:26:35.0250 4928 IRENUM - ok
22:26:35.0281 4928 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:26:35.0296 4928 isapnp - ok
22:26:35.0390 4928 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
22:26:35.0406 4928 JavaQuickStarterService - ok
22:26:35.0421 4928 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:26:35.0437 4928 Kbdclass - ok
22:26:35.0468 4928 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:26:35.0484 4928 kbdhid - ok
22:26:35.0531 4928 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
22:26:35.0531 4928 kmixer - ok
22:26:35.0546 4928 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
22:26:35.0546 4928 KSecDD - ok
22:26:35.0578 4928 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
22:26:35.0578 4928 lanmanserver - ok
22:26:35.0625 4928 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:26:35.0625 4928 lanmanworkstation - ok
22:26:35.0625 4928 lbrtfdc - ok
22:26:35.0812 4928 [ 3C879D04BB6466E2853C3155B635CC45 ] LeapFrog Connect Device Service C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
22:26:36.0140 4928 LeapFrog Connect Device Service - ok
22:26:36.0187 4928 [ 5CFFDA921FE0C9E9EBDE3150D3C81594 ] Leapfrog-USBLAN C:\WINDOWS\system32\DRIVERS\btblan.sys
22:26:36.0203 4928 Leapfrog-USBLAN - ok
22:26:36.0234 4928 [ 9696786759C4B43FA5C894747E893EA2 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
22:26:36.0250 4928 LightScribeService - ok
22:26:36.0250 4928 LiveUpdate Notice Ex - ok
22:26:36.0296 4928 [ 2D1389E05A807D956829F44BD4B60389 ] LiveUpdate Notice Service C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
22:26:36.0328 4928 LiveUpdate Notice Service - ok
22:26:36.0390 4928 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
22:26:36.0390 4928 LmHosts - ok
22:26:36.0437 4928 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
22:26:36.0437 4928 MBAMProtector - ok
22:26:36.0500 4928 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:26:36.0531 4928 MBAMScheduler - ok
22:26:36.0546 4928 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
22:26:36.0609 4928 MBAMService - ok
22:26:36.0640 4928 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
22:26:36.0656 4928 McrdSvc - ok
22:26:36.0703 4928 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
22:26:36.0718 4928 MDM - ok
22:26:36.0734 4928 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
22:26:36.0750 4928 mdmxsdk - ok
22:26:36.0765 4928 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
22:26:36.0781 4928 Messenger - ok
22:26:36.0812 4928 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
22:26:36.0812 4928 MHN - ok
22:26:36.0828 4928 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
22:26:36.0843 4928 MHNDRV - ok
22:26:36.0859 4928 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
22:26:36.0859 4928 mnmdd - ok
22:26:36.0921 4928 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
22:26:36.0921 4928 mnmsrvc - ok
22:26:36.0953 4928 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
22:26:36.0968 4928 Modem - ok
22:26:36.0968 4928 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:26:36.0968 4928 Mouclass - ok
22:26:37.0015 4928 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:26:37.0015 4928 mouhid - ok
22:26:37.0031 4928 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
22:26:37.0031 4928 MountMgr - ok
22:26:37.0078 4928 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:26:37.0093 4928 MozillaMaintenance - ok
22:26:37.0093 4928 mraid35x - ok
22:26:37.0125 4928 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:26:37.0140 4928 MRxDAV - ok
22:26:37.0187 4928 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:26:37.0203 4928 MRxSmb - ok
22:26:37.0218 4928 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
22:26:37.0218 4928 Msfs - ok
22:26:37.0234 4928 MSIServer - ok
22:26:37.0265 4928 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:26:37.0265 4928 MSKSSRV - ok
22:26:37.0281 4928 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:26:37.0281 4928 MSPCLOCK - ok
22:26:37.0312 4928 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
22:26:37.0312 4928 MSPQM - ok
22:26:37.0328 4928 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:26:37.0328 4928 mssmbios - ok
22:26:37.0328 4928 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
22:26:37.0343 4928 MSTEE - ok
22:26:37.0375 4928 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
22:26:37.0375 4928 Mup - ok
22:26:37.0406 4928 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:26:37.0406 4928 NABTSFEC - ok
22:26:37.0453 4928 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
22:26:37.0484 4928 napagent - ok
22:26:37.0515 4928 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
22:26:37.0531 4928 NDIS - ok
22:26:37.0562 4928 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:26:37.0562 4928 NdisIP - ok
22:26:37.0593 4928 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:26:37.0593 4928 NdisTapi - ok
22:26:37.0609 4928 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:26:37.0609 4928 Ndisuio - ok
22:26:37.0625 4928 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:26:37.0625 4928 NdisWan - ok
22:26:37.0656 4928 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
22:26:37.0656 4928 NDProxy - ok
22:26:37.0656 4928 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
22:26:37.0671 4928 NetBIOS - ok
22:26:37.0703 4928 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
22:26:37.0718 4928 NetBT - ok
22:26:37.0750 4928 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
22:26:37.0765 4928 NetDDE - ok
22:26:37.0765 4928 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
22:26:37.0781 4928 NetDDEdsdm - ok
22:26:37.0812 4928 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
22:26:37.0812 4928 Netlogon - ok
22:26:37.0843 4928 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
22:26:37.0859 4928 Netman - ok
22:26:37.0890 4928 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:26:37.0906 4928 NetTcpPortSharing - ok
22:26:37.0937 4928 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:26:37.0937 4928 NIC1394 - ok
22:26:37.0953 4928 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
22:26:37.0953 4928 Nla - ok
22:26:37.0984 4928 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
22:26:37.0984 4928 Npfs - ok
22:26:38.0015 4928 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
22:26:38.0046 4928 Ntfs - ok
22:26:38.0046 4928 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
22:26:38.0046 4928 NtLmSsp - ok
22:26:38.0093 4928 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
22:26:38.0140 4928 NtmsSvc - ok
22:26:38.0171 4928 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
22:26:38.0171 4928 Null - ok
22:26:38.0312 4928 [ EB2858F920B8135B807B5CCAA3ED73DC ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:26:38.0468 4928 nv - ok
22:26:38.0500 4928 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
22:26:38.0500 4928 NVSvc - ok
22:26:38.0531 4928 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:26:38.0531 4928 NwlnkFlt - ok
22:26:38.0546 4928 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:26:38.0562 4928 NwlnkFwd - ok
22:26:38.0578 4928 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:26:38.0578 4928 ohci1394 - ok
22:26:38.0625 4928 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:26:38.0640 4928 ose - ok
22:26:38.0671 4928 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
22:26:38.0671 4928 Parport - ok
22:26:38.0687 4928 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
22:26:38.0687 4928 PartMgr - ok
22:26:38.0703 4928 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
22:26:38.0718 4928 ParVdm - ok
22:26:38.0718 4928 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
22:26:38.0734 4928 PCI - ok
22:26:38.0734 4928 PCIDump - ok
22:26:38.0750 4928 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
22:26:38.0750 4928 PCIIde - ok
22:26:38.0765 4928 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
22:26:38.0781 4928 Pcmcia - ok
22:26:38.0781 4928 PDCOMP - ok
22:26:38.0781 4928 PDFRAME - ok
22:26:38.0796 4928 PDRELI - ok
22:26:38.0796 4928 PDRFRAME - ok
22:26:38.0812 4928 perc2 - ok
22:26:38.0812 4928 perc2hib - ok
22:26:38.0843 4928 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
22:26:38.0859 4928 PlugPlay - ok
22:26:38.0890 4928 [ E5204E28A4C7E8ECA7F558E2FAB92A89 ] Pml Driver HPH11 C:\WINDOWS\system32\HPHipm11.exe
22:26:38.0890 4928 Pml Driver HPH11 - ok
22:26:38.0968 4928 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] Pml Driver HPZ12 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
22:26:39.0000 4928 Pml Driver HPZ12 - ok
22:26:39.0000 4928 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
22:26:39.0000 4928 PolicyAgent - ok
22:26:39.0031 4928 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:26:39.0046 4928 PptpMiniport - ok
22:26:39.0062 4928 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
22:26:39.0062 4928 Processor - ok
22:26:39.0062 4928 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:26:39.0078 4928 ProtectedStorage - ok
22:26:39.0109 4928 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
22:26:39.0109 4928 Ps2 - ok
22:26:39.0140 4928 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
22:26:39.0140 4928 PSched - ok
22:26:39.0156 4928 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:26:39.0156 4928 Ptilink - ok
22:26:39.0187 4928 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:26:39.0187 4928 PxHelp20 - ok
22:26:39.0218 4928 [ 36CF3653D367CBC72A38625543F3D4D1 ] PzWDM C:\WINDOWS\system32\Drivers\PzWDM.sys
22:26:39.0234 4928 PzWDM - ok
22:26:39.0234 4928 ql1080 - ok
22:26:39.0234 4928 Ql10wnt - ok
22:26:39.0250 4928 ql12160 - ok
22:26:39.0250 4928 ql1240 - ok
22:26:39.0250 4928 ql1280 - ok
22:26:39.0296 4928 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:26:39.0296 4928 RasAcd - ok
22:26:39.0343 4928 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
22:26:39.0343 4928 RasAuto - ok
22:26:39.0359 4928 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:26:39.0359 4928 Rasl2tp - ok
22:26:39.0421 4928 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
22:26:39.0437 4928 RasMan - ok
22:26:39.0453 4928 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:26:39.0453 4928 RasPppoe - ok
22:26:39.0468 4928 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
22:26:39.0468 4928 Raspti - ok
22:26:39.0515 4928 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:26:39.0531 4928 Rdbss - ok
22:26:39.0546 4928 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:26:39.0546 4928 RDPCDD - ok
22:26:39.0593 4928 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:26:39.0609 4928 rdpdr - ok
22:26:39.0640 4928 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
22:26:39.0656 4928 RDPWD - ok
22:26:39.0687 4928 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
22:26:39.0703 4928 RDSessMgr - ok
22:26:39.0734 4928 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
22:26:39.0750 4928 redbook - ok
22:26:39.0781 4928 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:26:39.0796 4928 RemoteAccess - ok
22:26:39.0828 4928 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:26:39.0843 4928 RemoteRegistry - ok
22:26:39.0875 4928 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
22:26:39.0875 4928 RpcLocator - ok
22:26:39.0906 4928 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
22:26:39.0921 4928 RpcSs - ok
22:26:39.0953 4928 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
22:26:39.0953 4928 RSVP - ok
22:26:39.0968 4928 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
22:26:39.0984 4928 rtl8139 - ok
22:26:40.0000 4928 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
22:26:40.0015 4928 SamSs - ok
22:26:40.0062 4928 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
22:26:40.0062 4928 SASDIFSV - ok
22:26:40.0093 4928 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
22:26:40.0093 4928 SASKUTIL - ok
22:26:40.0140 4928 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
22:26:40.0140 4928 SCardSvr - ok
22:26:40.0187 4928 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
22:26:40.0203 4928 Schedule - ok
22:26:40.0250 4928 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:26:40.0250 4928 Secdrv - ok
22:26:40.0281 4928 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
22:26:40.0296 4928 seclogon - ok
22:26:40.0328 4928 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
22:26:40.0343 4928 SENS - ok
22:26:40.0390 4928 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
22:26:40.0406 4928 Serial - ok
22:26:40.0437 4928 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
22:26:40.0453 4928 Sfloppy - ok
22:26:40.0500 4928 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:26:40.0515 4928 SharedAccess - ok
22:26:40.0546 4928 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:26:40.0562 4928 ShellHWDetection - ok
22:26:40.0562 4928 Simbad - ok
22:26:40.0609 4928 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:26:40.0625 4928 SLIP - ok
22:26:40.0625 4928 Sparrow - ok
22:26:40.0671 4928 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
22:26:40.0687 4928 splitter - ok
22:26:40.0703 4928 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
22:26:40.0703 4928 Spooler - ok
22:26:40.0734 4928 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
22:26:40.0734 4928 sr - ok
22:26:40.0781 4928 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
22:26:40.0796 4928 srservice - ok
22:26:40.0828 4928 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
22:26:40.0843 4928 Srv - ok
22:26:40.0890 4928 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
22:26:40.0890 4928 SSDPSRV - ok
22:26:40.0937 4928 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
22:26:40.0937 4928 ssmdrv - ok
22:26:40.0968 4928 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
22:26:41.0000 4928 stisvc - ok
22:26:41.0046 4928 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:26:41.0046 4928 streamip - ok
22:26:41.0078 4928 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
22:26:41.0078 4928 swenum - ok
22:26:41.0109 4928 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
22:26:41.0125 4928 swmidi - ok
22:26:41.0125 4928 SwPrv - ok
22:26:41.0234 4928 [ FA2F6A8849219B16460BF44F9D1F3AA7 ] Symantec Core LC C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
22:26:41.0453 4928 Symantec Core LC - ok
22:26:41.0453 4928 symc810 - ok
22:26:41.0468 4928 symc8xx - ok
22:26:41.0562 4928 [ D65255D470CD5103CCE573CD7B5A88D2 ] SYMIDSCO C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20100106.002\SymIDSCo.sys
22:26:41.0609 4928 SYMIDSCO - ok
22:26:41.0609 4928 [ B226F8A4D780ACDF76145B58BB791D5B ] symlcbrd C:\WINDOWS\system32\drivers\symlcbrd.sys
22:26:41.0609 4928 symlcbrd - ok
22:26:41.0625 4928 sym_hi - ok
22:26:41.0640 4928 sym_u3 - ok
22:26:41.0687 4928 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
22:26:41.0687 4928 sysaudio - ok
22:26:41.0718 4928 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
22:26:41.0734 4928 SysmonLog - ok
22:26:41.0765 4928 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:26:41.0781 4928 TapiSrv - ok
22:26:41.0828 4928 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:26:41.0843 4928 Tcpip - ok
22:26:41.0875 4928 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
22:26:41.0875 4928 TDPIPE - ok
22:26:41.0906 4928 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
22:26:41.0921 4928 TDTCP - ok
22:26:41.0953 4928 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
22:26:41.0968 4928 TermDD - ok
22:26:41.0984 4928 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
22:26:42.0031 4928 TermService - ok
22:26:42.0046 4928 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
22:26:42.0046 4928 Themes - ok
22:26:42.0078 4928 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
22:26:42.0093 4928 TlntSvr - ok
22:26:42.0109 4928 TosIde - ok
22:26:42.0140 4928 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
22:26:42.0156 4928 TrkWks - ok
22:26:42.0203 4928 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
22:26:42.0218 4928 Udfs - ok
22:26:42.0218 4928 ultra - ok
22:26:42.0250 4928 [ 9651E5D850B6F6BD7C77C70AA06F02BF ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
22:26:42.0265 4928 UMWdf - ok
22:26:42.0312 4928 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
22:26:42.0343 4928 Update - ok
22:26:42.0375 4928 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
22:26:42.0390 4928 upnphost - ok
22:26:42.0421 4928 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
22:26:42.0421 4928 UPS - ok
22:26:42.0453 4928 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
22:26:42.0468 4928 USBAAPL - ok
22:26:42.0515 4928 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:26:42.0515 4928 usbccgp - ok
22:26:42.0562 4928 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:26:42.0562 4928 usbehci - ok
22:26:42.0609 4928 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:26:42.0609 4928 usbhub - ok
22:26:42.0640 4928 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
22:26:42.0640 4928 usbohci - ok
22:26:42.0687 4928 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:26:42.0687 4928 usbscan - ok
22:26:42.0718 4928 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:26:42.0734 4928 usbstor - ok
22:26:42.0750 4928 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:26:42.0750 4928 usbuhci - ok
22:26:42.0765 4928 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
22:26:42.0765 4928 VgaSave - ok
22:26:42.0781 4928 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
22:26:42.0781 4928 ViaIde - ok
22:26:42.0796 4928 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
22:26:42.0796 4928 VolSnap - ok
22:26:42.0859 4928 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
22:26:42.0875 4928 VSS - ok
22:26:42.0937 4928 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
22:26:42.0953 4928 W32Time - ok
22:26:42.0968 4928 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:26:42.0984 4928 Wanarp - ok
22:26:42.0984 4928 wanatw - ok
22:26:42.0984 4928 WDICA - ok
22:26:43.0000 4928 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
22:26:43.0015 4928 wdmaud - ok
22:26:43.0062 4928 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
22:26:43.0078 4928 WebClient - ok
22:26:43.0093 4928 [ 11EC1AFCEB5C917CE73D3C301FF4291E ] winachsx C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
22:26:43.0156 4928 winachsx - ok
22:26:43.0234 4928 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
22:26:43.0250 4928 winmgmt - ok
22:26:43.0281 4928 [ B9715B9C18BC6C8F4B66733D208CC9F7 ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
22:26:43.0281 4928 WmdmPmSN - ok
22:26:43.0328 4928 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
22:26:43.0343 4928 Wmi - ok
22:26:43.0375 4928 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:26:43.0390 4928 WmiApSrv - ok
22:26:43.0453 4928 [ B72D232E46FF5EE2BD8F61498B748DF7 ] WN5301 C:\WINDOWS\system32\DRIVERS\wn5301.sys
22:26:43.0468 4928 WN5301 - ok
22:26:43.0500 4928 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
22:26:43.0515 4928 wscsvc - ok
22:26:43.0546 4928 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:26:43.0562 4928 WSTCODEC - ok
22:26:43.0593 4928 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
22:26:43.0593 4928 wuauserv - ok
22:26:43.0671 4928 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
22:26:43.0671 4928 WZCSVC - ok
22:26:43.0703 4928 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
22:26:43.0718 4928 xmlprov - ok
22:26:43.0750 4928 ================ Scan global ===============================
22:26:43.0796 4928 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
22:26:43.0843 4928 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
22:26:43.0859 4928 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
22:26:43.0890 4928 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
22:26:43.0906 4928 [Global] - ok
22:26:43.0906 4928 ================ Scan MBR ==================================
22:26:43.0921 4928 [ 0AC6D996BCE152AED9600E6D6B797E2E ] \Device\Harddisk0\DR0
22:26:44.0218 4928 \Device\Harddisk0\DR0 - ok
22:26:44.0218 4928 ================ Scan VBR ==================================
22:26:44.0218 4928 [ 1485C2CDD6F1302E20B8D96C994756BE ] \Device\Harddisk0\DR0\Partition1
22:26:44.0218 4928 \Device\Harddisk0\DR0\Partition1 - ok
22:26:44.0234 4928 [ 87C723295BB59C22FE35D96AF9BAEB63 ] \Device\Harddisk0\DR0\Partition2
22:26:44.0234 4928 \Device\Harddisk0\DR0\Partition2 - ok
22:26:44.0234 4928 ============================================================
22:26:44.0234 4928 Scan finished
22:26:44.0234 4928 ============================================================
22:26:44.0250 6484 Detected object count: 0
22:26:44.0250 6484 Actual detected object count: 0
22:29:57.0062 1324 Deinitialize success

#4 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 28 January 2013 - 02:07 AM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-27 22:36:55
-----------------------------
22:36:55.703 OS Version: Windows 5.1.2600 Service Pack 3
22:36:55.703 Number of processors: 2 586 0x602
22:36:55.703 ComputerName: HOME2 UserName:
22:36:56.500 Initialize success
22:55:13.656 AVAST engine defs: 13012701
22:55:41.671 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
22:55:41.671 Disk 0 Vendor: WDC_WD32 21.0 Size: 305245MB BusType: 3
22:55:41.687 Disk 0 MBR read successfully
22:55:41.687 Disk 0 MBR scan
22:55:41.734 Disk 0 unknown MBR code
22:55:41.734 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 294590 MB offset 63
22:55:41.781 Disk 0 Partition 2 00 0C FAT32 LBA RECOVERY 10652 MB offset 603321075
22:55:41.906 Disk 0 scanning sectors +625137345
22:55:42.000 Disk 0 scanning C:\WINDOWS\system32\drivers
22:55:56.281 Service scanning
22:56:16.718 Modules scanning
22:56:23.203 Disk 0 trace - called modules:
22:56:23.218
22:56:24.218 AVAST engine scan C:\WINDOWS
22:56:45.468 AVAST engine scan C:\WINDOWS\system32
23:01:15.609 AVAST engine scan C:\WINDOWS\system32\drivers
23:01:39.234 AVAST engine scan C:\Documents and Settings\HP_Administrator
23:05:42.156 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\HP_Administrator\My Documents\MBR.dat"
23:05:42.156 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator\My Documents\aswMBR.txt"
23:11:19.312 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\HP_Administrator\My Documents\MBR.dat"
23:11:19.312 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator\My Documents\aswMBR 1.txt"

Edited by 12thman, 28 January 2013 - 02:12 AM.


#5 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 28 January 2013 - 10:17 AM

C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Canon_Inc_IC\jjxyahgj.dll a variant of Win32/Boaxxe.P.Gen trojan cleaned by deleting (after the next restart) - quarantined
C:\Documents and Settings\HP_Administrator\Local Settings\Temp\DM\avira-premium-security-suite_049\software\Yontoo.exe multiple threats cleaned by deleting - quarantined
C:\Documents and Settings\HP_Administrator\My Documents\Mozilla_FireFox_Setup.exe a variant of Win32/Adware.iBryte.D application cleaned by deleting - quarantined
C:\WINDOWS\Temp\Optimizer_Pro.exe a variant of Win32/SpeedingUpMyPC application cleaned by deleting - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 PM

Posted 28 January 2013 - 10:23 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#7 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 28 January 2013 - 11:17 PM

I don't know if it's relevant but while this scan ran I recieved an avira security alert saying acess to file c:\program files\online services\...\unppc.exe' containing the virus or unwanted program 'TR/Agent.66048.153' was blocked. And again as acess to file c:\system volume information\...\A0151068.exe.' containing the virus or unwanted program 'TR/Agent.31232.137' was blocked.


Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.27.09

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
HP_Administrator :: HOME2 [administrator]

Protection: Enabled

1/28/2013 6:17:14 PM
mbam-log-2013-01-28 (18-17-14).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 442430
Time elapsed: 1 hour(s), 48 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\System Volume Information\_restore{106CF321-99A3-4E3A-9103-1BD027606A99}\RP840\A0151031.exe (PUP.215Apps) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{106CF321-99A3-4E3A-9103-1BD027606A99}\RP840\A0151032.exe (PUP.215Apps) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{106CF321-99A3-4E3A-9103-1BD027606A99}\RP840\A0151035.exe (PUP.215Apps) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{106CF321-99A3-4E3A-9103-1BD027606A99}\RP840\A0151036.exe (PUP.215Apps) -> Quarantined and deleted successfully.

(end)

#8 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 28 January 2013 - 11:23 PM

Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

PlayLinc Adapter = PlayLinc Connection (Disconnected)
Wireless LAN PCI 802.11 b/g adapter WN5301A = Wireless Network Connection (Connected)
1394 Net Adapter = 1394 Connection (Connected)
Intel® PRO/100 VE Network Connection = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Home2

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : PK5001Z



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . : PK5001Z

Description . . . . . . . . . . . : Wireless LAN PCI 802.11 b/g adapter WN5301A

Physical Address. . . . . . . . . : 00-C0-A8-B0-62-26

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.0.241

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.0.1

DHCP Server . . . . . . . . . . . : 192.168.0.1

DNS Servers . . . . . . . . . . . : 192.168.0.1

209.206.179.157

Lease Obtained. . . . . . . . . . : Monday, January 28, 2013 6:02:33 PM

Lease Expires . . . . . . . . . . : Tuesday, January 29, 2013 6:02:33 PM



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

Physical Address. . . . . . . . . : 00-17-31-0E-C1-B1

Server: PK5001Z.PK5001Z
Address: 192.168.0.1

Name: google.com
Addresses: 173.194.33.41, 173.194.33.46, 173.194.33.32, 173.194.33.33
173.194.33.34, 173.194.33.35, 173.194.33.36, 173.194.33.37, 173.194.33.38
173.194.33.39, 173.194.33.40



Pinging google.com [173.194.33.46] with 32 bytes of data:



Reply from 173.194.33.46: bytes=32 time=187ms TTL=56

Reply from 173.194.33.46: bytes=32 time=155ms TTL=56



Ping statistics for 173.194.33.46:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 155ms, Maximum = 187ms, Average = 171ms

Server: PK5001Z.PK5001Z
Address: 192.168.0.1

Name: yahoo.com
Addresses: 98.139.183.24, 206.190.36.45, 98.138.253.109



Pinging yahoo.com [206.190.36.45] with 32 bytes of data:



Reply from 206.190.36.45: bytes=32 time=151ms TTL=53

Reply from 206.190.36.45: bytes=32 time=179ms TTL=53



Ping statistics for 206.190.36.45:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 151ms, Maximum = 179ms, Average = 165ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 c0 a8 b0 62 26 ...... Wireless LAN PCI 802.11 b/g adapter WN5301A - Packet Scheduler Miniport
0x3 ...00 17 31 0e c1 b1 ...... Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.241 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.0.241 192.168.0.241 20
192.168.0.0 255.255.255.0 192.168.0.241 192.168.0.241 25
192.168.0.241 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.0.255 255.255.255.255 192.168.0.241 192.168.0.241 25
208.43.120.24 255.255.255.255 192.168.0.1 192.168.0.241 25
224.0.0.0 240.0.0.0 192.168.0.241 192.168.0.241 25
255.255.255.255 255.255.255.255 192.168.0.241 192.168.0.241 1
255.255.255.255 255.255.255.255 192.168.0.241 3 1
Default Gateway: 192.168.0.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/28/2013 07:12:56 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 20109391

Error: (01/28/2013 07:12:56 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 20109391

Error: (01/28/2013 07:12:56 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/28/2013 01:37:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5860

Error: (01/28/2013 01:37:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5860

Error: (01/28/2013 01:37:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/28/2013 01:37:51 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3907

Error: (01/28/2013 01:37:51 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3907

Error: (01/28/2013 01:37:51 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/28/2013 01:37:49 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1954


System errors:
=============
Error: (01/28/2013 07:47:00 PM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (01/28/2013 06:04:04 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ftsata2

Error: (01/27/2013 07:47:00 PM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (01/27/2013 06:21:11 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ftsata2

Error: (01/26/2013 01:57:13 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ftsata2

Error: (01/24/2013 09:51:05 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ftsata2

Error: (01/24/2013 09:47:36 PM) (Source: Service Control Manager) (User: )
Description: The Pml Driver HPH11 service terminated unexpectedly. It has done this 1 time(s).

Error: (01/24/2013 09:18:03 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ftsata2

Error: (01/23/2013 10:44:37 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ftsata2

Error: (01/23/2013 10:42:15 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}


Microsoft Office Sessions:
=========================
Error: (01/28/2013 07:12:56 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 20109391

Error: (01/28/2013 07:12:56 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 20109391

Error: (01/28/2013 07:12:56 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/28/2013 01:37:53 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5860

Error: (01/28/2013 01:37:53 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5860

Error: (01/28/2013 01:37:53 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/28/2013 01:37:51 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3907

Error: (01/28/2013 01:37:51 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3907

Error: (01/28/2013 01:37:51 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/28/2013 01:37:49 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1954


=========================== Installed Programs ============================

5 Card Slingo from HP Media Center (remove only)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Adobe Reader 7.0.8 (Version: 7.0.8)
AiO_Scan (Version: 50.0.206.000)
AiO_Scan_CDA (Version: 50.0.214.000)
AiOSoftware (Version: 50.0.206.000)
AiOSoftwareNPI (Version: 50.0.214.000)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
AstroPop Deluxe from HP Media Center (remove only)
Avira Free Antivirus (Version: 13.0.0.2890)
Barnyard Invasion from HP Media Center (remove only)
Bejeweled 2 Deluxe from HP Media Center (remove only)
Blackhawk Striker 2 from HP Media Center (remove only)
Blasterball 2 from HP Media Center (remove only)
Blasterball 2 Remix from HP Media Center (remove only)
Boggle Supreme from HP Media Center (remove only)
Bonjour (Version: 3.0.0.10)
Bookworm Deluxe from HP Media Center (remove only)
Bounce Symphony from HP Media Center (remove only)
BufferChm (Version: 60.0.155.000)
CameraDrivers (Version: 5.0.0.290)
CameraDrivers (Version: 5.0.0.328)
Canon Camera Access Library (Version: 8.4.0.1)
Canon DIGITAL CAMERA Solution Disk Software Guide (Version: 1.0.1.2)
CANON iMAGE GATEWAY MyCamera Download Plugin (Version: 3.1.1.2)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (Version: 1.9.0.9)
Canon MOV Decoder (Version: 1.8.0.7)
Canon MOV Encoder (Version: 1.6.0.1)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.7.0.4)
Canon Personal Printing Guide (Version: 1.0.0.1)
Canon Utilities CameraWindow (Version: 7.3.0.4)
Canon Utilities CameraWindow DC (Version: 7.4.1.10)
Canon Utilities CameraWindow DC 8 (Version: 8.0.0.19)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.5.0.3)
Canon Utilities Digital Photo Professional 3.10 (Version: 3.10.2.0)
Canon Utilities EOS Sample Music (Version: 1.0.0.204)
Canon Utilities EOS Utility (Version: 2.10.2.0)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (Version: 1.0.0.10)
Canon Utilities Movie Uploader for YouTube (Version: 1.2.0.7)
Canon Utilities MyCamera (Version: 7.3.0.5)
Canon Utilities MyCamera DC (Version: 7.2.1.6)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities Picture Style Editor (Version: 1.9.0.0)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.8.0.1)
Canon Utilities ZoomBrowser EX (Version: 6.7.0.24)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.5.0.9)
Chuzzle Deluxe from HP Media Center (remove only)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CP_AtenaShokunin1Config (Version: 60.0.155.000)
CP_CalendarTemplates1 (Version: 60.0.155.000)
cp_LightScribeConfig (Version: 60.0.155.000)
cp_OnlineProjectsConfig (Version: 60.0.155.000)
CP_Package_Basic1 (Version: 60.0.155.000)
CP_Package_Variety1 (Version: 60.0.155.000)
CP_Package_Variety2 (Version: 60.0.155.000)
CP_Package_Variety3 (Version: 60.0.155.000)
CP_Panorama1Config (Version: 60.0.155.000)
cp_PosterPrintConfig (Version: 60.0.155.000)
cp_UpdateProjectsConfig (Version: 60.0.155.000)
Crystal Maze from HP Media Center (remove only)
CueTour (Version: 60.0.155.000)
Customer Experience Enhancement (Version: Customer Experience Enhancement -1.0.0.1680)
Data Fax SoftModem with SmartCP
Destinations (Version: 60.0.155.000)
DocProc (Version: 5.2.0.0)
DocumentViewer (Version: 53.0.13.000)
DocumentViewerQFolder (Version: 1.00.0000)
Easy Internet Sign-up (Version: FE UI-4.1.0.1680)
Enhanced Multimedia Keyboard Solution
ESET Online Scanner v3
Family Feud (Version: 10/21/2005 09:04 AM)
FATE from HP Media Center (remove only)
Fax (Version: 50.0.206.000)
Fax_CDA (Version: 50.0.214.000)
FullDPAppQFolder (Version: 1.00.0000)
GemMaster Mystic
Google Earth (Version: 6.1.0.5001)
Google Gears (Version: 0.5.3600)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.123)
Graboid Video 1.71 (Version: 1.71)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
HP Boot Optimizer (Version: 2.0.5.1)
HP Deskjet Printer Preload (Version: 10.1.0)
HP DigitalMedia Archive (Version: 2.0)
HP Document Viewer 5.3 (Version: 5.3)
HP DVD Play 1.0
HP Game Console and games
HP Imaging Device Functions 6.0 (Version: 6.0)
HP Photo and Imaging 1.0 - HP Photosmart Printer Series (Version: 1.1.0000)
HP Photosmart 330,380,420,470,7800,8000,8200 Series (Version: 8.1)
HP Photosmart Cameras 5.0 (Version: 5.0)
HP Photosmart for Media Center PC
HP Photosmart Premier Software 6.0 (Version: 6.0)
HP Product Assistant (Version: 100.000.001.000)
HP PSC & OfficeJet 5.3.A
HP PSC & OfficeJet 5.3.B
HP Rhapsody
HP Solution Center & Imaging Support Tools 5.3 (Version: 5.3)
HP Update (Version: 5.003.001.001)
HP Web Helper
HPProductAssistant (Version: 53.0.13.000)
HpSdpAppCoreApp (Version: 3.00.0000)
Insaniquarium Deluxe from HP Media Center (remove only)
InstantShareAlert (Version: 1.00.0000)
InstantShareDevices (Version: 60.0.155.000)
Intel® PRO Network Connections Drivers
Intel® Quick Resume Technology Drivers (Version: 1.0.0.1093)
Intel® Viiv™ Software (Version: 1.0.2.2015)
iPhone Configuration Utility (Version: 3.4.0.283)
iTunes (Version: 11.0.1.12)
J2SE Runtime Environment 5.0 Update 5 (Version: 1.5.0.50)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 29 (Version: 6.0.290)
LeapFrog Connect (Version: 3.2.19.13664)
LeapFrog Leapster Explorer Plugin (Version: 3.2.22.13714)
LeapFrog Tag Plugin (Version: 3.2.19.13664)
Lemonade Tycoon 2 from HP Media Center (remove only)
Lexibox Deluxe from HP Media Center (remove only)
LightScribe 1.4.62.1 (Version: 1.4.62.1)
LiveUpdate Notice (Symantec Corporation) (Version: 1.4.5)
Mah Jong Quest from HP Media Center (remove only)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.0 Security Update (KB2698035)
Microsoft .NET Framework 1.0 Security Update (KB2742607)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 08.04.0623)
MobileMe Control Panel (Version: 3.1.5.0)
Move Media Player
Mozilla Firefox 18.0.1 (x86 en-US) (Version: 18.0.1)
Mozilla Maintenance Service (Version: 18.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee autoProducer 4.5 (Version: 4.50.050)
muvee autoProducer unPlugged 1.2 (Version: 1.20.100)
nabi Sync 1.0 (Version: 1.0)
NewCopy (Version: 50.0.206.000)
NewCopy_CDA (Version: 50.0.214.000)
NVIDIA Drivers
OpenOffice.org Installer 1.0 (Version: 1.0.9221)
OptionalContentQFolder (Version: 1.00.0000)
Otto
PanoStandAlone (Version: 53.0.13.000)
PC-Doctor 5 for Windows (Version: 5.00.3311.03)
PhotoGallery (Version: 60.0.155.000)
Photosmart 130,230,7150,7345,7350,7550 (Remove only)
PlayLinc (Version: 2.0.2)
Polar Bowler from HP Media Center (remove only)
Polar Golfer from HP Media Center (remove only)
PS2
PSPrinters08 (Version: 8.01.0000)
PSTAPlugin (Version: 8.01.0000)
Puzzle Express from HP Media Center (remove only)
Python 2.2 pywin32 extensions (build 203)
Quicken 2006 (Version: 15.1.1.29)
QuickTime (Version: 7.71.80.42)
RandMap (Version: 60.0.155.000)
Readme (Version: 50.0.214.000)
Realtek High Definition Audio Driver
Revo Uninstaller 1.94 (Version: 1.94)
Ricochet Lost Worlds from HP Media Center (remove only)
Safari (Version: 5.33.20.27)
Scan (Version: 5.2.0.0)
ScannerCopy (Version: 5.2.0.0)
SCRABBLE from HP Media Center (remove only)
Shooting Stars Pool from HP Media Center (remove only)
SkinsHP1 (Version: 60.0.155.000)
Slingo Deluxe from HP Media Center (remove only)
Snowboard SuperJam from HP Media Center (remove only)
SolutionCenter (Version: 50.0.152.000)
Sonic Express Labeler (Version: 2.1.0)
Sonic MyDVD Plus (Version: 6.2.0)
Sonic RecordNow Audio (Version: 2.0.4)
Sonic RecordNow Copy (Version: 2.0.4)
Sonic RecordNow Data (Version: 2.0.4)
Sonic Update Manager (Version: 3.0.0)
Sonic_PrimoSDK (Version: 60.0.155.000)
Status (Version: 53.0.13.000)
Super Granny from HP Media Center (remove only)
SUPERAntiSpyware (Version: 5.6.1014)
Symantec KB-DocID:2003093015493306 (Version: 1.0.0.1)
Tradewinds from HP Media Center (remove only)
TrayApp (Version: 53.0.13.000)
Unload (Version: 6.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB980302) (Version: 1)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
Updates from HP (remove only)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster Explorer Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin) (Version: 3.2.19.13664)
VLC media player 1.0.1 (Version: 1.0.1)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 53.0.13.000)
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0) (Version: 11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0018.5)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format Runtime
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB908250
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)
Zuma Deluxe from HP Media Center (remove only)

========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 2046.39 MB
Available physical RAM: 1218.37 MB
Total Pagefile: 3938.43 MB
Available Pagefile: 3076.79 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.95 MB

========================= Partitions: =====================================

1 Drive c: (HP_PAVILION) (Fixed) (Total:287.69 GB) (Free:221.92 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:10.39 GB) (Free:3.2 GB) FAT32

========================= Users: ========================================

User accounts for \\HOME2

Administrator Guest HelpAssistant
HP_Administrator SUPPORT_388945a0 SUPPORT_fddfa904

========================= Restore Points ==================================

24-10-2012 18:13:12 Installed Java 7 Update 9
25-10-2012 18:18:32 System Checkpoint
26-10-2012 22:40:42 System Checkpoint
28-10-2012 23:24:10 System Checkpoint
01-11-2012 21:48:42 System Checkpoint
03-11-2012 18:12:21 System Checkpoint
04-11-2012 21:12:05 System Checkpoint
05-11-2012 23:20:10 System Checkpoint
07-11-2012 01:55:39 System Checkpoint
10-11-2012 16:56:30 System Checkpoint
16-11-2012 05:44:00 System Checkpoint
17-11-2012 01:48:47 Software Distribution Service 3.0
22-11-2012 01:28:25 System Checkpoint
26-11-2012 22:57:32 System Checkpoint
29-11-2012 02:49:35 System Checkpoint
01-12-2012 02:20:39 System Checkpoint
06-12-2012 03:12:22 System Checkpoint
07-12-2012 21:13:27 System Checkpoint
10-12-2012 21:01:24 System Checkpoint
13-12-2012 16:14:38 Software Distribution Service 3.0
17-12-2012 01:25:15 Installed iTunes
20-12-2012 02:12:44 System Checkpoint
21-12-2012 21:23:04 System Checkpoint
22-12-2012 19:37:40 Software Distribution Service 3.0
27-12-2012 02:53:42 System Checkpoint
31-12-2012 22:15:39 System Checkpoint
01-01-2013 23:11:46 System Checkpoint
03-01-2013 06:00:00 System Checkpoint
04-01-2013 11:00:21 Software Distribution Service 3.0
05-01-2013 21:13:19 System Checkpoint
09-01-2013 21:41:55 Software Distribution Service 3.0
10-01-2013 22:53:48 System Checkpoint
12-01-2013 18:10:37 System Checkpoint
15-01-2013 03:06:22 System Checkpoint
15-01-2013 20:45:45 Software Distribution Service 3.0
15-01-2013 20:54:39 Removed Ask Toolbar.
15-01-2013 20:55:11 Removed Ask Toolbar.
15-01-2013 20:59:30 Removed Ask Toolbar.
15-01-2013 22:23:34 Removed EuroTalk Talk Now!
15-01-2013 22:31:03 Removed MSXML 4.0 SP2 (KB927978)
16-01-2013 23:37:23 System Checkpoint
21-01-2013 06:07:14 Software Distribution Service 3.0
24-01-2013 04:28:42 Revo Uninstaller's restore point - Mozilla Firefox 18.0.1 (x86 en-US)
25-01-2013 06:06:41 Software Distribution Service 3.0

**** End of log ****

#9 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 28 January 2013 - 11:26 PM

Farbar Service Scanner Version: 16-01-2013
Ran by HP_Administrator (administrator) on 28-01-2013 at 20:25:08
Running from "C:\Documents and Settings\HP_Administrator\Local Settings\Temporary Internet Files\Content.IE5\3NR579RC"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
0x0700000004000000010000000200000003000000050000000600000007000000
IpSec Tag value is correct.

**** End of log ****

#10 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 28 January 2013 - 11:35 PM

# AdwCleaner v2.109 - Logfile created 01/28/2013 at 20:28:25
# Updated 26/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : HP_Administrator - HOME2
# Boot Mode : Normal
# Running from : C:\Documents and Settings\HP_Administrator\Local Settings\Temporary Internet Files\Content.IE5\GEFDXJHD\adwcleaner[1].exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (en-US)

File : C:\Documents and Settings\HP_Administrator\Application Data\Mozilla\Firefox\Profiles\6mnf0pwz.default-1358290068718\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [16990 octets] - [24/01/2013 21:46:15]
AdwCleaner[R2].txt - [17051 octets] - [24/01/2013 21:47:15]
AdwCleaner[R3].txt - [1577 octets] - [28/01/2013 20:28:06]
AdwCleaner[S1].txt - [17682 octets] - [24/01/2013 21:47:36]
AdwCleaner[S2].txt - [1512 octets] - [28/01/2013 20:28:25]

########## EOF - C:\AdwCleaner[S2].txt - [1572 octets] ##########

#11 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 29 January 2013 - 12:20 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.5.2 (01.26.2013:2)
OS: Microsoft Windows XP x86
Ran by HP_Administrator on Mon 01/28/2013 at 20:38:19.59
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\toolbar\webbrowser\\{8660e5b3-6c41-44de-8503-98d99bbecd41}
Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\toolbar\\{8660e5b3-6c41-44de-8503-98d99bbecd41}
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\DisplayName
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\URL
Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

Val Name Type Value Data
======== ==== ==========
Canon_Inc_IC REG_SZ RUNDLL32.EXE "C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Canon_Inc_IC\jjxyahgj.dll",DVDoneEnc




~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_classes_root\clsid\{8660e5b3-6c41-44de-8503-98d99bbecd41}



~~~ Files

Successfully deleted: [File] "C:\WINDOWS\system32\roboot.exe"



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\HP_Administrator\Application Data\systweak"
Successfully deleted: [Folder] "C:\Program Files\couponalert_2pei"
Successfully deleted: [Folder] "C:\Program Files\coupons.com couponbar"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\start menu\programs\hot deals"



~~~ FireFox

Emptied folder: C:\Documents and Settings\HP_Administrator\Application Data\mozilla\firefox\profiles\6mnf0pwz.default-1358290068718\minidumps [1 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 01/28/2013 at 20:49:10.01
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#12 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 29 January 2013 - 12:27 AM

Rkill 2.4.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 01/28/2013 09:22:52 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\WINDOWS\system32\hphmon04.exe (PID: 528) [WD-HEUR]
* C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE (PID: 3148) [WD-HEUR]
* c:\windows\system\hpsysdrv.exe (PID: 1704) [WD-HEUR]

3 proccesses terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* Security Center (wscsvc) is not Running.
Startup Type set to: Disabled

* MSDTC [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 01/28/2013 09:23:34 PM
Execution time: 0 hours(s), 0 minute(s), and 42 seconds(s)

#13 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 29 January 2013 - 12:34 AM

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AppleSyncNotifier" "AppleSyncNotifier" "Apple Inc." "c:\program files\common files\apple\mobile device support\applesyncnotifier.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "avgnt" "Avira System Tray Tool" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avgnt.exe"
+ "DMAScheduler" "DMAScheduler" "Sonic Solutions" "c:\program files\sonic\digitalmedia plus\digitalmedia archive\dmascheduler.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files\hp\hp software update\hpwuschd2.exe"
+ "HPBootOp" "HP Boot Optimizer" "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp boot optimizer\hpbootop.exe"
+ "HPDJ Taskbar Utility" "" "HP" "c:\windows\system32\spool\drivers\w32x86\3\hpztsb05.exe"
+ "HPHmon04" "HPHmon04" "Hewlett-Packard" "c:\windows\system32\hphmon04.exe"
+ "HPHUPD04" "HPHupd04" "Hewlett-Packard" "c:\program files\hp photosmart 11\hphinstall\unipatch\hphupd04.exe"
+ "HPHUPD08" "HPHupd08" "Hewlett-Packard" "c:\program files\hp\digital imaging\{33d6cc28-9f75-4d1b-a11d-98895b3a3729}\hphupd08.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "KBD" "KBD EXE" "Hewlett-Packard Company" "c:\hp\kbd\kbd.exe"
+ "Monitor" "Monitor Application" "LeapFrog Enterprises, Inc." "c:\program files\leapfrog\leapfrog connect\monitor.exe"
+ "NvCplDaemon" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
+ "nwiz" "NVIDIA nView Wizard, Version 110.60 " "NVIDIA Corporation" "c:\windows\system32\nwiz.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "Recguard" "Recguard Application" "" "c:\windows\sminst\recguard.exe"
+ "RTHDCPL" "Realtek HD Audio Control Panel" "Realtek Semiconductor Corp." "c:\windows\rthdcpl.exe"
+ "Share-to-Web Namespace Daemon" "hpgs2wnd" "Hewlett-Packard" "c:\program files\hp\hp share-to-web\hpgs2wnd.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "Symantec PIF AlertEng" "LiveUpdate Notice Service" "Symantec Corporation" "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\pifsvc.exe"
"C:\Documents and Settings\All Users\Start Menu\Programs\Startup" "" "" ""
+ "Adobe Reader Speed Launch.lnk" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe"
+ "HP Digital Imaging Monitor.lnk" "HP Digital Imaging Monitor" "Hewlett-Packard Co." "c:\program files\hp\digital imaging\bin\hpqtra08.exe"
+ "Updates From HP.lnk" "Updates from HP" "Hewlett-Packard" "c:\program files\updates from hp\9972322\program\updates from hp.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Address Book 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
+ "Microsoft Outlook Express 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Canon_Inc_IC" "" "" "File not found: C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Canon_Inc_IC\jjxyahgj.dll"
+ "MSMSGS" "Windows Messenger" "Microsoft Corporation" "c:\program files\messenger\msmsgs.exe"
+ "SUPERAntiSpyware" "SUPERAntiSpyware Application" "SUPERAntiSpyware.com" "c:\program files\superantispyware\superantispyware.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office11\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "ms-itss" "Microsoft® InfoTech Storage System Library" "Microsoft Corporation" "c:\program files\common files\microsoft shared\information retrieval\msitss.dll"
+ "mso-offdap" "Microsoft Office XP Web Components" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\10\owc10.dll"
+ "mso-offdap11" "Microsoft Office Web Components 2003" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\11\owc11.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components" "" "" ""
+ "0" "" "" "File not found: http://growing-image.com/_img/portfolio/carpentry/Redwood-trellis-deck-Sausalito.jpg"
+ "1" "" "" "File not found: About:Home"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "SABShellExecuteHook Class" "ShellExecuteHook" "SuperAdBlocker.com" "c:\program files\superantispyware\sasseh.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
+ "Shell Extension for Malware scanning" "Avira Shell Extension Library" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\shlext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "00nView" "NVIDIA Desktop Explorer, Version 110.60 " "NVIDIA Corporation" "c:\windows\system32\nvshell.dll"
+ "NvCplDesktopContext" "NVIDIA Display Properties Extension" "NVIDIA Corporation" "c:\windows\system32\nvcpl.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "Shell Extension for Malware scanning" "Avira Shell Extension Library" "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\shlext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Reader Link Helper" "Adobe Acrobat IE Helper Version 7.0 for ActiveX" "Adobe Systems Incorporated" "c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll"
+ "Google Gears Helper" "These are the Gears that power the tubes! :-)" "Google Inc." "c:\program files\google\google gears\internet explorer\0.5.36.0\gears.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll"
+ "hpWebHelper Class" "TODO: <File description>" "TODO: <Company name>" "c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\webhelper.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Gears Settings" "These are the Gears that power the tubes! :-)" "Google Inc." "c:\program files\google\google gears\internet explorer\0.5.36.0\gears.dll"
+ "Internet Connection Help" "" "" "c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm"
+ "Windows Messenger" "Windows Messenger" "Microsoft Corporation" "c:\program files\messenger\msmsgs.exe"
"Task Scheduler" "" "" ""
+ "Adobe Flash Player Updater.job" "Adobe® Flash® Player Update Service 11.5 r502" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AppleSoftwareUpdate.job" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "At1.job" "" "" "File not found: C:\DOCUME~1\HP_ADM~1\APPLIC~1\Funmoods\UPDATE~1\UPDATE~1.EXE /Check"
+ "GoogleUpdateTaskMachineCore.job" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskMachineUA.job" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "PCConfidential.job" "" "" "File not found: C:\Program Files\Winferno\PC Confidential\PCConfidential.exe /ac"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AntiVirSchedulerService" "Service to schedule Avira Free Antivirus jobs and updates." "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\sched.exe"
+ "AntiVirService" "Offers permanent protection against viruses and malware with the Avira search engine." "Avira Operations GmbH & Co. KG" "c:\program files\avira\antivir desktop\avguard.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "CCALib8" "Canon Camera Access Library 8" "Canon Inc." "c:\program files\canon\cal\calmain.exe"
+ "CLTNetCnService" "Symantec Lic NetConnect Service" "" "File not found: C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe"
+ "ELService" "Intel® Quick Resume Technology Drivers" "Intel Corporation" "c:\program files\intel\inteldh\intel® quick resume technology\elservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files\common files\installshield\driver\1050\intel 32\idrivert.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "JavaQuickStarterService" "Prefetches JRE files for faster startup of Java applets and applications" "Oracle Corporation" "c:\program files\java\jre7\bin\jqs.exe"
+ "LeapFrog Connect Device Service" "Manages LeapFrog Connect devices." "LeapFrog Enterprises, Inc." "c:\program files\leapfrog\leapfrog connect\commandservice.exe"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files\common files\lightscribe\lssrvc.exe"
+ "LiveUpdate Notice Ex" "Manages Norton product notices." "" "File not found: C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe"
+ "LiveUpdate Notice Service" "Manages Norton product notices" "Symantec Corporation" "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\pifsvc.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "MDM" "Supports local and remote debugging for Visual Studio and script debuggers. If this service is stopped, the debuggers will not function properly." "Microsoft Corporation" "c:\program files\common files\microsoft shared\vs7debug\mdm.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "NVSvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvsvc32.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "Pml Driver HPH11" "PML Driver" "HP" "c:\windows\system32\hphipm11.exe"
+ "Pml Driver HPZ12" "PML Driver" "HP" "c:\windows\system32\spool\drivers\w32x86\3\hpzipm12.exe"
+ "Symantec Core LC" "Symantec Core LC" "" "c:\program files\common files\symantec shared\ccpd-lc\symlcsvc.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AFS2K" "Audio File System" "Oak Technology Inc." "c:\windows\system32\drivers\afs2k.sys"
+ "avgntflt" "Avira mini-filter driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avgntflt.sys"
+ "avipbb" "Avira Security Enhancement Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avipbb.sys"
+ "avkmgr" "Avira Manager Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avkmgr.sys"
+ "Changer" "" "" "File not found: C:\WINDOWS\System32\Drivers\Changer.sys"
+ "Dot4 HPH11" "IEEE-1284.4-1999 Driver (Windows 2000)" "HP" "c:\windows\system32\drivers\hphid411.sys"
+ "Dot4Print HPH11" "IEEE-1284.4-1999 Print Class Driver" "HP" "c:\windows\system32\drivers\hphipr11.sys"
+ "Dot4Storage HPH11" "Printer Card Mass Storage Driver" "Hewlett-Packard" "c:\windows\system32\drivers\hphs2k11.sys"
+ "Dot4Usb HPH11" "1284.4<->Usb Datalink Driver (Windows 2000)" "HP" "c:\windows\system32\drivers\hphius11.sys"
+ "E100B" "Intel® PRO/100 Adapter NDIS 5.1 driver" "Intel Corporation" "c:\windows\system32\drivers\e100b325.sys"
+ "eeCtrl" "Symantec Eraser Control Driver" "Symantec Corporation" "c:\program files\common files\symantec shared\eengine\eectrl.sys"
+ "ELacpi" "" "Intel Corporation" "c:\windows\system32\drivers\elacpi.sys"
+ "ELhid" "" "Intel Corporation" "c:\windows\system32\drivers\elhid.sys"
+ "ELkbd" "" "Intel Corporation" "c:\windows\system32\drivers\elkbd.sys"
+ "ELmon" "" "Intel Corporation" "c:\windows\system32\drivers\elmon.sys"
+ "ELmou" "" "Intel Corporation" "c:\windows\system32\drivers\elmou.sys"
+ "FlyUsb" "FLY Fusion USB Driver" "LeapFrog" "c:\windows\system32\drivers\flyusb.sys"
+ "ftsata2" "" "" "File not found: system32\DRIVERS\ftsata2.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hamachi_oem" "Hamachi Virtual Network Interface Driver, OEM" "Applied Networking Inc." "c:\windows\system32\drivers\gan_adapter.sys"
+ "hcwPP2" "WinTV PVR PCI II (v2) WDM Video Capture" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcwpp2.sys"
+ "HDAudBus" "High Definition Audio Bus Driver v1.0a" "Windows ® Server 2003 DDK provider" "c:\windows\system32\drivers\hdaudbus.sys"
+ "HSX_DP" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_dp.sys"
+ "HSXHWBS2" "HSF_HWB2 WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsxhwbs2.sys"
+ "i2omgmt" "" "" "File not found: C:\WINDOWS\System32\Drivers\i2omgmt.sys"
+ "iaStor" "Intel Matrix Storage Manager driver" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkhdaud.sys"
+ "lbrtfdc" "" "" "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "Leapfrog-USBLAN" "Windows USBLAN Host Driver" "Belcarra Technologies" "c:\windows\system32\drivers\btblan.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "mdmxsdk" "Diagnostic Interface DRIVER" "Conexant" "c:\windows\system32\drivers\mdmxsdk.sys"
+ "nv" "NVIDIA Compatible Windows 2000 Miniport Driver, Version 91.63 " "NVIDIA Corporation" "c:\windows\system32\drivers\nv4_mini.sys"
+ "PCIDump" "" "" "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PDCOMP" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "Ps2" "PS2 SYS" "Hewlett-Packard Company" "c:\windows\system32\drivers\ps2.sys"
+ "Ptilink" "Direct Parallel Link Driver" "Parallel Technologies, Inc." "c:\windows\system32\drivers\ptilink.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "PzWDM" "PzWDM.sys" "Prassi Technology" "c:\windows\system32\drivers\pzwdm.sys"
+ "rtl8139" "Realtek RTL8139 NDIS 5.0 Driver" "Realtek Semiconductor Corporation" "c:\windows\system32\drivers\rtl8139.sys"
+ "SASDIFSV" "SASDIFSV.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv.sys"
+ "SASKUTIL" "SASKUTIL.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil.sys"
+ "Secdrv" "SafeDisc driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "ssmdrv" "Avira Snapshot Driver" "Avira GmbH" "c:\windows\system32\drivers\ssmdrv.sys"
+ "SYMIDSCO" "IDS Core Driver" "Symantec Corporation" "c:\program files\common files\symantec shared\symcdata\idsdefs\20100106.002\symidsco.sys"
+ "symlcbrd" "Symantec Core Component" "Symantec Corporation" "c:\windows\system32\drivers\symlcbrd.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "wanatw" "" "" "File not found: system32\DRIVERS\wanatw4.sys"
+ "WDICA" "" "" "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys"
+ "winachsx" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_cnxt.sys"
+ "WN5301" "Driver for Liteon Wireless Network Adapter" "Liteon Technology Inc." "c:\windows\system32\drivers\wn5301.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.iac2" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.sl_anet" "Audio codec for MS ACM" "Sipro Lab Telecom Inc." "c:\windows\system32\sl_anet.acm"
+ "msacm.trspch" "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50" "DSP GROUP, INC." "c:\windows\system32\tssoft32.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.iv31" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "vidc.iv50" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "vidc.LEAD" "LEAD MCMP/MJPEG Codec" "LEAD Technologies, Inc." "c:\windows\system32\lcodccmp.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ACELP.net Audio Decoder" "ACELP.net Audio Decoder" "Sipro Lab Telecom Inc." "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files\google\google earth\client\wavdest.ax"
+ "Bitmap" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Canon DES Resizer SaveMode" "CanonDESResizer" "Canon Inc." "c:\program files\canon\mdl30\canondesresizer.ax"
+ "Canon H.264 Decode Filter" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder\180\canonh264filter.ax"
+ "Canon H.264 Encoder 1.6.0" "Canon H264 Encoder Filter" "CANON INC." "c:\program files\canon\canon mov encoder\canonh264encoder.ax"
+ "Canon Image Rotation Filter" "Canon Image Rotation Filter " "Canon Inc." "c:\program files\canon\mdp\canonrotatefilter.dll"
+ "Canon MDP Motion-JPEG Decoder" "Canon MDP Motion-JPEG Decoder Filter" "Canon Inc." "c:\program files\canon\mdp\canonmdpmjpegdecoder.ax"
+ "Canon Motion-JPEG Decoder" "Canon Motion-JPEG Decoder Filter" "Canon Inc." "c:\program files\canon\mdl30\canonmjpegdecoder.ax"
+ "Canon Motion-JPEG Encoder" "Motion-JPEG Encoder Filter" "Canon Inc." "c:\program files\canon\mdl30\canonmjpegencoder.ax"
+ "Canon Mov File Parser Filter" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder\180\canonh264filter.ax"
+ "Canon Mov File Parser Filter2" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder\180\canonh264filter.ax"
+ "Canon Resizer" "CanonResizer" "Canon Inc." "c:\program files\canon\mdl30\canonresizer.ax"
+ "Canon Text Source Filter" "Canon Text Source Filter" "Canon Inc." "c:\program files\canon\mdl30\canontextsourcefilter.ax"
+ "Canon WAV Dest" "CanonWavDest" "Canon Inc." "c:\program files\canon\mdl30\canonwavdest.ax"
+ "Canon-Actual-Data-Length-Setter" "CanonActualDataLengthSetter" "Canon Inc." "c:\program files\canon\mdl30\canonactualdatalengthsetter.ax"
+ "CyberLink Audio Decoder (HP_DT)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\hp\shared files\claud.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files\hp\dvdplay\kernel\movie\claudiocd.ax"
+ "CyberLink Demultiplexer (HP_DD2005)" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files\hp\dvdplay\kernel\movie\cldemuxer.ax"
+ "CyberLink DVD Navigator" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files\hp\dvdplay\kernel\movie\clnavx.ax"
+ "CyberLink Line21 Decoder Filter" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files\hp\dvdplay\kernel\movie\clline21.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files\hp\dvdplay\kernel\movie\clvidfx.ax"
+ "CyberLink Video/SP Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\hp\dvdplay\kernel\movie\clvsd.ax"
+ "DirectShow Tap" "Sonic DirectShow Tap Filter" "Sonic Solutions" "c:\program files\muvee technologies\muvee autoproducer 4.5 - hpd\directshowtap.ax"
+ "DivX Decoder Filter" "DivX ™ Decoder Filter" "DivXNetworks, Inc." "c:\windows\system32\divxdec.ax"
+ "Frame Eater" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Hauppauge WinTV Color Format Converter 2" "Hauppauge WinTV Color Format Converter 2" "Hauppauge Computer Works, Inc." "c:\windows\system32\hcwccnv2.ax"
+ "HP Frame Grabber Filter" "Videotoolkit - Directshow Filters" "Hewlett-Packard Development Company, L.P." "c:\program files\hp\digital imaging\bin\hpqdsftr.ax"
+ "HP MPEG-1 Encoder" "Videotoolkit - Directshow Filters" "Hewlett-Packard Development Company, L.P." "c:\program files\hp\digital imaging\bin\hpqdsftr.ax"
+ "HP Resize Filter" "Videotoolkit - Directshow Filters" "Hewlett-Packard Development Company, L.P." "c:\program files\hp\digital imaging\bin\hpqdsftr.ax"
+ "HP Rotate Filter" "Videotoolkit - Directshow Filters" "Hewlett-Packard Development Company, L.P." "c:\program files\hp\digital imaging\bin\hpqdsftr.ax"
+ "Indeo® audio software" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "LEAD MCMP/MJPEG Codec" "LEAD MCMP/MJPEG Codec" "LEAD Technologies, Inc." "c:\program files\hp\digital imaging\bin\lcodccmp.dll"
+ "LEAD MCMP/MJPEG Decoder" "LEAD MCMP/MJPEG Codec" "LEAD Technologies, Inc." "c:\program files\hp\digital imaging\bin\lcodccmp.dll"
+ "MPEG Layer-3 Decoder" "MPEG Layer-3 Audio Decoder" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecx.ax"
+ "muvee HXImage Filter" "HXImage Filter for muvee autoProducer" "muvee Technologies Pte Ltd" "c:\program files\common files\muvee technologies\030625\hximagefilter.ax"
+ "muvee Music Analyser" "Music Analyser Filter for muvee autoProducer" "muvee Technologies Pte Ltd" "c:\program files\common files\muvee technologies\030625\mvmanalyse.ax"
+ "muvee Video Analyser" "Video Analyser Filter for muvee autoProducer" "muvee Technologies Pte Ltd" "c:\program files\common files\muvee technologies\030625\mvvanalyse.ax"
+ "psWav Dest" "Canon Utilities Support Library" "Canon Inc." "c:\program files\canon\zoombrowser ex mcu\pswavdes.ax"
+ "QuickTime Encoder" "QuickTime Encoder" "muvee Technologies" "c:\program files\common files\muvee technologies\030625\quicktimesink.ax"
+ "QuickTime Source Filter" "QuickTimeSource Module" "" "c:\program files\common files\muvee technologies\030625\quicktimesource.dll"
+ "QuickTimeRenderer Filter" "QuickTimeRenderer Filter" "muvee Technologies Pte. Ltd." "c:\program files\common files\muvee technologies\030625\quicktimerenderer.ax"
+ "Record Queue" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "RTStreamSink" "RTStream Sink Filter" "Sonic Solutions" "c:\program files\muvee technologies\muvee autoproducer 4.5 - hpd\rtstreamsink.ax"
+ "ShotDetect" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Sonic Audio Depth Converter" "AudioDepthConverter" "Sonic Solutions" "c:\program files\muvee technologies\muvee autoproducer 4.5 - hpd\audiodepthconverter.ax"
+ "Sonic Cinemaster MPEG Splitter" "Sonic MPEG Splitter" "" "c:\program files\muvee technologies\muvee autoproducer 4.5 - hpd\sonicmpegsplitter.dll"
+ "Sonic MPEG Audio Decoder" "SonicMPEGAudio" "Sonic Solutions" "c:\program files\muvee technologies\muvee autoproducer 4.5 - hpd\sonicmpegaudio.dll"
+ "Sonic MPEG Video Decoder" "SonicMPEGVideo" "Sonic Solutions" "c:\program files\muvee technologies\muvee autoproducer 4.5 - hpd\sonicmpegvideo.dll"
+ "Stetch" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Tivo DirectShow Source Filter" "TiVo DirectShow Filter" "TiVo Inc." "c:\program files\common files\tivo shared\directshow\tivodirectshowfilter.dll"
+ "WIA Stream Snapshot Filter" "WIA Stream Snapshot Filter" "MyCompanyName" "c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "HP Standard TCP/IP Port" "Standard TCP/IP Port Monitor DLL" "Hewlett Packard" "c:\windows\system32\hptcpmon.dll"

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:22 PM

Posted 29 January 2013 - 01:46 PM

Press Windows +R key and type

cmd

Click ok and run these commands

cd \windows\system32
attrib > c:\attrib.txt


Now go to C drive and post the contents of attrib.txt log here

#15 12thman

12thman
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 29 January 2013 - 05:04 PM

A C:\WINDOWS\system32\$ncsp$.inf
A C:\WINDOWS\system32\$winnt$.inf
A C:\WINDOWS\system32\12520437.cpx
A C:\WINDOWS\system32\12520850.cpx
A C:\WINDOWS\system32\24wwxsp1.txt
A C:\WINDOWS\system32\6to4svc.dll
A C:\WINDOWS\system32\aaaamon.dll
C:\WINDOWS\system32\aaclient.dll
A C:\WINDOWS\system32\access.cpl
A C:\WINDOWS\system32\acctres.dll
A C:\WINDOWS\system32\accwiz.exe
A C:\WINDOWS\system32\acelpdec.ax
A C:\WINDOWS\system32\acledit.dll
A C:\WINDOWS\system32\aclui.dll
A C:\WINDOWS\system32\activeds.dll
A C:\WINDOWS\system32\activeds.tlb
A C:\WINDOWS\system32\actmovie.exe
A C:\WINDOWS\system32\actxprxy.dll
A C:\WINDOWS\system32\admparse.dll
A C:\WINDOWS\system32\adptif.dll
A C:\WINDOWS\system32\adsldp.dll
A C:\WINDOWS\system32\adsldpc.dll
A C:\WINDOWS\system32\adsmsext.dll
A C:\WINDOWS\system32\adsnds.dll
A C:\WINDOWS\system32\adsnt.dll
A C:\WINDOWS\system32\adsnw.dll
A C:\WINDOWS\system32\advapi32.dll
A C:\WINDOWS\system32\advpack.dll
A C:\WINDOWS\system32\advpack.dll.mui
A C:\WINDOWS\system32\ahui.exe
A C:\WINDOWS\system32\alg.exe
A C:\WINDOWS\system32\alrsvc.dll
A C:\WINDOWS\system32\ALSNDMGR.CPL
A C:\WINDOWS\system32\amcompat.tlb
A C:\WINDOWS\system32\amstream.dll
A C:\WINDOWS\system32\ansi.sys
A C:\WINDOWS\system32\AOLParconLink.exe
A C:\WINDOWS\system32\apcups.dll
A C:\WINDOWS\system32\append.exe
A C:\WINDOWS\system32\apphelp.dll
A C:\WINDOWS\system32\appmgmts.dll
A C:\WINDOWS\system32\appmgr.dll
A C:\WINDOWS\system32\appwiz.cpl
A C:\WINDOWS\system32\arp.exe
A C:\WINDOWS\system32\asctrls.ocx
A C:\WINDOWS\system32\asferror.dll
A C:\WINDOWS\system32\ASOROSet.bin
A C:\WINDOWS\system32\asr_fmt.exe
A C:\WINDOWS\system32\asr_ldm.exe
A C:\WINDOWS\system32\asr_pfu.exe
A C:\WINDOWS\system32\asycfilt.dll
A C:\WINDOWS\system32\at.exe
C:\WINDOWS\system32\ati2cqag.dll
C:\WINDOWS\system32\ati2dvaa.dll
C:\WINDOWS\system32\ati2dvag.dll
C:\WINDOWS\system32\ati3d1ag.dll
C:\WINDOWS\system32\ati3duag.dll
C:\WINDOWS\system32\ativdaxx.ax
C:\WINDOWS\system32\ativmvxx.ax
C:\WINDOWS\system32\ativtmxx.dll
C:\WINDOWS\system32\ativvaxx.dll
A C:\WINDOWS\system32\atkctrs.dll
A C:\WINDOWS\system32\atl.dll
A C:\WINDOWS\system32\atl100.dll
A C:\WINDOWS\system32\atl70.dll
A C:\WINDOWS\system32\atl71.dll
A C:\WINDOWS\system32\atmadm.exe
A C:\WINDOWS\system32\atmfd.dll
A C:\WINDOWS\system32\atmlib.dll
A C:\WINDOWS\system32\atmpvcno.dll
A C:\WINDOWS\system32\atrace.dll
A C:\WINDOWS\system32\attrib.exe
A C:\WINDOWS\system32\audiodev.dll
A C:\WINDOWS\system32\audiosrv.dll
A C:\WINDOWS\system32\auditusr.exe
A C:\WINDOWS\system32\authz.dll
A C:\WINDOWS\system32\autochk.exe
A C:\WINDOWS\system32\autoconv.exe
A C:\WINDOWS\system32\autodisc.dll
A C:\WINDOWS\system32\AUTOEXEC.NT
A C:\WINDOWS\system32\autofmt.exe
A C:\WINDOWS\system32\autolfn.exe
A C:\WINDOWS\system32\avicap.dll
A C:\WINDOWS\system32\avicap32.dll
A C:\WINDOWS\system32\avifil32.dll
A C:\WINDOWS\system32\avifile.dll
A C:\WINDOWS\system32\avmeter.dll
A C:\WINDOWS\system32\avtapi.dll
A C:\WINDOWS\system32\avwav.dll
C:\WINDOWS\system32\azroles.dll
A C:\WINDOWS\system32\basesrv.dll
A C:\WINDOWS\system32\batmeter.dll
A C:\WINDOWS\system32\batt.dll
A C:\WINDOWS\system32\bcbmm.dll
A C:\WINDOWS\system32\bcbsmp50.bpl
A C:\WINDOWS\system32\bfc42.dll
A C:\WINDOWS\system32\bfc42d.dll
A C:\WINDOWS\system32\bidispl.dll
A C:\WINDOWS\system32\bios1.rom
A C:\WINDOWS\system32\bios4.rom
A C:\WINDOWS\system32\bitsprx2.dll
A C:\WINDOWS\system32\bitsprx3.dll
C:\WINDOWS\system32\bitsprx4.dll
A C:\WINDOWS\system32\blackbox.dll
A C:\WINDOWS\system32\blastcln.exe
A C:\WINDOWS\system32\bootcfg.exe
A C:\WINDOWS\system32\bootok.exe
A C:\WINDOWS\system32\bootvid.dll
A C:\WINDOWS\system32\bootvrfy.exe
A C:\WINDOWS\system32\bopomofo.uce
A C:\WINDOWS\system32\borlndmm.dll
A C:\WINDOWS\system32\browselc.dll
A C:\WINDOWS\system32\browser.dll
A C:\WINDOWS\system32\browseui.dll
A C:\WINDOWS\system32\browsewm.dll
A C:\WINDOWS\system32\bthci.dll
A C:\WINDOWS\system32\bthprops.cpl
A C:\WINDOWS\system32\bthserv.dll
A C:\WINDOWS\system32\btpanui.dll
A C:\WINDOWS\system32\cabinet.dll
A C:\WINDOWS\system32\cabview.dll
A C:\WINDOWS\system32\cacls.exe
A C:\WINDOWS\system32\calc.exe
A C:\WINDOWS\system32\camocx.dll
A C:\WINDOWS\system32\capesnpn.dll
A C:\WINDOWS\system32\capicom.dll
A C:\WINDOWS\system32\cards.dll
A C:\WINDOWS\system32\catsrv.dll
A C:\WINDOWS\system32\catsrvps.dll
A C:\WINDOWS\system32\catsrvut.dll
A C:\WINDOWS\system32\cc3250.dll
A C:\WINDOWS\system32\cc3250mt.dll
A C:\WINDOWS\system32\ccfgnt.dll
A C:\WINDOWS\system32\cdfview.dll
A C:\WINDOWS\system32\cdintf250.dll
A C:\WINDOWS\system32\cdm.dll
A C:\WINDOWS\system32\cdmodem.dll
A C:\WINDOWS\system32\cdosys.dll
A HR C:\WINDOWS\system32\cdplayer.exe.manifest
A C:\WINDOWS\system32\certcli.dll
A C:\WINDOWS\system32\certmgr.dll
A C:\WINDOWS\system32\certmgr.msc
A C:\WINDOWS\system32\cewmdm.dll
A C:\WINDOWS\system32\cfgbkend.dll
A C:\WINDOWS\system32\cfgmgr32.dll
A C:\WINDOWS\system32\charmap.exe
A C:\WINDOWS\system32\chcp.com
A C:\WINDOWS\system32\chkdsk.exe
A C:\WINDOWS\system32\chkntfs.exe
A C:\WINDOWS\system32\CHODDI.SYS
A C:\WINDOWS\system32\ciadmin.dll
A C:\WINDOWS\system32\ciadv.msc
A C:\WINDOWS\system32\cic.dll
A C:\WINDOWS\system32\cidaemon.exe
A C:\WINDOWS\system32\ciodm.dll
A C:\WINDOWS\system32\cipher.exe
A C:\WINDOWS\system32\cisvc.exe
A C:\WINDOWS\system32\ckcnv.exe
A C:\WINDOWS\system32\clb.dll
A C:\WINDOWS\system32\clbcatex.dll
A C:\WINDOWS\system32\clbcatq.dll
A C:\WINDOWS\system32\cleanmgr.exe
A C:\WINDOWS\system32\cliconf.chm
A C:\WINDOWS\system32\cliconfg.dll
A C:\WINDOWS\system32\cliconfg.exe
A C:\WINDOWS\system32\cliconfg.rll
A C:\WINDOWS\system32\clipbrd.exe
A C:\WINDOWS\system32\clipsrv.exe
A C:\WINDOWS\system32\clusapi.dll
A C:\WINDOWS\system32\cmcfg32.dll
A C:\WINDOWS\system32\cmd.exe
A C:\WINDOWS\system32\cmdial32.dll
A C:\WINDOWS\system32\cmdl32.exe
A C:\WINDOWS\system32\cmdlib.wsc
A C:\WINDOWS\system32\cmmgr32.hlp
A C:\WINDOWS\system32\cmmon32.exe
A C:\WINDOWS\system32\cmos.ram
A C:\WINDOWS\system32\cmpbk32.dll
A C:\WINDOWS\system32\cmprops.dll
A C:\WINDOWS\system32\cmsetacl.dll
A C:\WINDOWS\system32\cmstp.exe
A C:\WINDOWS\system32\cmutil.dll
A C:\WINDOWS\system32\cnbjmon.dll
A C:\WINDOWS\system32\cnetcfg.dll
A C:\WINDOWS\system32\cnvfat.dll
A C:\WINDOWS\system32\colbact.dll
A C:\WINDOWS\system32\comaddin.dll
A C:\WINDOWS\system32\comcat.dll
A C:\WINDOWS\system32\comctl32.dll
A C:\WINDOWS\system32\comctl32.ocx
A C:\WINDOWS\system32\comdlg32.dll
A C:\WINDOWS\system32\comm.drv
A C:\WINDOWS\system32\command.com
A C:\WINDOWS\system32\commdlg.dll
A C:\WINDOWS\system32\comp.exe
A C:\WINDOWS\system32\compact.exe
A C:\WINDOWS\system32\compatui.dll
A C:\WINDOWS\system32\compmgmt.msc
A C:\WINDOWS\system32\compobj.dll
A C:\WINDOWS\system32\compstui.dll
A C:\WINDOWS\system32\comrepl.dll
A C:\WINDOWS\system32\comres.dll
C:\WINDOWS\system32\comsdupd.exe
A C:\WINDOWS\system32\comsnap.dll
A C:\WINDOWS\system32\comsvcs.dll
A C:\WINDOWS\system32\comuid.dll
A C:\WINDOWS\system32\CONFIG.NT
A C:\WINDOWS\system32\CONFIG.TMP
A C:\WINDOWS\system32\confmsp.dll
A C:\WINDOWS\system32\conime.exe
A C:\WINDOWS\system32\console.dll
A C:\WINDOWS\system32\control.exe
A C:\WINDOWS\system32\convert.exe
A C:\WINDOWS\system32\corpol.dll
A C:\WINDOWS\system32\country.sys
A C:\WINDOWS\system32\cPC_DMIRD.dll
C:\WINDOWS\system32\credssp.dll
A C:\WINDOWS\system32\credui.dll
A C:\WINDOWS\system32\crtdll.dll
A C:\WINDOWS\system32\crypt32.dll
A C:\WINDOWS\system32\cryptdlg.dll
A C:\WINDOWS\system32\cryptdll.dll
A C:\WINDOWS\system32\cryptext.dll
A C:\WINDOWS\system32\cryptnet.dll
A C:\WINDOWS\system32\cryptsvc.dll
A C:\WINDOWS\system32\cryptui.dll
A C:\WINDOWS\system32\cscdll.dll
A C:\WINDOWS\system32\cscript.exe
A C:\WINDOWS\system32\cscui.dll
A C:\WINDOWS\system32\csrsrv.dll
A C:\WINDOWS\system32\csrss.exe
A C:\WINDOWS\system32\csseqchk.dll
A C:\WINDOWS\system32\ctfmon.exe
A C:\WINDOWS\system32\ctl3d32.dll
A R C:\WINDOWS\system32\ctl3dv2.dll
A C:\WINDOWS\system32\ctype.nls
A C:\WINDOWS\system32\c_037.nls
A C:\WINDOWS\system32\c_10000.nls
A C:\WINDOWS\system32\c_10006.nls
A C:\WINDOWS\system32\c_10007.nls
A C:\WINDOWS\system32\c_10010.nls
A C:\WINDOWS\system32\c_10017.nls
A C:\WINDOWS\system32\c_10029.nls
A C:\WINDOWS\system32\c_10079.nls
A C:\WINDOWS\system32\c_10081.nls
A C:\WINDOWS\system32\c_10082.nls
A C:\WINDOWS\system32\c_1026.nls
A C:\WINDOWS\system32\c_1250.nls
A C:\WINDOWS\system32\c_1251.nls
A C:\WINDOWS\system32\c_1252.nls
A C:\WINDOWS\system32\c_1253.nls
A C:\WINDOWS\system32\c_1254.nls
A C:\WINDOWS\system32\c_1255.nls
A C:\WINDOWS\system32\c_1256.nls
A C:\WINDOWS\system32\c_1257.nls
A C:\WINDOWS\system32\c_1258.nls
A C:\WINDOWS\system32\c_20127.nls
A C:\WINDOWS\system32\c_20261.nls
A C:\WINDOWS\system32\c_20866.nls
A C:\WINDOWS\system32\c_20905.nls
A C:\WINDOWS\system32\c_21866.nls
A C:\WINDOWS\system32\c_28591.nls
A C:\WINDOWS\system32\c_28592.nls
A C:\WINDOWS\system32\c_28593.nls
A C:\WINDOWS\system32\C_28594.NLS
A C:\WINDOWS\system32\C_28595.NLS
A C:\WINDOWS\system32\C_28597.NLS
A C:\WINDOWS\system32\c_28598.nls
A C:\WINDOWS\system32\c_28599.nls
A C:\WINDOWS\system32\c_28603.nls
A C:\WINDOWS\system32\c_28605.nls
A C:\WINDOWS\system32\c_437.nls
A C:\WINDOWS\system32\c_500.nls
A C:\WINDOWS\system32\c_737.nls
A C:\WINDOWS\system32\c_775.nls
A C:\WINDOWS\system32\c_850.nls
A C:\WINDOWS\system32\c_852.nls
A C:\WINDOWS\system32\c_855.nls
A C:\WINDOWS\system32\c_857.nls
A C:\WINDOWS\system32\c_860.nls
A C:\WINDOWS\system32\c_861.nls
A C:\WINDOWS\system32\c_863.nls
A C:\WINDOWS\system32\c_865.nls
A C:\WINDOWS\system32\c_866.nls
A C:\WINDOWS\system32\c_869.nls
A C:\WINDOWS\system32\c_874.nls
A C:\WINDOWS\system32\c_875.nls
A C:\WINDOWS\system32\c_932.nls
A C:\WINDOWS\system32\c_936.nls
A C:\WINDOWS\system32\c_949.nls
A C:\WINDOWS\system32\c_950.nls
A C:\WINDOWS\system32\d3d8.dll
A C:\WINDOWS\system32\d3d8thk.dll
A C:\WINDOWS\system32\d3d9.dll
A C:\WINDOWS\system32\d3d9caps.dat
A C:\WINDOWS\system32\d3dim.dll
A C:\WINDOWS\system32\d3dim700.dll
A C:\WINDOWS\system32\d3dpmesh.dll
A C:\WINDOWS\system32\d3dramp.dll
A C:\WINDOWS\system32\d3drm.dll
A C:\WINDOWS\system32\d3dx9_27.dll
A C:\WINDOWS\system32\d3dxof.dll
A C:\WINDOWS\system32\danim.dll
A C:\WINDOWS\system32\dataclen.dll
A C:\WINDOWS\system32\datime.dll
A C:\WINDOWS\system32\davclnt.dll
A C:\WINDOWS\system32\davinci.scr
A C:\WINDOWS\system32\daxctle.ocx
A C:\WINDOWS\system32\dbgeng.dll
A C:\WINDOWS\system32\dbghelp.dll
A C:\WINDOWS\system32\dbmsrpcn.dll
A C:\WINDOWS\system32\dbnetlib.dll
A C:\WINDOWS\system32\dbnmpntw.dll
A C:\WINDOWS\system32\dcache.bin
A C:\WINDOWS\system32\dciman32.dll
A C:\WINDOWS\system32\dcomcnfg.exe
A C:\WINDOWS\system32\ddeml.dll
A C:\WINDOWS\system32\ddeshare.exe
A C:\WINDOWS\system32\ddraw.dll
A C:\WINDOWS\system32\ddrawex.dll
A C:\WINDOWS\system32\debug.exe
A C:\WINDOWS\system32\defrag.exe
A C:\WINDOWS\system32\delphimm.dll
A C:\WINDOWS\system32\deployJava1.dll
A C:\WINDOWS\system32\desk.cpl
A C:\WINDOWS\system32\deskadp.dll
A C:\WINDOWS\system32\deskmon.dll
A C:\WINDOWS\system32\deskperf.dll
A C:\WINDOWS\system32\desktop.ini
A C:\WINDOWS\system32\devenum.dll
A C:\WINDOWS\system32\devmgmt.msc
A C:\WINDOWS\system32\devmgr.dll
A C:\WINDOWS\system32\dfrg.msc
A C:\WINDOWS\system32\dfrgfat.exe
A C:\WINDOWS\system32\dfrgntfs.exe
A C:\WINDOWS\system32\dfrgres.dll
A C:\WINDOWS\system32\dfrgsnap.dll
A C:\WINDOWS\system32\dfrgui.dll
A C:\WINDOWS\system32\dfshim.dll
A C:\WINDOWS\system32\dfsshlex.dll
A C:\WINDOWS\system32\dgnet.dll
A C:\WINDOWS\system32\dgrpsetu.dll
A C:\WINDOWS\system32\dgsetup.dll
A C:\WINDOWS\system32\dhcpcsvc.dll
A C:\WINDOWS\system32\dhcpmon.dll
C:\WINDOWS\system32\dhcpqec.dll
A C:\WINDOWS\system32\dhcpsapi.dll
A C:\WINDOWS\system32\diactfrm.dll
A C:\WINDOWS\system32\diantz.exe
A C:\WINDOWS\system32\digest.dll
A C:\WINDOWS\system32\dimap.dll
C:\WINDOWS\system32\dimsntfy.dll
C:\WINDOWS\system32\dimsroam.dll
A C:\WINDOWS\system32\dinput.dll
A C:\WINDOWS\system32\dinput8.dll
A C:\WINDOWS\system32\diskcomp.com
A C:\WINDOWS\system32\diskcopy.com
A C:\WINDOWS\system32\diskcopy.dll
A C:\WINDOWS\system32\diskmgmt.msc
A C:\WINDOWS\system32\diskpart.exe
A C:\WINDOWS\system32\diskperf.exe
A C:\WINDOWS\system32\dispex.dll
A C:\WINDOWS\system32\Divxdec.ax
A C:\WINDOWS\system32\dllhost.exe
A C:\WINDOWS\system32\dllhst3g.exe
A C:\WINDOWS\system32\dmadmin.exe
A C:\WINDOWS\system32\dmband.dll
A C:\WINDOWS\system32\dmcompos.dll
A C:\WINDOWS\system32\dmconfig.dll
A C:\WINDOWS\system32\dmdlgs.dll
A C:\WINDOWS\system32\dmdskmgr.dll
A C:\WINDOWS\system32\dmdskres.dll
A C:\WINDOWS\system32\dmime.dll
A C:\WINDOWS\system32\dmintf.dll
A C:\WINDOWS\system32\dmloader.dll
A C:\WINDOWS\system32\dmocx.dll
A C:\WINDOWS\system32\dmremote.exe
A C:\WINDOWS\system32\dmscript.dll
A C:\WINDOWS\system32\dmserver.dll
A C:\WINDOWS\system32\dmstyle.dll
A C:\WINDOWS\system32\dmsynth.dll
A C:\WINDOWS\system32\dmusic.dll
A C:\WINDOWS\system32\dmutil.dll
A C:\WINDOWS\system32\dmview.ocx
A C:\WINDOWS\system32\dns-sd.exe
A C:\WINDOWS\system32\dnsapi.dll
A C:\WINDOWS\system32\dnsrslvr.dll
A C:\WINDOWS\system32\dnssd.dll
A C:\WINDOWS\system32\doc.ico
A C:\WINDOWS\system32\docprop.dll
A C:\WINDOWS\system32\docprop2.dll
A C:\WINDOWS\system32\doskey.exe
A C:\WINDOWS\system32\dosx.exe
C:\WINDOWS\system32\dot3api.dll
C:\WINDOWS\system32\dot3cfg.dll
C:\WINDOWS\system32\dot3dlg.dll
C:\WINDOWS\system32\dot3gpclnt.dll
C:\WINDOWS\system32\dot3msm.dll
C:\WINDOWS\system32\dot3svc.dll
C:\WINDOWS\system32\dot3ui.dll
A C:\WINDOWS\system32\dpcdll.dll
A C:\WINDOWS\system32\dplay.dll
A C:\WINDOWS\system32\dplaysvr.exe
A C:\WINDOWS\system32\dplayx.dll
A C:\WINDOWS\system32\dpmodemx.dll
A C:\WINDOWS\system32\dpnaddr.dll
A C:\WINDOWS\system32\dpnet.dll
A C:\WINDOWS\system32\dpnhpast.dll
A C:\WINDOWS\system32\dpnhupnp.dll
A C:\WINDOWS\system32\dpnlobby.dll
A C:\WINDOWS\system32\dpnmodem.dll
A C:\WINDOWS\system32\dpnsvr.exe
A C:\WINDOWS\system32\dpnwsock.dll
A C:\WINDOWS\system32\dpserial.dll
A C:\WINDOWS\system32\dpvacm.dll
A C:\WINDOWS\system32\dpvoice.dll
A C:\WINDOWS\system32\dpvsetup.exe
A C:\WINDOWS\system32\dpvvox.dll
A C:\WINDOWS\system32\dpwsock.dll
A C:\WINDOWS\system32\dpwsockx.dll
A C:\WINDOWS\system32\driverquery.exe
A C:\WINDOWS\system32\drmclien.dll
A C:\WINDOWS\system32\drmstor.dll
A C:\WINDOWS\system32\drmupgds.exe
A C:\WINDOWS\system32\drmv2clt.dll
A C:\WINDOWS\system32\drprov.dll
A C:\WINDOWS\system32\drwatson.exe
A C:\WINDOWS\system32\drwtsn32.exe
A C:\WINDOWS\system32\ds16gt.dLL
A C:\WINDOWS\system32\ds32gt.dll
A C:\WINDOWS\system32\dsauth.dll
A C:\WINDOWS\system32\dsdmo.dll
A C:\WINDOWS\system32\dsdmoprp.dll
A C:\WINDOWS\system32\dskquota.dll
A C:\WINDOWS\system32\dskquoui.dll
A C:\WINDOWS\system32\dsound.dll
A C:\WINDOWS\system32\dsound.vxd
A C:\WINDOWS\system32\dsound3d.dll
A C:\WINDOWS\system32\dsprop.dll
A C:\WINDOWS\system32\dsprpres.dll
A C:\WINDOWS\system32\dsquery.dll
A C:\WINDOWS\system32\dssec.dat
A C:\WINDOWS\system32\dssec.dll
A C:\WINDOWS\system32\dssenh.dll
A C:\WINDOWS\system32\dsuiext.dll
A C:\WINDOWS\system32\dswave.dll
A C:\WINDOWS\system32\dumprep.exe
A C:\WINDOWS\system32\duser.dll
A C:\WINDOWS\system32\dvdplay.exe
A C:\WINDOWS\system32\dvdupgrd.exe
A C:\WINDOWS\system32\dwwin.exe
A C:\WINDOWS\system32\dx7vb.dll
A C:\WINDOWS\system32\dx8vb.dll
A C:\WINDOWS\system32\dxdiag.exe
A C:\WINDOWS\system32\dxdiagn.dll
A C:\WINDOWS\system32\dxmasf.dll
A C:\WINDOWS\system32\dxtmsft.dll
A C:\WINDOWS\system32\dxtrans.dll
A C:\WINDOWS\system32\dxva2.dll
A C:\WINDOWS\system32\e100b325.din
A C:\WINDOWS\system32\e100bmsg.dll
C:\WINDOWS\system32\eapolqec.dll
C:\WINDOWS\system32\eapp3hst.dll
C:\WINDOWS\system32\eappcfg.dll
C:\WINDOWS\system32\eappgnui.dll
C:\WINDOWS\system32\eapphost.dll
C:\WINDOWS\system32\eappprxy.dll
C:\WINDOWS\system32\eapqec.dll
C:\WINDOWS\system32\eapsvc.dll
A C:\WINDOWS\system32\edit.com
A C:\WINDOWS\system32\edit.hlp
A C:\WINDOWS\system32\edlin.exe
A C:\WINDOWS\system32\efsadu.dll
A C:\WINDOWS\system32\ega.cpi
A C:\WINDOWS\system32\els.dll
A C:\WINDOWS\system32\emptyregdb.dat
A C:\WINDOWS\system32\encapi.dll
A C:\WINDOWS\system32\encdec.dll
A C:\WINDOWS\system32\EPPICLocal_EN.cfg
A C:\WINDOWS\system32\EPPICLocal_JP.cfg
A C:\WINDOWS\system32\EPPicMgr.dll
A C:\WINDOWS\system32\EPPICPattern1.dat
A C:\WINDOWS\system32\EPPICPattern2.dat
A C:\WINDOWS\system32\EPPICPresetData_JP.dat
A C:\WINDOWS\system32\EPPICPrinterDB.dat
A C:\WINDOWS\system32\EpPicPrt.dll
A C:\WINDOWS\system32\EqnClass.Dll
A C:\WINDOWS\system32\ersvc.dll
A C:\WINDOWS\system32\es.dll
A C:\WINDOWS\system32\esent.dll
A C:\WINDOWS\system32\esent97.dll
A C:\WINDOWS\system32\esentprf.dll
A C:\WINDOWS\system32\esentprf.hxx
A C:\WINDOWS\system32\esentprf.ini
A C:\WINDOWS\system32\esentutl.exe
A C:\WINDOWS\system32\eudcedit.exe
A C:\WINDOWS\system32\eula.txt
A C:\WINDOWS\system32\eventcls.dll
A C:\WINDOWS\system32\eventcreate.exe
A C:\WINDOWS\system32\eventlog.dll
A C:\WINDOWS\system32\eventquery.vbs
A C:\WINDOWS\system32\eventtriggers.exe
A C:\WINDOWS\system32\eventvwr.exe
A C:\WINDOWS\system32\eventvwr.msc
A C:\WINDOWS\system32\evr.dll
A C:\WINDOWS\system32\exe2bin.exe
A C:\WINDOWS\system32\expand.exe
A C:\WINDOWS\system32\expsrv.dll
C:\WINDOWS\system32\extmgr.dll
A C:\WINDOWS\system32\extrac32.exe
A C:\WINDOWS\system32\exts.dll
A C:\WINDOWS\system32\fastopen.exe
A C:\WINDOWS\system32\faultrep.dll
C:\WINDOWS\system32\faxpatch.exe
A C:\WINDOWS\system32\fc.exe
A C:\WINDOWS\system32\fde.dll
A C:\WINDOWS\system32\fdeploy.dll
A C:\WINDOWS\system32\feclient.dll
A C:\WINDOWS\system32\filemgmt.dll
A C:\WINDOWS\system32\find.exe
A C:\WINDOWS\system32\findstr.exe
A C:\WINDOWS\system32\finger.exe
A C:\WINDOWS\system32\firewall.cpl
A C:\WINDOWS\system32\fixmapi.exe
A C:\WINDOWS\system32\FlashPlayerApp.exe
A C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
A C:\WINDOWS\system32\fldrclnr.dll
A C:\WINDOWS\system32\fltlib.dll
A C:\WINDOWS\system32\fltmc.exe
A C:\WINDOWS\system32\FM20.DLL
A C:\WINDOWS\system32\FM20ENU.DLL
A C:\WINDOWS\system32\fmifs.dll
A C:\WINDOWS\system32\FNTCACHE.DAT
A C:\WINDOWS\system32\fontext.dll
A C:\WINDOWS\system32\fontsub.dll
A C:\WINDOWS\system32\fontview.exe
A C:\WINDOWS\system32\forcedos.exe
A C:\WINDOWS\system32\format.com
A C:\WINDOWS\system32\fpalsu.dll
A C:\WINDOWS\system32\framebuf.dll
A C:\WINDOWS\system32\freecell.exe
A C:\WINDOWS\system32\fsmgmt.msc
A C:\WINDOWS\system32\fsquirt.exe
A C:\WINDOWS\system32\fsusd.dll
A C:\WINDOWS\system32\fsutil.exe
A C:\WINDOWS\system32\ftp.exe
A C:\WINDOWS\system32\ftsrch.dll
A C:\WINDOWS\system32\ftutil2.dll
A C:\WINDOWS\system32\fwcfg.dll
A C:\WINDOWS\system32\fxsapi.dll
A C:\WINDOWS\system32\fxscfgwz.dll
A C:\WINDOWS\system32\fxsclnt.exe
A C:\WINDOWS\system32\fxsclntR.dll
A C:\WINDOWS\system32\fxscom.dll
A C:\WINDOWS\system32\fxscomex.dll
A C:\WINDOWS\system32\fxscount.h
A C:\WINDOWS\system32\fxscover.exe
A C:\WINDOWS\system32\fxsdrv.dll
A C:\WINDOWS\system32\fxsevent.dll
A C:\WINDOWS\system32\fxsext32.dll
A C:\WINDOWS\system32\fxsmon.dll
A C:\WINDOWS\system32\fxsperf.dll
A C:\WINDOWS\system32\fxsperf.ini
A C:\WINDOWS\system32\fxsres.dll
A C:\WINDOWS\system32\fxsroute.dll
A C:\WINDOWS\system32\fxssend.exe
A C:\WINDOWS\system32\fxsst.dll
A C:\WINDOWS\system32\fxssvc.exe
A C:\WINDOWS\system32\fxst30.dll
A C:\WINDOWS\system32\fxstiff.dll
A C:\WINDOWS\system32\fxsui.dll
A C:\WINDOWS\system32\fxswzrd.dll
A C:\WINDOWS\system32\fxsxp32.dll
A C:\WINDOWS\system32\g711codc.ax
A C:\WINDOWS\system32\gan_adapter.inf
A C:\WINDOWS\system32\gan_adapter.sys
A C:\WINDOWS\system32\gb2312.uce
A C:\WINDOWS\system32\gcdef.dll
A C:\WINDOWS\system32\gdi.exe
A C:\WINDOWS\system32\gdi32.dll
A C:\WINDOWS\system32\gdiplus.dll
A C:\WINDOWS\system32\GEARAspi.dll
A C:\WINDOWS\system32\geo.nls
A C:\WINDOWS\system32\getmac.exe
A C:\WINDOWS\system32\getuname.dll
A C:\WINDOWS\system32\glmf32.dll
A C:\WINDOWS\system32\glu32.dll
A C:\WINDOWS\system32\gpedit.dll
A C:\WINDOWS\system32\gpedit.msc
A C:\WINDOWS\system32\gpkcsp.dll
A C:\WINDOWS\system32\gpkrsrc.dll
A C:\WINDOWS\system32\gpresult.exe
A C:\WINDOWS\system32\gptext.dll
A C:\WINDOWS\system32\gpupdate.exe
A C:\WINDOWS\system32\graftabl.com
A C:\WINDOWS\system32\graphics.com
A C:\WINDOWS\system32\graphics.pro
A C:\WINDOWS\system32\grpconv.exe
A C:\WINDOWS\system32\h323.tsp
A C:\WINDOWS\system32\h323log.txt
A C:\WINDOWS\system32\h323msp.dll
A C:\WINDOWS\system32\HAL.DLL
A C:\WINDOWS\system32\hccoin.dll
A C:\WINDOWS\system32\hcwCCnv2.ax
A C:\WINDOWS\system32\hcwECP.ax
A C:\WINDOWS\system32\hcwPrxA2.ax
A C:\WINDOWS\system32\hcwUtl32.dll
A C:\WINDOWS\system32\hcwXDS.dll
A C:\WINDOWS\system32\HdAProp.dll
A C:\WINDOWS\system32\HdAShCut.exe
A C:\WINDOWS\system32\HdAudRes.dll
A C:\WINDOWS\system32\hdwwiz.cpl
A C:\WINDOWS\system32\help.exe
A C:\WINDOWS\system32\hhctrl.ocx
A C:\WINDOWS\system32\hhsetup.dll
A C:\WINDOWS\system32\hid.dll
A C:\WINDOWS\system32\hidphone.tsp
A C:\WINDOWS\system32\hidserv.dll
A C:\WINDOWS\system32\himem.sys
A C:\WINDOWS\system32\hlink.dll
A R C:\WINDOWS\system32\hlp95en.dll
A C:\WINDOWS\system32\hnetcfg.dll
A C:\WINDOWS\system32\hnetmon.dll
A C:\WINDOWS\system32\hnetwiz.dll
A C:\WINDOWS\system32\homepage.inf
A C:\WINDOWS\system32\hostname.exe
A C:\WINDOWS\system32\hotplug.dll
A C:\WINDOWS\system32\hpfinst.dll
A C:\WINDOWS\system32\HPHap04.exe
A C:\WINDOWS\system32\Hphc3204.dll
C:\WINDOWS\system32\hphidr11.dll
C:\WINDOWS\system32\hphipm11.exe
C:\WINDOWS\system32\hphipr11.dll
A C:\WINDOWS\system32\hphmon04.exe
A C:\WINDOWS\system32\hphsav04.exe
C:\WINDOWS\system32\hpodinet.dll
A R C:\WINDOWS\system32\HPODXPAT.DLL
A C:\WINDOWS\system32\hpreg.dll
A C:\WINDOWS\system32\HPTcpMib.dll
A C:\WINDOWS\system32\HPTcpMon.dll
A C:\WINDOWS\system32\hptcpmon.ini
A C:\WINDOWS\system32\HPTcpMUI.dll
A C:\WINDOWS\system32\hptcpmui.hlp
A C:\WINDOWS\system32\hpzcoi05.dll
A C:\WINDOWS\system32\hpzcon05.dll
A C:\WINDOWS\system32\HPZidr12.dll
A C:\WINDOWS\system32\HPZinw12.exe
A C:\WINDOWS\system32\HPZipm12.exe
A C:\WINDOWS\system32\HPZipr12.dll
A C:\WINDOWS\system32\HPZipt12.dll
A C:\WINDOWS\system32\HPZisn12.dll
A C:\WINDOWS\system32\hpzjfw01.dll
A C:\WINDOWS\system32\hpzjrd01.dll
A C:\WINDOWS\system32\hpzjsn01.dll
C:\WINDOWS\system32\hsfcisp2.dll
A C:\WINDOWS\system32\hticons.dll
A C:\WINDOWS\system32\html.iec
A C:\WINDOWS\system32\httpapi.dll
A C:\WINDOWS\system32\htui.dll
A C:\WINDOWS\system32\hypertrm.dll
A C:\WINDOWS\system32\iac25_32.ax
C:\WINDOWS\system32\iacenc.dll
A C:\WINDOWS\system32\iasacct.dll
A C:\WINDOWS\system32\iasads.dll
A C:\WINDOWS\system32\iashlpr.dll
A C:\WINDOWS\system32\iasnap.dll
A C:\WINDOWS\system32\iaspolcy.dll
A C:\WINDOWS\system32\iasrad.dll
A C:\WINDOWS\system32\iasrecst.dll
A C:\WINDOWS\system32\iassam.dll
A C:\WINDOWS\system32\iassdo.dll
A C:\WINDOWS\system32\iassvcs.dll
A C:\WINDOWS\system32\ibevnt50.bpl
A C:\WINDOWS\system32\icaapi.dll
A C:\WINDOWS\system32\icardagt.exe
A C:\WINDOWS\system32\icardie.dll
A C:\WINDOWS\system32\icardres.dll
A C:\WINDOWS\system32\icardres.dll.mui
A C:\WINDOWS\system32\iccvid.dll
A C:\WINDOWS\system32\icfgnt5.dll
A C:\WINDOWS\system32\icm32.dll
A C:\WINDOWS\system32\icmp.dll
A C:\WINDOWS\system32\icmui.dll
A C:\WINDOWS\system32\icrav03.rat
A C:\WINDOWS\system32\icwdial.dll
A C:\WINDOWS\system32\icwphbk.dll
A C:\WINDOWS\system32\ideograf.uce
A C:\WINDOWS\system32\idndl.dll
A C:\WINDOWS\system32\idq.dll
C:\WINDOWS\system32\ie4uinit.exe
C:\WINDOWS\system32\ie4uinit.exe.mui
C:\WINDOWS\system32\IE7Eula.rtf
C:\WINDOWS\system32\IE8Eula.rtf
A C:\WINDOWS\system32\ieakeng.dll
A C:\WINDOWS\system32\ieaksie.dll
A C:\WINDOWS\system32\ieakui.dll
A C:\WINDOWS\system32\ieapfltr.dat
A C:\WINDOWS\system32\ieapfltr.dll
C:\WINDOWS\system32\iedkcs32.dll
C:\WINDOWS\system32\iedkcs32.dll.mui
A C:\WINDOWS\system32\ieframe.dll
A C:\WINDOWS\system32\ieframe.dll.mui
A C:\WINDOWS\system32\iepeers.dll
A C:\WINDOWS\system32\iernonce.dll
A C:\WINDOWS\system32\iertutil.dll
A C:\WINDOWS\system32\iesetup.dll
A C:\WINDOWS\system32\ieudinit.exe
A C:\WINDOWS\system32\ieui.dll
A C:\WINDOWS\system32\ieuinit.inf
A C:\WINDOWS\system32\iexpress.exe
A C:\WINDOWS\system32\ifmon.dll
A C:\WINDOWS\system32\ifsutil.dll
A C:\WINDOWS\system32\igdetect.dll
A C:\WINDOWS\system32\igmpagnt.dll
A C:\WINDOWS\system32\iissuba.dll
A C:\WINDOWS\system32\ils.dll
A C:\WINDOWS\system32\imaadp32.acm
A C:\WINDOWS\system32\imagehlp.dll
A C:\WINDOWS\system32\imapi.exe
A C:\WINDOWS\system32\imeshare.dll
A C:\WINDOWS\system32\imgutil.dll
A C:\WINDOWS\system32\imm32.dll
A C:\WINDOWS\system32\inet50.bpl
A C:\WINDOWS\system32\inetcfg.dll
A C:\WINDOWS\system32\inetclnt.dll
A C:\WINDOWS\system32\inetcomm.dll
C:\WINDOWS\system32\inetcpl.cpl
A C:\WINDOWS\system32\inetcplc.dll
A C:\WINDOWS\system32\inetdb50.bpl
A C:\WINDOWS\system32\inetmib1.dll
A C:\WINDOWS\system32\inetpp.dll
A C:\WINDOWS\system32\inetppui.dll
A C:\WINDOWS\system32\inetres.dll
A C:\WINDOWS\system32\infocardapi.dll
A C:\WINDOWS\system32\infocardcpl.cpl
A C:\WINDOWS\system32\infosoft.dll
A C:\WINDOWS\system32\initpki.dll
A C:\WINDOWS\system32\INKED.DLL
A C:\WINDOWS\system32\input.dll
A C:\WINDOWS\system32\inseng.dll
A C:\WINDOWS\system32\instcat.sql
A C:\WINDOWS\system32\IntelNic.dll
A C:\WINDOWS\system32\intl.cpl
A C:\WINDOWS\system32\iologmsg.dll
A C:\WINDOWS\system32\ipconf.tsp
A C:\WINDOWS\system32\ipconfig.exe
A C:\WINDOWS\system32\iphlpapi.dll
A C:\WINDOWS\system32\ipmontr.dll
A C:\WINDOWS\system32\ipnathlp.dll
A C:\WINDOWS\system32\ippromon.dll
A C:\WINDOWS\system32\iprop.dll
A C:\WINDOWS\system32\iprtprio.dll
A C:\WINDOWS\system32\iprtrmgr.dll
A C:\WINDOWS\system32\ipsec6.exe
A C:\WINDOWS\system32\ipsecsnp.dll
A C:\WINDOWS\system32\ipsecsvc.dll
A C:\WINDOWS\system32\ipsink.ax
A C:\WINDOWS\system32\ipsmsnap.dll
A C:\WINDOWS\system32\ipv6.exe
A C:\WINDOWS\system32\ipv6mon.dll
A C:\WINDOWS\system32\ipxmontr.dll
A C:\WINDOWS\system32\ipxpromn.dll
A C:\WINDOWS\system32\ipxrip.dll
A C:\WINDOWS\system32\ipxroute.exe
A C:\WINDOWS\system32\ipxrtmgr.dll
A C:\WINDOWS\system32\ipxsap.dll
A C:\WINDOWS\system32\ipxwan.dll
A C:\WINDOWS\system32\ir32_32.dll
A C:\WINDOWS\system32\ir41_32.ax
A C:\WINDOWS\system32\ir41_qc.dll
A C:\WINDOWS\system32\ir41_qcx.dll
A C:\WINDOWS\system32\ir50_32.dll
A C:\WINDOWS\system32\ir50_qc.dll
A C:\WINDOWS\system32\ir50_qcx.dll
A C:\WINDOWS\system32\irclass.dll
A C:\WINDOWS\system32\irprops.cpl
A C:\WINDOWS\system32\isign32.dll
A C:\WINDOWS\system32\isrdbg32.dll
A C:\WINDOWS\system32\ISUSPM.cpl
A C:\WINDOWS\system32\itircl.dll
A C:\WINDOWS\system32\itss.dll
A C:\WINDOWS\system32\iuengine.dll
A C:\WINDOWS\system32\ivfsrc.ax
A C:\WINDOWS\system32\ixsso.dll
A C:\WINDOWS\system32\iyuv_32.dll
A C:\WINDOWS\system32\java.exe
A C:\WINDOWS\system32\javacpl.cpl
A C:\WINDOWS\system32\javaw.exe
A C:\WINDOWS\system32\javaws.exe
A C:\WINDOWS\system32\jet500.dll
A C:\WINDOWS\system32\jgaw400.dll
A C:\WINDOWS\system32\jgdw400.dll
A C:\WINDOWS\system32\jgmd400.dll
A C:\WINDOWS\system32\jgpl400.dll
A C:\WINDOWS\system32\jgsd400.dll
A C:\WINDOWS\system32\jgsh400.dll
A C:\WINDOWS\system32\jobexec.dll
A C:\WINDOWS\system32\joy.cpl
A C:\WINDOWS\system32\jscript.dll
C:\WINDOWS\system32\jsproxy.dll
A C:\WINDOWS\system32\jupdate-1.5.0_05-b05.log
A C:\WINDOWS\system32\jupdate-1.6.0_20-b02.log
A C:\WINDOWS\system32\jupdate-1.6.0_29-b11.log
A C:\WINDOWS\system32\kanji_1.uce
A C:\WINDOWS\system32\kanji_2.uce
A C:\WINDOWS\system32\kb16.com
A C:\WINDOWS\system32\KBDAL.DLL
A C:\WINDOWS\system32\kbdaze.dll
A C:\WINDOWS\system32\kbdazel.dll
A C:\WINDOWS\system32\kbdbe.dll
A C:\WINDOWS\system32\kbdbene.dll
C:\WINDOWS\system32\kbdbhc.dll
A C:\WINDOWS\system32\kbdblr.dll
A C:\WINDOWS\system32\kbdbr.dll
A C:\WINDOWS\system32\kbdbu.dll
A C:\WINDOWS\system32\kbdca.dll
A C:\WINDOWS\system32\kbdcan.dll
A C:\WINDOWS\system32\kbdcr.dll
A C:\WINDOWS\system32\kbdcz.dll
A C:\WINDOWS\system32\kbdcz1.dll
A C:\WINDOWS\system32\kbdcz2.dll
A C:\WINDOWS\system32\kbdda.dll
A C:\WINDOWS\system32\kbddv.dll
A C:\WINDOWS\system32\kbdes.dll
A C:\WINDOWS\system32\kbdest.dll
A C:\WINDOWS\system32\kbdfc.dll
A C:\WINDOWS\system32\kbdfi.dll
A C:\WINDOWS\system32\kbdfi1.dll
A C:\WINDOWS\system32\kbdfo.dll
A C:\WINDOWS\system32\kbdfr.dll
A C:\WINDOWS\system32\kbdgae.dll
A C:\WINDOWS\system32\kbdgkl.dll
A C:\WINDOWS\system32\kbdgr.dll
A C:\WINDOWS\system32\kbdgr1.dll
A C:\WINDOWS\system32\kbdhe.dll
A C:\WINDOWS\system32\kbdhe220.dll
A C:\WINDOWS\system32\kbdhe319.dll
A C:\WINDOWS\system32\kbdhela2.dll
A C:\WINDOWS\system32\kbdhela3.dll
A C:\WINDOWS\system32\kbdhept.dll
A C:\WINDOWS\system32\kbdhu.dll
A C:\WINDOWS\system32\kbdhu1.dll
A C:\WINDOWS\system32\kbdic.dll
A C:\WINDOWS\system32\kbdinbe1.dll
A C:\WINDOWS\system32\kbdinben.dll
A C:\WINDOWS\system32\kbdinmal.dll
A C:\WINDOWS\system32\kbdir.dll
A C:\WINDOWS\system32\kbdit.dll
A C:\WINDOWS\system32\kbdit142.dll
C:\WINDOWS\system32\kbdiultn.dll
A C:\WINDOWS\system32\kbdkaz.dll
A C:\WINDOWS\system32\kbdkyr.dll
A C:\WINDOWS\system32\kbdla.dll
A C:\WINDOWS\system32\kbdlt.dll
A C:\WINDOWS\system32\kbdlt1.dll
A C:\WINDOWS\system32\kbdlv.dll
A C:\WINDOWS\system32\kbdlv1.dll
A C:\WINDOWS\system32\kbdmac.dll
A C:\WINDOWS\system32\kbdmaori.dll
A C:\WINDOWS\system32\kbdmlt47.dll
A C:\WINDOWS\system32\kbdmlt48.dll
A C:\WINDOWS\system32\kbdmon.dll
A C:\WINDOWS\system32\kbdne.dll
A C:\WINDOWS\system32\kbdnec.dll
C:\WINDOWS\system32\kbdnepr.dll
A C:\WINDOWS\system32\kbdno.dll
A C:\WINDOWS\system32\kbdno1.dll
C:\WINDOWS\system32\kbdpash.dll
A C:\WINDOWS\system32\kbdpl.dll
A C:\WINDOWS\system32\kbdpl1.dll
A C:\WINDOWS\system32\kbdpo.dll
A C:\WINDOWS\system32\kbdro.dll
A C:\WINDOWS\system32\kbdru.dll
A C:\WINDOWS\system32\kbdru1.dll
A C:\WINDOWS\system32\kbdsf.dll
A C:\WINDOWS\system32\kbdsg.dll
A C:\WINDOWS\system32\kbdsl.dll
A C:\WINDOWS\system32\kbdsl1.dll
A C:\WINDOWS\system32\kbdsmsfi.dll
A C:\WINDOWS\system32\kbdsmsno.dll
A C:\WINDOWS\system32\kbdsp.dll
A C:\WINDOWS\system32\kbdsw.dll
A C:\WINDOWS\system32\kbdtat.dll
A C:\WINDOWS\system32\kbdtuf.dll
A C:\WINDOWS\system32\kbdtuq.dll
A C:\WINDOWS\system32\kbduk.dll
A C:\WINDOWS\system32\kbdukx.dll
A C:\WINDOWS\system32\kbdur.dll
A C:\WINDOWS\system32\kbdus.dll
A C:\WINDOWS\system32\kbdusl.dll
A C:\WINDOWS\system32\kbdusr.dll
A C:\WINDOWS\system32\kbdusx.dll
A C:\WINDOWS\system32\kbduzb.dll
A C:\WINDOWS\system32\kbdycc.dll
A C:\WINDOWS\system32\kbdycl.dll
A C:\WINDOWS\system32\kd1394.dll
A C:\WINDOWS\system32\kdcom.dll
A C:\WINDOWS\system32\kerberos.dll
A C:\WINDOWS\system32\kernel32.dll
A C:\WINDOWS\system32\key01.sys
A C:\WINDOWS\system32\keyboard.drv
A C:\WINDOWS\system32\keyboard.sys
A C:\WINDOWS\system32\keyhelp.ocx
A C:\WINDOWS\system32\keymgr.dll
A C:\WINDOWS\system32\kmddsp.tsp
C:\WINDOWS\system32\kmsvc.dll
A C:\WINDOWS\system32\korean.uce
A C:\WINDOWS\system32\krnl386.exe
A C:\WINDOWS\system32\ksproxy.ax
A C:\WINDOWS\system32\kstvtune.ax
A C:\WINDOWS\system32\ksuser.dll
A C:\WINDOWS\system32\kswdmcap.ax
A C:\WINDOWS\system32\ksxbar.ax
C:\WINDOWS\system32\l2gpstore.dll
A C:\WINDOWS\system32\l3codeca.acm
A C:\WINDOWS\system32\l3codecp.acm
A C:\WINDOWS\system32\l3codecx.ax
A C:\WINDOWS\system32\label.exe
A C:\WINDOWS\system32\langwrbk.dll
A C:\WINDOWS\system32\lanman.drv
A C:\WINDOWS\system32\laprxy.dll
A C:\WINDOWS\system32\LCodcCMP.dll
C:\WINDOWS\system32\LegitCheckControl.dll
A R C:\WINDOWS\system32\lfbmp11n.dll
A R C:\WINDOWS\system32\LFCMP11n.DLL
A R C:\WINDOWS\system32\lfeps11n.dll
A R C:\WINDOWS\system32\lffax11n.dll
A R C:\WINDOWS\system32\lfgif11n.dll
A R C:\WINDOWS\system32\lfpcd11n.dll
A R C:\WINDOWS\system32\lfpcx11n.dll
A R C:\WINDOWS\system32\Lfpng11n.dll
A R C:\WINDOWS\system32\lfpsd11n.dll
A R C:\WINDOWS\system32\lftga11n.dll
A R C:\WINDOWS\system32\lftif11n.dll
A R C:\WINDOWS\system32\lfwmf11n.dll
A C:\WINDOWS\system32\licdll.dll
A C:\WINDOWS\system32\licmgr10.dll
A C:\WINDOWS\system32\licwmi.dll
A C:\WINDOWS\system32\lights.exe
A C:\WINDOWS\system32\linkinfo.dll
A C:\WINDOWS\system32\lmhsvc.dll
A C:\WINDOWS\system32\lmrt.dll
A C:\WINDOWS\system32\lnkstub.exe
A C:\WINDOWS\system32\loadfix.com
A C:\WINDOWS\system32\loadperf.dll
A C:\WINDOWS\system32\locale.nls
A C:\WINDOWS\system32\localsec.dll
A C:\WINDOWS\system32\localspl.dll
A C:\WINDOWS\system32\localui.dll
A C:\WINDOWS\system32\locator.exe
A C:\WINDOWS\system32\lodctr.exe
A C:\WINDOWS\system32\logagent.exe
A C:\WINDOWS\system32\loghours.dll
A C:\WINDOWS\system32\login.cmd
A C:\WINDOWS\system32\logman.exe
A C:\WINDOWS\system32\logoff.exe
A C:\WINDOWS\system32\logon.scr
A C:\WINDOWS\system32\logonui.exe
A HR C:\WINDOWS\system32\logonui.exe.manifest
A C:\WINDOWS\system32\lpk.dll
A C:\WINDOWS\system32\lpq.exe
A C:\WINDOWS\system32\lpr.exe
A C:\WINDOWS\system32\lprhelp.dll
A C:\WINDOWS\system32\lprmonui.dll
A C:\WINDOWS\system32\lsasrv.dll
A C:\WINDOWS\system32\lsass.exe
A R C:\WINDOWS\system32\LTDIS11n.dll
A R C:\WINDOWS\system32\ltfil11n.DLL
A R C:\WINDOWS\system32\ltimg11n.dll
A R C:\WINDOWS\system32\ltkrn11n.dll
A R C:\WINDOWS\system32\Ltwvc11n.dll
A C:\WINDOWS\system32\lusrmgr.msc
A C:\WINDOWS\system32\lz32.dll
A C:\WINDOWS\system32\lzexpand.dll
A C:\WINDOWS\system32\l_except.nls
A C:\WINDOWS\system32\l_intl.nls
A C:\WINDOWS\system32\magnify.exe
A C:\WINDOWS\system32\mag_hook.dll
A C:\WINDOWS\system32\main.cpl
A C:\WINDOWS\system32\makecab.exe
A C:\WINDOWS\system32\mapi32.dll
A C:\WINDOWS\system32\mapistub.dll
A C:\WINDOWS\system32\mapisvc.inf
A C:\WINDOWS\system32\mcastmib.dll
A C:\WINDOWS\system32\mcd32.dll
A C:\WINDOWS\system32\mcdsrv32.dll
A C:\WINDOWS\system32\mchgrcoi.dll
A C:\WINDOWS\system32\mciavi.drv
A C:\WINDOWS\system32\mciavi32.dll
A C:\WINDOWS\system32\mcicda.dll
A C:\WINDOWS\system32\mciole16.dll
A C:\WINDOWS\system32\mciole32.dll
A C:\WINDOWS\system32\mciqtz32.dll
A C:\WINDOWS\system32\mciseq.dll
A C:\WINDOWS\system32\mciseq.drv
A C:\WINDOWS\system32\mciwave.dll
A C:\WINDOWS\system32\mciwave.drv
A C:\WINDOWS\system32\mdhcp.dll
A C:\WINDOWS\system32\mdimon.dll
A C:\WINDOWS\system32\mdminst.dll
A C:\WINDOWS\system32\mdmxsdk.dll
A C:\WINDOWS\system32\mdwmdmsp.dll
A C:\WINDOWS\system32\mem.exe
A C:\WINDOWS\system32\mf3216.dll
A C:\WINDOWS\system32\mfc100.dll
A C:\WINDOWS\system32\mfc100chs.dll
A C:\WINDOWS\system32\mfc100cht.dll
A C:\WINDOWS\system32\mfc100deu.dll
A C:\WINDOWS\system32\mfc100enu.dll
A C:\WINDOWS\system32\mfc100esn.dll
A C:\WINDOWS\system32\mfc100fra.dll
A C:\WINDOWS\system32\mfc100ita.dll
A C:\WINDOWS\system32\mfc100jpn.dll
A C:\WINDOWS\system32\mfc100kor.dll
A C:\WINDOWS\system32\mfc100rus.dll
A C:\WINDOWS\system32\mfc100u.dll
A C:\WINDOWS\system32\mfc40.dll
A C:\WINDOWS\system32\mfc40u.dll
A C:\WINDOWS\system32\mfc42.dll
A C:\WINDOWS\system32\MFC42ENU.DLL
A C:\WINDOWS\system32\mfc42u.dll
A C:\WINDOWS\system32\mfc70.dll
A C:\WINDOWS\system32\mfc70u.dll
A C:\WINDOWS\system32\mfc71.dll
A C:\WINDOWS\system32\MFC71CHS.DLL
A C:\WINDOWS\system32\MFC71CHT.DLL
A C:\WINDOWS\system32\MFC71DEU.DLL
A C:\WINDOWS\system32\MFC71ENU.DLL
A C:\WINDOWS\system32\MFC71ESP.DLL
A C:\WINDOWS\system32\MFC71FRA.DLL
A C:\WINDOWS\system32\MFC71ITA.DLL
A C:\WINDOWS\system32\MFC71JPN.DLL
A C:\WINDOWS\system32\MFC71KOR.DLL
A C:\WINDOWS\system32\mfc71u.dll
A R C:\WINDOWS\system32\mfcans32.dll
A C:\WINDOWS\system32\mfcm100.dll
A C:\WINDOWS\system32\mfcm100u.dll
A C:\WINDOWS\system32\mfcsubs.dll
A R C:\WINDOWS\system32\mfcuia32.dll
A C:\WINDOWS\system32\mfplat.dll
A C:\WINDOWS\system32\mgmtapi.dll
A C:\WINDOWS\system32\mhn.dll
A C:\WINDOWS\system32\mib.bin
C:\WINDOWS\system32\microsoft.managementconsole.dll
A C:\WINDOWS\system32\midimap.dll
A C:\WINDOWS\system32\miglibnt.dll
A C:\WINDOWS\system32\migpwd.exe
A C:\WINDOWS\system32\mimefilt.dll
A C:\WINDOWS\system32\mlang.dat
A C:\WINDOWS\system32\mlang.dll
A H C:\WINDOWS\system32\mlfcache.dat
A C:\WINDOWS\system32\mll_hp.dll
A C:\WINDOWS\system32\mll_mtf.dll
A C:\WINDOWS\system32\mll_qic.dll
A C:\WINDOWS\system32\mmc.exe
A C:\WINDOWS\system32\mmcbase.dll
C:\WINDOWS\system32\mmcex.dll
C:\WINDOWS\system32\mmcfxcommon.dll
A C:\WINDOWS\system32\mmcndmgr.dll
C:\WINDOWS\system32\mmcperf.exe
A C:\WINDOWS\system32\mmcshext.dll
A C:\WINDOWS\system32\mmdriver.inf
A C:\WINDOWS\system32\mmdrv.dll
A C:\WINDOWS\system32\mmfutil.dll
A C:\WINDOWS\system32\mmsys.cpl
A C:\WINDOWS\system32\mmsystem.dll
A C:\WINDOWS\system32\mmtask.tsk
A C:\WINDOWS\system32\mmutilse.dll
A C:\WINDOWS\system32\mnmdd.dll
A C:\WINDOWS\system32\mnmsrvc.exe
A C:\WINDOWS\system32\mobsync.dll
A C:\WINDOWS\system32\mobsync.exe
A C:\WINDOWS\system32\mode.com
A C:\WINDOWS\system32\modemui.dll
A C:\WINDOWS\system32\modex.dll
A C:\WINDOWS\system32\more.com
A C:\WINDOWS\system32\moricons.dll
A C:\WINDOWS\system32\mountvol.exe
A C:\WINDOWS\system32\mouse.drv
A C:\WINDOWS\system32\mp43dmod.dll
A C:\WINDOWS\system32\mp4sdmod.dll
A C:\WINDOWS\system32\mpeg2data.ax
A C:\WINDOWS\system32\mpg2splt.ax
A C:\WINDOWS\system32\mpg4dmod.dll
A C:\WINDOWS\system32\mpg4ds32.ax
A C:\WINDOWS\system32\mplay32.exe
A C:\WINDOWS\system32\mpnotify.exe
A C:\WINDOWS\system32\mpr.dll
A C:\WINDOWS\system32\mprapi.dll
A C:\WINDOWS\system32\mprddm.dll
A C:\WINDOWS\system32\mprdim.dll
A C:\WINDOWS\system32\mprmsg.dll
A C:\WINDOWS\system32\mprui.dll
A C:\WINDOWS\system32\mqad.dll
A C:\WINDOWS\system32\mqbkup.exe
A C:\WINDOWS\system32\mqcertui.dll
A C:\WINDOWS\system32\mqdscli.dll
A C:\WINDOWS\system32\mqgentr.dll
A C:\WINDOWS\system32\mqise.dll
A C:\WINDOWS\system32\mqlogmgr.dll
A C:\WINDOWS\system32\mqoa.dll
A C:\WINDOWS\system32\mqoa.tlb
A C:\WINDOWS\system32\mqoa10.tlb
A C:\WINDOWS\system32\mqoa20.tlb
A C:\WINDOWS\system32\mqperf.dll
A C:\WINDOWS\system32\mqperf.ini
A C:\WINDOWS\system32\mqprfsym.h
A C:\WINDOWS\system32\mqqm.dll
A C:\WINDOWS\system32\mqrt.dll
A C:\WINDOWS\system32\mqrtdep.dll
A C:\WINDOWS\system32\mqsec.dll
A C:\WINDOWS\system32\mqsnap.dll
A C:\WINDOWS\system32\mqsvc.exe
A C:\WINDOWS\system32\mqtgsvc.exe
A C:\WINDOWS\system32\mqtrig.dll
A C:\WINDOWS\system32\mqupgrd.dll
A C:\WINDOWS\system32\mqutil.dll
A C:\WINDOWS\system32\mrinfo.exe
A C:\WINDOWS\system32\MRT.exe
A C:\WINDOWS\system32\msaatext.dll
A C:\WINDOWS\system32\msacm.dll
A C:\WINDOWS\system32\msacm32.dll
A C:\WINDOWS\system32\msacm32.drv
A C:\WINDOWS\system32\msadds32.ax
A C:\WINDOWS\system32\msadp32.acm
A C:\WINDOWS\system32\msafd.dll
A C:\WINDOWS\system32\msapsspc.dll
A C:\WINDOWS\system32\msasn1.dll
A C:\WINDOWS\system32\msaud32.acm
A C:\WINDOWS\system32\msaudite.dll
A C:\WINDOWS\system32\mscat32.dll
A C:\WINDOWS\system32\mscdexnt.exe
A C:\WINDOWS\system32\mscms.dll
A C:\WINDOWS\system32\MSCOMCTL.OCX
A C:\WINDOWS\system32\msconf.dll
A C:\WINDOWS\system32\mscoree.dll
A C:\WINDOWS\system32\mscorier.dll
A C:\WINDOWS\system32\mscories.dll
A C:\WINDOWS\system32\mscpx32r.dll
A C:\WINDOWS\system32\mscpxl32.dll
A C:\WINDOWS\system32\msctf.dll
A C:\WINDOWS\system32\msctfime.ime
A C:\WINDOWS\system32\msctfp.dll
A C:\WINDOWS\system32\msdadiag.dll
A C:\WINDOWS\system32\msdart.dll
A C:\WINDOWS\system32\msdatsrc.tlb
A C:\WINDOWS\system32\msdbg2.dll
A C:\WINDOWS\system32\msdmo.dll
A C:\WINDOWS\system32\msdtc.exe
A C:\WINDOWS\system32\msdtclog.dll
A C:\WINDOWS\system32\msdtcprf.h
A C:\WINDOWS\system32\msdtcprf.ini
A C:\WINDOWS\system32\msdtcprx.dll
A C:\WINDOWS\system32\msdtctm.dll
A C:\WINDOWS\system32\msdtcuiu.dll
A C:\WINDOWS\system32\Msdvbnp.ax
A C:\WINDOWS\system32\msdxm.ocx
A C:\WINDOWS\system32\msdxmlc.dll
A C:\WINDOWS\system32\msencode.dll
A C:\WINDOWS\system32\msexch40.dll
A S C:\WINDOWS\system32\msexcl35.dll
A C:\WINDOWS\system32\msexcl40.dll
A C:\WINDOWS\system32\msfeeds.dll
A C:\WINDOWS\system32\msfeedsbs.dll
A C:\WINDOWS\system32\msfeedssync.exe
A C:\WINDOWS\system32\msftedit.dll
A C:\WINDOWS\system32\msg.exe
A C:\WINDOWS\system32\msg711.acm
A C:\WINDOWS\system32\msg723.acm
A C:\WINDOWS\system32\msgina.dll
A C:\WINDOWS\system32\msgsm32.acm
A C:\WINDOWS\system32\msgsvc.dll
A C:\WINDOWS\system32\msh261.drv
A C:\WINDOWS\system32\msh263.drv
A C:\WINDOWS\system32\mshearts.exe
A C:\WINDOWS\system32\mshta.exe
C:\WINDOWS\system32\mshta.exe.mui
A C:\WINDOWS\system32\mshtml.dll
A C:\WINDOWS\system32\mshtml.tlb
A C:\WINDOWS\system32\mshtmled.dll
A C:\WINDOWS\system32\mshtmler.dll
A C:\WINDOWS\system32\msi.dll
A C:\WINDOWS\system32\msident.dll
A C:\WINDOWS\system32\msidle.dll
A C:\WINDOWS\system32\msidntld.dll
A C:\WINDOWS\system32\msieftp.dll
A C:\WINDOWS\system32\msiexec.exe
A C:\WINDOWS\system32\msihnd.dll
A C:\WINDOWS\system32\msimg32.dll
A C:\WINDOWS\system32\msimsg.dll
A C:\WINDOWS\system32\msimtf.dll
A C:\WINDOWS\system32\msisip.dll
A S C:\WINDOWS\system32\msjet35.dll
A C:\WINDOWS\system32\msjet40.dll
A C:\WINDOWS\system32\msjetoledb40.dll
A S C:\WINDOWS\system32\msjint35.dll
A C:\WINDOWS\system32\msjint40.dll
A S C:\WINDOWS\system32\msjter35.dll
A C:\WINDOWS\system32\msjter40.dll
A C:\WINDOWS\system32\msjtes40.dll
A C:\WINDOWS\system32\mslbui.dll
A R C:\WINDOWS\system32\msls2.dll
A C:\WINDOWS\system32\msls31.dll
A S C:\WINDOWS\system32\msltus35.dll
A C:\WINDOWS\system32\msltus40.dll
A C:\WINDOWS\system32\msnetobj.dll
A C:\WINDOWS\system32\msnp.ax
A C:\WINDOWS\system32\msnsspc.dll
A C:\WINDOWS\system32\msobjs.dll
A C:\WINDOWS\system32\msoeacct.dll
A C:\WINDOWS\system32\msoert2.dll
A C:\WINDOWS\system32\msorc32r.dll
A C:\WINDOWS\system32\msorcl32.dll
A C:\WINDOWS\system32\mspaint.exe
A C:\WINDOWS\system32\mspatcha.dll
A C:\WINDOWS\system32\mspbde40.dll
A S C:\WINDOWS\system32\mspdox35.dll
A C:\WINDOWS\system32\MsPMSNSv.dll
A C:\WINDOWS\system32\MsPMSP.dll
A C:\WINDOWS\system32\msports.dll
A C:\WINDOWS\system32\msprivs.dll
A C:\WINDOWS\system32\msr2c.dll
A C:\WINDOWS\system32\msr2cenu.dll
A C:\WINDOWS\system32\msratelc.dll
A C:\WINDOWS\system32\msrating.dll
C:\WINDOWS\system32\msrating.dll.mui
A C:\WINDOWS\system32\msrclr40.dll
A S C:\WINDOWS\system32\Msrd2x35.dll
A C:\WINDOWS\system32\msrd2x40.dll
A C:\WINDOWS\system32\msrd3x40.dll
A C:\WINDOWS\system32\MSRDO20.DLL
A C:\WINDOWS\system32\msrecr40.dll
A S C:\WINDOWS\system32\msrepl35.dll
A C:\WINDOWS\system32\msrepl40.dll
A C:\WINDOWS\system32\msrle32.dll
A C:\WINDOWS\system32\mssap.dll
A C:\WINDOWS\system32\msscds32.ax
A C:\WINDOWS\system32\MSSCP.dll
A C:\WINDOWS\system32\msscript.ocx
C:\WINDOWS\system32\mssha.dll
C:\WINDOWS\system32\msshavmsg.dll
A C:\WINDOWS\system32\mssign32.dll
A C:\WINDOWS\system32\mssip32.dll
A C:\WINDOWS\system32\MSSTDFMT.DLL
A C:\WINDOWS\system32\MSSTKPRP.DLL
A C:\WINDOWS\system32\msswch.dll
A C:\WINDOWS\system32\msswchx.exe
A C:\WINDOWS\system32\mstask.dll
A S C:\WINDOWS\system32\mstext35.dll
A C:\WINDOWS\system32\mstext40.dll
A C:\WINDOWS\system32\mstime.dll
A C:\WINDOWS\system32\mstinit.exe
A C:\WINDOWS\system32\mstlsapi.dll
A C:\WINDOWS\system32\mstsc.exe
A C:\WINDOWS\system32\mstscax.dll
A C:\WINDOWS\system32\msutb.dll
A C:\WINDOWS\system32\msv1_0.dll
A C:\WINDOWS\system32\msvbvm50.dll
A C:\WINDOWS\system32\msvbvm60.dll
A C:\WINDOWS\system32\msvci70.dll
A C:\WINDOWS\system32\msvcirt.dll
A C:\WINDOWS\system32\msvcp100.dll
A C:\WINDOWS\system32\msvcp50.dll
A C:\WINDOWS\system32\msvcp60.dll
A C:\WINDOWS\system32\msvcp70.dll
A C:\WINDOWS\system32\msvcp71.dll
A C:\WINDOWS\system32\msvcr100.dll
A C:\WINDOWS\system32\msvcr70.dll
A C:\WINDOWS\system32\msvcr71.dll
A C:\WINDOWS\system32\msvcrt.dll
A C:\WINDOWS\system32\msvcrt20.dll
A C:\WINDOWS\system32\msvcrt40.dll
A C:\WINDOWS\system32\msvfw32.dll
A C:\WINDOWS\system32\msvidc32.dll
A C:\WINDOWS\system32\msvidctl.dll
A C:\WINDOWS\system32\msvideo.dll
A C:\WINDOWS\system32\msw3prt.dll
A C:\WINDOWS\system32\mswdat10.dll
A C:\WINDOWS\system32\mswebdvd.dll
A C:\WINDOWS\system32\MSWMDM.dll
A C:\WINDOWS\system32\mswsock.dll
A C:\WINDOWS\system32\mswstr10.dll
A C:\WINDOWS\system32\msxbde40.dll
A S C:\WINDOWS\system32\Msxbse35.dll
A C:\WINDOWS\system32\msxml.dll
A C:\WINDOWS\system32\msxml2.dll
A C:\WINDOWS\system32\msxml2r.dll
A C:\WINDOWS\system32\msxml3.dll
A C:\WINDOWS\system32\msxml3r.dll
A C:\WINDOWS\system32\msxml4.dll
A C:\WINDOWS\system32\msxml4a.dll
A C:\WINDOWS\system32\msxml4r.dll
C:\WINDOWS\system32\msxml6.dll
C:\WINDOWS\system32\msxml6r.dll
A C:\WINDOWS\system32\msxmlr.dll
A C:\WINDOWS\system32\msyuv.dll
A C:\WINDOWS\system32\mtxclu.dll
A C:\WINDOWS\system32\mtxdm.dll
A C:\WINDOWS\system32\mtxex.dll
A C:\WINDOWS\system32\mtxlegih.dll
A C:\WINDOWS\system32\mtxoci.dll
C:\WINDOWS\system32\mtxparhd.dll
A C:\WINDOWS\system32\mucltui.dll
A C:\WINDOWS\system32\mucltui.dll.mui
A C:\WINDOWS\system32\muweb.dll
A C:\WINDOWS\system32\mycomput.dll
A C:\WINDOWS\system32\mydocs.dll
A C:\WINDOWS\system32\mypixdx.chm
A C:\WINDOWS\system32\mypixdx.scr
C:\WINDOWS\system32\napipsec.dll
C:\WINDOWS\system32\napmontr.dll
C:\WINDOWS\system32\napstat.exe
A C:\WINDOWS\system32\narrator.exe
A C:\WINDOWS\system32\narrhook.dll
A C:\WINDOWS\system32\nature.scr
A C:\WINDOWS\system32\nbtstat.exe
A C:\WINDOWS\system32\ncobjapi.dll
A C:\WINDOWS\system32\ncpa.cpl
A HR C:\WINDOWS\system32\ncpa.cpl.manifest
A C:\WINDOWS\system32\ncxpnt.dll
A C:\WINDOWS\system32\nddeapi.dll
A C:\WINDOWS\system32\nddeapir.exe
A C:\WINDOWS\system32\nddenb32.dll
A C:\WINDOWS\system32\ndptsp.tsp
A C:\WINDOWS\system32\net.exe
A C:\WINDOWS\system32\net.hlp
A C:\WINDOWS\system32\net1.exe
A C:\WINDOWS\system32\netapi.dll
A C:\WINDOWS\system32\netapi32.dll
A C:\WINDOWS\system32\netcfgx.dll
A C:\WINDOWS\system32\netdde.exe
A C:\WINDOWS\system32\netevent.dll
A C:\WINDOWS\system32\netfxperf.dll
A C:\WINDOWS\system32\neth.dll
A C:\WINDOWS\system32\netid.dll
A C:\WINDOWS\system32\netlogon.dll
A C:\WINDOWS\system32\netman.dll
A C:\WINDOWS\system32\netmsg.dll
A C:\WINDOWS\system32\netplwiz.dll
A C:\WINDOWS\system32\netrap.dll
A C:\WINDOWS\system32\netsetup.cpl
A C:\WINDOWS\system32\netsetup.exe
A C:\WINDOWS\system32\netsh.exe
A C:\WINDOWS\system32\netshell.dll
A C:\WINDOWS\system32\netstat.exe
A C:\WINDOWS\system32\netui0.dll
A C:\WINDOWS\system32\netui1.dll
A C:\WINDOWS\system32\netui2.dll
A C:\WINDOWS\system32\netware.drv
A C:\WINDOWS\system32\newdev.dll
A C:\WINDOWS\system32\nicmgr.exe
A C:\WINDOWS\system32\nlhtml.dll
A C:\WINDOWS\system32\nlsdl.dll
A C:\WINDOWS\system32\nlsfunc.exe
A C:\WINDOWS\system32\nmevtmsg.dll
A C:\WINDOWS\system32\nmfast50.bpl
A C:\WINDOWS\system32\nmmkcert.dll
A C:\WINDOWS\system32\noise.chs
A C:\WINDOWS\system32\noise.cht
A C:\WINDOWS\system32\noise.dat
A C:\WINDOWS\system32\noise.deu
A C:\WINDOWS\system32\noise.eng
A C:\WINDOWS\system32\noise.enu
A C:\WINDOWS\system32\noise.esn
A C:\WINDOWS\system32\noise.fra
A C:\WINDOWS\system32\noise.ita
A C:\WINDOWS\system32\noise.nld
A C:\WINDOWS\system32\noise.sve
A C:\WINDOWS\system32\noise.tha
A C:\WINDOWS\system32\normaliz.dll
A C:\WINDOWS\system32\normidna.nls
A C:\WINDOWS\system32\normnfc.nls
A C:\WINDOWS\system32\normnfd.nls
A C:\WINDOWS\system32\normnfkc.nls
A C:\WINDOWS\system32\normnfkd.nls
A C:\WINDOWS\system32\notepad.exe
A C:\WINDOWS\system32\npDeployJava1.dll
A C:\WINDOWS\system32\npptools.dll
A C:\WINDOWS\system32\nscompat.tlb
A C:\WINDOWS\system32\nslookup.exe
A C:\WINDOWS\system32\ntbackup.exe
A C:\WINDOWS\system32\ntdll.dll
A C:\WINDOWS\system32\ntdos.sys
A C:\WINDOWS\system32\ntdos404.sys
A C:\WINDOWS\system32\ntdos411.sys
A C:\WINDOWS\system32\ntdos412.sys
A C:\WINDOWS\system32\ntdos804.sys
A C:\WINDOWS\system32\ntdsapi.dll
A C:\WINDOWS\system32\ntdsbcli.dll
A C:\WINDOWS\system32\ntimage.gif
A C:\WINDOWS\system32\ntio.sys
A C:\WINDOWS\system32\ntio404.sys
A C:\WINDOWS\system32\ntio411.sys
A C:\WINDOWS\system32\ntio412.sys
A C:\WINDOWS\system32\ntio804.sys
A C:\WINDOWS\system32\ntkrnlpa.exe
A C:\WINDOWS\system32\ntlanman.dll
A C:\WINDOWS\system32\ntlanui.dll
A C:\WINDOWS\system32\ntlanui2.dll
A C:\WINDOWS\system32\ntlsapi.dll
A C:\WINDOWS\system32\ntmarta.dll
A C:\WINDOWS\system32\ntmsapi.dll
A C:\WINDOWS\system32\ntmsdba.dll
A C:\WINDOWS\system32\ntmsevt.dll
A C:\WINDOWS\system32\ntmsmgr.dll
A C:\WINDOWS\system32\ntmsmgr.msc
A C:\WINDOWS\system32\ntmsoprq.msc
A C:\WINDOWS\system32\ntmssvc.dll
A C:\WINDOWS\system32\ntoskrnl.exe
A C:\WINDOWS\system32\ntprint.dll
A C:\WINDOWS\system32\ntsd.exe
A C:\WINDOWS\system32\ntsdexts.dll
A C:\WINDOWS\system32\ntshrui.dll
A C:\WINDOWS\system32\ntvdm.exe
A C:\WINDOWS\system32\ntvdmd.dll
A C:\WINDOWS\system32\nusrmgr.cpl
A C:\WINDOWS\system32\nv4_disp.dll
A C:\WINDOWS\system32\nvapi.dll
A C:\WINDOWS\system32\nvappbar.exe
A C:\WINDOWS\system32\nvapps.xml
A C:\WINDOWS\system32\nvcod.dll
A C:\WINDOWS\system32\nvcodins.dll
A C:\WINDOWS\system32\nvcpl.dll
A C:\WINDOWS\system32\nvdisp.nvu
A C:\WINDOWS\system32\nvdspsch.exe
A C:\WINDOWS\system32\nview.dll
A C:\WINDOWS\system32\nvmctray.dll
A C:\WINDOWS\system32\nvoglnt.dll
A C:\WINDOWS\system32\nvrsar.dll
A C:\WINDOWS\system32\nvrsda.dll
A C:\WINDOWS\system32\nvrsde.dll
A C:\WINDOWS\system32\nvrseng.dll
A C:\WINDOWS\system32\nvrses.dll
A C:\WINDOWS\system32\nvrsesm.dll
A C:\WINDOWS\system32\nvrsfi.dll
A C:\WINDOWS\system32\nvrsfr.dll
A C:\WINDOWS\system32\nvrsit.dll
A C:\WINDOWS\system32\nvrsja.dll
A C:\WINDOWS\system32\nvrsko.dll
A C:\WINDOWS\system32\nvrsnl.dll
A C:\WINDOWS\system32\nvrsno.dll
A C:\WINDOWS\system32\nvrspl.dll
A C:\WINDOWS\system32\nvrspt.dll
A C:\WINDOWS\system32\nvrsptb.dll
A C:\WINDOWS\system32\nvrsru.dll
A C:\WINDOWS\system32\nvrssv.dll
A C:\WINDOWS\system32\nvrstr.dll
A C:\WINDOWS\system32\nvrszhc.dll
A C:\WINDOWS\system32\nvrszht.dll
A C:\WINDOWS\system32\nvshell.dll
A C:\WINDOWS\system32\nvsvc32.exe
A C:\WINDOWS\system32\nvtuicpl.cpl
A C:\WINDOWS\system32\nvudisp.exe
A C:\WINDOWS\system32\nvwddi.dll
A C:\WINDOWS\system32\nvwdmcpl.dll
A C:\WINDOWS\system32\nvwimg.dll
A C:\WINDOWS\system32\nvwrsar.dll
A C:\WINDOWS\system32\nvwrsda.dll
A C:\WINDOWS\system32\nvwrsde.dll
A C:\WINDOWS\system32\nvwrseng.dll
A C:\WINDOWS\system32\nvwrses.dll
A C:\WINDOWS\system32\nvwrsesm.dll
A C:\WINDOWS\system32\nvwrsfi.dll
A C:\WINDOWS\system32\nvwrsfr.dll
A C:\WINDOWS\system32\nvwrsit.dll
A C:\WINDOWS\system32\nvwrsja.dll
A C:\WINDOWS\system32\nvwrsko.dll
A C:\WINDOWS\system32\nvwrsnl.dll
A C:\WINDOWS\system32\nvwrsno.dll
A C:\WINDOWS\system32\nvwrspl.dll
A C:\WINDOWS\system32\nvwrspt.dll
A C:\WINDOWS\system32\nvwrsptb.dll
A C:\WINDOWS\system32\nvwrsru.dll
A C:\WINDOWS\system32\nvwrssv.dll
A C:\WINDOWS\system32\nvwrstr.dll
A C:\WINDOWS\system32\nvwrszhc.dll
A C:\WINDOWS\system32\nvwrszht.dll
A C:\WINDOWS\system32\nw16.exe
A C:\WINDOWS\system32\nwapi16.dll
A C:\WINDOWS\system32\nwapi32.dll
A C:\WINDOWS\system32\nwc.cpl
A HR C:\WINDOWS\system32\nwc.cpl.manifest
A C:\WINDOWS\system32\nwcfg.dll
A C:\WINDOWS\system32\nwevent.dll
A C:\WINDOWS\system32\nwiz.exe
A C:\WINDOWS\system32\nwprovau.dll
A C:\WINDOWS\system32\nwscript.exe
A C:\WINDOWS\system32\nwwks.dll
A C:\WINDOWS\system32\oakley.dll
A C:\WINDOWS\system32\objsel.dll
C:\WINDOWS\system32\occache.dll
A R C:\WINDOWS\system32\ochlp30e.dll
A C:\WINDOWS\system32\ocmanage.dll
A C:\WINDOWS\system32\odbc16gt.dll
A C:\WINDOWS\system32\odbc32.dll
A C:\WINDOWS\system32\odbc32gt.dll
A C:\WINDOWS\system32\odbcad32.exe
A C:\WINDOWS\system32\odbcbcp.dll
A C:\WINDOWS\system32\odbcconf.dll
A C:\WINDOWS\system32\odbcconf.exe
A C:\WINDOWS\system32\odbcconf.rsp
A C:\WINDOWS\system32\odbccp32.cpl
A C:\WINDOWS\system32\odbccp32.dll
A C:\WINDOWS\system32\odbccr32.dll
A C:\WINDOWS\system32\odbccu32.dll
A C:\WINDOWS\system32\odbcint.dll
A C:\WINDOWS\system32\odbcji32.dll
A C:\WINDOWS\system32\odbcjt32.dll
A C:\WINDOWS\system32\odbcp32r.dll
A C:\WINDOWS\system32\odbctrac.dll
A C:\WINDOWS\system32\oddbse32.dll
A C:\WINDOWS\system32\odexl32.dll
A C:\WINDOWS\system32\odfox32.dll
A C:\WINDOWS\system32\odpdx32.dll
A C:\WINDOWS\system32\odtext32.dll
A C:\WINDOWS\system32\oembios.bin
A C:\WINDOWS\system32\oembios.dat
A C:\WINDOWS\system32\oembios.sig
A C:\WINDOWS\system32\OemInfo.dll
A C:\WINDOWS\system32\oeminfo.ini
A C:\WINDOWS\system32\oemlogo.bmp
A C:\WINDOWS\system32\offfilt.dll
A C:\WINDOWS\system32\ole2.dll
A C:\WINDOWS\system32\ole2disp.dll
A C:\WINDOWS\system32\ole2nls.dll
A C:\WINDOWS\system32\ole32.dll
A C:\WINDOWS\system32\oleacc.dll
A C:\WINDOWS\system32\oleaccrc.dll
A C:\WINDOWS\system32\oleaut32.dll
A C:\WINDOWS\system32\olecli.dll
A C:\WINDOWS\system32\olecli32.dll
A C:\WINDOWS\system32\olecnv32.dll
A C:\WINDOWS\system32\oledlg.dll
A C:\WINDOWS\system32\oleprn.dll
A C:\WINDOWS\system32\olepro32.dll
A C:\WINDOWS\system32\olesvr.dll
A C:\WINDOWS\system32\olesvr32.dll
A C:\WINDOWS\system32\olethk32.dll
A C:\WINDOWS\system32\omano.dll
C:\WINDOWS\system32\onex.dll
A C:\WINDOWS\system32\openfiles.exe
A C:\WINDOWS\system32\opengl32.dll
A C:\WINDOWS\system32\osk.exe
A C:\WINDOWS\system32\osuninst.dll
A C:\WINDOWS\system32\osuninst.exe
A C:\WINDOWS\system32\OUTLPERF.H
A C:\WINDOWS\system32\OUTLPERF.INI
A C:\WINDOWS\system32\p2p.dll
A C:\WINDOWS\system32\p2pgasvc.dll
A C:\WINDOWS\system32\p2pgraph.dll
A C:\WINDOWS\system32\p2pnetsh.dll
A C:\WINDOWS\system32\p2psvc.dll
A C:\WINDOWS\system32\packager.exe
A C:\WINDOWS\system32\pagefileconfig.vbs
A C:\WINDOWS\system32\panmap.dll
A C:\WINDOWS\system32\paqsp.dll
A C:\WINDOWS\system32\pathping.exe
A C:\WINDOWS\system32\pautoenr.dll
A R C:\WINDOWS\system32\PCDLIB32.DLL
A C:\WINDOWS\system32\pcl.sep
A C:\WINDOWS\system32\pdh.dll
A C:\WINDOWS\system32\pentnt.exe
A C:\WINDOWS\system32\perfc009.dat
A C:\WINDOWS\system32\perfci.h
A C:\WINDOWS\system32\perfci.ini
A C:\WINDOWS\system32\perfctrs.dll
A C:\WINDOWS\system32\perfd009.dat
A C:\WINDOWS\system32\perfdisk.dll
A C:\WINDOWS\system32\perffilt.h
A C:\WINDOWS\system32\perffilt.ini
A C:\WINDOWS\system32\perfh009.dat
A C:\WINDOWS\system32\perfi009.dat
A C:\WINDOWS\system32\perfmon.exe
A R C:\WINDOWS\system32\perfmon.msc
A C:\WINDOWS\system32\perfnet.dll
A C:\WINDOWS\system32\perfnw.dll
A C:\WINDOWS\system32\perfos.dll
A C:\WINDOWS\system32\perfproc.dll
A C:\WINDOWS\system32\PerfStringBackup.INI
A C:\WINDOWS\system32\perfts.dll
A C:\WINDOWS\system32\perfwci.h
A C:\WINDOWS\system32\perfwci.ini
C:\WINDOWS\system32\photometadatahandler.dll
A C:\WINDOWS\system32\photowiz.dll
A C:\WINDOWS\system32\PICSDK.dll
A C:\WINDOWS\system32\pid.dll
C:\WINDOWS\system32\pid.inf
A C:\WINDOWS\system32\pidgen.dll
A C:\WINDOWS\system32\pifmgr.dll
A C:\WINDOWS\system32\ping.exe
A C:\WINDOWS\system32\ping6.exe
A C:\WINDOWS\system32\pjlmon.dll
A C:\WINDOWS\system32\plustab.dll
A C:\WINDOWS\system32\pmspl.dll
A C:\WINDOWS\system32\pngfilt.dll
A C:\WINDOWS\system32\pnrpnsp.dll
A C:\WINDOWS\system32\polstore.dll
A C:\WINDOWS\system32\powercfg.cpl
A C:\WINDOWS\system32\powercfg.exe
A C:\WINDOWS\system32\powrprof.dll
A C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
A C:\WINDOWS\system32\PresentationHost.exe
A C:\WINDOWS\system32\PresentationHostProxy.dll
A C:\WINDOWS\system32\PresentationNative_v0300.dll
A C:\WINDOWS\system32\prflbmsg.dll
A C:\WINDOWS\system32\print.exe
A C:\WINDOWS\system32\printui.dll
A C:\WINDOWS\system32\prncnfg.vbs
A C:\WINDOWS\system32\prndrvr.vbs
A C:\WINDOWS\system32\prnjobs.vbs
A C:\WINDOWS\system32\prnmngr.vbs
A C:\WINDOWS\system32\prnport.vbs
A C:\WINDOWS\system32\prnqctl.vbs
C:\WINDOWS\system32\prntvpt.dll
A C:\WINDOWS\system32\proctexe.ocx
A C:\WINDOWS\system32\prodspec.ini
A C:\WINDOWS\system32\profmap.dll
A C:\WINDOWS\system32\progman.exe
A C:\WINDOWS\system32\proquota.exe
A C:\WINDOWS\system32\Prounstl.exe
A C:\WINDOWS\system32\proxycfg.exe
A C:\WINDOWS\system32\ps2.bat
A C:\WINDOWS\system32\ps2.EXE
A C:\WINDOWS\system32\psapi.dll
A C:\WINDOWS\system32\psbase.dll
A C:\WINDOWS\system32\pschdcnt.h
A C:\WINDOWS\system32\pschdprf.dll
A C:\WINDOWS\system32\pschdprf.ini
A C:\WINDOWS\system32\pscript.sep
A C:\WINDOWS\system32\psisdecd.dll
A C:\WINDOWS\system32\psisrndr.ax
A C:\WINDOWS\system32\psnppagn.dll
A C:\WINDOWS\system32\pstorec.dll
A C:\WINDOWS\system32\pstorsvc.dll
A C:\WINDOWS\system32\ptpusb.dll
A C:\WINDOWS\system32\ptpusd.dll
A R C:\WINDOWS\system32\PUBOLE32.DLL
A C:\WINDOWS\system32\pubprn.vbs
A C:\WINDOWS\system32\Px.dll
A C:\WINDOWS\system32\px.ini
A C:\WINDOWS\system32\pxcpya64.exe
A C:\WINDOWS\system32\pxcpyi64.exe
A C:\WINDOWS\system32\pxdrv.dll
A C:\WINDOWS\system32\pxhpinst.exe
A C:\WINDOWS\system32\pxinsa64.exe
A C:\WINDOWS\system32\pxinsi64.exe
A C:\WINDOWS\system32\PxMas.dll
A C:\WINDOWS\system32\PxSFS.DLL
A C:\WINDOWS\system32\PxWave.dll
A C:\WINDOWS\system32\pxwma.dll
A C:\WINDOWS\system32\pythoncom22.dll
A C:\WINDOWS\system32\pywintypes22.dll
C:\WINDOWS\system32\qagent.dll
C:\WINDOWS\system32\qagentrt.dll
A C:\WINDOWS\system32\qappsrv.exe
A C:\WINDOWS\system32\qasf.dll
A C:\WINDOWS\system32\qcap.dll
C:\WINDOWS\system32\qcliprov.dll
A C:\WINDOWS\system32\qdv.dll
A C:\WINDOWS\system32\qdvd.dll
A C:\WINDOWS\system32\qedit.dll
A C:\WINDOWS\system32\qedwipes.dll
A C:\WINDOWS\system32\qmgr.dll
A C:\WINDOWS\system32\qmgrprxy.dll
A C:\WINDOWS\system32\qosname.dll
A C:\WINDOWS\system32\qprocess.exe
A C:\WINDOWS\system32\qrpt50.bpl
A C:\WINDOWS\system32\quartz.dll
A C:\WINDOWS\system32\query.dll
A C:\WINDOWS\system32\QuickTime.qts
A C:\WINDOWS\system32\QuickTimeVR.qtx
C:\WINDOWS\system32\qutil.dll
A C:\WINDOWS\system32\qwinsta.exe
A C:\WINDOWS\system32\racpldlg.dll
A C:\WINDOWS\system32\rasadhlp.dll
A C:\WINDOWS\system32\rasapi32.dll
A C:\WINDOWS\system32\rasauto.dll
A C:\WINDOWS\system32\rasautou.exe
A C:\WINDOWS\system32\raschap.dll
A C:\WINDOWS\system32\rasctrnm.h
A C:\WINDOWS\system32\rasctrs.dll
A C:\WINDOWS\system32\rasctrs.ini
A C:\WINDOWS\system32\rasdial.exe
A C:\WINDOWS\system32\rasdlg.dll
A C:\WINDOWS\system32\rasman.dll
A C:\WINDOWS\system32\rasmans.dll
A C:\WINDOWS\system32\rasmontr.dll
A C:\WINDOWS\system32\rasmxs.dll
A C:\WINDOWS\system32\rasphone.exe
A C:\WINDOWS\system32\rasppp.dll
C:\WINDOWS\system32\rasqec.dll
A C:\WINDOWS\system32\rasrad.dll
A C:\WINDOWS\system32\rassapi.dll
A C:\WINDOWS\system32\rasser.dll
A C:\WINDOWS\system32\rastapi.dll
A C:\WINDOWS\system32\rastls.dll
A C:\WINDOWS\system32\rcbdyctl.dll
A C:\WINDOWS\system32\rcimlby.exe
A C:\WINDOWS\system32\rcp.exe
A C:\WINDOWS\system32\RDBios32.dll
A C:\WINDOWS\system32\rdchost.dll
A C:\WINDOWS\system32\RDOCURS.DLL
A C:\WINDOWS\system32\rdpcfgex.dll
A C:\WINDOWS\system32\rdpclip.exe
A C:\WINDOWS\system32\rdpdd.dll
A C:\WINDOWS\system32\rdpsnd.dll
A C:\WINDOWS\system32\rdpwsx.dll
A C:\WINDOWS\system32\rdsaddin.exe
A C:\WINDOWS\system32\rdshost.exe
A C:\WINDOWS\system32\recover.exe
A C:\WINDOWS\system32\redir.exe
A C:\WINDOWS\system32\reg.exe
A C:\WINDOWS\system32\regapi.dll
A C:\WINDOWS\system32\regedt32.exe
A C:\WINDOWS\system32\regini.exe
A C:\WINDOWS\system32\regsvc.dll
A C:\WINDOWS\system32\regsvr32.exe
A C:\WINDOWS\system32\regwiz.exe
A C:\WINDOWS\system32\regwizc.dll
A C:\WINDOWS\system32\relog.exe
A C:\WINDOWS\system32\remotepg.dll
A C:\WINDOWS\system32\remotesp.tsp
A C:\WINDOWS\system32\rend.dll
A C:\WINDOWS\system32\replace.exe
A C:\WINDOWS\system32\reset.exe
A C:\WINDOWS\system32\resutils.dll
A C:\WINDOWS\system32\rexec.exe
A C:\WINDOWS\system32\rgb9rast_2.dll
C:\WINDOWS\system32\rhttpaa.dll
A C:\WINDOWS\system32\riched20.dll
A C:\WINDOWS\system32\riched32.dll
A C:\WINDOWS\system32\Richtx32.ocx
A C:\WINDOWS\system32\rnr20.dll
A C:\WINDOWS\system32\route.exe
A C:\WINDOWS\system32\routemon.exe
A C:\WINDOWS\system32\routetab.dll
A C:\WINDOWS\system32\rpcns4.dll
A C:\WINDOWS\system32\rpcrt4.dll
A C:\WINDOWS\system32\rpcss.dll
A C:\WINDOWS\system32\rsaci.rat
A C:\WINDOWS\system32\rsaenh.dll
A C:\WINDOWS\system32\rsfsaps.dll
A C:\WINDOWS\system32\rsh.exe
A C:\WINDOWS\system32\rshx32.dll
A C:\WINDOWS\system32\rsm.exe
A C:\WINDOWS\system32\rsmps.dll
A C:\WINDOWS\system32\rsmsink.exe
A C:\WINDOWS\system32\rsmui.exe
A C:\WINDOWS\system32\rsnotify.exe
A R C:\WINDOWS\system32\rsop.msc
A C:\WINDOWS\system32\rsopprov.exe
A C:\WINDOWS\system32\rsvp.exe
A C:\WINDOWS\system32\rsvp.ini
A C:\WINDOWS\system32\rsvpcnts.h
A C:\WINDOWS\system32\rsvpmsg.dll
A C:\WINDOWS\system32\rsvpperf.dll
A C:\WINDOWS\system32\rsvpsp.dll
A C:\WINDOWS\system32\rtcshare.exe
A C:\WINDOWS\system32\rtipxmib.dll
A C:\WINDOWS\system32\rtm.dll
A C:\WINDOWS\system32\RTSndMgr.CPL
A C:\WINDOWS\system32\rtutils.dll
A C:\WINDOWS\system32\runas.exe
A C:\WINDOWS\system32\runclose.ocx
A C:\WINDOWS\system32\rundll32.exe
A C:\WINDOWS\system32\runonce.exe
A C:\WINDOWS\system32\rwinsta.exe
C:\WINDOWS\system32\s3gnb.dll
A C:\WINDOWS\system32\safrcdlg.dll
A C:\WINDOWS\system32\safrdm.dll
A C:\WINDOWS\system32\safrslv.dll
A C:\WINDOWS\system32\samlib.dll
A C:\WINDOWS\system32\samsrv.dll
A HR C:\WINDOWS\system32\sapi.cpl.manifest
A C:\WINDOWS\system32\savedump.exe
A C:\WINDOWS\system32\sbe.dll
A C:\WINDOWS\system32\sbeio.dll
A C:\WINDOWS\system32\sc.exe
A C:\WINDOWS\system32\scarddlg.dll
A C:\WINDOWS\system32\scardssp.dll
A C:\WINDOWS\system32\scardsvr.exe
A C:\WINDOWS\system32\sccbase.dll
A C:\WINDOWS\system32\sccsccp.dll
A C:\WINDOWS\system32\scecli.dll
A C:\WINDOWS\system32\scesrv.dll
A C:\WINDOWS\system32\schannel.dll
A C:\WINDOWS\system32\schedsvc.dll
A C:\WINDOWS\system32\schtasks.exe
A C:\WINDOWS\system32\sclgntfy.dll
A C:\WINDOWS\system32\SCP32.DLL
A C:\WINDOWS\system32\scredir.dll
A C:\WINDOWS\system32\scriptpw.dll
A C:\WINDOWS\system32\scrnsave.scr
A C:\WINDOWS\system32\scrobj.dll
A C:\WINDOWS\system32\scrrun.dll
A C:\WINDOWS\system32\sdbinst.exe
A C:\WINDOWS\system32\sdhcinst.dll
A C:\WINDOWS\system32\sdpblb.dll
A C:\WINDOWS\system32\secedit.exe
A C:\WINDOWS\system32\seclogon.dll
A C:\WINDOWS\system32\secpol.msc
A C:\WINDOWS\system32\secupd.dat
A C:\WINDOWS\system32\secupd.sig
A C:\WINDOWS\system32\secur32.dll
A C:\WINDOWS\system32\security.dll
A C:\WINDOWS\system32\sendcmsg.dll
A C:\WINDOWS\system32\sendmail.dll
A C:\WINDOWS\system32\sens.dll
A C:\WINDOWS\system32\sensapi.dll
A C:\WINDOWS\system32\senscfg.dll
A C:\WINDOWS\system32\serialui.dll
A C:\WINDOWS\system32\servdeps.dll
A C:\WINDOWS\system32\services.exe
A C:\WINDOWS\system32\services.msc
A C:\WINDOWS\system32\serwvdrv.dll
A C:\WINDOWS\system32\sessmgr.exe
A C:\WINDOWS\system32\sethc.exe
A C:\WINDOWS\system32\setup.bmp
A C:\WINDOWS\system32\setup.exe
A C:\WINDOWS\system32\setupapi.dll
A C:\WINDOWS\system32\setupdll.dll
C:\WINDOWS\system32\setupn.exe
A C:\WINDOWS\system32\setver.exe
A C:\WINDOWS\system32\sfc.dll
A C:\WINDOWS\system32\sfc.exe
A C:\WINDOWS\system32\sfcfiles.dll
A C:\WINDOWS\system32\sfc_os.dll
A C:\WINDOWS\system32\sfmapi.dll
A C:\WINDOWS\system32\shadow.exe
A C:\WINDOWS\system32\share.exe
A C:\WINDOWS\system32\shdoclc.dll
A C:\WINDOWS\system32\shdocvw.dll
A C:\WINDOWS\system32\shell.dll
A C:\WINDOWS\system32\shell32.dll
A C:\WINDOWS\system32\shellstyle.dll
A C:\WINDOWS\system32\ShellvRTF.dll
A C:\WINDOWS\system32\ShellvRTF64.dll
A C:\WINDOWS\system32\shfolder.dll
A C:\WINDOWS\system32\shgina.dll
A C:\WINDOWS\system32\shiftjis.uce
A C:\WINDOWS\system32\shimeng.dll
A C:\WINDOWS\system32\shimgvw.dll
A C:\WINDOWS\system32\shlwapi.dll
A C:\WINDOWS\system32\shmedia.dll
A C:\WINDOWS\system32\shmgrate.exe
A C:\WINDOWS\system32\shrpubw.exe
A C:\WINDOWS\system32\shscrap.dll
A C:\WINDOWS\system32\shsvcs.dll
A C:\WINDOWS\system32\shutdown.exe
A C:\WINDOWS\system32\sigtab.dll
A C:\WINDOWS\system32\sigverif.exe
A C:\WINDOWS\system32\simpdata.tlb
A C:\WINDOWS\system32\sisbkup.dll
A C:\WINDOWS\system32\skdll.dll
A C:\WINDOWS\system32\skeys.exe
A C:\WINDOWS\system32\slayerxp.dll
A C:\WINDOWS\system32\slbcsp.dll
A C:\WINDOWS\system32\slbiop.dll
A C:\WINDOWS\system32\slbrccsp.dll
C:\WINDOWS\system32\slcoinst.dll
C:\WINDOWS\system32\slextspk.dll
C:\WINDOWS\system32\slgen.dll
C:\WINDOWS\system32\slrundll.exe
C:\WINDOWS\system32\slserv.exe
A C:\WINDOWS\system32\sl_anet.acm
A C:\WINDOWS\system32\smbinst.exe
A C:\WINDOWS\system32\smlogcfg.dll
A C:\WINDOWS\system32\smlogsvc.exe
A C:\WINDOWS\system32\smss.exe
A C:\WINDOWS\system32\sndrec32.exe
A C:\WINDOWS\system32\sndvol32.exe
A C:\WINDOWS\system32\snmpapi.dll
A C:\WINDOWS\system32\snmpsnap.dll
A C:\WINDOWS\system32\softpub.dll
A C:\WINDOWS\system32\sol.exe
A C:\WINDOWS\system32\sort.exe
A C:\WINDOWS\system32\sortkey.nls
A C:\WINDOWS\system32\sorttbls.nls
A C:\WINDOWS\system32\sound.drv
A C:\WINDOWS\system32\space.scr.old
A C:\WINDOWS\system32\spdwnwxp.exe
A C:\WINDOWS\system32\spider.exe
A C:\WINDOWS\system32\spiisupd.exe
C:\WINDOWS\system32\spmsg.dll
A C:\WINDOWS\system32\spnike.dll
A C:\WINDOWS\system32\spnpinst.exe
A C:\WINDOWS\system32\spoolss.dll
A C:\WINDOWS\system32\spoolsv.exe
A C:\WINDOWS\system32\sprestrt.exe
A C:\WINDOWS\system32\sprio600.dll
A C:\WINDOWS\system32\sprio800.dll
A C:\WINDOWS\system32\spupdsvc.exe
C:\WINDOWS\system32\spupdwxp.exe
A C:\WINDOWS\system32\spupdwxp.log
A C:\WINDOWS\system32\spxcoins.dll
A C:\WINDOWS\system32\sqlsodbc.chm
A C:\WINDOWS\system32\sqlsrv32.dll
A C:\WINDOWS\system32\sqlsrv32.rll
A C:\WINDOWS\system32\sqlunirl.dll
A C:\WINDOWS\system32\sqlwid.dll
A C:\WINDOWS\system32\sqlwoa.dll
A C:\WINDOWS\system32\srclient.dll
A C:\WINDOWS\system32\srrstr.dll
A C:\WINDOWS\system32\srsvc.dll
A C:\WINDOWS\system32\srvsvc.dll
A C:\WINDOWS\system32\ss3dfo.scr
A C:\WINDOWS\system32\ssbezier.scr
A C:\WINDOWS\system32\ssdpapi.dll
A C:\WINDOWS\system32\ssdpsrv.dll
A C:\WINDOWS\system32\ssflwbox.scr
A C:\WINDOWS\system32\ssmarque.scr
A C:\WINDOWS\system32\ssmypics.scr
A C:\WINDOWS\system32\ssmyst.scr
A C:\WINDOWS\system32\sspipes.scr
A C:\WINDOWS\system32\ssstars.scr
A C:\WINDOWS\system32\sstext3d.scr
A C:\WINDOWS\system32\stclient.dll
A C:\WINDOWS\system32\stdole2.tlb
A C:\WINDOWS\system32\stdole32.tlb
A C:\WINDOWS\system32\sti.dll
A C:\WINDOWS\system32\stimon.exe
A C:\WINDOWS\system32\sti_ci.dll
A C:\WINDOWS\system32\stobject.dll
A C:\WINDOWS\system32\storage.dll
A C:\WINDOWS\system32\storprop.dll
A C:\WINDOWS\system32\streamci.dll
A C:\WINDOWS\system32\strmdll.dll
A C:\WINDOWS\system32\strmfilt.dll
A C:\WINDOWS\system32\subrange.uce
A C:\WINDOWS\system32\subst.exe
A C:\WINDOWS\system32\svchost.exe
A C:\WINDOWS\system32\svcpack.dll
A C:\WINDOWS\system32\swprv.dll
A C:\WINDOWS\system32\sxs.dll
A C:\WINDOWS\system32\syncapp.exe
A C:\WINDOWS\system32\synceng.dll
A C:\WINDOWS\system32\syncui.dll
A C:\WINDOWS\system32\sysdm.cpl
A C:\WINDOWS\system32\sysedit.exe
A C:\WINDOWS\system32\sysinv.dll
A C:\WINDOWS\system32\syskey.exe
A C:\WINDOWS\system32\sysmon.ocx
A C:\WINDOWS\system32\sysocmgr.exe
A C:\WINDOWS\system32\sysprint.sep
A C:\WINDOWS\system32\sysprtj.sep
A C:\WINDOWS\system32\syssetup.dll
A C:\WINDOWS\system32\system.drv
A C:\WINDOWS\system32\systeminfo.exe
A C:\WINDOWS\system32\systray.exe
A C:\WINDOWS\system32\t2embed.dll
A C:\WINDOWS\system32\tapi.dll
A C:\WINDOWS\system32\tapi3.dll
A C:\WINDOWS\system32\tapi32.dll
A C:\WINDOWS\system32\tapiperf.dll
A C:\WINDOWS\system32\tapisrv.dll
A C:\WINDOWS\system32\tapiui.dll
A C:\WINDOWS\system32\taskkill.exe
A C:\WINDOWS\system32\tasklist.exe
A C:\WINDOWS\system32\taskman.exe
A C:\WINDOWS\system32\taskmgr.exe
A C:\WINDOWS\system32\tcmsetup.exe
A C:\WINDOWS\system32\tcpmib.dll
A C:\WINDOWS\system32\tcpmon.dll
A C:\WINDOWS\system32\tcpmon.ini
A C:\WINDOWS\system32\tcpmonui.dll
A C:\WINDOWS\system32\tcpsvcs.exe
A C:\WINDOWS\system32\tdc.ocx
A C:\WINDOWS\system32\tee50.bpl
A C:\WINDOWS\system32\teedb50.bpl
A C:\WINDOWS\system32\teeqr50.bpl
A C:\WINDOWS\system32\teeui50.bpl
A C:\WINDOWS\system32\telephon.cpl
A C:\WINDOWS\system32\telnet.exe
A C:\WINDOWS\system32\termcap
A C:\WINDOWS\system32\termmgr.dll
A C:\WINDOWS\system32\termsrv.dll
A C:\WINDOWS\system32\tftp.exe
A C:\WINDOWS\system32\themeui.dll
C:\WINDOWS\system32\ticrf.rat
A C:\WINDOWS\system32\timedate.cpl
A C:\WINDOWS\system32\timer.drv
A C:\WINDOWS\system32\tlntadmn.exe
A C:\WINDOWS\system32\tlntsess.exe
A C:\WINDOWS\system32\tlntsvr.exe
A C:\WINDOWS\system32\tlntsvrp.dll
A C:\WINDOWS\system32\toolhelp.dll
A C:\WINDOWS\system32\tourstart.exe
A C:\WINDOWS\system32\tracerpt.exe
A C:\WINDOWS\system32\tracert.exe
A C:\WINDOWS\system32\tracert6.exe
A C:\WINDOWS\system32\traffic.dll
A C:\WINDOWS\system32\tree.com
A C:\WINDOWS\system32\trkwks.dll
A C:\WINDOWS\system32\tsappcmp.dll
A C:\WINDOWS\system32\tsbyuv.dll
A C:\WINDOWS\system32\tscfgwmi.dll
A C:\WINDOWS\system32\tscon.exe
A C:\WINDOWS\system32\tscupgrd.exe
A C:\WINDOWS\system32\tsd32.dll
A C:\WINDOWS\system32\tsddd.dll
A C:\WINDOWS\system32\tsdiscon.exe
C:\WINDOWS\system32\tsgqec.dll
A C:\WINDOWS\system32\tskill.exe
A C:\WINDOWS\system32\tslabels.h
A C:\WINDOWS\system32\tslabels.ini
C:\WINDOWS\system32\tspkg.dll
A C:\WINDOWS\system32\tsshutdn.exe
A C:\WINDOWS\system32\tssoft32.acm
A C:\WINDOWS\system32\TsWpfWrp.exe
A C:\WINDOWS\system32\twext.dll
A C:\WINDOWS\system32\txflog.dll
A C:\WINDOWS\system32\typelib.dll
A C:\WINDOWS\system32\typeperf.exe
C:\WINDOWS\system32\tzchange.exe
A C:\WINDOWS\system32\TZLog.log
A C:\WINDOWS\system32\UCI32103.dll
A C:\WINDOWS\system32\udhisapi.dll
A C:\WINDOWS\system32\ufat.dll
A C:\WINDOWS\system32\uiautomationcore.dll
A C:\WINDOWS\system32\ulib.dll
A C:\WINDOWS\system32\umandlg.dll
A C:\WINDOWS\system32\umdmxfrm.dll
A C:\WINDOWS\system32\UMLoader.dll
A C:\WINDOWS\system32\umpnpmgr.dll
A C:\WINDOWS\system32\unicode.nls
A C:\WINDOWS\system32\unicows.dll
A C:\WINDOWS\system32\unimdm.tsp
A C:\WINDOWS\system32\unimdmat.dll
A C:\WINDOWS\system32\uniplat.dll
A C:\WINDOWS\system32\unlodctr.exe
A C:\WINDOWS\system32\untfs.dll
A C:\WINDOWS\system32\upnp.dll
A C:\WINDOWS\system32\upnpcont.exe
A C:\WINDOWS\system32\upnphost.dll
A C:\WINDOWS\system32\upnpui.dll
A C:\WINDOWS\system32\ups.exe
A C:\WINDOWS\system32\ureg.dll
A C:\WINDOWS\system32\url.dll
A C:\WINDOWS\system32\urlmon.dll
A C:\WINDOWS\system32\usbaaplrc.dll
A C:\WINDOWS\system32\usbmon.dll
A C:\WINDOWS\system32\usbui.dll
A C:\WINDOWS\system32\user.exe
A C:\WINDOWS\system32\user32.dll
A C:\WINDOWS\system32\userenv.dll
A C:\WINDOWS\system32\userinit.exe
A C:\WINDOWS\system32\usp10.dll
A C:\WINDOWS\system32\usrcntra.dll
A C:\WINDOWS\system32\usrcoina.dll
A C:\WINDOWS\system32\usrdpa.dll
A C:\WINDOWS\system32\usrdtea.dll
A C:\WINDOWS\system32\usrfaxa.dll
A C:\WINDOWS\system32\usrlbva.dll
A C:\WINDOWS\system32\usrlogon.cmd
A C:\WINDOWS\system32\usrmlnka.exe
A C:\WINDOWS\system32\usrprbda.exe
A C:\WINDOWS\system32\usrrtosa.dll
A C:\WINDOWS\system32\usrsdpia.dll
A C:\WINDOWS\system32\usrshuta.exe
A C:\WINDOWS\system32\usrsvpia.dll
A C:\WINDOWS\system32\usrv42a.dll
A C:\WINDOWS\system32\usrv80a.dll
A C:\WINDOWS\system32\usrvoica.dll
A C:\WINDOWS\system32\usrvpa.dll
A C:\WINDOWS\system32\utildll.dll
A C:\WINDOWS\system32\utilman.exe
A C:\WINDOWS\system32\uwdf.exe
A C:\WINDOWS\system32\uxtheme.dll
A C:\WINDOWS\system32\v7vga.rom
A C:\WINDOWS\system32\VBAEN32.OLB
A C:\WINDOWS\system32\VBAEND32.OLB
A C:\WINDOWS\system32\vbajet32.dll
A C:\WINDOWS\system32\VBAME.DLL
A S C:\WINDOWS\system32\Vbar332.dll
A C:\WINDOWS\system32\VBICodec.ax
A C:\WINDOWS\system32\vbisurf.ax
A C:\WINDOWS\system32\vbscript.dll
A C:\WINDOWS\system32\vcdex.dll
A C:\WINDOWS\system32\vcl50.bpl
A C:\WINDOWS\system32\vclbde50.bpl
A C:\WINDOWS\system32\vcldb50.bpl
A C:\WINDOWS\system32\vcldbx50.bpl
A C:\WINDOWS\system32\vclib50.bpl
A C:\WINDOWS\system32\vclie50.bpl
A C:\WINDOWS\system32\vcljpg50.bpl
A C:\WINDOWS\system32\vclsmp50.bpl
A C:\WINDOWS\system32\vclx50.bpl
A C:\WINDOWS\system32\vcomp100.dll
A C:\WINDOWS\system32\vdmdbg.dll
A C:\WINDOWS\system32\vdmredir.dll
A C:\WINDOWS\system32\VEN2232.OLB
A C:\WINDOWS\system32\ver.dll
C:\WINDOWS\system32\verclsid.exe
A C:\WINDOWS\system32\verifier.dll
A C:\WINDOWS\system32\verifier.exe
A C:\WINDOWS\system32\version.dll
A C:\WINDOWS\system32\vfpodbc.dll
A C:\WINDOWS\system32\vfwwdm32.dll
A C:\WINDOWS\system32\vga.dll
A C:\WINDOWS\system32\vga.drv
A C:\WINDOWS\system32\vga256.dll
A C:\WINDOWS\system32\vga64k.dll
A C:\WINDOWS\system32\vidcap.ax
A C:\WINDOWS\system32\View Channels.scf
A C:\WINDOWS\system32\vjoy.dll
A C:\WINDOWS\system32\VSFLEX3.OCX
A C:\WINDOWS\system32\vssadmin.exe
A C:\WINDOWS\system32\vssapi.dll
A C:\WINDOWS\system32\vssvc.exe
A C:\WINDOWS\system32\vss_ps.dll
A C:\WINDOWS\system32\vwipxspx.dll
A C:\WINDOWS\system32\vwipxspx.exe
A C:\WINDOWS\system32\VXBLOCK.dll
A C:\WINDOWS\system32\w32time.dll
A C:\WINDOWS\system32\w32tm.exe
A C:\WINDOWS\system32\w32topl.dll
A C:\WINDOWS\system32\w3ssl.dll
A C:\WINDOWS\system32\watchdog.sys
A C:\WINDOWS\system32\wavemsp.dll
A C:\WINDOWS\system32\wbcache.deu
A C:\WINDOWS\system32\wbcache.enu
A C:\WINDOWS\system32\wbcache.esn
A C:\WINDOWS\system32\wbcache.fra
A C:\WINDOWS\system32\wbcache.ita
A C:\WINDOWS\system32\wbcache.nld
A C:\WINDOWS\system32\wbcache.sve
A C:\WINDOWS\system32\wbdbase.deu
A C:\WINDOWS\system32\wbdbase.enu
A C:\WINDOWS\system32\wbdbase.esn
A C:\WINDOWS\system32\wbdbase.fra
A C:\WINDOWS\system32\wbdbase.ita
A C:\WINDOWS\system32\wbdbase.nld
A C:\WINDOWS\system32\wbdbase.sve
A C:\WINDOWS\system32\WBDBT32I.DLL
A C:\WINDOWS\system32\WBDBV32I.DLL
A C:\WINDOWS\system32\wdfapi.dll
A C:\WINDOWS\system32\wdfmgr.exe
A C:\WINDOWS\system32\wdigest.dll
A C:\WINDOWS\system32\wdl.trm
A C:\WINDOWS\system32\wdmaud.drv
A C:\WINDOWS\system32\webcheck.dll
A C:\WINDOWS\system32\webclnt.dll
A C:\WINDOWS\system32\webfldrs.msi
A C:\WINDOWS\system32\webhits.dll
A C:\WINDOWS\system32\webvw.dll
A C:\WINDOWS\system32\wextract.exe
A C:\WINDOWS\system32\wfwnet.drv
C:\WINDOWS\system32\WgaLogon.dll
C:\WINDOWS\system32\WgaTray.exe
A C:\WINDOWS\system32\wiaacmgr.exe
A C:\WINDOWS\system32\wiadefui.dll
A C:\WINDOWS\system32\wiadss.dll
A C:\WINDOWS\system32\wiascr.dll
A C:\WINDOWS\system32\wiaservc.dll
A C:\WINDOWS\system32\wiasf.ax
A C:\WINDOWS\system32\wiashext.dll
A C:\WINDOWS\system32\wiavideo.dll
A C:\WINDOWS\system32\wiavusd.dll
A C:\WINDOWS\system32\wifeman.dll
A C:\WINDOWS\system32\win.com
A C:\WINDOWS\system32\win32k.sys
A C:\WINDOWS\system32\win32spl.dll
A C:\WINDOWS\system32\win87em.dll
A C:\WINDOWS\system32\winbrand.dll
A C:\WINDOWS\system32\winchat.exe
A C:\WINDOWS\system32\WindowsAccessBridge.dll
C:\WINDOWS\system32\windowscodecs.dll
C:\WINDOWS\system32\windowscodecsext.dll
A HR C:\WINDOWS\system32\WindowsLogon.manifest
A C:\WINDOWS\system32\winfax.dll
A C:\WINDOWS\system32\WinFXDocObj.exe
A C:\WINDOWS\system32\winhelp.hlp
A C:\WINDOWS\system32\winhlp32.exe
A C:\WINDOWS\system32\winhttp.dll
A C:\WINDOWS\system32\wininet.dll
A C:\WINDOWS\system32\winipsec.dll
A C:\WINDOWS\system32\winlogon.exe
A C:\WINDOWS\system32\winmine.exe
A C:\WINDOWS\system32\winmm.dll
A C:\WINDOWS\system32\winmsd.exe
A C:\WINDOWS\system32\winnls.dll
A C:\WINDOWS\system32\winntbbu.dll
A C:\WINDOWS\system32\winoldap.mod
A C:\WINDOWS\system32\winrnr.dll
A C:\WINDOWS\system32\winscard.dll
A C:\WINDOWS\system32\winshfhc.dll
A C:\WINDOWS\system32\winsock.dll
A C:\WINDOWS\system32\winspool.drv
A C:\WINDOWS\system32\winspool.exe
A C:\WINDOWS\system32\winsrv.dll
A C:\WINDOWS\system32\winsta.dll
A C:\WINDOWS\system32\winstrm.dll
A C:\WINDOWS\system32\wintrust.dll
A C:\WINDOWS\system32\winver.exe
A C:\WINDOWS\system32\WISPTIS.EXE
A C:\WINDOWS\system32\wkssvc.dll
C:\WINDOWS\system32\wlanapi.dll
A C:\WINDOWS\system32\wldap32.dll
A C:\WINDOWS\system32\wlnotify.dll
A C:\WINDOWS\system32\wmadmod.dll
A C:\WINDOWS\system32\wmadmoe.dll
A C:\WINDOWS\system32\wmasf.dll
A C:\WINDOWS\system32\WMDMLOG.dll
A C:\WINDOWS\system32\WMDMPS.dll
A C:\WINDOWS\system32\WMDRMdev.dll
A C:\WINDOWS\system32\WMDRMNet.dll
A C:\WINDOWS\system32\wmdrmsdk.dll
A C:\WINDOWS\system32\wmerrenu.dll
A C:\WINDOWS\system32\wmerror.dll
A C:\WINDOWS\system32\wmi.dll
A C:\WINDOWS\system32\wmidx.dll
A C:\WINDOWS\system32\wmimgmt.msc
A C:\WINDOWS\system32\wmiprop.dll
A C:\WINDOWS\system32\wmiscmgr.dll
A C:\WINDOWS\system32\WMNetmgr.dll
A C:\WINDOWS\system32\wmp.dll
A C:\WINDOWS\system32\wmp.ocx
A C:\WINDOWS\system32\wmpasf.dll
A C:\WINDOWS\system32\wmpcd.dll
A C:\WINDOWS\system32\wmpcore.dll
A C:\WINDOWS\system32\wmpdxm.dll
A C:\WINDOWS\system32\wmpencen.dll
C:\WINDOWS\system32\wmphoto.dll
A C:\WINDOWS\system32\wmploc.dll
A C:\WINDOWS\system32\wmpshell.dll
A C:\WINDOWS\system32\wmpsrcwp.dll
A C:\WINDOWS\system32\wmpui.dll
A C:\WINDOWS\system32\wmsdmod.dll
A C:\WINDOWS\system32\wmsdmoe.dll
A C:\WINDOWS\system32\wmsdmoe2.dll
A C:\WINDOWS\system32\wmspdmod.dll
A C:\WINDOWS\system32\wmspdmoe.dll
A C:\WINDOWS\system32\wmstream.dll
A C:\WINDOWS\system32\wmv8ds32.ax
A C:\WINDOWS\system32\wmvadvd.dll
A C:\WINDOWS\system32\WMVADVE.DLL
A C:\WINDOWS\system32\WMVCore.dll
A C:\WINDOWS\system32\wmvdmod.dll
A C:\WINDOWS\system32\wmvdmoe2.dll
A C:\WINDOWS\system32\wmvds32.ax
A C:\WINDOWS\system32\wow32.dll
A C:\WINDOWS\system32\wowdeb.exe
A C:\WINDOWS\system32\wowexec.exe
A C:\WINDOWS\system32\wowfax.dll
A C:\WINDOWS\system32\wowfaxui.dll
A C:\WINDOWS\system32\wpa.dbl
A C:\WINDOWS\system32\wpabaln.exe
A C:\WINDOWS\system32\wpdconns.dll
A C:\WINDOWS\system32\wpdmtp.dll
A C:\WINDOWS\system32\wpdmtpdr.dll
A C:\WINDOWS\system32\wpdmtpus.dll
A C:\WINDOWS\system32\wpdsp.dll
A C:\WINDOWS\system32\wpdtrace.dll
A C:\WINDOWS\system32\wpd_ci.dll
A C:\WINDOWS\system32\wpgldfsh.scr
A C:\WINDOWS\system32\wpnpinst.exe
A C:\WINDOWS\system32\write.exe
A C:\WINDOWS\system32\ws2help.dll
A C:\WINDOWS\system32\ws2_32.dll
A C:\WINDOWS\system32\wscntfy.exe
A C:\WINDOWS\system32\wscript.exe
A C:\WINDOWS\system32\wscsvc.dll
A C:\WINDOWS\system32\wscui.cpl
A C:\WINDOWS\system32\wsecedit.dll
A C:\WINDOWS\system32\wshatm.dll
A C:\WINDOWS\system32\wshbth.dll
A C:\WINDOWS\system32\wshcon.dll
A C:\WINDOWS\system32\wshext.dll
A C:\WINDOWS\system32\wship6.dll
A C:\WINDOWS\system32\wshisn.dll
A C:\WINDOWS\system32\wshnetbs.dll
A C:\WINDOWS\system32\wshom.ocx
A C:\WINDOWS\system32\wshrm.dll
A C:\WINDOWS\system32\wshtcpip.dll
A C:\WINDOWS\system32\wsnmp32.dll
A C:\WINDOWS\system32\wsock32.dll
A C:\WINDOWS\system32\wstdecod.dll
A C:\WINDOWS\system32\wstpager.ax
A C:\WINDOWS\system32\wstrenderer.ax
A C:\WINDOWS\system32\wtsapi32.dll
A C:\WINDOWS\system32\wuapi.dll
A C:\WINDOWS\system32\wuapi.dll.mui
A C:\WINDOWS\system32\wuauclt.exe
A C:\WINDOWS\system32\wuauclt.exe.wusetup.2579984.bak
A C:\WINDOWS\system32\wuauclt1.exe
A C:\WINDOWS\system32\wuaucpl.cpl
A HR C:\WINDOWS\system32\wuaucpl.cpl.manifest
A C:\WINDOWS\system32\wuaucpl.cpl.mui
A C:\WINDOWS\system32\wuaucpl.cpl.wusetup.2580250.bak
A C:\WINDOWS\system32\wuaueng.dll
A C:\WINDOWS\system32\wuaueng.dll.mui
A C:\WINDOWS\system32\wuaueng.dll.wusetup.2580609.bak
A C:\WINDOWS\system32\wuaueng1.dll
A C:\WINDOWS\system32\wuauserv.dll
A C:\WINDOWS\system32\wucltui.dll
A C:\WINDOWS\system32\wucltui.dll.mui
A C:\WINDOWS\system32\wupdmgr.exe
A C:\WINDOWS\system32\wups.dll
A C:\WINDOWS\system32\wups2.dll
A C:\WINDOWS\system32\wuweb.dll
A C:\WINDOWS\system32\wzcdlg.dll
A C:\WINDOWS\system32\wzcsapi.dll
A C:\WINDOWS\system32\wzcsvc.dll
A C:\WINDOWS\system32\xactsrv.dll
A C:\WINDOWS\system32\xcopy.exe
A C:\WINDOWS\system32\xenroll.dll
A C:\WINDOWS\system32\xmllite.dll
A C:\WINDOWS\system32\xmlprov.dll
A C:\WINDOWS\system32\xmlprovi.dll
A C:\WINDOWS\system32\xolehlp.dll
A C:\WINDOWS\system32\xpob2res.dll
A C:\WINDOWS\system32\xpsp1res.dll
A C:\WINDOWS\system32\xpsp2res.dll
A C:\WINDOWS\system32\xpsp3res.dll
A C:\WINDOWS\system32\xpsp4res.dll
C:\WINDOWS\system32\xpsshhdr.dll
C:\WINDOWS\system32\xpssvcs.dll
A C:\WINDOWS\system32\YSys.dll
A C:\WINDOWS\system32\zipfldr.dll




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users