Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AGONY - wininit.sys - NTRootKit-K - infection!


  • This topic is locked This topic is locked
25 replies to this topic

#1 KeithBam

KeithBam

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 30 January 2014 - 09:29 AM

Please help me with this infection! I have run the following programs with no luck to remove the infection: HitmanPro (Kickstart), Malware Bytes Anti-Rootkit, JRT, ADWcleaner, SuperAntiSpyware, Malware Bytes Anti-Malware and Dr Web Cureit.

 

Any assistance would be greatly appreciated!

 

Here is my DDS log:

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 7.0.6000.17037
Run by Mayra at 8:11:46 on 2014-01-30
Microsoft® Windows Vista™ Home Basic   6.0.6000.0.1252.1.1033.18.445.63 [GMT -6:00]
.
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\AOL\1173975032\ee\aolsoftware.exe
C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\SymcPCCULaunchSvc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Windows\system32\WerCon.exe
C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
\\?\C:\Windows\system32\wbem\WMIADAP.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.yahoo.com/
uSearch Bar = hxxp://www.google.com
mStart Page = hxxp://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
mDefault_Page_URL = hxxp://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
uProxyOverride = <local>
mSearchAssistant = hxxp://www.gateway.com/g/sidepanel.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.6.0\bin\ssv.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
BHO: Windows Live Toolbar Helper: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
TB: &Google: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
TB: EFOToolbar: {AB26BF6C-BB04-4F00-8F98-BDE786CDE97D} - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll
TB: &Google: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
TB: EFOToolbar: {AB26BF6C-BB04-4F00-8F98-BDE786CDE97D} - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll
uRun: [CTSyncU.exe] "c:\program files\creative\sync manager unicode\CTSyncU.exe"
uRun: [MsnMsgr] "c:\program files\windows live\messenger\MsnMsgr.Exe" /background
mRun: [HostManager] c:\program files\common files\aol\1173975032\ee\AOLSoftware.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
StartupFolder: c:\users\mayra\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
IE: &3D Satellite Search - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll/GoSatteliteSearch.dll.htm
IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: S&earchSave Web Search - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll/GoWebSearch.dll.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0\bin\ssv.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {26FCCDF9-A7E1-452A-A73D-7BF7B4D0BA6C} - hxxp://o.aolcdn.com/pictures/ap/Resources/2.0.6.9/cab/aolpPlugins.10.6.0.4.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {48DD0448-9209-4F81-9F6D-D83562940134} - hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{9F36A383-E0E8-4F5F-8A3F-591F72B2BEC9} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{F88B3CCC-9538-4E20-B035-30E372AA84F7} : DHCPNameServer = 192.168.1.254
LSA: Security Packages =  kerberos msv1_0 schannel wdigest tspkg
.
============= SERVICES / DRIVERS ===============
.
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-1-29 22856]
S1 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2014-1-29 75480]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\drivers\athur.sys [2013-9-12 1439744]
S3 NETw2v32;Intel® PRO/Wireless 2200BG Network Connection Driver for Windows Vista;c:\windows\system32\drivers\NETw2v32.sys [2006-11-2 2589184]
.
=============== File Associations ===============
.
ShellExec: BitDownload.exe: open=c:\program files\bitdownload\BitDownload.exe
ShellExec: pi11.exe: Open="c:\program files\microsoft digital image 2006\pi.exe" "%1"
ShellExec: ymp.exe: open="c:\program files\yahoo!\yahoo! music jukebox\YahooMusicEngine.exe" -play "%1"
ShellExec: ymp.exe: play="c:\program files\yahoo!\yahoo! music jukebox\YahooMusicEngine.exe" -play "%1"
.
=============== Created Last 30 ================
.
2014-01-30 12:52:52 -------- d-----w- c:\programdata\Doctor Web
2014-01-30 12:52:40 -------- d-----w- c:\users\mayra\Doctor Web
2014-01-30 12:35:38 -------- d-----w- C:\AdwCleaner
2014-01-30 12:28:32 -------- d-----w- c:\windows\ERUNT
2014-01-30 07:35:45 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{dba186de-e35d-4540-ba25-1634bdc9e39f}\offreg.dll
2014-01-30 05:31:36 -------- d-----w- c:\users\mayra\appdata\roaming\SUPERAntiSpyware.com
2014-01-30 05:31:35 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-01-30 03:49:54 -------- d-----w- c:\users\mayra\appdata\roaming\Malwarebytes
2014-01-30 03:49:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-01-30 03:49:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2014-01-30 01:41:03 -------- d-----w- c:\programdata\Malwarebytes
2014-01-30 01:40:10 75480 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-01-30 01:05:53 7760024 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{dba186de-e35d-4540-ba25-1634bdc9e39f}\mpengine.dll
2014-01-30 00:44:55 135464 ----a-w- c:\windows\system32\LnkProtect.dll
2014-01-30 00:43:34 -------- d-----w- c:\programdata\HitmanPro
.
==================== Find3M  ====================
.
2014-01-16 15:59:46 231584 ------w- c:\windows\system32\MpSigStub.exe
.
============= FINISH:  8:13:56.81 ===============
 

Attached Files



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,658 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:22 PM

Posted 04 February 2014 - 10:10 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/522612 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 05 February 2014 - 08:27 AM

The problem with this machine is that it runs very slow and has problems opening browsers and connecting to the internet. I have run several programs Malwarebytes Anti Virus and anti root kit. I have run Dr Cureit, JRT, ESET, and ADWremoval. I might have spelled that wrong. I have probably failed to mention all of the virus removal tools I have tried. SuperAntiSpyware removal...etc. 

 

This is a Windows 7 Basic home edition. I do not have the windows CD for this machine. 



#4 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 05 February 2014 - 09:17 AM

DDS (Ver_2012-11-20.01) - NTFS_x86 
Internet Explorer: 9.0.8112.16526  BrowserJavaVersion: 10.51.2
Run by Mayra at 7:54:50 on 2014-02-05
.
============== Running Processes ================
.
C:\Program Files\AVG\AVG2014\avgrsx.exe
C:\Program Files\AVG\AVG2014\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\ProgramData\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\AVG\AVG2014\avgidsagent.exe
C:\Program Files\AVG\AVG2014\avgwdsvc.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\SymcPCCULaunchSvc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
C:\Program Files\AVG\AVG2014\avgnsx.exe
C:\Program Files\AVG\AVG2014\avgemcx.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\RacAgent.exe
C:\Windows\system32\mcbuilder.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.yahoo.com/
uSearch Bar = hxxp://www.google.com
mStart Page = hxxp://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
mDefault_Page_URL = hxxp://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
uProxyOverride = <local>
mSearchAssistant = hxxp://www.gateway.com/g/sidepanel.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
BHO: Windows Live Toolbar Helper: {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: &Google: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
TB: EFOToolbar: {AB26BF6C-BB04-4F00-8F98-BDE786CDE97D} - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll
TB: &Google: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
TB: Windows Live Toolbar: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\program files\windows live toolbar\msntb.dll
TB: EFOToolbar: {AB26BF6C-BB04-4F00-8F98-BDE786CDE97D} - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [AVG_UI] "c:\program files\avg\avg2014\avgui.exe" /TRAYONLY
mRun: [RtHDVCpl] RtHDVCpl.exe
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: &3D Satellite Search - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll/GoSatteliteSearch.dll.htm
IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: S&earchSave Web Search - c:\users\mayra\appdata\roaming\osi\dlls\EFOToolbar.dll/GoWebSearch.dll.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {26FCCDF9-A7E1-452A-A73D-7BF7B4D0BA6C} - hxxp://o.aolcdn.com/pictures/ap/Resources/2.0.6.9/cab/aolpPlugins.10.6.0.4.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {48DD0448-9209-4F81-9F6D-D83562940134} - hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{9F36A383-E0E8-4F5F-8A3F-591F72B2BEC9} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{F88B3CCC-9538-4E20-B035-30E372AA84F7} : DHCPNameServer = 192.168.1.254
LSA: Security Packages =  kerberos msv1_0 schannel wdigest tspkg
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\32.0.1700.107\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
3 AVGIDSAgent;AVGIDSAgent
R? athur;Atheros AR9271 Wireless Network Adapter Service
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? NETw2v32;Intel® PRO/Wireless 2200BG Network Connection Driver for Windows Vista
R? SASDIFSV;SASDIFSV
R? SASKUTIL;SASKUTIL
R? WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0
S? Avgdiskx;AVG Disk Driver
S? AVGIDSDriver;AVGIDSDriver
S? AVGIDSHX;AVGIDSHX
S? AVGIDSShim;AVGIDSShim
S? Avgldx86;AVG AVI Loader Driver
S? Avglogx;AVG Logging Driver
S? Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield
S? Avgrkx86;AVG Anti-Rootkit Driver
S? Avgtdix;AVG TDI Driver
S? avgwd;AVG WatchDog
S? FontCache;Windows Font Cache Service
S? Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher
S? PCCUJobMgr;Common Client Job Manager Service
.
=============== File Associations ===============
.
ShellExec: pi11.exe: Open="c:\program files\microsoft digital image 2006\pi.exe" "%1"
.
=============== Created Last 30 ================
.
2014-02-05 10:35:04 486400 ----a-w- c:\windows\system32\d3d10level9.dll
2014-02-05 10:35:04 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-02-05 10:35:04 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2014-02-05 10:35:03 189952 ----a-w- c:\windows\system32\d3d10core.dll
2014-02-05 10:35:03 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2014-02-05 10:35:03 1029120 ----a-w- c:\windows\system32\d3d10.dll
2014-02-05 10:35:02 683008 ----a-w- c:\windows\system32\d2d1.dll
2014-02-05 10:35:01 798208 ----a-w- c:\windows\system32\FntCache.dll
2014-02-05 10:35:01 1069056 ----a-w- c:\windows\system32\DWrite.dll
2014-02-05 10:33:13 335360 ----a-w- c:\windows\system32\SysFxUI.dll
2014-02-05 10:33:13 167936 ----a-w- c:\windows\system32\drivers\portcls.sys
2014-02-05 10:33:13 130048 ----a-w- c:\windows\system32\drivers\drmk.sys
2014-02-05 10:33:09 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2014-02-05 05:20:31 -------- d-----w- c:\program files\Windows Portable Devices
2014-02-05 03:20:46 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2014-02-05 03:20:45 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2014-02-05 03:20:44 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2014-02-05 02:03:38 161792 ----a-w- c:\windows\system32\msls31.dll
2014-02-05 01:58:11 979456 ----a-w- c:\windows\system32\MFH264Dec.dll
2014-02-05 01:58:10 357376 ----a-w- c:\windows\system32\MFHEAACdec.dll
2014-02-05 01:58:09 302592 ----a-w- c:\windows\system32\mfmp4src.dll
2014-02-05 01:58:08 261632 ----a-w- c:\windows\system32\mfreadwrite.dll
2014-02-05 01:58:07 2873344 ----a-w- c:\windows\system32\mf.dll
2014-02-05 01:58:06 98816 ----a-w- c:\windows\system32\mfps.dll
2014-02-05 01:58:00 209920 ----a-w- c:\windows\system32\mfplat.dll
2014-02-05 01:57:56 586240 ----a-w- c:\windows\system32\stobject.dll
2014-02-05 01:57:48 135680 ----a-w- c:\windows\system32\XpsRasterService.dll
2014-02-05 01:57:35 478720 ----a-w- c:\windows\system32\dxgi.dll
2014-02-05 01:57:31 258048 ----a-w- c:\windows\system32\winspool.drv
2014-02-05 01:57:29 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2014-02-05 01:57:29 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2014-02-05 01:57:26 847360 ----a-w- c:\windows\system32\OpcServices.dll
2014-02-05 01:57:25 1554432 ----a-w- c:\windows\system32\xpsservices.dll
2014-02-05 01:54:21 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2014-02-05 01:54:21 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2014-02-05 01:54:20 252928 ----a-w- c:\windows\system32\dxdiag.exe
2014-02-05 01:54:14 519680 ----a-w- c:\windows\system32\d3d11.dll
2014-02-05 01:54:05 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2014-02-05 01:54:02 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2014-02-05 01:53:59 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-05 01:01:40 9728 ----a-w- c:\windows\system32\Wdfres.dll
2014-02-05 01:01:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-02-05 01:01:31 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-02-05 01:01:31 16896 ----a-w- c:\windows\system32\winusb.dll
2014-02-05 01:01:30 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-02-05 01:01:30 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-02-05 01:01:29 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-02-05 01:01:26 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-02-05 01:01:25 613888 ----a-w- c:\windows\system32\WUDFx.dll
2014-02-05 01:01:25 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2014-02-04 17:59:26 376320 ----a-w- c:\windows\system32\dpnet.dll
2014-02-04 17:59:26 23040 ----a-w- c:\windows\system32\dpnsvr.exe
2014-02-04 17:59:09 37376 ----a-w- c:\windows\system32\cdd.dll
2014-02-04 17:59:08 638400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-02-04 17:59:03 293376 ----a-w- c:\windows\system32\psisdecd.dll
2014-02-04 17:59:02 69632 ----a-w- c:\windows\system32\Mpeg2Data.ax
2014-02-04 17:59:02 57856 ----a-w- c:\windows\system32\MSDvbNP.ax
2014-02-04 17:59:02 217088 ----a-w- c:\windows\system32\psisrndr.ax
2014-02-04 17:58:56 2050560 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 17:58:46 24064 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2014-02-04 17:58:46 15872 ----a-w- c:\windows\system32\icaapi.dll
2014-02-04 17:58:40 189952 ----a-w- c:\windows\system32\winmm.dll
2014-02-04 17:58:39 23552 ----a-w- c:\windows\system32\mciseq.dll
2014-02-04 17:58:24 623616 ----a-w- c:\windows\system32\localspl.dll
2014-02-04 17:56:24 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-04 17:54:54 75776 ----a-w- c:\windows\system32\synceng.dll
2014-02-04 17:54:19 304128 ----a-w- c:\program files\internet explorer\ieuser.exe
2014-02-04 17:53:48 905664 ----a-w- c:\windows\system32\drivers\tcpip.sys
2014-02-04 17:52:31 429056 ----a-w- c:\windows\system32\EncDec.dll
2014-02-04 17:52:19 2048 ----a-w- c:\windows\system32\tzres.dll
2014-02-04 17:50:46 783360 ----a-w- c:\windows\system32\rpcrt4.dll
2014-02-04 15:52:48 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys
2014-02-04 15:31:07 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2014-02-04 14:04:10 204288 ----a-w- c:\windows\system32\ncrypt.dll
2014-02-04 13:50:46 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-02-04 13:48:41 66560 ----a-w- c:\windows\system32\packager.dll
2014-02-04 13:44:59 1082232 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-02-04 13:44:44 680448 ----a-w- c:\windows\system32\msvcrt.dll
2014-02-04 13:44:30 297984 ----a-w- c:\windows\system32\gdi32.dll
2014-02-04 13:44:13 377344 ----a-w- c:\windows\system32\winhttp.dll
2014-02-04 13:43:56 993792 ----a-w- c:\windows\system32\crypt32.dll
2014-02-04 13:43:02 73216 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-02-04 13:43:02 6016 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-02-04 13:43:02 197632 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-02-04 13:43:01 226304 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-02-04 13:42:59 39936 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-02-04 13:42:57 19456 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-02-04 13:41:25 1314816 ----a-w- c:\windows\system32\quartz.dll
2014-02-04 13:41:15 708608 ----a-w- c:\program files\common files\system\ado\msado15.dll
2014-02-04 13:40:56 443904 ----a-w- c:\windows\system32\win32spl.dll
2014-02-04 13:40:55 37376 ----a-w- c:\windows\system32\printcom.dll
2014-02-04 13:40:42 1548288 ----a-w- c:\windows\system32\WMVDECOD.DLL
2014-02-04 13:40:28 131072 ----a-w- c:\windows\system32\wshom.ocx
2014-02-04 13:40:27 155648 ----a-w- c:\windows\system32\wscript.exe
2014-02-04 13:40:25 135168 ----a-w- c:\windows\system32\cscript.exe
2014-02-04 13:40:24 172032 ----a-w- c:\windows\system32\scrrun.dll
2014-02-04 13:40:23 36864 ----a-w- c:\windows\system32\wshcon.dll
2014-02-04 13:40:11 615936 ----a-w- c:\windows\system32\themeui.dll
2014-02-04 13:39:54 812544 ----a-w- c:\windows\system32\certutil.exe
2014-02-04 13:39:51 41984 ----a-w- c:\windows\system32\certenc.dll
2014-02-04 13:39:05 532480 ----a-w- c:\windows\system32\comctl32.dll
2014-02-04 13:38:54 1400832 ----a-w- c:\windows\system32\msxml6.dll
2014-02-04 13:38:18 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2014-02-04 13:38:11 444928 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-02-04 13:38:10 596480 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-02-04 13:38:03 5120 ----a-w- c:\windows\system32\wmi.dll
2014-02-04 13:38:03 158208 ----a-w- c:\windows\system32\imagehlp.dll
2014-02-04 13:38:03 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2014-02-04 13:37:52 497152 ----a-w- c:\windows\system32\qdvd.dll
2014-02-04 13:37:42 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2014-02-04 13:37:31 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-02-04 13:37:29 278528 ----a-w- c:\windows\system32\schannel.dll
2014-02-04 13:37:29 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2014-02-04 13:37:26 9728 ----a-w- c:\windows\system32\lsass.exe
2014-02-04 13:37:26 72704 ----a-w- c:\windows\system32\secur32.dll
2014-02-04 13:37:15 34304 ----a-w- c:\windows\system32\atmlib.dll
2014-02-04 13:37:15 293376 ----a-w- c:\windows\system32\atmfd.dll
2014-02-04 13:37:01 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2014-02-04 13:36:36 3603904 ----a-w- c:\windows\system32\ntkrnlpa.exe
2014-02-04 13:36:35 3551680 ----a-w- c:\windows\system32\ntoskrnl.exe
2014-02-04 13:36:34 1205168 ----a-w- c:\windows\system32\ntdll.dll
2014-02-04 13:36:29 64000 ----a-w- c:\windows\system32\smss.exe
2014-02-04 13:36:28 49152 ----a-w- c:\windows\system32\csrsrv.dll
2014-02-04 13:35:56 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2014-02-04 13:35:56 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2014-02-04 13:35:56 238080 ----a-w- c:\windows\system32\oleacc.dll
2014-02-04 13:35:55 563712 ----a-w- c:\windows\system32\oleaut32.dll
2014-02-04 13:34:48 505344 ----a-w- c:\windows\system32\qedit.dll
2014-02-04 13:34:38 1248768 ----a-w- c:\windows\system32\msxml3.dll
2014-02-04 13:33:35 2067968 ----a-w- c:\windows\system32\mstscax.dll
2014-02-04 13:33:09 24576 ----a-w- c:\windows\system32\cryptdlg.dll
2014-02-04 13:32:11 376320 ----a-w- c:\windows\system32\winsrv.dll
2014-02-04 13:31:54 231424 ----a-w- c:\windows\system32\msshsq.dll
2014-02-04 13:31:39 35328 ----a-w- c:\windows\system32\drivers\usbscan.sys
2014-02-04 13:31:38 25472 ----a-w- c:\windows\system32\drivers\hidparse.sys
2014-02-04 13:30:54 707584 ----a-w- c:\program files\common files\system\wab32.dll
2014-02-04 13:27:37 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
2014-02-04 13:26:39 1404928 ----a-w- c:\program files\common files\microsoft shared\ink\InkObj.dll
2014-02-04 13:26:36 936960 ----a-w- c:\program files\common files\microsoft shared\ink\journal.dll
2014-02-04 12:31:52 98304 ----a-w- c:\windows\system32\cryptnet.dll
2014-02-04 12:31:52 172544 ----a-w- c:\windows\system32\wintrust.dll
2014-02-04 12:31:52 133120 ----a-w- c:\windows\system32\cryptsvc.dll
2014-02-04 12:29:12 613376 ----a-w- c:\windows\system32\rdpencom.dll
2014-02-04 11:14:22 2422272 ----a-w- c:\windows\system32\wucltux.dll
2014-02-04 11:13:48 88576 ----a-w- c:\windows\system32\wudriver.dll
2014-02-04 11:13:20 33792 ----a-w- c:\windows\system32\wuapp.exe
2014-02-04 11:13:20 171904 ----a-w- c:\windows\system32\wuwebv.dll
2014-02-04 05:10:52 -------- d-----w- c:\windows\system32\eu-ES
2014-02-04 05:10:52 -------- d-----w- c:\windows\system32\ca-ES
2014-02-04 05:10:40 -------- d-----w- c:\windows\system32\vi-VN
2014-02-04 00:02:45 -------- d-----w- c:\windows\system32\EventProviders
2014-02-01 23:23:20 2048 ----a-w- c:\windows\system32\winrsmgr.dll
2014-02-01 23:22:44 40448 ----a-w- c:\windows\system32\winrs.exe
2014-02-01 23:22:44 20480 ----a-w- c:\windows\system32\winrshost.exe
2014-02-01 23:22:44 12800 ----a-w- c:\windows\system32\wsmprovhost.exe
2014-02-01 23:22:40 10240 ----a-w- c:\windows\system32\wsmplpxy.dll
2014-02-01 23:22:40 10240 ----a-w- c:\windows\system32\winrssrv.dll
2014-02-01 23:22:36 81408 ----a-w- c:\windows\system32\wevtfwd.dll
2014-02-01 23:22:36 79872 ----a-w- c:\windows\system32\wecutil.exe
2014-02-01 23:22:36 56320 ----a-w- c:\windows\system32\wecapi.dll
2014-02-01 23:22:36 54272 ----a-w- c:\windows\system32\WsmRes.dll
2014-02-01 23:22:36 146944 ----a-w- c:\windows\system32\wecsvc.dll
2014-02-01 23:22:35 41472 ----a-w- c:\windows\system32\pwrshplugin.dll
2014-02-01 23:21:58 201184 ----a-w- c:\windows\system32\winrm.vbs
2014-02-01 23:21:55 252416 ----a-w- c:\windows\system32\WSManMigrationPlugin.dll
2014-02-01 23:21:55 246272 ----a-w- c:\windows\system32\WSManHTTPConfig.exe
2014-02-01 23:21:55 241152 ----a-w- c:\windows\system32\winrscmd.dll
2014-02-01 23:21:55 214016 ----a-w- c:\windows\system32\WsmWmiPl.dll
2014-02-01 23:21:55 145408 ----a-w- c:\windows\system32\WsmAuto.dll
2014-02-01 23:21:55 1181696 ----a-w- c:\windows\system32\WsmSvc.dll
2014-02-01 20:58:59 305152 ----a-w- c:\windows\system32\drivers\srv.sys
2014-02-01 20:58:35 1696256 ----a-w- c:\windows\system32\gameux.dll
2014-02-01 20:58:34 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2014-02-01 20:58:29 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2014-02-01 20:07:16 18904 ----a-w- c:\windows\system32\StructuredQuerySchemaTrivial.bin
2014-02-01 19:56:01 1316864 ----a-w- c:\windows\system32\ole32.dll
2014-02-01 19:55:59 339968 ----a-w- c:\program files\windows nt\accessories\wordpad.exe
2014-02-01 19:55:49 867328 ----a-w- c:\windows\system32\wmpmde.dll
2014-02-01 19:55:44 322560 ----a-w- c:\windows\system32\sbe.dll
2014-02-01 19:55:44 177664 ----a-w- c:\windows\system32\mpg2splt.ax
2014-02-01 19:55:44 153088 ----a-w- c:\windows\system32\sbeio.dll
2014-02-01 19:55:32 86528 ----a-w- c:\windows\system32\dnsrslvr.dll
2014-02-01 19:55:29 25088 ----a-w- c:\windows\system32\dnscacheugc.exe
2014-02-01 19:55:21 72704 ----a-w- c:\windows\system32\fontsub.dll
2014-02-01 19:55:13 1136640 ----a-w- c:\windows\system32\mfc42.dll
2014-02-01 19:55:12 1162240 ----a-w- c:\windows\system32\mfc42u.dll
2014-02-01 19:54:25 168960 ----a-w- c:\program files\windows media player\wmplayer.exe
2014-02-01 19:54:23 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2014-02-01 19:53:09 125952 ----a-w- c:\windows\system32\srvsvc.dll
2014-02-01 19:53:08 17920 ----a-w- c:\windows\system32\netevent.dll
2014-02-01 19:52:10 502272 ----a-w- c:\windows\system32\usp10.dll
2014-02-01 19:52:00 66048 ----a-w- c:\program files\windows mail\wabmig.exe
2014-02-01 19:52:00 515584 ----a-w- c:\program files\windows mail\wab.exe
2014-02-01 19:52:00 33280 ----a-w- c:\program files\windows mail\wabfind.dll
2014-02-01 19:51:54 75264 ----a-w- c:\windows\system32\drivers\dfsc.sys
2014-02-01 19:51:43 413696 ----a-w- c:\windows\system32\odbc32.dll
2014-02-01 19:51:38 253952 ----a-w- c:\program files\common files\system\ado\msadox.dll
2014-02-01 19:51:37 241664 ----a-w- c:\program files\common files\system\ado\msadomd.dll
2014-02-01 19:51:35 57344 ----a-w- c:\program files\common files\system\msadc\msadcs.dll
2014-02-01 19:51:35 180224 ----a-w- c:\program files\common files\system\msadc\msadco.dll
2014-02-01 19:51:07 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2014-02-01 19:50:42 67072 ----a-w- c:\windows\system32\asycfilt.dll
2014-02-01 19:50:22 273408 ----a-w- c:\windows\system32\drivers\afd.sys
2014-02-01 19:50:00 1616384 ----a-w- c:\program files\windows mail\msoe.dll
2014-02-01 19:49:44 81920 ----a-w- c:\windows\system32\iccvid.dll
2014-02-01 19:49:36 214016 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2014-02-01 19:49:30 79872 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2014-02-01 19:49:30 106496 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2014-02-01 19:48:24 1169408 ----a-w- c:\windows\system32\sdclt.exe
2014-02-01 19:47:48 128000 ----a-w- c:\windows\system32\spoolsv.exe
2014-02-01 19:47:20 157184 ----a-w- c:\windows\system32\t2embed.dll
2014-02-01 19:46:46 36864 ----a-w- c:\windows\system32\rtutils.dll
2014-02-01 19:44:26 739328 ----a-w- c:\windows\system32\inetcomm.dll
2014-02-01 19:43:49 10926592 ----a-w- c:\program files\movie maker\MOVIEMK.dll
2014-02-01 19:43:35 150016 ----a-w- c:\program files\movie maker\MOVIEMK.exe
2014-02-01 19:43:14 146432 ----a-w- c:\windows\system32\drivers\srv2.sys
2014-02-01 19:43:12 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys
2014-02-01 19:42:43 317952 ----a-w- c:\windows\system32\MP4SDECD.DLL
2014-02-01 19:41:51 954752 ----a-w- c:\windows\system32\mfc40.dll
2014-02-01 19:41:50 954288 ----a-w- c:\windows\system32\mfc40u.dll
2014-02-01 19:41:39 81920 ----a-w- c:\windows\system32\consent.exe
2014-02-01 19:40:14 601600 ----a-w- c:\windows\system32\schedsvc.dll
2014-02-01 19:40:13 352768 ----a-w- c:\windows\system32\taskschd.dll
2014-02-01 19:40:09 345600 ----a-w- c:\windows\system32\wmicmiplugin.dll
2014-02-01 19:40:09 171520 ----a-w- c:\windows\system32\taskeng.exe
2014-02-01 19:40:08 270336 ----a-w- c:\windows\system32\taskcomp.dll
2014-02-01 18:32:45 677888 ----a-w- c:\windows\system32\mstsc.exe
2014-02-01 18:32:45 63488 ----a-w- c:\windows\system32\tscupgrd.exe
2014-02-01 16:45:07 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2014-02-01 16:37:19 -------- d-----w- c:\program files\CCleaner
2014-02-01 14:40:21 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2014-02-01 14:40:20 49472 ----a-w- c:\windows\system32\netfxperf.dll
2014-02-01 14:40:20 297808 ----a-w- c:\windows\system32\mscoree.dll
2014-02-01 14:40:20 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2014-02-01 14:40:19 1130824 ----a-w- c:\windows\system32\dfshim.dll
2014-02-01 14:34:44 -------- d-----w- c:\programdata\AVG 0214c Campaign
2014-02-01 01:02:58 644608 ----a-w- c:\windows\system32\p2psvc.dll
2014-02-01 01:01:58 800768 ----a-w- c:\windows\system32\advapi32.dll
2014-02-01 01:00:59 54784 ----a-w- c:\windows\system32\DevicePairingProxy.dll
2014-02-01 00:59:59 182272 ----a-w- c:\windows\system32\iassam.dll
2014-02-01 00:58:59 216064 ----a-w- c:\windows\system32\ntprint.dll
2014-02-01 00:57:59 33280 ----a-w- c:\windows\system32\PnPutil.exe
2014-02-01 00:56:59 41472 ----a-w- c:\windows\system32\hbaapi.dll
2014-02-01 00:53:30 83968 ----a-w- c:\windows\system32\wbem\wmiutils.dll
2014-02-01 00:53:28 30208 ----a-w- c:\windows\system32\wbem\wbemprox.dll
2014-02-01 00:53:27 189440 ----a-w- c:\windows\system32\wbem\mofd.dll
2014-02-01 00:53:25 265728 ----a-w- c:\windows\system32\wbem\esscli.dll
2014-02-01 00:53:23 744448 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2014-02-01 00:53:19 265728 ----a-w- c:\windows\system32\wbem\repdrvfs.dll
2014-02-01 00:53:16 614912 ----a-w- c:\windows\system32\wbem\fastprox.dll
2014-02-01 00:53:03 705536 ----a-w- c:\windows\system32\SmiEngine.dll
2014-02-01 00:52:43 218624 ----a-w- c:\windows\system32\wdscore.dll
2014-02-01 00:52:40 130560 ----a-w- c:\windows\system32\PkgMgr.exe
2014-02-01 00:51:06 247808 ----a-w- c:\windows\system32\drvstore.dll
2014-01-31 14:58:49 -------- d-----w- C:\PerfLogs
2014-01-31 05:03:22 -------- d-----w- c:\windows\system32\MRT
2014-01-31 04:47:47 -------- d-----w- c:\users\mayra\appdata\roaming\AVG2014
2014-01-31 04:45:08 -------- d-----w- c:\users\mayra\appdata\roaming\TuneUp Software
2014-01-31 04:43:06 -------- d--h--w- C:\$AVG
2014-01-31 04:43:05 -------- d-----w- c:\programdata\AVG2014
2014-01-31 04:40:12 -------- d-----w- c:\program files\AVG
2014-01-31 04:35:09 -------- d--h--w- c:\programdata\Common Files
2014-01-31 04:35:08 -------- d-----w- c:\users\mayra\appdata\local\MFAData
2014-01-31 04:35:08 -------- d-----w- c:\users\mayra\appdata\local\Avg2014
2014-01-31 04:35:08 -------- d-----w- c:\programdata\MFAData
2014-01-31 04:01:37 49940480 ----a-w- c:\program files\GUTAF61.tmp
2014-01-31 04:01:37 -------- d-----w- c:\program files\GUMAF41.tmp
2014-01-31 03:53:09 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-31 03:53:09 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-01-31 03:29:39 -------- d-----w- c:\program files\VS Revo Group
2014-01-31 03:01:21 -------- d-----w- c:\programdata\Oracle
2014-01-31 02:59:40 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-01-30 12:52:52 -------- d-----w- c:\programdata\Doctor Web
2014-01-30 12:52:40 -------- d-----w- c:\users\mayra\Doctor Web
2014-01-30 12:35:38 -------- d-----w- C:\AdwCleaner
2014-01-30 12:28:32 -------- d-----w- c:\windows\ERUNT
2014-01-30 07:35:45 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{dba186de-e35d-4540-ba25-1634bdc9e39f}\offreg.dll
2014-01-30 05:31:36 -------- d-----w- c:\users\mayra\appdata\roaming\SUPERAntiSpyware.com
2014-01-30 05:31:35 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-01-30 03:49:54 -------- d-----w- c:\users\mayra\appdata\roaming\Malwarebytes
2014-01-30 01:41:03 -------- d-----w- c:\programdata\Malwarebytes
2014-01-30 01:05:53 7760024 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{dba186de-e35d-4540-ba25-1634bdc9e39f}\mpengine.dll
2014-01-30 00:44:55 135464 ----a-w- c:\windows\system32\LnkProtect.dll
2014-01-30 00:43:34 -------- d-----w- c:\programdata\HitmanPro
.
==================== Find3M  ====================
.
2014-02-05 02:03:36 1129472 ----a-w- c:\windows\system32\wininet.dll
2014-02-05 02:03:25 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2014-02-05 02:03:24 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2014-02-05 02:03:23 86528 ----a-w- c:\windows\system32\iesysprep.dll
2014-02-05 02:03:23 48640 ----a-w- c:\windows\system32\mshtmler.dll
2014-02-05 02:03:17 63488 ----a-w- c:\windows\system32\tdc.ocx
2014-02-05 02:03:14 367104 ----a-w- c:\windows\system32\html.iec
2014-02-05 02:03:06 74752 ----a-w- c:\windows\system32\iesetup.dll
2014-02-05 02:03:02 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2014-02-05 02:02:58 23552 ----a-w- c:\windows\system32\licmgr10.dll
2014-02-05 02:02:54 152064 ----a-w- c:\windows\system32\wextract.exe
2014-02-05 02:02:52 150528 ----a-w- c:\windows\system32\iexpress.exe
2014-02-05 02:02:49 420864 ----a-w- c:\windows\system32\vbscript.dll
2014-02-05 02:02:43 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2014-02-05 02:02:43 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2014-02-05 02:02:37 11776 ----a-w- c:\windows\system32\mshta.exe
2014-02-05 02:02:36 101888 ----a-w- c:\windows\system32\admparse.dll
2014-02-05 02:02:31 1806848 ----a-w- c:\windows\system32\jscript9.dll
2014-02-05 02:02:28 35840 ----a-w- c:\windows\system32\imgutil.dll
2014-02-05 02:02:21 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2014-02-05 01:54:28 4096 ----a-w- c:\windows\system32\drivers\en-us\dxgkrnl.sys.mui
2014-01-31 13:52:33 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2014-01-31 13:51:50 82432 ----a-w- c:\windows\system32\axaltocm.dll
2014-01-16 15:59:46 231584 ------w- c:\windows\system32\MpSigStub.exe
.
============= FINISH:  8:11:29.27 ===============
 
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft® Windows Vista™ Home Basic 
Boot Device: \Device\HarddiskVolume2
Install Date: 12/16/2006 3:39:36 PM
System Uptime: 2/5/2014 7:32:44 AM (1 hours ago)
.
Motherboard: Intel Corporation |  | D102GGC2
Processor: Intel® Pentium® 4 CPU 3.00GHz | LGA 775 | 3000/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 141 GiB total, 91.737 GiB free.
D: is FIXED (NTFS) - 9 GiB total, 3.647 GiB free.
E: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
Activation Assistant for the 2007 Microsoft Office suites
Adobe Flash Player 12 ActiveX
Adobe Reader 7.0.8
Adobe Shockwave Player 11
AOL Pictures Tools (version 10.6.0.4)
AOL Uninstaller (Choose which Products to Remove)
Apple Software Update
ATI Catalyst Control Center Ex
ATI Catalyst Install Manager
AutoUpdate
AVG 2014
Bejeweled 2 Deluxe
BellSouth FastAccess DSL Report Agent
Blasterball 3
CCleaner
Chuzzle Deluxe
Click'N Design 3D
Creative Removable Disk Manager
Creative System Information
Creative ZEN V Series (R2)
Diner Dash
DivX
EA-Land
eMachines Game Console
eMachines Recovery Center Installer
Extensions Bundle 1.1
FATE
Google Chrome
Google Desktop
Google Toolbar for Internet Explorer
Google Update Helper
Highlight Viewer (Windows Live Toolbar)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Java 7 Update 51
Java Auto Updater
JEOPARDY
Map Button (Windows Live Toolbar)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Digital Image Library 9 - Blocker
Microsoft Digital Image Starter Edition 2006
Microsoft Digital Image Starter Edition 2006 Editor
Microsoft Digital Image Starter Edition 2006 Library
Microsoft Money 2006
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Norton PC Checkup
Penguins!
Polar Bowler
Polar Golfer
Power2Go 5.0
QuickTime
Realtek 8139 and 8139C+ Ethernet Network Card Driver for Windows Vista
Realtek High Definition Audio Driver
Revo Uninstaller 1.95
Roxio Easy DVD Copy 2
SCRABBLE
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition 
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition 
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition 
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition 
Smart Menus (Windows Live Toolbar)
Soft Data Fax Modem with SmartCP
The Sims 2
The Sims Deluxe Edition
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual Studio 2012 x86 Redistributables
Windows Live Favorites for Windows Live Toolbar
Windows Live installer
Windows Live Mail
Windows Live Toolbar
Windows Live Toolbar Extension (Windows Live Toolbar)
Windows Live Writer
Windows NT Backup - Restore Utility
Yahoo! BrowserPlus
Yahoo! Install Manager
ZENcast Organizer
.
==== End Of File ===========================
 


#5 jeffce

jeffce

    Bleepin' Super Saiyan


  • Malware Response Team
  • 3,442 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:03:22 PM

Posted 06 February 2014 - 08:44 AM

Hi and Welcome!!   
 
My name is Jeff. I would be more than happy to take a look at your malware results logs and help you with solving any malware problems you might have. Logs can take a while to research, so please be patient and know that I am working hard to get you a clean and functional system back in your hands. I'd be grateful if you would note the following:

  • The fixes are specific to your problem and should only be used for the issues on this machine.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.
  • If you happen to have a flash drive/thumb drive please have that ready in the event that we need to use it.
  • Please be sure to subscribe to the topic if you have not already done so.

IMPORTANT NOTE : Please do not delete, download or install anything unless instructed to do so.
DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision. Doing so could make your system inoperable and could require a full reinstall of your operating system and losing all your programs and data.

 
Having said that....   YBCQLm4.gif   Let's get going!!  
----------
 

81mYIKe.jpg  AdwCleaner
 
Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

----------
 

weVCzW0.jpg Please download TDSSKiller

  • Double click TDSSKiller.exe
  • Press Start Scan but do nothing else as we are just looking for what is there.
  • If Malicious objects are found, select Skip by changing the Cure dropdown in the upper right.
  • Attach the log in your next reply
    • A copy of the log will be saved automatically to the root of the drive (typically C:\)

----------


WFxJwA4.png
 
mvp_horizontal_fullcolor-(copy2).jpeg
 


#6 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 06 February 2014 - 07:25 PM

Greetings Jeff!! Here are the logs! Thanks for the help! 

 

# AdwCleaner v3.018 - Report created 06/02/2014 at 08:29:43
# Updated 28/01/2014 by Xplode
# Operating System : Windows Vista ™ Home Basic Service Pack 2 (32 bits)
# Username : Mayra - MAYRA-PC
# Running from : C:\Users\Mayra\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16526
 
 
-\\ Mozilla Firefox v2.0 (en-US)
 
[ File : C:\Users\Mayra\AppData\Roaming\Mozilla\Firefox\Profiles\y9e4ph4m.default\prefs.js ]
 
 
-\\ Google Chrome v32.0.1700.107
 
[ File : C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
[ File : C:\Users\liz\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [1910 octets] - [30/01/2014 06:35:41]
AdwCleaner[R1].txt - [1109 octets] - [01/02/2014 12:33:50]
AdwCleaner[R2].txt - [970 octets] - [06/02/2014 08:29:44]
AdwCleaner[S0].txt - [2003 octets] - [30/01/2014 06:38:32]
AdwCleaner[S1].txt - [1171 octets] - [01/02/2014 12:36:21]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1149 octets] ##########
 
 
18:13:39.0099 2232  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:13:41.0148 2232  ============================================================
18:13:41.0148 2232  Current date / time: 2014/02/06 18:13:41.0148
18:13:41.0148 2232  SystemInfo:
18:13:41.0148 2232  
18:13:41.0148 2232  OS Version: 6.0.6002 ServicePack: 2.0
18:13:41.0148 2232  Product type: Workstation
18:13:41.0148 2232  ComputerName: MAYRA-PC
18:13:41.0148 2232  UserName: Mayra
18:13:41.0148 2232  Windows directory: C:\Windows
18:13:41.0148 2232  System windows directory: C:\Windows
18:13:41.0148 2232  Processor architecture: Intel x86
18:13:41.0148 2232  Number of processors: 2
18:13:41.0148 2232  Page size: 0x1000
18:13:41.0148 2232  Boot type: Normal boot
18:13:41.0148 2232  ============================================================
18:13:45.0424 2232  Drive \Device\Harddisk0\DR0 - Size: 0x2658AE0000 (153.39 Gb), SectorSize: 0x200, Cylinders: 0x4E37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:13:45.0506 2232  ============================================================
18:13:45.0506 2232  \Device\Harddisk0\DR0:
18:13:45.0513 2232  MBR partitions:
18:13:45.0513 2232  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1105758
18:13:45.0513 2232  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1105797, BlocksNum 0x1191332A
18:13:45.0513 2232  ============================================================
18:13:45.0586 2232  C: <-> \Device\Harddisk0\DR0\Partition2
18:13:45.0713 2232  D: <-> \Device\Harddisk0\DR0\Partition1
18:13:45.0826 2232  ============================================================
18:13:45.0826 2232  Initialize success
18:13:45.0826 2232  ============================================================
18:17:07.0051 0444  ============================================================
18:17:07.0080 0444  Scan started
18:17:07.0080 0444  Mode: Manual; 
18:17:07.0080 0444  ============================================================
18:17:11.0116 0444  ================ Scan system memory ========================
18:17:11.0116 0444  System memory - ok
18:17:11.0119 0444  ================ Scan services =============================
18:17:12.0969 0444  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
18:17:13.0117 0444  ACPI - ok
18:17:13.0467 0444  [ C8C6C0D659734FDBF63F6F421A5416BC ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:17:13.0554 0444  AdobeFlashPlayerUpdateSvc - ok
18:17:13.0678 0444  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:17:13.0800 0444  adp94xx - ok
18:17:13.0987 0444  [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:17:14.0114 0444  adpahci - ok
18:17:14.0140 0444  [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
18:17:14.0163 0444  adpu160m - ok
18:17:14.0217 0444  [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:17:14.0233 0444  adpu320 - ok
18:17:14.0313 0444  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:17:14.0326 0444  AeLookupSvc - ok
18:17:14.0464 0444  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
18:17:15.0072 0444  AFD - ok
18:17:15.0147 0444  [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:17:15.0163 0444  agp440 - ok
18:17:15.0212 0444  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
18:17:15.0304 0444  aic78xx - ok
18:17:15.0336 0444  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
18:17:15.0340 0444  ALG - ok
18:17:15.0362 0444  [ 90395B64600EBB4552E26E178C94B2E4 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:17:15.0392 0444  aliide - ok
18:17:15.0456 0444  [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
18:17:15.0475 0444  amdagp - ok
18:17:15.0499 0444  [ 0577DF1D323FE75A739C787893D300EA ] amdide          C:\Windows\system32\drivers\amdide.sys
18:17:15.0567 0444  amdide - ok
18:17:15.0611 0444  [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
18:17:15.0744 0444  AmdK7 - ok
18:17:15.0770 0444  [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:17:15.0952 0444  AmdK8 - ok
18:17:16.0263 0444  [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS         C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
18:17:16.0403 0444  AOL ACS - ok
18:17:16.0470 0444  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
18:17:16.0498 0444  Appinfo - ok
18:17:16.0566 0444  [ 5F673180268BB1FDB69C99B6619FE379 ] arc             C:\Windows\system32\drivers\arc.sys
18:17:16.0589 0444  arc - ok
18:17:16.0626 0444  [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:17:16.0630 0444  arcsas - ok
18:17:16.0689 0444  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:17:16.0764 0444  AsyncMac - ok
18:17:16.0834 0444  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
18:17:16.0881 0444  atapi - ok
18:17:17.0184 0444  [ F1FC2FD87FF77F63CD7F8BF95940B40C ] athur           C:\Windows\system32\DRIVERS\athur.sys
18:17:17.0925 0444  athur - ok
18:17:18.0213 0444  [ CDAB1FB2AC6160EF35B44D6337A04DD4 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
18:17:18.0786 0444  Ati External Event Utility - ok
18:17:19.0058 0444  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:17:19.0250 0444  AudioEndpointBuilder - ok
18:17:19.0326 0444  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
18:17:19.0330 0444  Audiosrv - ok
18:17:19.0409 0444  [ 9C7C45DE9E167F6268D32D6D10133F7D ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
18:17:19.0424 0444  Avgdiskx - ok
18:17:20.0350 0444  [ F89B2DACE0FBE54CF65D12B7081C19C3 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
18:17:22.0204 0444  AVGIDSAgent - ok
18:17:22.0358 0444  [ C66B17D93F94622293608C2FB91C5806 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
18:17:22.0434 0444  AVGIDSDriver - ok
18:17:22.0547 0444  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
18:17:22.0644 0444  AVGIDSHX - ok
18:17:22.0701 0444  [ 4118A9D326A76D485713A36988102C3E ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
18:17:22.0806 0444  AVGIDSShim - ok
18:17:22.0910 0444  [ 578ECC3D911897B2C5B760EDAF8ED6CA ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
18:17:22.0960 0444  Avgldx86 - ok
18:17:23.0116 0444  [ BD1A440B9F126AFE52978A44952B0018 ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
18:17:23.0315 0444  Avglogx - ok
18:17:23.0385 0444  [ 7DC192EC714342E7C020C7CF42E394D8 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
18:17:23.0536 0444  Avgmfx86 - ok
18:17:23.0657 0444  [ E6322DF686CE1C59D7797FAEF0732454 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
18:17:23.0715 0444  Avgrkx86 - ok
18:17:23.0870 0444  [ E98603F9D1F412F38ADF2F76053F9E5A ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
18:17:24.0038 0444  Avgtdix - ok
18:17:24.0257 0444  [ B747B6BB015E552F49C634BB19540F3D ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
18:17:24.0314 0444  avgwd - ok
18:17:24.0454 0444  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:17:24.0643 0444  Beep - ok
18:17:24.0776 0444  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
18:17:24.0793 0444  BFE - ok
18:17:25.0024 0444  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\System32\qmgr.dll
18:17:25.0101 0444  BITS - ok
18:17:25.0119 0444  blbdrive - ok
18:17:25.0173 0444  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:17:25.0177 0444  bowser - ok
18:17:25.0236 0444  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
18:17:25.0352 0444  BrFiltLo - ok
18:17:25.0381 0444  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
18:17:25.0420 0444  BrFiltUp - ok
18:17:25.0462 0444  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
18:17:25.0466 0444  Browser - ok
18:17:25.0518 0444  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
18:17:25.0522 0444  Brserid - ok
18:17:25.0551 0444  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
18:17:25.0591 0444  BrSerWdm - ok
18:17:25.0623 0444  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
18:17:25.0636 0444  BrUsbMdm - ok
18:17:25.0712 0444  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
18:17:25.0744 0444  BrUsbSer - ok
18:17:25.0801 0444  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:17:25.0947 0444  BTHMODEM - ok
18:17:26.0147 0444  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:17:26.0480 0444  cdfs - ok
18:17:26.0541 0444  [ BF79E659C506674C0497CC9C61F1A165 ] Cdr4_xp         C:\Windows\system32\drivers\Cdr4_xp.sys
18:17:27.0770 0444  Cdr4_xp - ok
18:17:27.0840 0444  [ 2C41CD49D82D5FD85C72D57B6CA25471 ] Cdralw2k        C:\Windows\system32\drivers\Cdralw2k.sys
18:17:27.0904 0444  Cdralw2k - ok
18:17:27.0953 0444  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:17:28.0075 0444  cdrom - ok
18:17:28.0162 0444  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
18:17:28.0175 0444  CertPropSvc - ok
18:17:28.0231 0444  [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass        C:\Windows\system32\drivers\circlass.sys
18:17:28.0255 0444  circlass - ok
18:17:28.0344 0444  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
18:17:28.0445 0444  CLFS - ok
18:17:28.0688 0444  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:17:28.0750 0444  clr_optimization_v2.0.50727_32 - ok
18:17:28.0911 0444  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:17:29.0294 0444  clr_optimization_v4.0.30319_32 - ok
18:17:29.0413 0444  [ 0FED59EDB4A83FF17F1778827B88AB1A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:17:29.0470 0444  CmBatt - ok
18:17:29.0513 0444  [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:17:29.0571 0444  cmdide - ok
18:17:29.0677 0444  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:17:29.0708 0444  Compbatt - ok
18:17:29.0719 0444  COMSysApp - ok
18:17:29.0802 0444  [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:17:29.0815 0444  crcdisk - ok
18:17:29.0866 0444  [ 22A7F883508176489F559EE745B5BF5D ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
18:17:29.0887 0444  Crusoe - ok
18:17:30.0005 0444  [ 684C130BBC6DB681BAD4920A4C944AA5 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:17:30.0033 0444  CryptSvc - ok
18:17:30.0229 0444  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:17:30.0318 0444  DcomLaunch - ok
18:17:30.0342 0444  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:17:30.0435 0444  DfsC - ok
18:17:30.0682 0444  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
18:17:31.0604 0444  DFSR - ok
18:17:31.0752 0444  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
18:17:31.0790 0444  Dhcp - ok
18:17:31.0883 0444  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
18:17:31.0889 0444  disk - ok
18:17:31.0969 0444  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:17:32.0070 0444  Dnscache - ok
18:17:32.0172 0444  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:17:32.0179 0444  dot3svc - ok
18:17:32.0241 0444  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
18:17:32.0251 0444  DPS - ok
18:17:32.0300 0444  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:17:32.0402 0444  drmkaud - ok
18:17:32.0504 0444  [ 988670D8343EF9835FB3659DB71B2EFA ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:17:32.0701 0444  DXGKrnl - ok
18:17:32.0764 0444  [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
18:17:32.0851 0444  E1G60 - ok
18:17:32.0940 0444  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
18:17:32.0971 0444  EapHost - ok
18:17:33.0139 0444  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
18:17:33.0186 0444  Ecache - ok
18:17:33.0476 0444  [ E8F3F21A71720C84BCF423B80028359F ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:17:33.0682 0444  elxstor - ok
18:17:33.0820 0444  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
18:17:34.0028 0444  EMDMgmt - ok
18:17:34.0161 0444  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
18:17:34.0257 0444  EventSystem - ok
18:17:34.0326 0444  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
18:17:34.0481 0444  exfat - ok
18:17:34.0532 0444  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:17:34.0548 0444  fastfat - ok
18:17:34.0625 0444  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
18:17:34.0708 0444  fdc - ok
18:17:34.0744 0444  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:17:34.0769 0444  fdPHost - ok
18:17:34.0843 0444  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:17:34.0859 0444  FDResPub - ok
18:17:34.0978 0444  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:17:34.0999 0444  FileInfo - ok
18:17:35.0043 0444  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:17:35.0098 0444  Filetrace - ok
18:17:35.0129 0444  [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
18:17:35.0132 0444  flpydisk - ok
18:17:35.0182 0444  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:17:35.0212 0444  FltMgr - ok
18:17:35.0299 0444  [ 2AFA3A46986AE935DAECEBC7E66314CF ] FontCache       C:\Windows\system32\FntCache.dll
18:17:35.0321 0444  FontCache - ok
18:17:35.0380 0444  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:17:35.0440 0444  FontCache3.0.0.0 - ok
18:17:35.0498 0444  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:17:35.0621 0444  Fs_Rec - ok
18:17:35.0657 0444  [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:17:35.0672 0444  gagp30kx - ok
18:17:35.0752 0444  [ 51E92D44F20A241D3E352A1F6E76AC98 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
18:17:36.0598 0444  GoogleDesktopManager - ok
18:17:36.0661 0444  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
18:17:36.0738 0444  gpsvc - ok
18:17:36.0788 0444  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
18:17:36.0844 0444  gupdate - ok
18:17:36.0869 0444  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
18:17:36.0871 0444  gupdatem - ok
18:17:36.0915 0444  [ 751C1D2CA2ABF4A9F5A6B8D7D45B907C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:17:37.0046 0444  gusvc - ok
18:17:37.0089 0444  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:17:37.0112 0444  HdAudAddService - ok
18:17:37.0196 0444  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:17:37.0250 0444  HDAudBus - ok
18:17:37.0279 0444  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:17:37.0320 0444  HidBth - ok
18:17:37.0356 0444  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:17:37.0388 0444  HidIr - ok
18:17:37.0440 0444  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\system32\hidserv.dll
18:17:37.0443 0444  hidserv - ok
18:17:37.0487 0444  [ CCA4B519B17E23A00B826C55716809CC ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:17:37.0565 0444  HidUsb - ok
18:17:37.0596 0444  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:17:37.0600 0444  hkmsvc - ok
18:17:37.0631 0444  [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
18:17:37.0634 0444  HpCISSs - ok
18:17:37.0690 0444  [ 1882827F41DEE51C70E24C567C35BFB5 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:17:37.0806 0444  HSF_DPV - ok
18:17:37.0863 0444  [ 5F60F0AD32D43B9AB9AC9373117D8E54 ] HSXHWBS2        C:\Windows\system32\DRIVERS\HSXHWBS2.sys
18:17:37.0901 0444  HSXHWBS2 - ok
18:17:38.0601 0444  [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:17:38.0727 0444  HTTP - ok
18:17:38.0760 0444  [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
18:17:38.0762 0444  i2omp - ok
18:17:38.0821 0444  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:17:38.0842 0444  i8042prt - ok
18:17:38.0923 0444  [ 8318E04A6455CED1020BCC5039B62CFA ] ialm            C:\Windows\system32\DRIVERS\ialmnt5.sys
18:17:38.0972 0444  ialm - ok
18:17:39.0016 0444  [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
18:17:39.0064 0444  iaStorV - ok
18:17:39.0137 0444  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
18:17:39.0665 0444  IDriverT - ok
18:17:39.0741 0444  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:17:39.0802 0444  idsvc - ok
18:17:39.0828 0444  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:17:39.0830 0444  iirsp - ok
18:17:39.0885 0444  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78 ] IKEEXT          C:\Windows\System32\ikeext.dll
18:17:39.0896 0444  IKEEXT - ok
18:17:39.0979 0444  [ A47B2875680AD67B35C6150BD0203056 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
18:17:40.0062 0444  IntcAzAudAddService - ok
18:17:40.0113 0444  [ 97469037714070E45194ED318D636401 ] intelide        C:\Windows\system32\drivers\intelide.sys
18:17:40.0115 0444  intelide - ok
18:17:40.0169 0444  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:17:40.0202 0444  intelppm - ok
18:17:40.0237 0444  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:17:40.0270 0444  IPBusEnum - ok
18:17:40.0320 0444  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:17:40.0358 0444  IpFilterDriver - ok
18:17:40.0402 0444  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:17:40.0409 0444  iphlpsvc - ok
18:17:40.0421 0444  IpInIp - ok
18:17:40.0459 0444  [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
18:17:40.0498 0444  IPMIDRV - ok
18:17:40.0537 0444  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
18:17:40.0575 0444  IPNAT - ok
18:17:40.0615 0444  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:17:40.0634 0444  IRENUM - ok
18:17:40.0665 0444  [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:17:40.0681 0444  isapnp - ok
18:17:40.0718 0444  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
18:17:40.0776 0444  iScsiPrt - ok
18:17:40.0810 0444  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
18:17:40.0813 0444  iteatapi - ok
18:17:40.0845 0444  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
18:17:40.0847 0444  iteraid - ok
18:17:40.0897 0444  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:17:40.0919 0444  kbdclass - ok
18:17:40.0952 0444  [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:17:40.0994 0444  kbdhid - ok
18:17:41.0027 0444  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
18:17:41.0062 0444  KeyIso - ok
18:17:41.0120 0444  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:17:41.0130 0444  KSecDD - ok
18:17:41.0165 0444  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:17:41.0200 0444  KtmRm - ok
18:17:41.0241 0444  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:17:41.0254 0444  LanmanServer - ok
18:17:41.0300 0444  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:17:41.0308 0444  LanmanWorkstation - ok
18:17:41.0345 0444  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:17:41.0366 0444  lltdio - ok
18:17:41.0412 0444  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:17:41.0456 0444  lltdsvc - ok
18:17:41.0494 0444  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:17:41.0497 0444  lmhosts - ok
18:17:41.0532 0444  [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:17:41.0536 0444  LSI_FC - ok
18:17:41.0560 0444  [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:17:41.0563 0444  LSI_SAS - ok
18:17:41.0601 0444  [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:17:41.0605 0444  LSI_SCSI - ok
18:17:41.0633 0444  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
18:17:41.0636 0444  luafv - ok
18:17:41.0695 0444  [ E6CB119EF2E148EAA1A247343550756E ] McciCMService   C:\Program Files\Common Files\Motive\McciCMService.exe
18:17:42.0525 0444  McciCMService - ok
18:17:42.0550 0444  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:17:42.0611 0444  mdmxsdk - ok
18:17:42.0661 0444  [ D153B14FC6598EAE8422A2037553ADCE ] megasas         C:\Windows\system32\drivers\megasas.sys
18:17:42.0664 0444  megasas - ok
18:17:42.0695 0444  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
18:17:42.0699 0444  MMCSS - ok
18:17:42.0738 0444  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
18:17:42.0814 0444  Modem - ok
18:17:42.0866 0444  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:17:42.0931 0444  monitor - ok
18:17:42.0957 0444  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:17:43.0014 0444  mouclass - ok
18:17:43.0060 0444  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:17:43.0076 0444  mouhid - ok
18:17:43.0112 0444  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
18:17:43.0123 0444  MountMgr - ok
18:17:43.0218 0444  [ 583A41F26278D9E0EA548163D6139397 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:17:43.0260 0444  mpio - ok
18:17:43.0324 0444  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:17:43.0355 0444  mpsdrv - ok
18:17:43.0495 0444  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:17:43.0555 0444  MpsSvc - ok
18:17:43.0618 0444  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
18:17:43.0634 0444  Mraid35x - ok
18:17:43.0722 0444  [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50         C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
18:17:44.0958 0444  MREMP50 - ok
18:17:44.0991 0444  [ 2BC9E43F55DE8C30FC817ED56D0EE907 ] MREMPR5         C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS
18:17:45.0218 0444  MREMPR5 - ok
18:17:45.0244 0444  [ 594B9D8194E3F4ECBF0325BD10BBEB05 ] MRENDIS5        C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS
18:17:45.0520 0444  MRENDIS5 - ok
18:17:45.0550 0444  [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50         C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
18:17:45.0772 0444  MRESP50 - ok
18:17:45.0816 0444  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:17:45.0820 0444  MRxDAV - ok
18:17:45.0849 0444  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:17:45.0854 0444  mrxsmb - ok
18:17:45.0877 0444  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:17:45.0883 0444  mrxsmb10 - ok
18:17:45.0904 0444  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:17:45.0907 0444  mrxsmb20 - ok
18:17:45.0941 0444  [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:17:45.0944 0444  msahci - ok
18:17:45.0964 0444  [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:17:46.0013 0444  msdsm - ok
18:17:46.0052 0444  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
18:17:46.0063 0444  MSDTC - ok
18:17:46.0109 0444  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:17:46.0112 0444  Msfs - ok
18:17:46.0143 0444  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:17:46.0146 0444  msisadrv - ok
18:17:46.0187 0444  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:17:46.0207 0444  MSiSCSI - ok
18:17:46.0217 0444  msiserver - ok
18:17:46.0245 0444  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:17:46.0249 0444  MSKSSRV - ok
18:17:46.0281 0444  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:17:46.0330 0444  MSPCLOCK - ok
18:17:46.0363 0444  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:17:46.0405 0444  MSPQM - ok
18:17:46.0454 0444  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:17:46.0459 0444  MsRPC - ok
18:17:46.0514 0444  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:17:46.0547 0444  mssmbios - ok
18:17:46.0580 0444  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:17:46.0603 0444  MSTEE - ok
18:17:46.0639 0444  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
18:17:46.0642 0444  Mup - ok
18:17:46.0686 0444  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
18:17:46.0696 0444  napagent - ok
18:17:46.0743 0444  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:17:46.0749 0444  NativeWifiP - ok
18:17:46.0800 0444  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:17:46.0813 0444  NDIS - ok
18:17:46.0848 0444  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:17:46.0852 0444  NdisTapi - ok
18:17:46.0876 0444  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:17:46.0900 0444  Ndisuio - ok
18:17:46.0938 0444  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:17:46.0965 0444  NdisWan - ok
18:17:47.0007 0444  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:17:47.0010 0444  NDProxy - ok
18:17:47.0032 0444  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:17:47.0036 0444  NetBIOS - ok
18:17:47.0084 0444  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
18:17:47.0091 0444  netbt - ok
18:17:47.0107 0444  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
18:17:47.0110 0444  Netlogon - ok
18:17:47.0147 0444  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
18:17:47.0156 0444  Netman - ok
18:17:47.0189 0444  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
18:17:47.0252 0444  netprofm - ok
18:17:47.0285 0444  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:17:47.0338 0444  NetTcpPortSharing - ok
18:17:47.0486 0444  [ 6E9EDC1020B319E7676387B8CDF2398C ] NETw2v32        C:\Windows\system32\DRIVERS\NETw2v32.sys
18:17:47.0577 0444  NETw2v32 - ok
18:17:47.0605 0444  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:17:47.0608 0444  nfrd960 - ok
18:17:47.0646 0444  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:17:47.0653 0444  NlaSvc - ok
18:17:47.0708 0444  Norton PC Checkup Application Launcher - ok
18:17:47.0748 0444  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:17:47.0751 0444  Npfs - ok
18:17:47.0780 0444  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
18:17:47.0784 0444  nsi - ok
18:17:47.0806 0444  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:17:47.0823 0444  nsiproxy - ok
18:17:47.0912 0444  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:17:47.0935 0444  Ntfs - ok
18:17:47.0997 0444  [ A7DFF9642D510BE1EEC6664CD0369953 ] NtmsSvc         C:\Windows\system32\ntmssvc.dll
18:17:48.0010 0444  NtmsSvc - ok
18:17:48.0041 0444  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
18:17:48.0075 0444  ntrigdigi - ok
18:17:48.0118 0444  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
18:17:48.0140 0444  Null - ok
18:17:48.0167 0444  [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:17:48.0173 0444  nvraid - ok
18:17:48.0199 0444  [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:17:48.0204 0444  nvstor - ok
18:17:48.0223 0444  [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:17:48.0226 0444  nv_agp - ok
18:17:48.0239 0444  NwlnkFlt - ok
18:17:48.0256 0444  NwlnkFwd - ok
18:17:48.0348 0444  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:17:48.0419 0444  odserv - ok
18:17:48.0461 0444  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
18:17:48.0492 0444  ohci1394 - ok
18:17:48.0583 0444  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:17:48.0645 0444  ose - ok
18:17:48.0709 0444  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
18:17:48.0773 0444  p2pimsvc - ok
18:17:48.0798 0444  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:17:48.0809 0444  p2psvc - ok
18:17:48.0866 0444  [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
18:17:48.0923 0444  Parport - ok
18:17:48.0970 0444  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:17:48.0972 0444  partmgr - ok
18:17:48.0990 0444  [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
18:17:49.0027 0444  Parvdm - ok
18:17:49.0060 0444  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:17:49.0065 0444  PcaSvc - ok
18:17:49.0093 0444  [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr      C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
18:17:49.0137 0444  PCCUJobMgr - ok
18:17:49.0176 0444  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
18:17:49.0180 0444  pci - ok
18:17:49.0217 0444  [ 1636D43F10416AEB483BC6001097B26C ] pciide          C:\Windows\system32\drivers\pciide.sys
18:17:49.0220 0444  pciide - ok
18:17:49.0258 0444  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
18:17:49.0262 0444  pcmcia - ok
18:17:49.0320 0444  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:17:49.0345 0444  PEAUTH - ok
18:17:49.0447 0444  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
18:17:49.0482 0444  pla - ok
18:17:49.0532 0444  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:17:49.0541 0444  PlugPlay - ok
18:17:49.0574 0444  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
18:17:49.0594 0444  PNRPAutoReg - ok
18:17:49.0620 0444  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
18:17:49.0631 0444  PNRPsvc - ok
18:17:49.0666 0444  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:17:49.0700 0444  PolicyAgent - ok
18:17:49.0749 0444  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:17:49.0753 0444  PptpMiniport - ok
18:17:49.0785 0444  [ 6135B976E16F80C1B1363BE882344785 ] PrismXL         C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
18:17:50.0279 0444  PrismXL - ok
18:17:50.0301 0444  [ 0E3CEF5D28B40CF273281D620C50700A ] Processor       C:\Windows\system32\drivers\processr.sys
18:17:50.0329 0444  Processor - ok
18:17:50.0363 0444  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:17:50.0369 0444  ProfSvc - ok
18:17:50.0388 0444  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:17:50.0391 0444  ProtectedStorage - ok
18:17:50.0437 0444  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
18:17:50.0440 0444  PSched - ok
18:17:50.0464 0444  [ 81088114178112618B1C414A65E50F7C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
18:17:50.0467 0444  PxHelp20 - ok
18:17:50.0516 0444  [ CCDAC889326317792480C0A67156A1EC ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:17:50.0538 0444  ql2300 - ok
18:17:50.0563 0444  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:17:50.0567 0444  ql40xx - ok
18:17:50.0601 0444  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
18:17:50.0612 0444  QWAVE - ok
18:17:50.0637 0444  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:17:50.0640 0444  QWAVEdrv - ok
18:17:50.0721 0444  [ 554685122B4F973E21D66C2BAAF29543 ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
18:17:50.0796 0444  R300 - ok
18:17:50.0834 0444  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:17:50.0839 0444  RasAcd - ok
18:17:50.0877 0444  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
18:17:50.0883 0444  RasAuto - ok
18:17:50.0916 0444  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:17:50.0961 0444  Rasl2tp - ok
18:17:50.0995 0444  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
18:17:51.0004 0444  RasMan - ok
18:17:51.0049 0444  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:17:51.0053 0444  RasPppoe - ok
18:17:51.0096 0444  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:17:51.0140 0444  RasSstp - ok
18:17:51.0184 0444  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:17:51.0191 0444  rdbss - ok
18:17:51.0212 0444  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:17:51.0234 0444  RDPCDD - ok
18:17:51.0285 0444  [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
18:17:51.0340 0444  rdpdr - ok
18:17:51.0356 0444  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:17:51.0361 0444  RDPENCDD - ok
18:17:51.0411 0444  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:17:51.0496 0444  RDPWD - ok
18:17:51.0543 0444  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:17:51.0547 0444  RemoteAccess - ok
18:17:51.0592 0444  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:17:51.0601 0444  RemoteRegistry - ok
18:17:51.0631 0444  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
18:17:51.0635 0444  RpcLocator - ok
18:17:51.0670 0444  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll
18:17:51.0677 0444  RpcSs - ok
18:17:51.0712 0444  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:17:51.0730 0444  rspndr - ok
18:17:51.0794 0444  [ 5C5612756B380BCEDBF566A780FF9AFE ] RTL8023xp       C:\Windows\system32\DRIVERS\Rtnicxp.sys
18:17:51.0860 0444  RTL8023xp - ok
18:17:51.0900 0444  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
18:17:51.0903 0444  SamSs - ok
18:17:52.0054 0444  SASDIFSV - ok
18:17:52.0089 0444  SASKUTIL - ok
18:17:52.0129 0444  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:17:52.0132 0444  sbp2port - ok
18:17:52.0175 0444  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:17:52.0182 0444  SCardSvr - ok
18:17:52.0232 0444  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
18:17:52.0249 0444  Schedule - ok
18:17:52.0295 0444  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:17:52.0296 0444  SCPolicySvc - ok
18:17:52.0347 0444  [ 4339A2585708C7D9B0C0CE5AAD3DD6FF ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
18:17:52.0367 0444  sdbus - ok
18:17:52.0409 0444  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:17:52.0415 0444  SDRSVC - ok
18:17:52.0432 0444  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:17:52.0482 0444  secdrv - ok
18:17:52.0516 0444  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
18:17:52.0520 0444  seclogon - ok
18:17:52.0535 0444  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
18:17:52.0540 0444  SENS - ok
18:17:52.0588 0444  [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
18:17:52.0617 0444  Serenum - ok
18:17:52.0664 0444  [ 6D663022DB3E7058907784AE14B69898 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
18:17:52.0681 0444  Serial - ok
18:17:52.0737 0444  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:17:52.0740 0444  sermouse - ok
18:17:52.0796 0444  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:17:52.0801 0444  SessionEnv - ok
18:17:52.0829 0444  [ 103B79418DA647736EE95645F305F68A ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:17:52.0849 0444  sffdisk - ok
18:17:52.0885 0444  [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:17:52.0905 0444  sffp_mmc - ok
18:17:52.0934 0444  [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:17:52.0956 0444  sffp_sd - ok
18:17:52.0984 0444  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:17:53.0004 0444  sfloppy - ok
18:17:53.0042 0444  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:17:53.0050 0444  SharedAccess - ok
18:17:53.0090 0444  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:17:53.0102 0444  ShellHWDetection - ok
18:17:53.0139 0444  [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
18:17:53.0142 0444  sisagp - ok
18:17:53.0166 0444  [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
18:17:53.0168 0444  SiSRaid2 - ok
18:17:53.0191 0444  [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:17:53.0214 0444  SiSRaid4 - ok
18:17:53.0337 0444  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
18:17:53.0437 0444  slsvc - ok
18:17:53.0500 0444  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
18:17:53.0521 0444  SLUINotify - ok
18:17:53.0559 0444  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:17:53.0616 0444  Smb - ok
18:17:53.0673 0444  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:17:53.0677 0444  SNMPTRAP - ok
18:17:53.0704 0444  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
18:17:53.0707 0444  spldr - ok
18:17:53.0744 0444  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
18:17:53.0750 0444  Spooler - ok
18:17:53.0789 0444  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:17:53.0823 0444  srv - ok
18:17:53.0856 0444  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:17:53.0874 0444  srv2 - ok
18:17:53.0893 0444  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:17:53.0897 0444  srvnet - ok
18:17:53.0940 0444  [ D5DFFEAA1E15D4EFFABB9D9A3068AC5B ] sscdbus         C:\Windows\system32\DRIVERS\sscdbus.sys
18:17:54.0053 0444  sscdbus - ok
18:17:54.0093 0444  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:17:54.0104 0444  SSDPSRV - ok
18:17:54.0156 0444  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:17:54.0162 0444  SstpSvc - ok
18:17:54.0208 0444  [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
18:17:54.0256 0444  StillCam - ok
18:17:54.0300 0444  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
18:17:54.0314 0444  stisvc - ok
18:17:54.0336 0444  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:17:54.0338 0444  swenum - ok
18:17:54.0390 0444  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
18:17:54.0402 0444  swprv - ok
18:17:54.0433 0444  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
18:17:54.0436 0444  Symc8xx - ok
18:17:54.0456 0444  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
18:17:54.0458 0444  Sym_hi - ok
18:17:54.0477 0444  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
18:17:54.0482 0444  Sym_u3 - ok
18:17:54.0537 0444  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
18:17:54.0552 0444  SysMain - ok
18:17:54.0582 0444  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:17:54.0590 0444  TabletInputService - ok
18:17:54.0636 0444  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:17:54.0645 0444  TapiSrv - ok
18:17:54.0681 0444  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
18:17:54.0687 0444  TBS - ok
18:17:54.0754 0444  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:17:54.0776 0444  Tcpip - ok
18:17:54.0813 0444  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
18:17:54.0823 0444  Tcpip6 - ok
18:17:54.0876 0444  [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:17:54.0940 0444  tcpipreg - ok
18:17:54.0969 0444  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:17:55.0011 0444  TDPIPE - ok
18:17:55.0041 0444  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:17:55.0084 0444  TDTCP - ok
18:17:55.0144 0444  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:17:55.0174 0444  tdx - ok
18:17:55.0211 0444  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:17:55.0279 0444  TermDD - ok
18:17:55.0337 0444  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
18:17:55.0351 0444  TermService - ok
18:17:55.0384 0444  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
18:17:55.0393 0444  Themes - ok
18:17:55.0420 0444  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
18:17:55.0424 0444  THREADORDER - ok
18:17:55.0452 0444  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
18:17:55.0457 0444  TrkWks - ok
18:17:55.0514 0444  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:17:55.0516 0444  TrustedInstaller - ok
18:17:55.0568 0444  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:17:55.0585 0444  tssecsrv - ok
18:17:55.0618 0444  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
18:17:55.0636 0444  tunmp - ok
18:17:55.0695 0444  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:17:55.0760 0444  tunnel - ok
18:17:55.0793 0444  [ C3ADE15414120033A36C0F293D4A4121 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:17:55.0796 0444  uagp35 - ok
18:17:55.0842 0444  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:17:55.0851 0444  udfs - ok
18:17:55.0912 0444  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:17:55.0918 0444  UI0Detect - ok
18:17:55.0943 0444  [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:17:55.0946 0444  uliagpkx - ok
18:17:55.0978 0444  [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci         C:\Windows\system32\drivers\uliahci.sys
18:17:55.0985 0444  uliahci - ok
18:17:56.0035 0444  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
18:17:56.0038 0444  UlSata - ok
18:17:56.0062 0444  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
18:17:56.0067 0444  ulsata2 - ok
18:17:56.0116 0444  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:17:56.0176 0444  umbus - ok
18:17:56.0219 0444  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
18:17:56.0228 0444  upnphost - ok
18:17:56.0266 0444  [ 5353218B3265E3B8190335059F697A11 ] usbbus          C:\Windows\system32\DRIVERS\lgusbbus.sys
18:17:56.0353 0444  usbbus - ok
18:17:56.0417 0444  [ AAB0B5F72D2D726FBFDC895A2902DE1D ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:17:56.0480 0444  usbccgp - ok
18:17:56.0507 0444  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:17:56.0531 0444  usbcir - ok
18:17:56.0569 0444  [ 7DD3EEFC62A1EF44E5F940FA651ED9ED ] UsbDiag         C:\Windows\system32\DRIVERS\lgusbdiag.sys
18:17:56.0609 0444  UsbDiag - ok
18:17:56.0650 0444  [ 153E8515CB86F8BB5D1A8B478EBF4BB2 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
18:17:56.0687 0444  usbehci - ok
18:17:56.0722 0444  [ 2AE6BCEBD85D31317E433733DAF25888 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:17:56.0755 0444  usbhub - ok
18:17:56.0806 0444  [ 083031A78822ECCBD7510BCCD3E20D4C ] USBModem        C:\Windows\system32\DRIVERS\lgusbmodem.sys
18:17:56.0874 0444  USBModem - ok
18:17:56.0915 0444  [ D457EBD0C3A8B3A3A144355B5EE91CBC ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
18:17:56.0956 0444  usbohci - ok
18:17:56.0992 0444  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:17:56.0995 0444  usbprint - ok
18:17:57.0043 0444  [ 1D714B8497CD68307806D5D3F60A5169 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
18:17:57.0064 0444  usbscan - ok
18:17:57.0103 0444  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:17:57.0126 0444  USBSTOR - ok
18:17:57.0168 0444  [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
18:17:57.0171 0444  usbuhci - ok
18:17:57.0221 0444  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
18:17:57.0242 0444  UxSms - ok
18:17:57.0286 0444  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
18:17:57.0298 0444  vds - ok
18:17:57.0323 0444  [ 7D92BE0028ECDEDEC74617009084B5EF ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:17:57.0359 0444  vga - ok
18:17:57.0392 0444  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:17:57.0396 0444  VgaSave - ok
18:17:57.0422 0444  [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp          C:\Windows\system32\drivers\viaagp.sys
18:17:57.0425 0444  viaagp - ok
18:17:57.0461 0444  [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
18:17:57.0495 0444  ViaC7 - ok
18:17:57.0525 0444  [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide          C:\Windows\system32\drivers\viaide.sys
18:17:57.0528 0444  viaide - ok
18:17:57.0551 0444  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:17:57.0555 0444  volmgr - ok
18:17:57.0604 0444  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:17:57.0612 0444  volmgrx - ok
18:17:57.0659 0444  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:17:57.0666 0444  volsnap - ok
18:17:57.0713 0444  [ D984439746D42B30FC65A4C3546C6829 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:17:57.0717 0444  vsmraid - ok
18:17:57.0787 0444  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
18:17:57.0815 0444  VSS - ok
18:17:57.0846 0444  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
18:17:57.0861 0444  W32Time - ok
18:17:57.0890 0444  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:17:57.0894 0444  WacomPen - ok
18:17:57.0924 0444  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
18:17:57.0928 0444  Wanarp - ok
18:17:57.0937 0444  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:17:57.0939 0444  Wanarpv6 - ok
18:17:57.0998 0444  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw          C:\Windows\system32\DRIVERS\wanatw4.sys
18:17:58.0052 0444  wanatw - ok
18:17:58.0095 0444  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:17:58.0109 0444  wcncsvc - ok
18:17:58.0129 0444  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:17:58.0136 0444  WcsPlugInService - ok
18:17:58.0168 0444  [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd              C:\Windows\system32\drivers\wd.sys
18:17:58.0171 0444  Wd - ok
18:17:58.0226 0444  [ 25944D2CC49E0A6C581D02A74B7D6645 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:17:58.0263 0444  Wdf01000 - ok
18:17:58.0303 0444  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:17:58.0309 0444  WdiServiceHost - ok
18:17:58.0318 0444  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:17:58.0326 0444  WdiSystemHost - ok
18:17:58.0360 0444  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
18:17:58.0367 0444  WebClient - ok
18:17:58.0443 0444  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:17:58.0507 0444  Wecsvc - ok
18:17:58.0560 0444  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:17:58.0589 0444  wercplsupport - ok
18:17:58.0633 0444  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:17:58.0643 0444  WerSvc - ok
18:17:58.0721 0444  [ E096FFB754F1E45AE1BDDAC1275AE2C5 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:17:58.0778 0444  winachsf - ok
18:17:58.0842 0444  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
18:17:58.0882 0444  WinDefend - ok
18:17:58.0896 0444  WinHttpAutoProxySvc - ok
18:17:58.0948 0444  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:17:58.0953 0444  Winmgmt - ok
18:17:59.0017 0444  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:17:59.0047 0444  WinRM - ok
18:17:59.0111 0444  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:17:59.0127 0444  Wlansvc - ok
18:17:59.0189 0444  [ 94A85E956A065E23E0010A6A7826243B ] WLSetupSvc      C:\Program Files\Windows Live\installer\WLSetupSvc.exe
18:17:59.0788 0444  WLSetupSvc - ok
18:17:59.0818 0444  [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:17:59.0840 0444  WmiAcpi - ok
18:17:59.0908 0444  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:17:59.0914 0444  wmiApSrv - ok
18:17:59.0967 0444  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
18:17:59.0987 0444  WMPNetworkSvc - ok
18:18:00.0035 0444  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:18:00.0043 0444  WPCSvc - ok
18:18:00.0090 0444  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:18:00.0096 0444  WPDBusEnum - ok
18:18:00.0142 0444  [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
18:18:00.0218 0444  WpdUsb - ok
18:18:00.0488 0444  [ 15673BD0B86150CB8E27766059C72A9B ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:18:00.0584 0444  WPFFontCache_v0400 - ok
18:18:00.0657 0444  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:18:00.0736 0444  ws2ifsl - ok
18:18:00.0796 0444  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\System32\wscsvc.dll
18:18:00.0846 0444  wscsvc - ok
18:18:00.0862 0444  WSearch - ok
18:18:01.0498 0444  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
18:18:02.0525 0444  wuauserv - ok
18:18:02.0576 0444  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:18:02.0596 0444  WudfPf - ok
18:18:02.0646 0444  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:18:02.0823 0444  WUDFRd - ok
18:18:02.0876 0444  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:18:02.0895 0444  wudfsvc - ok
18:18:02.0951 0444  [ E3FCF2870B5D7979B3BF10E98A71C847 ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
18:18:02.0984 0444  XAudio - ok
18:18:03.0096 0444  [ 96DB5621857E1FDDD1AA60733748BF17 ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
18:18:03.0263 0444  XAudioService - ok
18:18:03.0373 0444  [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
18:18:03.0506 0444  yukonwlh - ok
18:18:03.0542 0444  ================ Scan global ===============================
18:18:03.0640 0444  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
18:18:03.0695 0444  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:18:03.0788 0444  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:18:03.0829 0444  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
18:18:03.0839 0444  [Global] - ok
18:18:03.0839 0444  ================ Scan MBR ==================================
18:18:03.0858 0444  [ 943CC8D9009A7F8DA0E7FC257C230977 ] \Device\Harddisk0\DR0
18:18:04.0410 0444  \Device\Harddisk0\DR0 - ok
18:18:04.0411 0444  ================ Scan VBR ==================================
18:18:04.0431 0444  [ BBF90931A3432221E158E8F6F44DA305 ] \Device\Harddisk0\DR0\Partition1
18:18:04.0447 0444  \Device\Harddisk0\DR0\Partition1 - ok
18:18:04.0470 0444  [ 025108F3986CCBD49435E7A25691A402 ] \Device\Harddisk0\DR0\Partition2
18:18:04.0471 0444  \Device\Harddisk0\DR0\Partition2 - ok
18:18:04.0472 0444  ============================================================
18:18:04.0472 0444  Scan finished
18:18:04.0472 0444  ============================================================
18:18:04.0523 3772  Detected object count: 0
18:18:04.0523 3772  Actual detected object count: 0
18:20:21.0863 3304  ============================================================
18:20:21.0863 3304  Scan started
18:20:21.0863 3304  Mode: Manual; 
18:20:21.0863 3304  ============================================================
18:20:22.0616 3304  ================ Scan system memory ========================
18:20:22.0617 3304  System memory - ok
18:20:22.0618 3304  ================ Scan services =============================
18:20:23.0418 3304  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
18:20:23.0428 3304  ACPI - ok
18:20:23.0659 3304  [ C8C6C0D659734FDBF63F6F421A5416BC ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:20:23.0679 3304  AdobeFlashPlayerUpdateSvc - ok
18:20:23.0863 3304  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:20:23.0887 3304  adp94xx - ok
18:20:24.0063 3304  [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:20:24.0152 3304  adpahci - ok
18:20:24.0214 3304  [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
18:20:24.0223 3304  adpu160m - ok
18:20:24.0317 3304  [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:20:24.0406 3304  adpu320 - ok
18:20:24.0455 3304  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:20:24.0466 3304  AeLookupSvc - ok
18:20:24.0524 3304  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
18:20:24.0581 3304  AFD - ok
18:20:24.0626 3304  [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:20:24.0639 3304  agp440 - ok
18:20:24.0690 3304  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
18:20:24.0749 3304  aic78xx - ok
18:20:24.0805 3304  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
18:20:24.0829 3304  ALG - ok
18:20:24.0856 3304  [ 90395B64600EBB4552E26E178C94B2E4 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:20:24.0874 3304  aliide - ok
18:20:24.0942 3304  [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
18:20:24.0963 3304  amdagp - ok
18:20:25.0002 3304  [ 0577DF1D323FE75A739C787893D300EA ] amdide          C:\Windows\system32\drivers\amdide.sys
18:20:25.0014 3304  amdide - ok
18:20:25.0040 3304  [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
18:20:25.0052 3304  AmdK7 - ok
18:20:25.0081 3304  [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:20:25.0097 3304  AmdK8 - ok
18:20:25.0325 3304  [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS         C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
18:20:25.0345 3304  AOL ACS - ok
18:20:25.0458 3304  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
18:20:25.0474 3304  Appinfo - ok
18:20:25.0529 3304  [ 5F673180268BB1FDB69C99B6619FE379 ] arc             C:\Windows\system32\drivers\arc.sys
18:20:25.0565 3304  arc - ok
18:20:25.0597 3304  [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:20:25.0635 3304  arcsas - ok
18:20:25.0718 3304  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:20:25.0743 3304  AsyncMac - ok
18:20:25.0813 3304  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
18:20:25.0843 3304  atapi - ok
18:20:26.0295 3304  [ F1FC2FD87FF77F63CD7F8BF95940B40C ] athur           C:\Windows\system32\DRIVERS\athur.sys
18:20:26.0508 3304  athur - ok
18:20:26.0684 3304  [ CDAB1FB2AC6160EF35B44D6337A04DD4 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
18:20:26.0749 3304  Ati External Event Utility - ok
18:20:26.0884 3304  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:20:26.0958 3304  AudioEndpointBuilder - ok
18:20:26.0997 3304  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
18:20:27.0000 3304  Audiosrv - ok
18:20:27.0084 3304  [ 9C7C45DE9E167F6268D32D6D10133F7D ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
18:20:27.0125 3304  Avgdiskx - ok
18:20:28.0533 3304  [ F89B2DACE0FBE54CF65D12B7081C19C3 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
18:20:30.0355 3304  AVGIDSAgent - ok
18:20:30.0440 3304  [ C66B17D93F94622293608C2FB91C5806 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
18:20:30.0467 3304  AVGIDSDriver - ok
18:20:30.0539 3304  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
18:20:30.0555 3304  AVGIDSHX - ok
18:20:30.0592 3304  [ 4118A9D326A76D485713A36988102C3E ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
18:20:30.0651 3304  AVGIDSShim - ok
18:20:30.0825 3304  [ 578ECC3D911897B2C5B760EDAF8ED6CA ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
18:20:30.0991 3304  Avgldx86 - ok
18:20:31.0197 3304  [ BD1A440B9F126AFE52978A44952B0018 ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
18:20:31.0314 3304  Avglogx - ok
18:20:31.0409 3304  [ 7DC192EC714342E7C020C7CF42E394D8 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
18:20:31.0435 3304  Avgmfx86 - ok
18:20:31.0465 3304  [ E6322DF686CE1C59D7797FAEF0732454 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
18:20:31.0483 3304  Avgrkx86 - ok
18:20:31.0578 3304  [ E98603F9D1F412F38ADF2F76053F9E5A ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
18:20:31.0660 3304  Avgtdix - ok
18:20:31.0808 3304  [ B747B6BB015E552F49C634BB19540F3D ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
18:20:31.0891 3304  avgwd - ok
18:20:31.0938 3304  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:20:31.0963 3304  Beep - ok
18:20:32.0053 3304  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
18:20:32.0074 3304  BFE - ok
18:20:32.0273 3304  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\System32\qmgr.dll
18:20:32.0328 3304  BITS - ok
18:20:32.0343 3304  blbdrive - ok
18:20:32.0408 3304  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:20:32.0456 3304  bowser - ok
18:20:32.0521 3304  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
18:20:32.0540 3304  BrFiltLo - ok
18:20:32.0566 3304  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
18:20:32.0607 3304  BrFiltUp - ok
18:20:32.0672 3304  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
18:20:32.0696 3304  Browser - ok
18:20:32.0761 3304  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
18:20:32.0783 3304  Brserid - ok
18:20:32.0807 3304  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
18:20:32.0847 3304  BrSerWdm - ok
18:20:32.0924 3304  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
18:20:32.0958 3304  BrUsbMdm - ok
18:20:33.0006 3304  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
18:20:33.0018 3304  BrUsbSer - ok
18:20:33.0062 3304  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:20:33.0078 3304  BTHMODEM - ok
18:20:33.0148 3304  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:20:33.0183 3304  cdfs - ok
18:20:33.0235 3304  [ BF79E659C506674C0497CC9C61F1A165 ] Cdr4_xp         C:\Windows\system32\drivers\Cdr4_xp.sys
18:20:33.0255 3304  Cdr4_xp - ok
18:20:33.0266 3304  [ 2C41CD49D82D5FD85C72D57B6CA25471 ] Cdralw2k        C:\Windows\system32\drivers\Cdralw2k.sys
18:20:33.0270 3304  Cdralw2k - ok
18:20:33.0344 3304  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:20:33.0375 3304  cdrom - ok
18:20:33.0437 3304  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
18:20:33.0452 3304  CertPropSvc - ok
18:20:33.0522 3304  [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass        C:\Windows\system32\drivers\circlass.sys
18:20:33.0543 3304  circlass - ok
18:20:33.0585 3304  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
18:20:33.0606 3304  CLFS - ok
18:20:34.0028 3304  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:20:34.0047 3304  clr_optimization_v2.0.50727_32 - ok
18:20:34.0492 3304  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:20:34.0519 3304  clr_optimization_v4.0.30319_32 - ok
18:20:34.0612 3304  [ 0FED59EDB4A83FF17F1778827B88AB1A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:20:34.0614 3304  CmBatt - ok
18:20:34.0638 3304  [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:20:34.0640 3304  cmdide - ok
18:20:34.0668 3304  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:20:34.0671 3304  Compbatt - ok
18:20:34.0685 3304  COMSysApp - ok
18:20:34.0715 3304  [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:20:34.0729 3304  crcdisk - ok
18:20:34.0759 3304  [ 22A7F883508176489F559EE745B5BF5D ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
18:20:34.0772 3304  Crusoe - ok
18:20:34.0857 3304  [ 684C130BBC6DB681BAD4920A4C944AA5 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:20:34.0876 3304  CryptSvc - ok
18:20:34.0946 3304  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:20:34.0994 3304  DcomLaunch - ok
18:20:35.0051 3304  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:20:35.0079 3304  DfsC - ok
18:20:35.0645 3304  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
18:20:35.0939 3304  DFSR - ok
18:20:36.0029 3304  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
18:20:36.0051 3304  Dhcp - ok
18:20:36.0086 3304  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
18:20:36.0088 3304  disk - ok
18:20:36.0113 3304  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:20:36.0117 3304  Dnscache - ok
18:20:36.0166 3304  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:20:36.0171 3304  dot3svc - ok
18:20:36.0206 3304  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
18:20:36.0211 3304  DPS - ok
18:20:36.0238 3304  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:20:36.0239 3304  drmkaud - ok
18:20:36.0293 3304  [ 988670D8343EF9835FB3659DB71B2EFA ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:20:36.0306 3304  DXGKrnl - ok
18:20:36.0343 3304  [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
18:20:36.0348 3304  E1G60 - ok
18:20:36.0370 3304  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
18:20:36.0373 3304  EapHost - ok
18:20:36.0443 3304  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
18:20:36.0448 3304  Ecache - ok
18:20:36.0484 3304  [ E8F3F21A71720C84BCF423B80028359F ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:20:36.0491 3304  elxstor - ok
18:20:36.0711 3304  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
18:20:36.0732 3304  EMDMgmt - ok
18:20:36.0867 3304  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
18:20:36.0904 3304  EventSystem - ok
18:20:36.0932 3304  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
18:20:36.0938 3304  exfat - ok
18:20:36.0979 3304  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:20:37.0012 3304  fastfat - ok
18:20:37.0066 3304  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
18:20:37.0081 3304  fdc - ok
18:20:37.0144 3304  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:20:37.0162 3304  fdPHost - ok
18:20:37.0218 3304  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:20:37.0260 3304  FDResPub - ok
18:20:37.0328 3304  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:20:37.0370 3304  FileInfo - ok
18:20:37.0427 3304  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:20:37.0440 3304  Filetrace - ok
18:20:37.0553 3304  [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
18:20:37.0573 3304  flpydisk - ok
18:20:37.0666 3304  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:20:37.0694 3304  FltMgr - ok
18:20:37.0852 3304  [ 2AFA3A46986AE935DAECEBC7E66314CF ] FontCache       C:\Windows\system32\FntCache.dll
18:20:38.0001 3304  FontCache - ok
18:20:38.0137 3304  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:20:38.0148 3304  FontCache3.0.0.0 - ok
18:20:38.0197 3304  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:20:38.0211 3304  Fs_Rec - ok
18:20:38.0248 3304  [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:20:38.0258 3304  gagp30kx - ok
18:20:38.0376 3304  [ 51E92D44F20A241D3E352A1F6E76AC98 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
18:20:38.0385 3304  GoogleDesktopManager - ok
18:20:38.0511 3304  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
18:20:38.0649 3304  gpsvc - ok
18:20:38.0739 3304  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
18:20:38.0766 3304  gupdate - ok
18:20:38.0776 3304  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
18:20:38.0778 3304  gupdatem - ok
18:20:38.0845 3304  [ 751C1D2CA2ABF4A9F5A6B8D7D45B907C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:20:38.0867 3304  gusvc - ok
18:20:38.0941 3304  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:20:39.0004 3304  HdAudAddService - ok
18:20:39.0197 3304  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:20:39.0280 3304  HDAudBus - ok
18:20:39.0314 3304  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:20:39.0328 3304  HidBth - ok
18:20:39.0349 3304  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:20:39.0361 3304  HidIr - ok
18:20:39.0408 3304  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\system32\hidserv.dll
18:20:39.0427 3304  hidserv - ok
18:20:39.0480 3304  [ CCA4B519B17E23A00B826C55716809CC ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:20:39.0485 3304  HidUsb - ok
18:20:39.0598 3304  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:20:39.0632 3304  hkmsvc - ok
18:20:39.0700 3304  [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
18:20:39.0713 3304  HpCISSs - ok
18:20:39.0933 3304  [ 1882827F41DEE51C70E24C567C35BFB5 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:20:40.0089 3304  HSF_DPV - ok
18:20:40.0162 3304  [ 5F60F0AD32D43B9AB9AC9373117D8E54 ] HSXHWBS2        C:\Windows\system32\DRIVERS\HSXHWBS2.sys
18:20:40.0198 3304  HSXHWBS2 - ok
18:20:40.0307 3304  [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:20:40.0373 3304  HTTP - ok
18:20:40.0414 3304  [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
18:20:40.0426 3304  i2omp - ok
18:20:40.0473 3304  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:20:40.0484 3304  i8042prt - ok
18:20:40.0669 3304  [ 8318E04A6455CED1020BCC5039B62CFA ] ialm            C:\Windows\system32\DRIVERS\ialmnt5.sys
18:20:40.0730 3304  ialm - ok
18:20:40.0809 3304  [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
18:20:40.0840 3304  iaStorV - ok
18:20:40.0997 3304  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
18:20:40.0999 3304  IDriverT - ok
18:20:41.0309 3304  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:20:41.0318 3304  idsvc - ok
18:20:41.0347 3304  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:20:41.0348 3304  iirsp - ok
18:20:41.0554 3304  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78 ] IKEEXT          C:\Windows\System32\ikeext.dll
18:20:41.0560 3304  IKEEXT - ok
18:20:41.0930 3304  [ A47B2875680AD67B35C6150BD0203056 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
18:20:42.0053 3304  IntcAzAudAddService - ok
18:20:42.0130 3304  [ 97469037714070E45194ED318D636401 ] intelide        C:\Windows\system32\drivers\intelide.sys
18:20:42.0132 3304  intelide - ok
18:20:42.0179 3304  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:20:42.0180 3304  intelppm - ok
18:20:42.0247 3304  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:20:42.0248 3304  IPBusEnum - ok
18:20:42.0313 3304  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:20:42.0337 3304  IpFilterDriver - ok
18:20:42.0437 3304  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:20:42.0440 3304  iphlpsvc - ok
18:20:42.0454 3304  IpInIp - ok
18:20:42.0527 3304  [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
18:20:42.0529 3304  IPMIDRV - ok
18:20:42.0597 3304  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
18:20:42.0599 3304  IPNAT - ok
18:20:42.0641 3304  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:20:42.0642 3304  IRENUM - ok
18:20:42.0692 3304  [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:20:42.0693 3304  isapnp - ok
18:20:42.0794 3304  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
18:20:42.0796 3304  iScsiPrt - ok
18:20:42.0836 3304  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
18:20:42.0837 3304  iteatapi - ok
18:20:42.0904 3304  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
18:20:42.0906 3304  iteraid - ok
18:20:42.0948 3304  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:20:42.0949 3304  kbdclass - ok
18:20:43.0012 3304  [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:20:43.0013 3304  kbdhid - ok
18:20:43.0070 3304  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
18:20:43.0072 3304  KeyIso - ok
18:20:43.0221 3304  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:20:43.0225 3304  KSecDD - ok
18:20:43.0350 3304  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:20:43.0355 3304  KtmRm - ok
18:20:43.0400 3304  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:20:43.0404 3304  LanmanServer - ok
18:20:43.0515 3304  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:20:43.0553 3304  LanmanWorkstation - ok
18:20:43.0619 3304  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:20:43.0639 3304  lltdio - ok
18:20:43.0746 3304  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:20:43.0770 3304  lltdsvc - ok
18:20:43.0836 3304  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:20:43.0850 3304  lmhosts - ok
18:20:43.0949 3304  [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:20:43.0994 3304  LSI_FC - ok
18:20:44.0042 3304  [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:20:44.0072 3304  LSI_SAS - ok
18:20:44.0102 3304  [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:20:44.0117 3304  LSI_SCSI - ok
18:20:44.0158 3304  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
18:20:44.0184 3304  luafv - ok
18:20:44.0460 3304  [ E6CB119EF2E148EAA1A247343550756E ] McciCMService   C:\Program Files\Common Files\Motive\McciCMService.exe
18:20:44.0464 3304  McciCMService - ok
18:20:44.0510 3304  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:20:44.0539 3304  mdmxsdk - ok
18:20:44.0614 3304  [ D153B14FC6598EAE8422A2037553ADCE ] megasas         C:\Windows\system32\drivers\megasas.sys
18:20:44.0632 3304  megasas - ok
18:20:44.0696 3304  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
18:20:44.0728 3304  MMCSS - ok
18:20:44.0815 3304  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
18:20:44.0844 3304  Modem - ok
18:20:44.0901 3304  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:20:44.0902 3304  monitor - ok
18:20:44.0975 3304  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:20:44.0996 3304  mouclass - ok
18:20:45.0061 3304  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:20:45.0092 3304  mouhid - ok
18:20:45.0172 3304  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
18:20:45.0198 3304  MountMgr - ok
18:20:45.0270 3304  [ 583A41F26278D9E0EA548163D6139397 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:20:45.0372 3304  mpio - ok
18:20:45.0459 3304  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:20:45.0491 3304  mpsdrv - ok
18:20:45.0691 3304  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:20:45.0792 3304  MpsSvc - ok
18:20:45.0861 3304  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
18:20:45.0874 3304  Mraid35x - ok
18:20:45.0939 3304  [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50         C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
18:20:45.0959 3304  MREMP50 - ok
18:20:46.0012 3304  [ 2BC9E43F55DE8C30FC817ED56D0EE907 ] MREMPR5         C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS
18:20:46.0014 3304  MREMPR5 - ok
18:20:46.0058 3304  [ 594B9D8194E3F4ECBF0325BD10BBEB05 ] MRENDIS5        C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS
18:20:46.0084 3304  MRENDIS5 - ok
18:20:46.0148 3304  [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50         C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
18:20:46.0170 3304  MRESP50 - ok
18:20:46.0240 3304  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:20:46.0290 3304  MRxDAV - ok
18:20:46.0371 3304  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:20:46.0425 3304  mrxsmb - ok
18:20:46.0540 3304  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:20:46.0604 3304  mrxsmb10 - ok
18:20:46.0635 3304  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:20:46.0675 3304  mrxsmb20 - ok
18:20:46.0731 3304  [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:20:46.0753 3304  msahci - ok
18:20:46.0785 3304  [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:20:46.0802 3304  msdsm - ok
18:20:46.0865 3304  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
18:20:46.0885 3304  MSDTC - ok
18:20:46.0931 3304  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:20:46.0944 3304  Msfs - ok
18:20:46.0982 3304  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:20:46.0984 3304  msisadrv - ok
18:20:47.0059 3304  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:20:47.0084 3304  MSiSCSI - ok
18:20:47.0094 3304  msiserver - ok
18:20:47.0142 3304  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:20:47.0160 3304  MSKSSRV - ok
18:20:47.0202 3304  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:20:47.0217 3304  MSPCLOCK - ok
18:20:47.0243 3304  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:20:47.0257 3304  MSPQM - ok
18:20:47.0330 3304  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:20:47.0356 3304  MsRPC - ok
18:20:47.0410 3304  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:20:47.0411 3304  mssmbios - ok
18:20:47.0451 3304  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:20:47.0453 3304  MSTEE - ok
18:20:47.0478 3304  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
18:20:47.0494 3304  Mup - ok
18:20:47.0574 3304  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
18:20:47.0628 3304  napagent - ok
18:20:47.0673 3304  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:20:47.0691 3304  NativeWifiP - ok
18:20:47.0821 3304  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:20:47.0826 3304  NDIS - ok
18:20:47.0943 3304  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:20:47.0989 3304  NdisTapi - ok
18:20:48.0022 3304  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:20:48.0024 3304  Ndisuio - ok
18:20:48.0075 3304  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:20:48.0095 3304  NdisWan - ok
18:20:48.0136 3304  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:20:48.0137 3304  NDProxy - ok
18:20:48.0178 3304  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:20:48.0203 3304  NetBIOS - ok
18:20:48.0246 3304  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
18:20:48.0251 3304  netbt - ok
18:20:48.0272 3304  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
18:20:48.0274 3304  Netlogon - ok
18:20:48.0311 3304  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
18:20:48.0328 3304  Netman - ok
18:20:48.0367 3304  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
18:20:48.0374 3304  netprofm - ok
18:20:48.0423 3304  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:20:48.0435 3304  NetTcpPortSharing - ok
18:20:48.0892 3304  [ 6E9EDC1020B319E7676387B8CDF2398C ] NETw2v32        C:\Windows\system32\DRIVERS\NETw2v32.sys
18:20:48.0977 3304  NETw2v32 - ok
18:20:49.0034 3304  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:20:49.0055 3304  nfrd960 - ok
18:20:49.0125 3304  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:20:49.0146 3304  NlaSvc - ok
18:20:49.0278 3304  Norton PC Checkup Application Launcher - ok
18:20:49.0326 3304  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:20:49.0344 3304  Npfs - ok
18:20:49.0383 3304  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
18:20:49.0399 3304  nsi - ok
18:20:49.0434 3304  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:20:49.0436 3304  nsiproxy - ok
18:20:49.0813 3304  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:20:49.0875 3304  Ntfs - ok
18:20:50.0089 3304  [ A7DFF9642D510BE1EEC6664CD0369953 ] NtmsSvc         C:\Windows\system32\ntmssvc.dll
18:20:50.0195 3304  NtmsSvc - ok
18:20:50.0233 3304  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
18:20:50.0253 3304  ntrigdigi - ok
18:20:50.0294 3304  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
18:20:50.0309 3304  Null - ok
18:20:50.0343 3304  [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:20:50.0359 3304  nvraid - ok
18:20:50.0392 3304  [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:20:50.0406 3304  nvstor - ok
18:20:50.0439 3304  [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:20:50.0454 3304  nv_agp - ok
18:20:50.0468 3304  NwlnkFlt - ok
18:20:50.0483 3304  NwlnkFwd - ok
18:20:50.0781 3304  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:20:50.0791 3304  odserv - ok
18:20:50.0819 3304  [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
18:20:50.0834 3304  ohci1394 - ok
18:20:50.0941 3304  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:20:50.0967 3304  ose - ok
18:20:51.0018 3304  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
18:20:51.0043 3304  p2pimsvc - ok
18:20:51.0067 3304  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:20:51.0076 3304  p2psvc - ok
18:20:51.0125 3304  [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
18:20:51.0145 3304  Parport - ok
18:20:51.0187 3304  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:20:51.0205 3304  partmgr - ok
18:20:51.0232 3304  [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
18:20:51.0234 3304  Parvdm - ok
18:20:51.0262 3304  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:20:51.0265 3304  PcaSvc - ok
18:20:51.0302 3304  [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr      C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
18:20:51.0306 3304  PCCUJobMgr - ok
18:20:51.0392 3304  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
18:20:51.0394 3304  pci - ok
18:20:51.0451 3304  [ 1636D43F10416AEB483BC6001097B26C ] pciide          C:\Windows\system32\drivers\pciide.sys
18:20:51.0492 3304  pciide - ok
18:20:51.0542 3304  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
18:20:51.0557 3304  pcmcia - ok
18:20:51.0763 3304  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:20:51.0858 3304  PEAUTH - ok
18:20:52.0329 3304  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
18:20:52.0370 3304  pla - ok
18:20:52.0472 3304  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:20:52.0514 3304  PlugPlay - ok
18:20:52.0584 3304  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
18:20:52.0592 3304  PNRPAutoReg - ok
18:20:52.0729 3304  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
18:20:52.0738 3304  PNRPsvc - ok
18:20:52.0997 3304  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:20:53.0039 3304  PolicyAgent - ok
18:20:53.0080 3304  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:20:53.0082 3304  PptpMiniport - ok
18:20:53.0107 3304  [ 6135B976E16F80C1B1363BE882344785 ] PrismXL         C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
18:20:53.0108 3304  PrismXL - ok
18:20:53.0142 3304  [ 0E3CEF5D28B40CF273281D620C50700A ] Processor       C:\Windows\system32\drivers\processr.sys
18:20:53.0169 3304  Processor - ok
18:20:53.0203 3304  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:20:53.0210 3304  ProfSvc - ok
18:20:53.0229 3304  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:20:53.0232 3304  ProtectedStorage - ok
18:20:53.0278 3304  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
18:20:53.0293 3304  PSched - ok
18:20:53.0329 3304  [ 81088114178112618B1C414A65E50F7C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
18:20:53.0331 3304  PxHelp20 - ok
18:20:53.0597 3304  [ CCDAC889326317792480C0A67156A1EC ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:20:53.0651 3304  ql2300 - ok
18:20:53.0678 3304  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:20:53.0698 3304  ql40xx - ok
18:20:53.0741 3304  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
18:20:53.0762 3304  QWAVE - ok
18:20:53.0801 3304  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:20:53.0803 3304  QWAVEdrv - ok
18:20:54.0401 3304  [ 554685122B4F973E21D66C2BAAF29543 ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
18:20:54.0466 3304  R300 - ok
18:20:54.0521 3304  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:20:54.0547 3304  RasAcd - ok
18:20:54.0581 3304  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
18:20:54.0596 3304  RasAuto - ok
18:20:54.0635 3304  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:20:54.0649 3304  Rasl2tp - ok
18:20:54.0724 3304  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
18:20:54.0754 3304  RasMan - ok
18:20:54.0796 3304  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:20:54.0812 3304  RasPppoe - ok
18:20:54.0853 3304  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:20:54.0859 3304  RasSstp - ok
18:20:54.0947 3304  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:20:54.0989 3304  rdbss - ok
18:20:55.0024 3304  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:20:55.0026 3304  RDPCDD - ok
18:20:55.0105 3304  [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
18:20:55.0125 3304  rdpdr - ok
18:20:55.0158 3304  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:20:55.0159 3304  RDPENCDD - ok
18:20:55.0232 3304  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:20:55.0262 3304  RDPWD - ok
18:20:55.0331 3304  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:20:55.0397 3304  RemoteAccess - ok
18:20:55.0455 3304  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:20:55.0481 3304  RemoteRegistry - ok
18:20:55.0519 3304  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
18:20:55.0522 3304  RpcLocator - ok
18:20:55.0557 3304  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll
18:20:55.0565 3304  RpcSs - ok
18:20:55.0640 3304  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:20:55.0668 3304  rspndr - ok
18:20:55.0706 3304  [ 5C5612756B380BCEDBF566A780FF9AFE ] RTL8023xp       C:\Windows\system32\DRIVERS\Rtnicxp.sys
18:20:55.0708 3304  RTL8023xp - ok
18:20:55.0721 3304  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
18:20:55.0724 3304  SamSs - ok
18:20:56.0308 3304  SASDIFSV - ok
18:20:56.0325 3304  SASKUTIL - ok
18:20:56.0748 3304  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:20:56.0796 3304  sbp2port - ok
18:20:56.0835 3304  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:20:56.0846 3304  SCardSvr - ok
18:20:57.0109 3304  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
18:20:57.0166 3304  Schedule - ok
18:20:57.0204 3304  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:20:57.0207 3304  SCPolicySvc - ok
18:20:57.0264 3304  [ 4339A2585708C7D9B0C0CE5AAD3DD6FF ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
18:20:57.0281 3304  sdbus - ok
18:20:57.0317 3304  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:20:57.0323 3304  SDRSVC - ok
18:20:57.0341 3304  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:20:57.0344 3304  secdrv - ok
18:20:57.0374 3304  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
18:20:57.0379 3304  seclogon - ok
18:20:57.0393 3304  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
18:20:57.0398 3304  SENS - ok
18:20:57.0448 3304  [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
18:20:57.0462 3304  Serenum - ok
18:20:57.0498 3304  [ 6D663022DB3E7058907784AE14B69898 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
18:20:57.0500 3304  Serial - ok
18:20:57.0538 3304  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:20:57.0544 3304  sermouse - ok
18:20:57.0630 3304  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:20:57.0648 3304  SessionEnv - ok
18:20:57.0688 3304  [ 103B79418DA647736EE95645F305F68A ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:20:57.0691 3304  sffdisk - ok
18:20:57.0711 3304  [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:20:57.0714 3304  sffp_mmc - ok
18:20:57.0735 3304  [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:20:57.0737 3304  sffp_sd - ok
18:20:57.0759 3304  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:20:57.0762 3304  sfloppy - ok
18:20:57.0793 3304  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:20:57.0801 3304  SharedAccess - ok
18:20:57.0833 3304  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:20:57.0847 3304  ShellHWDetection - ok
18:20:57.0866 3304  [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
18:20:57.0869 3304  sisagp - ok
18:20:57.0891 3304  [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
18:20:57.0896 3304  SiSRaid2 - ok
18:20:57.0934 3304  [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:20:57.0947 3304  SiSRaid4 - ok
18:20:58.0448 3304  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
18:20:58.0482 3304  slsvc - ok
18:20:58.0577 3304  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
18:20:58.0610 3304  SLUINotify - ok
18:20:58.0651 3304  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:20:58.0654 3304  Smb - ok
18:20:58.0715 3304  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:20:58.0731 3304  SNMPTRAP - ok
18:20:58.0762 3304  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
18:20:58.0779 3304  spldr - ok
18:20:58.0819 3304  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
18:20:58.0825 3304  Spooler - ok
18:20:58.0931 3304  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:20:58.0969 3304  srv - ok
18:20:59.0003 3304  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:20:59.0008 3304  srv2 - ok
18:20:59.0035 3304  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:20:59.0037 3304  srvnet - ok
18:20:59.0065 3304  [ D5DFFEAA1E15D4EFFABB9D9A3068AC5B ] sscdbus         C:\Windows\system32\DRIVERS\sscdbus.sys
18:20:59.0077 3304  sscdbus - ok
18:20:59.0152 3304  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:20:59.0170 3304  SSDPSRV - ok
18:20:59.0206 3304  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:20:59.0212 3304  SstpSvc - ok
18:20:59.0250 3304  [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
18:20:59.0262 3304  StillCam - ok
18:20:59.0409 3304  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
18:20:59.0435 3304  stisvc - ok
18:20:59.0478 3304  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:20:59.0497 3304  swenum - ok
18:20:59.0541 3304  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
18:20:59.0551 3304  swprv - ok
18:20:59.0583 3304  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
18:20:59.0585 3304  Symc8xx - ok
18:20:59.0606 3304  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
18:20:59.0608 3304  Sym_hi - ok
18:20:59.0627 3304  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
18:20:59.0630 3304  Sym_u3 - ok
18:20:59.0820 3304  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
18:20:59.0903 3304  SysMain - ok
18:20:59.0941 3304  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:20:59.0959 3304  TabletInputService - ok
18:21:00.0044 3304  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:21:00.0060 3304  TapiSrv - ok
18:21:00.0097 3304  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
18:21:00.0116 3304  TBS - ok
18:21:00.0344 3304  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:21:00.0365 3304  Tcpip - ok
18:21:00.0414 3304  [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
18:21:00.0424 3304  Tcpip6 - ok
18:21:00.0507 3304  [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:21:00.0531 3304  tcpipreg - ok
18:21:00.0576 3304  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:21:00.0595 3304  TDPIPE - ok
18:21:00.0624 3304  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:21:00.0627 3304  TDTCP - ok
18:21:00.0667 3304  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:21:00.0670 3304  tdx - ok
18:21:00.0702 3304  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:21:00.0717 3304  TermDD - ok
18:21:00.0771 3304  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
18:21:00.0789 3304  TermService - ok
18:21:00.0824 3304  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
18:21:00.0829 3304  Themes - ok
18:21:00.0895 3304  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
18:21:00.0898 3304  THREADORDER - ok
18:21:00.0976 3304  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
18:21:01.0003 3304  TrkWks - ok
18:21:01.0079 3304  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:21:01.0099 3304  TrustedInstaller - ok
18:21:01.0150 3304  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:21:01.0162 3304  tssecsrv - ok
18:21:01.0197 3304  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
18:21:01.0199 3304  tunmp - ok
18:21:01.0235 3304  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:21:01.0249 3304  tunnel - ok
18:21:01.0318 3304  [ C3ADE15414120033A36C0F293D4A4121 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:21:01.0367 3304  uagp35 - ok
18:21:01.0442 3304  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:21:01.0447 3304  udfs - ok
18:21:01.0536 3304  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:21:01.0602 3304  UI0Detect - ok
18:21:01.0640 3304  [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:21:01.0643 3304  uliagpkx - ok
18:21:01.0676 3304  [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci         C:\Windows\system32\drivers\uliahci.sys
18:21:01.0683 3304  uliahci - ok
18:21:01.0708 3304  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
18:21:01.0713 3304  UlSata - ok
18:21:01.0744 3304  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
18:21:01.0749 3304  ulsata2 - ok
18:21:01.0797 3304  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:21:01.0813 3304  umbus - ok
18:21:01.0859 3304  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
18:21:01.0868 3304  upnphost - ok
18:21:01.0897 3304  [ 5353218B3265E3B8190335059F697A11 ] usbbus          C:\Windows\system32\DRIVERS\lgusbbus.sys
18:21:01.0899 3304  usbbus - ok
18:21:01.0950 3304  [ AAB0B5F72D2D726FBFDC895A2902DE1D ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:21:01.0971 3304  usbccgp - ok
18:21:02.0006 3304  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:21:02.0009 3304  usbcir - ok
18:21:02.0043 3304  [ 7DD3EEFC62A1EF44E5F940FA651ED9ED ] UsbDiag         C:\Windows\system32\DRIVERS\lgusbdiag.sys
18:21:02.0045 3304  UsbDiag - ok
18:21:02.0066 3304  [ 153E8515CB86F8BB5D1A8B478EBF4BB2 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
18:21:02.0069 3304  usbehci - ok
18:21:02.0097 3304  [ 2AE6BCEBD85D31317E433733DAF25888 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:21:02.0104 3304  usbhub - ok
18:21:02.0139 3304  [ 083031A78822ECCBD7510BCCD3E20D4C ] USBModem        C:\Windows\system32\DRIVERS\lgusbmodem.sys
18:21:02.0141 3304  USBModem - ok
18:21:02.0182 3304  [ D457EBD0C3A8B3A3A144355B5EE91CBC ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
18:21:02.0196 3304  usbohci - ok
18:21:02.0235 3304  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:21:02.0236 3304  usbprint - ok
18:21:02.0277 3304  [ 1D714B8497CD68307806D5D3F60A5169 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
18:21:02.0278 3304  usbscan - ok
18:21:02.0311 3304  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:21:02.0314 3304  USBSTOR - ok
18:21:02.0351 3304  [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
18:21:02.0354 3304  usbuhci - ok
18:21:02.0396 3304  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
18:21:02.0401 3304  UxSms - ok
18:21:02.0527 3304  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
18:21:02.0549 3304  vds - ok
18:21:02.0573 3304  [ 7D92BE0028ECDEDEC74617009084B5EF ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:21:02.0576 3304  vga - ok
18:21:02.0600 3304  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:21:02.0615 3304  VgaSave - ok
18:21:02.0647 3304  [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp          C:\Windows\system32\drivers\viaagp.sys
18:21:02.0650 3304  viaagp - ok
18:21:02.0677 3304  [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
18:21:02.0680 3304  ViaC7 - ok
18:21:02.0699 3304  [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide          C:\Windows\system32\drivers\viaide.sys
18:21:02.0703 3304  viaide - ok
18:21:02.0726 3304  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:21:02.0729 3304  volmgr - ok
18:21:02.0778 3304  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:21:02.0807 3304  volmgrx - ok
18:21:02.0852 3304  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:21:02.0858 3304  volsnap - ok
18:21:02.0889 3304  [ D984439746D42B30FC65A4C3546C6829 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:21:02.0892 3304  vsmraid - ok
18:21:03.0353 3304  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
18:21:03.0387 3304  VSS - ok
18:21:03.0502 3304  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
18:21:03.0523 3304  W32Time - ok
18:21:03.0556 3304  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:21:03.0558 3304  WacomPen - ok
18:21:03.0589 3304  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
18:21:03.0592 3304  Wanarp - ok
18:21:03.0605 3304  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:21:03.0607 3304  Wanarpv6 - ok
18:21:03.0639 3304  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw          C:\Windows\system32\DRIVERS\wanatw4.sys
18:21:03.0641 3304  wanatw - ok
18:21:03.0670 3304  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:21:03.0701 3304  wcncsvc - ok
18:21:03.0761 3304  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:21:03.0803 3304  WcsPlugInService - ok
18:21:03.0833 3304  [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd              C:\Windows\system32\drivers\wd.sys
18:21:03.0835 3304  Wd - ok
18:21:03.0912 3304  [ 25944D2CC49E0A6C581D02A74B7D6645 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:21:03.0941 3304  Wdf01000 - ok
18:21:03.0984 3304  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:21:04.0007 3304  WdiServiceHost - ok
18:21:04.0015 3304  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:21:04.0023 3304  WdiSystemHost - ok
18:21:04.0159 3304  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
18:21:04.0202 3304  WebClient - ok
18:21:04.0240 3304  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:21:04.0247 3304  Wecsvc - ok
18:21:04.0278 3304  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:21:04.0299 3304  wercplsupport - ok
18:21:04.0381 3304  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:21:04.0406 3304  WerSvc - ok
18:21:04.0498 3304  [ E096FFB754F1E45AE1BDDAC1275AE2C5 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:21:04.0521 3304  winachsf - ok
18:21:04.0667 3304  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
18:21:04.0675 3304  WinDefend - ok
18:21:04.0690 3304  WinHttpAutoProxySvc - ok
18:21:05.0144 3304  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:21:05.0160 3304  Winmgmt - ok
18:21:05.0738 3304  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:21:05.0813 3304  WinRM - ok
18:21:05.0959 3304  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:21:05.0970 3304  Wlansvc - ok
18:21:06.0051 3304  [ 94A85E956A065E23E0010A6A7826243B ] WLSetupSvc      C:\Program Files\Windows Live\installer\WLSetupSvc.exe
18:21:06.0083 3304  WLSetupSvc - ok
18:21:06.0115 3304  [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:21:06.0134 3304  WmiAcpi - ok
18:21:06.0212 3304  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:21:06.0246 3304  wmiApSrv - ok
18:21:06.0312 3304  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
18:21:06.0333 3304  WMPNetworkSvc - ok
18:21:06.0398 3304  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:21:06.0422 3304  WPCSvc - ok
18:21:06.0462 3304  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:21:06.0481 3304  WPDBusEnum - ok
18:21:06.0521 3304  [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
18:21:06.0523 3304  WpdUsb - ok
18:21:06.0975 3304  [ 15673BD0B86150CB8E27766059C72A9B ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:21:06.0997 3304  WPFFontCache_v0400 - ok
18:21:07.0028 3304  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:21:07.0030 3304  ws2ifsl - ok
18:21:07.0075 3304  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\System32\wscsvc.dll
18:21:07.0081 3304  wscsvc - ok
18:21:07.0094 3304  WSearch - ok
18:21:07.0395 3304  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
18:21:07.0444 3304  wuauserv - ok
18:21:07.0494 3304  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:21:07.0499 3304  WudfPf - ok
18:21:07.0521 3304  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:21:07.0527 3304  WUDFRd - ok
18:21:07.0579 3304  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:21:07.0593 3304  wudfsvc - ok
18:21:07.0627 3304  [ E3FCF2870B5D7979B3BF10E98A71C847 ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
18:21:07.0629 3304  XAudio - ok
18:21:07.0656 3304  [ 96DB5621857E1FDDD1AA60733748BF17 ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
18:21:07.0660 3304  XAudioService - ok
18:21:07.0725 3304  [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
18:21:07.0749 3304  yukonwlh - ok
18:21:07.0769 3304  ================ Scan global ===============================
18:21:07.0794 3304  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
18:21:07.0857 3304  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:21:07.0884 3304  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:21:07.0956 3304  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
18:21:07.0975 3304  [Global] - ok
18:21:07.0976 3304  ================ Scan MBR ==================================
18:21:08.0003 3304  [ 943CC8D9009A7F8DA0E7FC257C230977 ] \Device\Harddisk0\DR0
18:21:09.0351 3304  \Device\Harddisk0\DR0 - ok
18:21:09.0351 3304  ================ Scan VBR ==================================
18:21:09.0365 3304  [ BBF90931A3432221E158E8F6F44DA305 ] \Device\Harddisk0\DR0\Partition1
18:21:09.0367 3304  \Device\Harddisk0\DR0\Partition1 - ok
18:21:09.0386 3304  [ 025108F3986CCBD49435E7A25691A402 ] \Device\Harddisk0\DR0\Partition2
18:21:09.0391 3304  \Device\Harddisk0\DR0\Partition2 - ok
18:21:09.0399 3304  ============================================================
18:21:09.0402 3304  Scan finished
18:21:09.0402 3304  ============================================================
18:21:09.0437 3936  Detected object count: 0
18:21:09.0437 3936  Actual detected object count: 0
18:22:35.0648 1724  Deinitialize success
 


#7 jeffce

jeffce

    Bleepin' Super Saiyan


  • Malware Response Team
  • 3,442 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:03:22 PM

Posted 06 February 2014 - 07:28 PM

ComboFix
 
Download Combofix from either of the links below, and save it to your desktop.  
Link 1
Link 2
 
**Note:  It is important that it is saved directly to your desktop**
If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.


 
--------------------------------------------------------------------
 
IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
 
--------------------------------------------------------------------
 
Right-Click and Run as Administrator on ComboFix.exe & follow the prompts.

  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt for further review.

WFxJwA4.png
 
mvp_horizontal_fullcolor-(copy2).jpeg
 


#8 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 06 February 2014 - 08:25 PM

ComboFix 14-02-05.02 - Mayra 02/06/2014  18:37:56.1.2 - x86
Microsoft® Windows Vista™ Home Basic   6.0.6002.2.1252.1.1033.18.445.155 [GMT -6:00]
Running from: c:\users\Mayra\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\BitDownload
c:\programdata\Microsoft\Windows\Start Menu\Programs\BitDownload\BitDownload Downloads.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\BitDownload\BitDownload Uninstall.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\BitDownload\BitDownload.lnk
c:\programdata\windows
c:\windows\security\Database\tmp.edb
D:\autorun.inf
.
.
(((((((((((((((((((((((((   Files Created from 2014-01-07 to 2014-02-07  )))))))))))))))))))))))))))))))
.
.
2014-02-07 01:01 . 2014-02-07 01:02 -------- d-----w- c:\users\Mayra\AppData\Local\temp
2014-02-07 01:01 . 2014-02-07 01:01 -------- d-----w- c:\users\liz\AppData\Local\temp
2014-02-07 01:01 . 2014-02-07 01:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-02-05 10:35 . 2013-08-27 02:47 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-02-05 10:35 . 2013-08-27 01:52 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2014-02-05 10:35 . 2013-08-27 01:50 486400 ----a-w- c:\windows\system32\d3d10level9.dll
2014-02-05 10:35 . 2013-08-27 02:47 189952 ----a-w- c:\windows\system32\d3d10core.dll
2014-02-05 10:35 . 2013-08-27 02:47 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2014-02-05 10:35 . 2013-08-27 02:47 1029120 ----a-w- c:\windows\system32\d3d10.dll
2014-02-05 10:35 . 2013-08-27 01:32 683008 ----a-w- c:\windows\system32\d2d1.dll
2014-02-05 10:35 . 2013-08-27 01:28 1069056 ----a-w- c:\windows\system32\DWrite.dll
2014-02-05 10:35 . 2013-08-27 01:28 798208 ----a-w- c:\windows\system32\FntCache.dll
2014-02-05 10:33 . 2013-10-30 02:12 335360 ----a-w- c:\windows\system32\SysFxUI.dll
2014-02-05 10:33 . 2013-10-30 01:43 130048 ----a-w- c:\windows\system32\drivers\drmk.sys
2014-02-05 10:33 . 2013-10-30 00:43 167936 ----a-w- c:\windows\system32\drivers\portcls.sys
2014-02-05 10:33 . 2011-03-12 21:55 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2014-02-05 05:20 . 2014-02-05 05:20 -------- d-----w- c:\program files\Windows Portable Devices
2014-02-05 03:20 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll
2014-02-05 03:20 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2014-02-05 03:20 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll
2014-02-05 02:03 . 2014-02-05 02:03 161792 ----a-w- c:\windows\system32\msls31.dll
2014-02-05 01:58 . 2014-02-05 01:58 979456 ----a-w- c:\windows\system32\MFH264Dec.dll
2014-02-05 01:58 . 2014-02-05 01:58 357376 ----a-w- c:\windows\system32\MFHEAACdec.dll
2014-02-05 01:58 . 2014-02-05 01:58 302592 ----a-w- c:\windows\system32\mfmp4src.dll
2014-02-05 01:58 . 2014-02-05 01:58 261632 ----a-w- c:\windows\system32\mfreadwrite.dll
2014-02-05 01:58 . 2014-02-05 01:58 2873344 ----a-w- c:\windows\system32\mf.dll
2014-02-05 01:58 . 2014-02-05 01:58 98816 ----a-w- c:\windows\system32\mfps.dll
2014-02-05 01:58 . 2014-02-05 01:58 209920 ----a-w- c:\windows\system32\mfplat.dll
2014-02-05 01:57 . 2014-02-05 01:57 586240 ----a-w- c:\windows\system32\stobject.dll
2014-02-05 01:57 . 2014-02-05 01:57 135680 ----a-w- c:\windows\system32\XpsRasterService.dll
2014-02-05 01:57 . 2014-02-05 01:57 478720 ----a-w- c:\windows\system32\dxgi.dll
2014-02-05 01:57 . 2014-02-05 01:57 258048 ----a-w- c:\windows\system32\winspool.drv
2014-02-05 01:57 . 2014-02-05 01:57 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe
2014-02-05 01:57 . 2014-02-05 01:57 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll
2014-02-05 01:57 . 2014-02-05 01:57 847360 ----a-w- c:\windows\system32\OpcServices.dll
2014-02-05 01:57 . 2014-02-05 01:57 1554432 ----a-w- c:\windows\system32\xpsservices.dll
2014-02-05 01:54 . 2014-02-05 01:54 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2014-02-05 01:54 . 2014-02-05 01:54 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2014-02-05 01:54 . 2014-02-05 01:54 252928 ----a-w- c:\windows\system32\dxdiag.exe
2014-02-05 01:54 . 2014-02-05 01:54 519680 ----a-w- c:\windows\system32\d3d11.dll
2014-02-05 01:54 . 2014-02-05 01:54 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2014-02-05 01:54 . 2014-02-05 01:54 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2014-02-05 01:53 . 2014-02-05 01:54 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-05 01:01 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll
2014-02-05 01:01 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2014-02-05 01:01 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2014-02-05 01:01 . 2009-07-14 12:12 16896 ----a-w- c:\windows\system32\winusb.dll
2014-02-05 01:01 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2014-02-05 01:01 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2014-02-05 01:01 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-02-05 01:01 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2014-02-05 01:01 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2014-02-05 01:01 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
2014-02-04 17:59 . 2012-11-02 10:18 376320 ----a-w- c:\windows\system32\dpnet.dll
2014-02-04 17:59 . 2012-11-02 08:26 23040 ----a-w- c:\windows\system32\dpnsvr.exe
2014-02-04 17:59 . 2013-08-01 02:49 37376 ----a-w- c:\windows\system32\cdd.dll
2014-02-04 17:59 . 2013-08-01 03:16 638400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-02-04 17:59 . 2011-07-29 16:01 293376 ----a-w- c:\windows\system32\psisdecd.dll
2014-02-04 17:59 . 2011-07-29 16:01 217088 ----a-w- c:\windows\system32\psisrndr.ax
2014-02-04 17:59 . 2011-07-29 16:00 57856 ----a-w- c:\windows\system32\MSDvbNP.ax
2014-02-04 17:59 . 2011-07-29 16:00 69632 ----a-w- c:\windows\system32\Mpeg2Data.ax
2014-02-04 17:58 . 2013-10-30 00:35 2050560 ----a-w- c:\windows\system32\win32k.sys
2014-02-04 17:58 . 2013-06-15 13:22 15872 ----a-w- c:\windows\system32\icaapi.dll
2014-02-04 17:58 . 2013-06-15 11:23 24064 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2014-02-04 17:58 . 2011-10-14 16:03 189952 ----a-w- c:\windows\system32\winmm.dll
2014-02-04 17:58 . 2011-10-14 16:00 23552 ----a-w- c:\windows\system32\mciseq.dll
2014-02-04 17:58 . 2012-05-11 15:57 623616 ----a-w- c:\windows\system32\localspl.dll
2014-02-04 17:56 . 2013-07-20 10:44 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-04 17:54 . 2012-09-25 16:19 75776 ----a-w- c:\windows\system32\synceng.dll
2014-02-04 17:54 . 2013-10-24 00:45 304128 ----a-w- c:\program files\Internet Explorer\ieuser.exe
2014-02-04 17:53 . 2013-07-05 04:53 905664 ----a-w- c:\windows\system32\drivers\tcpip.sys
2014-02-04 17:52 . 2011-10-14 16:02 429056 ----a-w- c:\windows\system32\EncDec.dll
2014-02-04 17:52 . 2013-07-17 19:41 2048 ----a-w- c:\windows\system32\tzres.dll
2014-02-04 17:50 . 2013-07-10 09:47 783360 ----a-w- c:\windows\system32\rpcrt4.dll
2014-02-04 15:52 . 2012-08-21 11:47 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys
2014-02-04 15:31 . 2012-03-20 23:28 53120 ----a-w- c:\windows\system32\drivers\partmgr.sys
2014-02-04 14:04 . 2012-11-20 04:22 204288 ----a-w- c:\windows\system32\ncrypt.dll
2014-02-04 13:50 . 2011-02-22 14:13 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-02-04 13:48 . 2011-11-18 17:47 66560 ----a-w- c:\windows\system32\packager.dll
2014-02-04 13:44 . 2013-03-03 19:07 1082232 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-02-04 13:44 . 2011-12-14 16:17 680448 ----a-w- c:\windows\system32\msvcrt.dll
2014-02-04 13:44 . 2013-10-03 12:45 297984 ----a-w- c:\windows\system32\gdi32.dll
2014-02-04 13:44 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll
2014-02-04 13:43 . 2013-10-03 12:45 993792 ----a-w- c:\windows\system32\crypt32.dll
2014-02-04 13:43 . 2013-06-29 02:07 197632 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-02-04 13:43 . 2013-06-29 02:07 73216 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-02-04 13:43 . 2013-06-29 02:06 6016 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-02-04 13:43 . 2013-06-29 02:07 226304 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-02-04 13:42 . 2011-05-05 13:54 39936 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-02-04 13:42 . 2011-05-05 13:54 19456 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-02-04 13:41 . 2012-11-08 03:48 1314816 ----a-w- c:\windows\system32\quartz.dll
2014-02-04 13:41 . 2012-06-05 16:47 708608 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2014-02-04 13:40 . 2013-05-02 04:04 443904 ----a-w- c:\windows\system32\win32spl.dll
2014-02-04 13:40 . 2013-05-02 04:03 37376 ----a-w- c:\windows\system32\printcom.dll
2014-02-04 13:40 . 2013-08-02 04:09 1548288 ----a-w- c:\windows\system32\WMVDECOD.DLL
2014-02-04 13:40 . 2013-10-11 02:08 131072 ----a-w- c:\windows\system32\wshom.ocx
2014-02-04 13:40 . 2013-10-11 00:35 155648 ----a-w- c:\windows\system32\wscript.exe
2014-02-04 13:40 . 2013-10-11 00:35 135168 ----a-w- c:\windows\system32\cscript.exe
2014-02-04 13:40 . 2013-10-11 02:08 172032 ----a-w- c:\windows\system32\scrrun.dll
2014-02-04 13:40 . 2013-10-11 02:08 36864 ----a-w- c:\windows\system32\wshcon.dll
2014-02-04 13:40 . 2013-07-16 04:35 615936 ----a-w- c:\windows\system32\themeui.dll
2014-02-04 13:39 . 2013-04-24 01:46 812544 ----a-w- c:\windows\system32\certutil.exe
2014-02-04 13:39 . 2013-04-24 04:00 41984 ----a-w- c:\windows\system32\certenc.dll
2014-02-04 13:39 . 2013-07-04 04:21 532480 ----a-w- c:\windows\system32\comctl32.dll
2014-02-04 13:38 . 2012-11-02 10:19 1400832 ----a-w- c:\windows\system32\msxml6.dll
2014-02-04 13:38 . 2013-06-26 23:01 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2014-02-04 13:38 . 2013-10-11 02:08 444928 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-02-04 13:38 . 2013-10-11 02:07 596480 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-02-04 13:38 . 2013-10-22 07:19 158208 ----a-w- c:\windows\system32\imagehlp.dll
2014-02-04 13:38 . 2012-02-29 15:11 5120 ----a-w- c:\windows\system32\wmi.dll
2014-02-04 13:38 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2014-02-04 13:37 . 2011-10-25 15:58 497152 ----a-w- c:\windows\system32\qdvd.dll
2014-02-04 13:37 . 2012-05-01 14:03 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2014-02-04 13:37 . 2012-06-04 15:26 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-02-04 13:37 . 2012-06-02 00:04 278528 ----a-w- c:\windows\system32\schannel.dll
2014-02-04 13:37 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2014-02-04 13:37 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll
2014-02-04 13:37 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe
2014-02-04 13:37 . 2013-06-04 04:16 34304 ----a-w- c:\windows\system32\atmlib.dll
2014-02-04 13:37 . 2013-06-04 01:49 293376 ----a-w- c:\windows\system32\atmfd.dll
2014-02-04 13:37 . 2012-03-01 11:01 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2014-02-04 13:36 . 2013-07-08 04:55 3603904 ----a-w- c:\windows\system32\ntkrnlpa.exe
2014-02-04 13:36 . 2013-07-08 04:55 3551680 ----a-w- c:\windows\system32\ntoskrnl.exe
2014-02-04 13:36 . 2013-07-09 12:10 1205168 ----a-w- c:\windows\system32\ntdll.dll
2014-02-04 13:36 . 2013-03-09 01:28 64000 ----a-w- c:\windows\system32\smss.exe
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-05 01:54 . 2014-02-05 01:54 4096 ----a-w- c:\windows\system32\drivers\en-US\dxgkrnl.sys.mui
2014-01-31 13:52 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2014-01-31 13:51 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll
2014-01-16 15:59 . 2009-10-03 18:25 231584 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"AVG_UI"="c:\program files\AVG\AVG2014\avgui.exe" [2013-11-08 4956176]
"RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 3784704]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^Mayra^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk]
path=c:\users\Mayra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
backup=c:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
2006-07-12 01:12 90112 ----a-w- c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncU.exe]
2006-09-29 01:09 700416 ------w- c:\program files\Creative\Sync Manager Unicode\CTSyncU.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2006-12-16 21:51 240640 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]
2006-09-26 00:52 50736 ----a-w- c:\program files\Common Files\AOL\1173975032\ee\aolsoftware.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MotiveReportAgent]
2004-06-25 18:14 204800 ----a-w- c:\program files\Common Files\Motive\McciBootStrapper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2007-06-29 11:24 286720 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2006-11-09 18:57 3784704 ----a-w- c:\windows\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-19 07:38 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3074645540-534623877-3370066440-1000]
"EnableNotificationsRef"=dword:00000002
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3074645540-534623877-3370066440-500]
"EnableNotificationsRef"=dword:00000002
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 43499327
*Deregistered* - 43499327
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ   PLA DPS BFE mpssvc
rsmsvcs REG_MULTI_SZ   ntmssvc
LocalServiceAndNoImpersonation REG_MULTI_SZ   FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-04 10:06 1211720 ----a-w- c:\program files\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-02-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-31 14:50]
.
2014-02-07 c:\windows\Tasks\AVG_SYS_TASK.job
- c:\programdata\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe [2014-02-01 19:07]
.
2014-02-06 c:\windows\Tasks\AVG_SYS_TASK_DELETE.job
- c:\programdata\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe [2014-02-01 19:07]
.
2008-01-21 c:\windows\Tasks\Check Updates for Windows Live Toolbar.job
- c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 17:20]
.
2014-02-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-01-31 03:53]
.
2014-02-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-01-31 03:53]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
mStart Page = hxxp://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
uInternet Settings,ProxyOverride = <local>
IE: &3D Satellite Search - c:\users\Mayra\AppData\Roaming\OSI\dlls\EFOToolbar.dll/GoSatteliteSearch.dll.htm
IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm
IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: S&earchSave Web Search - c:\users\Mayra\AppData\Roaming\OSI\dlls\EFOToolbar.dll/GoWebSearch.dll.htm
TCP: DhcpNameServer = 192.168.1.254
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-MskAgentexe - c:\program files\McAfee\MSK\MskAgent.exe
MSConfigStartUp-MsnMsgr - c:\program files\Windows Live\Messenger\MsnMsgr.Exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-02-06 19:02
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...  
.
scanning hidden autostart entries ... 
.
scanning hidden files ...  
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\PCCUJobMgr]
"ImagePath"="\"c:\program files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe\" /s \"PCCUJobMgr\" /m \"c:\program files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\diMaster.dll\" /prefetch:1"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_44_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_44_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2014-02-06  19:08:18
ComboFix-quarantined-files.txt  2014-02-07 01:08
.
Pre-Run: 94,620,696,576 bytes free
Post-Run: 94,371,954,688 bytes free
.
- - End Of File - - 292310FFDCC5C41DF23D51CD351635E4
943CC8D9009A7F8DA0E7FC257C230977


#9 jeffce

jeffce

    Bleepin' Super Saiyan


  • Malware Response Team
  • 3,442 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:03:22 PM

Posted 07 February 2014 - 07:58 AM

How is your system running now?  :)


WFxJwA4.png
 
mvp_horizontal_fullcolor-(copy2).jpeg
 


#10 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 07 February 2014 - 08:21 AM

It still seems a little sluggish...:/



#11 jeffce

jeffce

    Bleepin' Super Saiyan


  • Malware Response Team
  • 3,442 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:03:22 PM

Posted 07 February 2014 - 08:39 AM

When is it acting sluggish?  All the time or just when you are on the internet?


WFxJwA4.png
 
mvp_horizontal_fullcolor-(copy2).jpeg
 


#12 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 07 February 2014 - 08:49 AM

It seems like it is all the time. The internet light on my router is flashing or solid "on" and I'm not surfing the web. I know this computer could use some RAM but it seems slower than it should for just having Chrome open. 



#13 jeffce

jeffce

    Bleepin' Super Saiyan


  • Malware Response Team
  • 3,442 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:03:22 PM

Posted 07 February 2014 - 08:55 AM

Let's have a look with a different tool shall we....   :)
 
N4qAiMQ.jpgFRST
 
Please download Farbar Recovery Scan Tool and save it to your Desktop.
 
Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
 
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
--------------------
 

ttLR1ki.jpg

  • Download OTL to your desktop.
  • Right-click and Run as Administrator on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt.
      Note:These logs can be located in the OTL. folder on you C:\ drive if they fail to open automatically.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them both in.

----------


WFxJwA4.png
 
mvp_horizontal_fullcolor-(copy2).jpeg
 


#14 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 07 February 2014 - 09:37 AM

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-02-2014
Ran by Mayra (administrator) on MAYRA-PC on 07-02-2014 08:03:57
Running from C:\Users\Mayra\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) ===================
 
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(AOL LLC) C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
() C:\ProgramData\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
(Symantec Corporation) C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\SymcPCCULaunchSvc.exe
(Symantec Corporation) C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(New Boundary Technologies, Inc.) C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Symantec Corporation) C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [3784704 2006-11-09] (Realtek Semiconductor)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {5696fcb1-3919-4f82-a64a-3ac2166d102e} URL = http://www.searchsave.com/index.php?req=search&term={searchTerms}
BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (Google Inc.)
BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll (Google Inc.)
Toolbar: HKLM - Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
Toolbar: HKCU - &Google - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll (Google Inc.)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll
DPF: {48DD0448-9209-4F81-9F6D-D83562940134} http://lads.myspace.com/upload/MySpaceUploader1006.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
 
FireFox:
========
FF ProfilePath: C:\Users\Mayra\AppData\Roaming\Mozilla\Firefox\Profiles\y9e4ph4m.default
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @Motive.com/NpMotive,version=1.0 - C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 - C:\Program Files\Yahoo!\Common\npyaxmpb.dll No File
FF Plugin HKCU: @yahoo.com/BrowserPlus,version=2.4.21 - C:\Users\Mayra\AppData\Local\Yahoo!\BrowserPlus\2.4.21\Plugins\npybrowserplus_2.4.21.dll (Yahoo! Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.2) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Motive Plugin) - C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.510.13) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java™ Platform SE 7 U51) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Yahoo! BrowserPlus Plugin) - C:\Users\Mayra\AppData\Local\Yahoo!\BrowserPlus\2.4.21\Plugins\npybrowserplus_2.4.21.dll (Yahoo! Inc.)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-30]
CHR Extension: (Google Drive) - C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-30]
CHR Extension: (YouTube) - C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-30]
CHR Extension: (Google Search) - C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-30]
CHR Extension: (Google Wallet) - C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-30]
CHR Extension: (Gmail) - C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-30]
 
========================== Services (Whitelisted) =================
 
R2 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46640 2006-10-23] (AOL LLC)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S3 GoogleDesktopManager; C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe [81408 2006-12-16] (Google)
R2 Norton PC Checkup Application Launcher; C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\SymcPCCULaunchSvc.exe [103280 2009-12-04] (Symantec Corporation)
R2 PCCUJobMgr; C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe [126392 2009-08-24] (Symantec Corporation)
R2 PrismXL; C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS [65536 2006-12-16] (New Boundary Technologies, Inc.)
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1439744 2010-10-10] (Atheros Communications, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 Cdr4_xp; C:\Windows\system32\Drivers\Cdr4_xp.sys [2432 2006-02-13] (Sonic Solutions)
R1 Cdralw2k; C:\Windows\system32\Drivers\Cdralw2k.sys [2560 2006-02-13] (Sonic Solutions)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2010-05-04] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MREMPR5; C:\Program Files\Common Files\Motive\MREMPR5.sys [19345 2004-11-22] (Motive, Inc.)
S3 MRENDIS5; C:\Program Files\Common Files\Motive\MRENDIS5.sys [18003 2004-11-22] (Motive, Inc.)
S3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2010-05-04] (Printing Communications Assoc., Inc. (PCAUSA))
S3 NETw2v32; C:\Windows\System32\DRIVERS\NETw2v32.sys [2589184 2006-11-02] (Intel® Corporation)
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [21344 2005-05-26] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [38144 2005-05-26] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [39036 2005-06-24] (LG Electronics Inc.)
R3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2006-11-01] (America Online, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 catchme; \??\C:\Users\Mayra\AppData\Local\Temp\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S1 SASDIFSV; \??\C:\Users\Mayra\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS [X]
S1 SASKUTIL; \??\C:\Users\Mayra\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-02-07 08:03 - 2014-02-07 08:05 - 00015793 _____ () C:\Users\Mayra\Desktop\FRST.txt
2014-02-07 08:03 - 2014-02-07 08:03 - 00000000 ____D () C:\FRST
2014-02-07 08:00 - 2014-02-07 08:00 - 01136640 _____ (Farbar) C:\Users\Mayra\Desktop\FRST.exe
2014-02-07 08:00 - 2014-02-07 08:00 - 00602112 _____ (OldTimer Tools) C:\Users\Mayra\Desktop\OTL.exe
2014-02-07 07:12 - 2014-02-07 07:12 - 00000534 _____ () C:\Windows\PFRO.log
2014-02-06 19:08 - 2014-02-06 19:08 - 00020713 _____ () C:\ComboFix.txt
2014-02-06 18:31 - 2014-02-06 19:08 - 00000000 ____D () C:\Qoobox
2014-02-06 18:31 - 2011-06-26 00:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-06 18:31 - 2010-11-07 11:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-06 18:31 - 2009-04-19 22:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-06 18:31 - 2000-08-30 18:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-06 18:31 - 2000-08-30 18:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-06 18:31 - 2000-08-30 18:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-06 18:31 - 2000-08-30 18:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-06 18:31 - 2000-08-30 18:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-06 18:30 - 2014-02-06 19:05 - 00000000 ____D () C:\Windows\erdnt
2014-02-06 18:29 - 2014-02-06 18:29 - 05180173 ____R (Swearware) C:\Users\Mayra\Desktop\ComboFix.exe
2014-02-06 18:12 - 2014-02-06 18:12 - 00001229 _____ () C:\Users\Mayra\Desktop\AdwCleaner[R2].txt
2014-02-06 08:15 - 2014-02-06 08:15 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Mayra\Desktop\tdsskiller.exe
2014-02-06 08:14 - 2014-02-06 08:14 - 01166132 _____ () C:\Users\Mayra\Desktop\AdwCleaner.exe
2014-02-05 08:12 - 2014-02-05 08:11 - 00031002 _____ () C:\Users\Mayra\Desktop\dds.txt
2014-02-05 08:12 - 2014-02-05 08:11 - 00007443 _____ () C:\Users\Mayra\Desktop\attach.txt
2014-02-05 07:31 - 2014-02-05 07:31 - 00688992 ____R (Swearware) C:\Users\Mayra\Desktop\dds.com
2014-02-05 07:28 - 2014-02-05 07:28 - 00688992 _____ (Swearware) C:\Users\Mayra\Downloads\dds.com
2014-02-05 07:28 - 2014-02-05 07:28 - 00688992 _____ (Swearware) C:\Users\Mayra\Downloads\dds (1).com
2014-02-05 04:35 - 2013-08-26 20:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-02-05 04:35 - 2013-08-26 20:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-02-05 04:35 - 2013-08-26 20:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-02-05 04:35 - 2013-08-26 20:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-02-05 04:35 - 2013-08-26 19:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-05 04:35 - 2013-08-26 19:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-02-05 04:35 - 2013-08-26 19:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-05 04:35 - 2013-08-26 19:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-05 04:35 - 2013-08-26 19:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-05 04:33 - 2013-10-29 20:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-02-05 04:33 - 2013-10-29 19:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-02-05 04:33 - 2013-10-29 18:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-02-05 04:33 - 2011-03-12 15:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-02-04 23:20 - 2014-02-04 23:20 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-04 23:03 - 2014-02-04 23:03 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2014-02-04 23:01 - 2014-02-04 23:13 - 00024801 _____ () C:\Windows\setupact.log
2014-02-04 23:01 - 2014-02-04 23:01 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2014-02-04 23:01 - 2014-02-04 23:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-04 21:20 - 2009-09-09 20:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2014-02-04 21:20 - 2009-09-09 20:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2014-02-04 21:20 - 2009-09-09 20:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-02-04 21:13 - 2009-09-30 19:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2014-02-04 21:13 - 2009-09-30 19:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2014-02-04 21:13 - 2009-09-30 19:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2014-02-04 21:13 - 2009-09-30 19:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2014-02-04 21:13 - 2009-09-30 19:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2014-02-04 21:13 - 2009-09-30 19:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2014-02-04 21:13 - 2009-09-30 19:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys
2014-02-04 21:13 - 2009-09-30 19:01 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WpdConns.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-04 20:03 - 2014-02-04 20:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-04 20:03 - 2014-02-04 20:03 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-04 20:03 - 2014-02-04 20:03 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-04 20:03 - 2014-02-04 20:03 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-04 20:03 - 2014-02-04 20:03 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-04 20:03 - 2014-02-04 20:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-04 20:03 - 2014-02-04 20:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-04 20:02 - 2014-02-04 20:02 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-04 19:58 - 2014-02-04 19:58 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2014-02-04 19:57 - 2014-02-04 19:57 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-02-04 19:57 - 2014-02-04 19:57 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2014-02-04 19:54 - 2014-02-04 19:54 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-04 19:53 - 2014-02-04 19:54 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-04 19:48 - 2014-02-04 20:05 - 00004020 _____ () C:\Windows\IE9_main.log
2014-02-04 19:01 - 2012-07-25 21:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-02-04 19:01 - 2012-07-25 21:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-02-04 19:01 - 2012-07-25 21:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-02-04 19:01 - 2012-07-25 21:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-02-04 19:01 - 2012-07-25 21:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-02-04 19:01 - 2012-07-25 21:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-02-04 19:01 - 2012-07-25 20:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-02-04 19:01 - 2012-07-25 20:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-02-04 19:01 - 2012-07-25 20:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-02-04 19:01 - 2012-06-02 08:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-02-04 19:01 - 2009-07-14 06:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2014-02-04 11:59 - 2013-07-31 21:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-04 11:59 - 2013-07-31 20:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-02-04 11:59 - 2012-11-02 04:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-02-04 11:59 - 2012-11-02 02:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-02-04 11:59 - 2011-07-29 10:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-02-04 11:59 - 2011-07-29 10:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-02-04 11:59 - 2011-07-29 10:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2014-02-04 11:59 - 2011-07-29 10:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2014-02-04 11:58 - 2013-10-29 18:35 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-02-04 11:58 - 2013-06-15 07:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2014-02-04 11:58 - 2013-06-15 05:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-02-04 11:58 - 2012-05-11 09:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-02-04 11:58 - 2011-10-14 10:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-02-04 11:58 - 2011-10-14 10:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2014-02-04 11:56 - 2013-07-20 04:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-04 11:54 - 2012-09-25 10:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-02-04 11:54 - 2012-06-08 11:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-04 11:53 - 2013-07-04 22:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-04 11:52 - 2013-07-17 13:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-02-04 11:52 - 2011-10-14 10:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-02-04 11:50 - 2013-07-10 03:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-02-04 09:52 - 2012-08-21 05:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-02-04 09:31 - 2012-03-20 17:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-02-04 09:26 - 2012-06-29 10:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-02-04 08:04 - 2012-11-19 22:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-02-04 07:50 - 2011-02-22 08:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-02-04 07:48 - 2011-11-18 11:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-02-04 07:44 - 2013-10-03 06:45 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-02-04 07:44 - 2013-03-03 13:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-02-04 07:44 - 2011-12-14 10:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-02-04 07:44 - 2011-11-16 10:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-02-04 07:43 - 2013-10-03 06:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-02-04 07:43 - 2013-06-28 20:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-04 07:43 - 2013-06-28 20:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-04 07:43 - 2013-06-28 20:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-04 07:43 - 2013-06-28 20:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-04 07:42 - 2012-09-28 10:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-02-04 07:42 - 2011-05-05 07:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-04 07:42 - 2011-05-05 07:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-02-04 07:41 - 2012-11-21 21:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2014-02-04 07:41 - 2012-11-07 21:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-02-04 07:40 - 2013-10-10 20:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-02-04 07:40 - 2013-10-10 20:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-02-04 07:40 - 2013-10-10 20:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2014-02-04 07:40 - 2013-10-10 18:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-02-04 07:40 - 2013-10-10 18:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-02-04 07:40 - 2013-08-01 22:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-02-04 07:40 - 2013-07-15 22:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-02-04 07:40 - 2013-05-01 22:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-02-04 07:40 - 2013-05-01 22:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2014-02-04 07:39 - 2013-07-03 22:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-04 07:39 - 2013-04-23 22:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-02-04 07:39 - 2013-04-23 19:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-02-04 07:38 - 2013-10-22 01:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-02-04 07:38 - 2013-10-10 20:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-02-04 07:38 - 2013-10-10 20:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-02-04 07:38 - 2013-10-10 18:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF
2014-02-04 07:38 - 2013-06-26 17:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-02-04 07:38 - 2012-11-02 04:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-02-04 07:38 - 2012-02-29 09:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-02-04 07:38 - 2012-02-29 07:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-02-04 07:37 - 2013-06-03 22:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-02-04 07:37 - 2013-06-03 19:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-02-04 07:37 - 2012-06-04 09:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-02-04 07:37 - 2012-06-01 18:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-02-04 07:37 - 2012-05-01 08:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-02-04 07:37 - 2011-11-16 10:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-02-04 07:37 - 2011-11-16 10:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-02-04 07:37 - 2011-11-16 08:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-02-04 07:37 - 2011-10-25 09:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-02-04 07:36 - 2013-07-09 06:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-02-04 07:36 - 2013-07-07 22:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-02-04 07:36 - 2013-07-07 22:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-02-04 07:36 - 2013-03-08 21:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-02-04 07:36 - 2013-03-08 19:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-02-04 07:35 - 2011-08-25 10:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-02-04 07:35 - 2011-08-25 10:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-02-04 07:35 - 2011-08-25 10:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-02-04 07:35 - 2011-08-25 07:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2014-02-04 07:34 - 2013-05-31 22:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-02-04 07:34 - 2012-06-05 10:47 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-04 07:33 - 2013-04-17 06:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-02-04 07:33 - 2013-03-07 21:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-04 07:33 - 2011-06-15 10:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-02-04 07:32 - 2013-03-07 21:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-02-04 07:31 - 2013-07-02 20:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-02-04 07:31 - 2013-07-02 20:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-02-04 07:31 - 2010-05-04 13:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2014-02-04 07:27 - 2013-02-11 19:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-02-04 06:31 - 2013-07-07 22:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-02-04 06:31 - 2013-07-07 22:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-02-04 06:31 - 2013-07-07 22:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-02-04 06:29 - 2012-01-09 09:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-02-04 05:14 - 2012-06-02 16:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-02-04 05:14 - 2012-06-02 16:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-02-04 05:14 - 2012-06-02 16:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-02-04 05:14 - 2012-06-02 16:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-02-04 05:13 - 2012-06-02 16:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-02-04 05:13 - 2012-06-02 16:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-02-04 05:13 - 2012-06-02 16:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-02-04 05:13 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-02-04 05:13 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-02-03 23:10 - 2014-02-03 23:22 - 00000000 ____D () C:\Windows\system32\ca-ES
2014-02-03 23:10 - 2014-02-03 23:21 - 00000000 ____D () C:\Windows\system32\vi-VN
2014-02-03 23:10 - 2014-02-03 23:21 - 00000000 ____D () C:\Windows\system32\eu-ES
2014-02-03 23:02 - 2014-02-03 23:02 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2014-02-03 18:02 - 2014-02-03 18:02 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-03 08:14 - 2014-02-03 08:15 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Mayra\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-03 07:29 - 2014-02-04 22:54 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-01 17:26 - 2014-02-01 17:26 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-02-01 17:23 - 2009-10-09 15:56 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\winrsmgr.dll
2014-02-01 17:22 - 2009-10-09 15:56 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2014-02-01 17:22 - 2009-10-09 15:56 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2014-02-01 17:22 - 2009-10-09 15:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2014-02-01 17:22 - 2009-10-09 15:56 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2014-02-01 17:22 - 2009-10-09 15:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2014-02-01 17:22 - 2009-10-09 15:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2014-02-01 17:22 - 2009-10-09 15:55 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2014-02-01 17:22 - 2009-10-09 15:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2014-02-01 17:22 - 2009-10-09 15:55 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2014-02-01 17:22 - 2009-10-09 15:55 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2014-02-01 17:22 - 2009-10-09 15:55 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2014-02-01 17:21 - 2009-10-09 15:56 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-02-01 17:21 - 2009-10-09 15:56 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-02-01 17:21 - 2009-10-09 15:56 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2014-02-01 17:21 - 2009-10-09 15:56 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-02-01 17:21 - 2009-10-09 15:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-02-01 17:21 - 2009-10-09 15:55 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-02-01 17:21 - 2009-08-01 00:27 - 00201184 _____ () C:\Windows\system32\winrm.vbs
2014-02-01 17:21 - 2009-07-16 11:30 - 00004675 _____ () C:\Windows\system32\wsmanconfig_schema.xml
2014-02-01 17:21 - 2009-07-16 11:30 - 00002426 _____ () C:\Windows\system32\WsmTxt.xsl
2014-02-01 14:58 - 2011-03-03 09:40 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Apphlpdm.dll
2014-02-01 14:58 - 2011-03-03 07:35 - 04240384 _____ (Microsoft) C:\Windows\system32\GameUXLegacyGDFs.dll
2014-02-01 14:58 - 2011-02-18 08:03 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-02-01 14:58 - 2010-08-26 10:34 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-02-01 14:07 - 2008-05-26 22:59 - 00018904 _____ () C:\Windows\system32\StructuredQuerySchemaTrivial.bin
2014-02-01 14:07 - 2007-11-08 03:04 - 11967524 _____ () C:\Windows\system32\korwbrkr.lex
2014-02-01 13:56 - 2010-06-28 11:00 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-02-01 13:55 - 2011-03-10 11:03 - 01162240 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-02-01 13:55 - 2011-03-10 11:03 - 01136640 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-02-01 13:55 - 2011-03-02 09:44 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-02-01 13:55 - 2011-03-02 09:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-02-01 13:55 - 2010-12-29 12:28 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-02-01 13:55 - 2010-12-29 12:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\sbeio.dll
2014-02-01 13:55 - 2010-12-29 12:26 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-02-01 13:55 - 2010-08-20 10:05 - 00867328 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-02-01 13:55 - 2010-06-16 09:30 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-02-01 13:55 - 2009-05-04 03:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-02-01 13:54 - 2010-09-13 09:46 - 10628096 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-02-01 13:54 - 2010-09-13 07:56 - 08147456 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-02-01 13:53 - 2010-09-06 10:20 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-02-01 13:53 - 2010-09-06 10:19 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-02-01 13:52 - 2010-04-16 10:46 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-02-01 13:51 - 2011-04-14 08:59 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-02-01 13:51 - 2011-02-22 07:23 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-02-01 13:51 - 2010-12-28 09:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2014-02-01 13:50 - 2011-04-21 07:58 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-02-01 13:50 - 2010-04-05 11:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2014-02-01 13:49 - 2011-07-06 09:31 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-02-01 13:49 - 2011-04-29 07:24 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-02-01 13:49 - 2011-04-29 07:24 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-02-01 13:49 - 2010-05-27 14:08 - 00081920 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2014-02-01 13:48 - 2010-12-14 08:49 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2014-02-01 13:47 - 2010-08-26 10:37 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2014-02-01 13:47 - 2010-08-17 08:11 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-02-01 13:46 - 2010-06-18 11:31 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2014-02-01 13:45 - 2009-07-10 05:47 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2014-02-01 13:44 - 2011-05-02 11:16 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-02-01 13:43 - 2011-04-29 07:25 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-02-01 13:43 - 2011-04-29 07:25 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-02-01 13:42 - 2010-04-05 11:02 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2014-02-01 13:41 - 2010-10-18 07:37 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-02-01 13:41 - 2010-08-31 09:46 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2014-02-01 13:41 - 2010-08-31 09:46 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2014-02-01 13:40 - 2010-11-04 12:56 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2014-02-01 13:40 - 2010-11-04 12:55 - 00601600 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-02-01 13:40 - 2010-11-04 12:55 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2014-02-01 13:40 - 2010-11-04 12:55 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2014-02-01 13:40 - 2010-11-04 10:34 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2014-02-01 13:03 - 2014-02-01 13:03 - 00000640 _____ () C:\Users\Mayra\Desktop\JRT.txt
2014-02-01 12:32 - 2010-12-17 07:54 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-01 12:32 - 2009-04-11 00:28 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tscupgrd.exe
2014-02-01 12:28 - 2014-02-01 12:28 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_00_00.Wdf
2014-02-01 12:04 - 2014-02-01 12:04 - 00070268 _____ () C:\Users\Mayra\Documents\cc_20140201_120342.reg
2014-02-01 11:22 - 2014-02-07 07:51 - 01749968 _____ () C:\Windows\WindowsUpdate.log
2014-02-01 10:45 - 2014-02-01 11:09 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-01 10:37 - 2014-02-01 10:37 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-01 08:40 - 2009-11-08 10:55 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-02-01 08:40 - 2009-11-08 10:55 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2014-02-01 08:40 - 2009-11-08 10:55 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2014-02-01 08:40 - 2009-11-08 10:55 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2014-02-01 08:40 - 2009-11-08 10:55 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2014-02-01 08:35 - 2014-02-07 07:13 - 00000386 _____ () C:\Windows\Tasks\AVG_SYS_TASK_DELETE.job
2014-02-01 08:35 - 2014-02-07 07:12 - 00000358 _____ () C:\Windows\Tasks\AVG_SYS_TASK.job
2014-02-01 08:34 - 2014-02-01 08:34 - 00000000 ____D () C:\ProgramData\AVG 0214c Campaign
2014-02-01 01:21 - 2014-02-05 06:35 - 00000949 _____ () C:\Users\Mayra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-31 19:03 - 2009-04-11 00:32 - 00438744 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 02134528 _____ (Microsoft Corporation) C:\Windows\system32\FunctionDiscoveryFolder.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 01576960 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 01480704 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 01081344 _____ (Microsoft Corporation) C:\Windows\system32\SLCExt.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00968192 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz2.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00928768 _____ (Microsoft Corporation) C:\Windows\system32\scavenge.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\WscEapPr.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2014-01-31 19:03 - 2009-04-11 00:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\EhStorShell.dll
2014-01-31 19:03 - 2009-04-11 00:28 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2014-01-31 19:03 - 2009-04-11 00:27 - 03408896 _____ (Microsoft Corporation) C:\Windows\system32\SLsvc.exe
2014-01-31 19:03 - 2009-04-11 00:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2014-01-31 19:03 - 2009-04-10 23:03 - 12240896 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2014-01-31 19:03 - 2009-04-10 23:03 - 02644480 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2014-01-31 19:03 - 2009-04-10 22:42 - 00561152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-01-31 19:03 - 2009-04-10 20:52 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys
2014-01-31 19:03 - 2009-02-18 12:39 - 00779136 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-01-31 19:03 - 2009-02-18 12:38 - 00619864 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-01-31 19:02 - 2009-04-11 00:33 - 00986600 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-01-31 19:02 - 2009-04-11 00:28 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2014-01-31 19:02 - 2009-04-11 00:28 - 02012160 _____ (Microsoft Corporation) C:\Windows\system32\milcore.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 01589248 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 01459200 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 01112064 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 01078784 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00736256 _____ (Microsoft Corporation) C:\Windows\system32\ntmsmgr.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-01-31 19:02 - 2009-04-11 00:28 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2VDEC.DLL
2014-01-31 19:02 - 2009-04-11 00:28 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00454144 _____ (Microsoft) C:\Windows\system32\IasMigPlugin.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\msvcp60.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\SLC.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\sperror.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2014-01-31 19:02 - 2009-04-11 00:28 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2014-01-31 19:02 - 2009-04-11 00:27 - 02092544 _____ (Microsoft Corporation) C:\Windows\system32\dfsr.exe
2014-01-31 19:02 - 2009-04-11 00:27 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2014-01-31 19:02 - 2009-04-11 00:27 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2014-01-31 19:02 - 2009-04-11 00:27 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2014-01-31 19:02 - 2009-04-11 00:27 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\IasMigReader.exe
2014-01-31 19:02 - 2009-04-11 00:27 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-01-31 19:02 - 2009-04-11 00:27 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-01-31 19:02 - 2009-04-11 00:27 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-01-31 19:02 - 2009-04-11 00:22 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2014-01-31 19:02 - 2009-03-06 19:11 - 00130008 _____ () C:\Windows\system32\systemsf.ebd
2014-01-31 19:02 - 2009-02-19 18:20 - 00009239 _____ () C:\Windows\system32\spcinstrumentation.man
2014-01-31 19:02 - 2009-02-18 12:38 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-01-31 19:01 - 2009-04-11 00:33 - 00926184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-01-31 19:01 - 2009-04-11 00:33 - 00614376 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-01-31 19:01 - 2009-04-11 00:32 - 00223208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-31 19:01 - 2009-04-11 00:28 - 03174400 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 02167808 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01985024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01856512 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01788416 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\apds.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01591296 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01324032 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 01055232 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-01-31 19:01 - 2009-04-11 00:28 - 01053696 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00807424 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00582144 _____ (Microsoft Corporation) C:\Windows\system32\SLCommDlg.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00550400 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00385536 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-01-31 19:01 - 2009-04-11 00:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\SLUI.exe
2014-01-31 19:01 - 2009-04-11 00:28 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2014-01-31 19:01 - 2009-04-11 00:28 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2014-01-31 19:01 - 2009-04-11 00:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\nlhtml.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00117248 _____ () C:\Windows\system32\EhStorAuthn.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\propdefs.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\slwmi.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\xmlfilter.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\EhStorPwdMgr.dll
2014-01-31 19:01 - 2009-04-11 00:28 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2014-01-31 19:01 - 2009-04-11 00:27 - 02926592 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-01-31 19:01 - 2009-04-11 00:27 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2014-01-31 19:01 - 2009-04-11 00:27 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2014-01-31 19:01 - 2009-04-11 00:27 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-01-31 19:01 - 2009-04-11 00:27 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\compcln.exe
2014-01-31 19:01 - 2009-04-10 22:48 - 00344698 _____ () C:\Windows\system32\eaphost.tmf
2014-01-31 19:01 - 2009-04-10 22:43 - 00442788 _____ () C:\Windows\system32\dot3.tmf
2014-01-31 19:01 - 2009-04-10 22:43 - 00392170 _____ () C:\Windows\system32\onex.tmf
2014-01-31 19:01 - 2009-04-10 22:42 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-01-31 19:01 - 2009-04-10 22:14 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-01-31 19:01 - 2009-04-10 22:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-01-31 19:01 - 2009-04-10 19:59 - 00107612 _____ () C:\Windows\system32\StructuredQuerySchema.bin
2014-01-31 19:01 - 2009-04-10 19:54 - 03662128 _____ () C:\Windows\system32\locale.nls
2014-01-31 19:00 - 2009-04-11 00:32 - 00527848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00265688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00245736 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00180712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00149480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00125928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00122344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00109032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00053736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00053224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00050664 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2014-01-31 19:00 - 2009-04-11 00:32 - 00048104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00035304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2014-01-31 19:00 - 2009-04-11 00:32 - 00017896 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 02205184 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 01823744 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\chsbrkr.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 01533440 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 01502720 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 01382912 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2014-01-31 19:00 - 2009-04-11 00:28 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\wercon.exe
2014-01-31 19:00 - 2009-04-11 00:28 - 01107968 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00368640 _____ () C:\Windows\system32\msjetoledb40.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2014-01-31 19:00 - 2009-04-11 00:28 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-01-31 19:00 - 2009-04-11 00:28 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-01-31 19:00 - 2009-04-11 00:28 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\fundisc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\SLUINotify.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingProxy.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msstrc.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\rtffilt.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\msscb.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\hidserv.dll
2014-01-31 19:00 - 2009-04-11 00:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2014-01-31 19:00 - 2009-04-11 00:27 - 01122304 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2014-01-31 19:00 - 2009-04-11 00:27 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2014-01-31 19:00 - 2009-04-11 00:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2014-01-31 19:00 - 2009-04-11 00:27 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2014-01-31 19:00 - 2009-04-11 00:27 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-01-31 19:00 - 2009-04-11 00:27 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-01-31 19:00 - 2009-04-11 00:27 - 00241128 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-01-31 19:00 - 2009-04-11 00:27 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2014-01-31 19:00 - 2009-04-11 00:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2014-01-31 19:00 - 2009-04-11 00:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2014-01-31 19:00 - 2009-04-11 00:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2014-01-31 19:00 - 2009-04-11 00:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2014-01-31 19:00 - 2009-04-11 00:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2014-01-31 19:00 - 2009-04-11 00:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2014-01-31 19:00 - 2009-04-11 00:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2014-01-31 19:00 - 2009-04-10 22:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-01-31 19:00 - 2009-03-29 22:42 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-01-31 19:00 - 2009-02-18 12:39 - 00092918 _____ () C:\Windows\system32\slmgr.vbs
2014-01-31 19:00 - 2009-02-18 12:39 - 00035680 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-01-31 19:00 - 2009-02-18 12:38 - 00035168 _____ (Microsoft Corporation) C:\Windows\system32\infocardcpl.cpl
2014-01-31 19:00 - 2009-02-18 12:38 - 00009048 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-01-31 18:59 - 2009-04-11 00:33 - 00292840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2014-01-31 18:59 - 2009-04-11 00:32 - 00190424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-01-31 18:59 - 2009-04-11 00:32 - 00161752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2014-01-31 18:59 - 2009-04-11 00:32 - 00141288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2014-01-31 18:59 - 2009-04-11 00:32 - 00099816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-01-31 18:59 - 2009-04-11 00:32 - 00043496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2014-01-31 18:59 - 2009-04-11 00:32 - 00027624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys
2014-01-31 18:59 - 2009-04-11 00:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-01-31 18:59 - 2009-04-11 00:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2014-01-31 18:59 - 2009-04-11 00:32 - 00017384 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-01-31 18:59 - 2009-04-11 00:32 - 00014312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2014-01-31 18:59 - 2009-04-11 00:28 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2014-01-31 18:59 - 2009-04-11 00:28 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 01342464 _____ (Microsoft Corporation) C:\Windows\system32\brcpl.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2014-01-31 18:59 - 2009-04-11 00:28 - 00759296 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2014-01-31 18:59 - 2009-04-11 00:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00507904 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\RelMon.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\wow32.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2014-01-31 18:59 - 2009-04-11 00:28 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\wscntfy.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-01-31 18:59 - 2009-04-11 00:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-01-31 18:59 - 2009-04-11 00:28 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\pnpsetup.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2014-01-31 18:59 - 2009-04-11 00:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\iashlpr.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\wsepno.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2014-01-31 18:59 - 2009-04-11 00:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\spcmsg.dll
2014-01-31 18:59 - 2009-04-11 00:27 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2014-01-31 18:59 - 2009-04-11 00:27 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-01-31 18:59 - 2009-04-11 00:27 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2014-01-31 18:59 - 2009-04-11 00:27 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-01-31 18:59 - 2009-04-11 00:27 - 00130024 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2014-01-31 18:59 - 2009-04-11 00:27 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2014-01-31 18:59 - 2009-04-11 00:27 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-01-31 18:59 - 2009-04-11 00:27 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2014-01-31 18:59 - 2009-04-11 00:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2014-01-31 18:59 - 2009-04-11 00:22 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2014-01-31 18:59 - 2009-04-10 22:45 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2014-01-31 18:58 - 2009-04-11 00:28 - 03072000 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 02515968 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 02225664 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01645568 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01580544 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01224192 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00777216 _____ (Microsoft Corporation) C:\Windows\system32\slcc.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00657408 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2014-01-31 18:58 - 2009-04-11 00:28 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\pnpui.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00532992 _____ (Microsoft Corporation) C:\Windows\system32\wpcao.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\cmdial32.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-01-31 18:58 - 2009-04-11 00:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\ntmarta.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mstlsapi.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\TSTheme.exe
2014-01-31 18:58 - 2009-04-11 00:28 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\whealogr.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\uxsms.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2014-01-31 18:58 - 2009-04-11 00:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2014-01-31 18:58 - 2009-04-11 00:27 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2014-01-31 18:58 - 2009-04-11 00:27 - 01102848 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2014-01-31 18:58 - 2009-04-11 00:27 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2014-01-31 18:58 - 2009-04-11 00:27 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2014-01-31 18:58 - 2009-04-11 00:27 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\conime.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\cmmon32.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2014-01-31 18:58 - 2009-04-11 00:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEject.exe
2014-01-31 18:58 - 2009-04-11 00:23 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2014-01-31 18:58 - 2009-04-10 22:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2014-01-31 18:58 - 2009-04-10 22:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2014-01-31 18:58 - 2009-04-10 22:38 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-01-31 18:58 - 2009-04-10 22:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2014-01-31 18:58 - 2009-04-10 22:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2014-01-31 18:58 - 2009-04-10 22:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2014-01-31 18:58 - 2009-03-29 22:42 - 00155456 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-01-31 18:57 - 2014-01-31 18:57 - 00000000 ____D () C:\ProgramData\WindowsSearch
2014-01-31 18:57 - 2009-04-11 00:28 - 06103040 _____ (Microsoft Corporation) C:\Windows\system32\chtbrkr.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 02153472 _____ (Microsoft Corporation) C:\Windows\system32\oobefldr.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00542720 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\thawbrkr.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\modemui.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\SLLUA.exe
2014-01-31 18:57 - 2009-04-11 00:28 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\rasmontr.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\dsprop.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\softkbd.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00083456 _____ (Microsoft) C:\Windows\system32\SMBHelperClass.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\wlgpclnt.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Storprop.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\l2nacp.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\slcinst.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\networkitemfactory.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\msimtf.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\ifmon.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\version.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\MsCtfMonitor.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2014-01-31 18:57 - 2009-04-11 00:28 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\CHxReadingStringIME.dll
2014-01-31 18:57 - 2009-04-11 00:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2014-01-31 18:57 - 2009-04-11 00:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fc.exe
2014-01-31 18:57 - 2009-04-11 00:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2014-01-31 18:57 - 2009-04-11 00:23 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2014-01-31 18:57 - 2009-04-10 22:46 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2014-01-31 18:57 - 2009-04-10 22:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2014-01-31 18:57 - 2009-04-10 22:45 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2014-01-31 18:57 - 2009-04-10 22:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-01-31 18:57 - 2009-04-10 22:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2014-01-31 18:57 - 2009-04-10 22:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys
2014-01-31 18:57 - 2009-04-10 22:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-01-31 18:57 - 2009-04-10 22:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2014-01-31 18:57 - 2009-04-10 22:22 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys
2014-01-31 18:57 - 2009-04-10 22:13 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2014-01-31 18:57 - 2009-04-10 22:13 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2014-01-31 18:56 - 2009-04-11 00:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssoc.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\bitsigd.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\winrnr.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\NcdProp.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\vdmdbg.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\midimap.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2014-01-31 18:56 - 2009-04-11 00:28 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-01-31 18:56 - 2009-04-11 00:27 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\csrstub.exe
2014-01-31 18:56 - 2009-04-11 00:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cbsra.exe
2014-01-31 18:56 - 2009-04-11 00:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.drv
2014-01-31 18:56 - 2009-04-11 00:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2014-01-31 18:56 - 2009-04-11 00:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\f3ahvoas.dll
2014-01-31 18:56 - 2009-04-10 23:42 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2014-01-31 18:56 - 2009-04-10 22:46 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys
2014-01-31 18:56 - 2009-04-10 22:46 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-01-31 18:56 - 2009-04-10 22:43 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-01-31 18:56 - 2009-04-10 22:42 - 00052992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2014-01-31 18:56 - 2009-04-10 22:39 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2014-01-31 18:56 - 2009-04-10 22:39 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-01-31 18:56 - 2009-04-10 22:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2014-01-31 18:56 - 2009-04-10 22:27 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2014-01-31 18:56 - 2009-04-10 22:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys
2014-01-31 18:56 - 2009-02-19 18:20 - 00009212 _____ () C:\Windows\system32\RacUR.xml
2014-01-31 18:56 - 2009-02-18 12:43 - 00000153 _____ () C:\Windows\system32\RacUREx.xml
2014-01-31 18:53 - 2009-04-11 00:28 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2014-01-31 18:52 - 2009-04-11 00:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2014-01-31 18:52 - 2009-04-11 00:27 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2014-01-31 18:51 - 2009-04-11 00:28 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2014-01-31 18:33 - 2014-01-31 18:33 - 00000000 ____D () C:\Users\liz\AppData\Roaming\AVG2014
2014-01-31 18:32 - 2014-01-31 18:32 - 00000000 ____D () C:\Users\liz\AppData\Local\Avg2014
2014-01-31 18:29 - 2014-01-31 18:29 - 00000949 _____ () C:\Users\liz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 23:03 - 2014-01-30 23:30 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-30 22:47 - 2014-01-30 22:47 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\AVG2014
2014-01-30 22:45 - 2014-01-30 22:45 - 00000842 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-01-30 22:45 - 2014-01-30 22:45 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\TuneUp Software
2014-01-30 22:43 - 2014-01-30 22:46 - 00000000 ____D () C:\ProgramData\AVG2014
2014-01-30 22:43 - 2014-01-30 22:43 - 00000000 ____D () C:\$AVG
2014-01-30 22:40 - 2014-01-30 22:40 - 00000000 ____D () C:\Program Files\AVG
2014-01-30 22:35 - 2014-02-07 07:17 - 00000000 ____D () C:\ProgramData\MFAData
2014-01-30 22:35 - 2014-01-30 23:12 - 00000000 ____D () C:\Users\Mayra\AppData\Local\Avg2014
2014-01-30 22:35 - 2014-01-30 22:35 - 00000000 ____D () C:\Users\Mayra\AppData\Local\MFAData
2014-01-30 22:33 - 2014-01-30 22:34 - 04436944 _____ (AVG Technologies) C:\Users\Mayra\Downloads\avg_free_stb_all_2014_4259_cnet.exe
2014-01-30 22:01 - 2014-01-30 22:02 - 00000000 ____D () C:\Program Files\GUMAF41.tmp
2014-01-30 22:01 - 2014-01-30 22:01 - 49940480 _____ () C:\Program Files\GUTAF61.tmp
2014-01-30 21:55 - 2014-02-04 04:13 - 00001971 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 21:54 - 2014-02-07 08:05 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 21:54 - 2014-02-07 07:28 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-30 21:53 - 2014-02-07 07:52 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-30 21:53 - 2014-02-06 08:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-30 21:53 - 2014-02-06 08:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-01-30 21:29 - 2014-01-30 21:29 - 00001057 _____ () C:\Users\Mayra\Desktop\Revo Uninstaller.lnk
2014-01-30 21:29 - 2014-01-30 21:29 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-01-30 21:01 - 2014-01-30 21:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-30 21:00 - 2014-01-30 21:00 - 00000000 ____D () C:\ProgramData\Sun
2014-01-30 21:00 - 2014-01-30 20:57 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-30 20:59 - 2014-01-30 20:57 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-30 20:59 - 2014-01-30 20:57 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-30 20:59 - 2014-01-30 20:57 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-30 06:52 - 2014-01-30 07:18 - 00000000 ____D () C:\Users\Mayra\Doctor Web
2014-01-30 06:52 - 2014-01-30 06:53 - 00000000 ____D () C:\ProgramData\Doctor Web
2014-01-30 06:35 - 2014-02-06 08:34 - 00000000 ____D () C:\AdwCleaner
2014-01-30 06:28 - 2014-01-30 06:28 - 00000000 ____D () C:\Windows\ERUNT
2014-01-30 06:23 - 2014-01-30 06:23 - 01037068 _____ (Thisisu) C:\Users\Mayra\Desktop\JRT.exe
2014-01-29 23:31 - 2014-01-29 23:31 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\SUPERAntiSpyware.com
2014-01-29 23:31 - 2014-01-29 23:31 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-01-29 21:49 - 2014-01-29 21:49 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\Malwarebytes
2014-01-29 19:41 - 2014-01-29 19:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-29 19:03 - 2014-01-29 19:03 - 00019788 _____ () C:\Windows\system32\HitmanPro_20140129_1903.log
2014-01-29 18:44 - 2014-01-29 18:44 - 00135464 _____ (SurfRight B.V.) C:\Windows\system32\LnkProtect.dll
2014-01-29 18:43 - 2014-01-29 19:03 - 00000000 ____D () C:\ProgramData\HitmanPro
 
==================== One Month Modified Files and Folders =======
 
2014-02-07 08:05 - 2014-02-07 08:03 - 00015793 _____ () C:\Users\Mayra\Desktop\FRST.txt
2014-02-07 08:05 - 2014-01-30 21:54 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-07 08:03 - 2014-02-07 08:03 - 00000000 ____D () C:\FRST
2014-02-07 08:00 - 2014-02-07 08:00 - 01136640 _____ (Farbar) C:\Users\Mayra\Desktop\FRST.exe
2014-02-07 08:00 - 2014-02-07 08:00 - 00602112 _____ (OldTimer Tools) C:\Users\Mayra\Desktop\OTL.exe
2014-02-07 07:52 - 2014-01-30 21:53 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-07 07:51 - 2014-02-01 11:22 - 01749968 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 07:28 - 2014-01-30 21:54 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-07 07:17 - 2014-01-30 22:35 - 00000000 ____D () C:\ProgramData\MFAData
2014-02-07 07:13 - 2014-02-01 08:35 - 00000386 _____ () C:\Windows\Tasks\AVG_SYS_TASK_DELETE.job
2014-02-07 07:12 - 2014-02-07 07:12 - 00000534 _____ () C:\Windows\PFRO.log
2014-02-07 07:12 - 2014-02-01 08:35 - 00000358 _____ () C:\Windows\Tasks\AVG_SYS_TASK.job
2014-02-07 07:12 - 2006-11-02 06:58 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-07 07:12 - 2006-11-02 06:45 - 00003296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-07 07:12 - 2006-11-02 06:45 - 00003296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-06 21:52 - 2006-11-02 06:58 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-06 19:08 - 2014-02-06 19:08 - 00020713 _____ () C:\ComboFix.txt
2014-02-06 19:08 - 2014-02-06 18:31 - 00000000 ____D () C:\Qoobox
2014-02-06 19:08 - 2006-11-02 05:18 - 00000000 __RHD () C:\Users\Default
2014-02-06 19:08 - 2006-11-02 05:18 - 00000000 ___RD () C:\Users\Public
2014-02-06 19:05 - 2014-02-06 18:30 - 00000000 ____D () C:\Windows\erdnt
2014-02-06 19:02 - 2006-11-02 04:23 - 00000215 _____ () C:\Windows\system.ini
2014-02-06 18:29 - 2014-02-06 18:29 - 05180173 ____R (Swearware) C:\Users\Mayra\Desktop\ComboFix.exe
2014-02-06 18:12 - 2014-02-06 18:12 - 00001229 _____ () C:\Users\Mayra\Desktop\AdwCleaner[R2].txt
2014-02-06 08:54 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\rescache
2014-02-06 08:50 - 2014-01-30 21:53 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-06 08:50 - 2014-01-30 21:53 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-06 08:34 - 2014-01-30 06:35 - 00000000 ____D () C:\AdwCleaner
2014-02-06 08:15 - 2014-02-06 08:15 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Mayra\Desktop\tdsskiller.exe
2014-02-06 08:14 - 2014-02-06 08:14 - 01166132 _____ () C:\Users\Mayra\Desktop\AdwCleaner.exe
2014-02-05 08:11 - 2014-02-05 08:12 - 00031002 _____ () C:\Users\Mayra\Desktop\dds.txt
2014-02-05 08:11 - 2014-02-05 08:12 - 00007443 _____ () C:\Users\Mayra\Desktop\attach.txt
2014-02-05 07:31 - 2014-02-05 07:31 - 00688992 ____R (Swearware) C:\Users\Mayra\Desktop\dds.com
2014-02-05 07:28 - 2014-02-05 07:28 - 00688992 _____ (Swearware) C:\Users\Mayra\Downloads\dds.com
2014-02-05 07:28 - 2014-02-05 07:28 - 00688992 _____ (Swearware) C:\Users\Mayra\Downloads\dds (1).com
2014-02-05 06:35 - 2014-02-01 01:21 - 00000949 _____ () C:\Users\Mayra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-05 00:08 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-04 23:36 - 2006-11-02 04:33 - 00709582 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-04 23:31 - 2006-11-17 12:22 - 00000000 ____D () C:\Windows\Panther
2014-02-04 23:27 - 2006-11-02 06:44 - 00368200 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-04 23:20 - 2014-02-04 23:20 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ___RD () C:\Windows\Offline Web Pages
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\th-TH
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\it-IT
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\he-IL
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\et-EE
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\el-GR
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-02-04 23:20 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-02-04 23:19 - 2006-11-02 06:35 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-02-04 23:19 - 2006-11-02 05:18 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-04 23:13 - 2014-02-04 23:01 - 00024801 _____ () C:\Windows\setupact.log
2014-02-04 23:03 - 2014-02-04 23:03 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2014-02-04 23:01 - 2014-02-04 23:01 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2014-02-04 23:01 - 2014-02-04 23:01 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-04 22:54 - 2014-02-03 07:29 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-04 20:05 - 2014-02-04 19:48 - 00004020 _____ () C:\Windows\IE9_main.log
2014-02-04 20:04 - 2006-11-02 00:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2014-02-04 20:04 - 2006-11-02 00:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2014-02-04 20:03 - 2014-02-04 20:03 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-04 20:03 - 2014-02-04 20:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-04 20:03 - 2014-02-04 20:03 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-04 20:03 - 2014-02-04 20:03 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-04 20:03 - 2014-02-04 20:03 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-04 20:03 - 2014-02-04 20:03 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-04 20:03 - 2014-02-04 20:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-04 20:03 - 2014-02-04 20:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-04 20:03 - 2014-02-04 20:03 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-04 20:02 - 2014-02-04 20:02 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-04 20:02 - 2014-02-04 20:02 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-04 20:02 - 2014-02-04 20:02 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-04 19:58 - 2014-02-04 19:58 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-02-04 19:58 - 2014-02-04 19:58 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2014-02-04 19:57 - 2014-02-04 19:57 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-02-04 19:57 - 2014-02-04 19:57 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-02-04 19:57 - 2014-02-04 19:57 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2014-02-04 19:54 - 2014-02-04 19:54 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2014-02-04 19:54 - 2014-02-04 19:54 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-04 19:54 - 2014-02-04 19:53 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-04 14:27 - 2007-03-15 16:50 - 00000000 ____D () C:\Users\Mayra\Shared
2014-02-04 04:13 - 2014-01-30 21:55 - 00001971 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-03 23:49 - 2007-03-14 22:31 - 00000915 _____ () C:\Users\Mayra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2014-02-03 23:23 - 2006-11-02 06:35 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-03 23:23 - 2006-11-02 06:35 - 00000000 ____D () C:\Program Files\Windows Collaboration
2014-02-03 23:23 - 2006-11-02 06:35 - 00000000 ____D () C:\Program Files\Windows Calendar
2014-02-03 23:23 - 2006-11-02 06:35 - 00000000 ____D () C:\Program Files\Movie Maker
2014-02-03 23:22 - 2014-02-03 23:10 - 00000000 ____D () C:\Windows\system32\ca-ES
2014-02-03 23:22 - 2006-11-02 06:35 - 00000000 ____D () C:\Program Files\Windows Photo Gallery
2014-02-03 23:22 - 2006-11-02 06:35 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-03 23:22 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\IME
2014-02-03 23:21 - 2014-02-03 23:10 - 00000000 ____D () C:\Windows\system32\vi-VN
2014-02-03 23:21 - 2014-02-03 23:10 - 00000000 ____D () C:\Windows\system32\eu-ES
2014-02-03 23:21 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\SLUI
2014-02-03 23:21 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2014-02-03 23:02 - 2014-02-03 23:02 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2014-02-03 18:02 - 2014-02-03 18:02 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-03 08:15 - 2014-02-03 08:14 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Mayra\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-03 07:36 - 2007-03-14 22:30 - 00000000 ____D () C:\Users\Mayra
2014-02-03 07:26 - 2006-12-16 15:42 - 00000000 ____D () C:\Program Files\CONEXANT
2014-02-02 08:57 - 2006-12-16 15:49 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-01 17:26 - 2014-02-01 17:26 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-02-01 13:03 - 2014-02-01 13:03 - 00000640 _____ () C:\Users\Mayra\Desktop\JRT.txt
2014-02-01 12:28 - 2014-02-01 12:28 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_00_00.Wdf
2014-02-01 12:04 - 2014-02-01 12:04 - 00070268 _____ () C:\Users\Mayra\Documents\cc_20140201_120342.reg
2014-02-01 11:57 - 2007-03-16 11:46 - 00000000 ____D () C:\Windows\pss
2014-02-01 11:09 - 2014-02-01 10:45 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-01 10:42 - 2007-04-19 13:40 - 00000000 ____D () C:\Windows\Minidump
2014-02-01 10:37 - 2014-02-01 10:37 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-01 09:55 - 2008-07-05 20:21 - 00000000 ____D () C:\Users\liz\AppData\Local\Google
2014-02-01 08:34 - 2014-02-01 08:34 - 00000000 ____D () C:\ProgramData\AVG 0214c Campaign
2014-02-01 03:13 - 2008-06-07 18:00 - 00000000 ____D () C:\Users\liz
2014-02-01 03:13 - 2006-11-02 04:22 - 36175872 _____ () C:\Windows\system32\config\software_previous
2014-02-01 03:13 - 2006-11-02 04:22 - 18874368 _____ () C:\Windows\system32\config\system_previous
2014-02-01 03:12 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\spool
2014-02-01 03:12 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\Msdtc
2014-02-01 03:11 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\registration
2014-02-01 03:07 - 2006-11-02 04:22 - 37486592 _____ () C:\Windows\system32\config\components_previous
2014-02-01 03:07 - 2006-11-02 04:22 - 00262144 _____ () C:\Windows\system32\config\sam_previous
2014-02-01 01:05 - 2006-11-02 04:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
2014-02-01 01:05 - 2006-11-02 04:22 - 00262144 _____ () C:\Windows\system32\config\default_previous
2014-01-31 18:57 - 2014-01-31 18:57 - 00000000 ____D () C:\ProgramData\WindowsSearch
2014-01-31 18:33 - 2014-01-31 18:33 - 00000000 ____D () C:\Users\liz\AppData\Roaming\AVG2014
2014-01-31 18:32 - 2014-01-31 18:32 - 00000000 ____D () C:\Users\liz\AppData\Local\Avg2014
2014-01-31 18:29 - 2014-01-31 18:29 - 00000949 _____ () C:\Users\liz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-31 18:28 - 2008-06-07 18:01 - 00000915 _____ () C:\Users\liz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2014-01-31 09:42 - 2006-11-02 06:48 - 00000749 ___RH () C:\Windows\WindowsShell.Manifest
2014-01-31 09:38 - 2006-11-02 05:18 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-31 09:38 - 2006-11-02 05:18 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-31 09:38 - 2006-11-02 05:18 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-31 09:38 - 2006-11-02 05:18 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-31 09:13 - 2006-11-02 06:35 - 00000000 ____D () C:\Windows\DigitalLocker
2014-01-31 09:13 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\com
2014-01-31 09:13 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\MSAgent
2014-01-31 09:13 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\L2Schemas
2014-01-31 09:12 - 2006-11-02 05:18 - 00000000 ____D () C:\Windows\system32\ias
2014-01-31 07:52 - 2006-11-02 04:32 - 00101888 _____ (Infineon Technologies AG) C:\Windows\system32\ifxcardm.dll
2014-01-31 07:51 - 2006-11-02 04:32 - 00082432 _____ (Gemalto, Inc.) C:\Windows\system32\axaltocm.dll
2014-01-31 06:39 - 2006-12-16 15:47 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-01-31 00:08 - 2006-12-16 15:27 - 00000000 ____D () C:\Windows\SMINST
2014-01-30 23:30 - 2014-01-30 23:03 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-30 23:12 - 2014-01-30 22:35 - 00000000 ____D () C:\Users\Mayra\AppData\Local\Avg2014
2014-01-30 22:47 - 2014-01-30 22:47 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\AVG2014
2014-01-30 22:46 - 2014-01-30 22:43 - 00000000 ____D () C:\ProgramData\AVG2014
2014-01-30 22:45 - 2014-01-30 22:45 - 00000842 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-01-30 22:45 - 2014-01-30 22:45 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\TuneUp Software
2014-01-30 22:43 - 2014-01-30 22:43 - 00000000 ____D () C:\$AVG
2014-01-30 22:40 - 2014-01-30 22:40 - 00000000 ____D () C:\Program Files\AVG
2014-01-30 22:35 - 2014-01-30 22:35 - 00000000 ____D () C:\Users\Mayra\AppData\Local\MFAData
2014-01-30 22:34 - 2014-01-30 22:33 - 04436944 _____ (AVG Technologies) C:\Users\Mayra\Downloads\avg_free_stb_all_2014_4259_cnet.exe
2014-01-30 22:02 - 2014-01-30 22:01 - 00000000 ____D () C:\Program Files\GUMAF41.tmp
2014-01-30 22:01 - 2014-01-30 22:01 - 49940480 _____ () C:\Program Files\GUTAF61.tmp
2014-01-30 21:58 - 2007-04-01 15:37 - 00000000 ____D () C:\Users\Mayra\AppData\Local\Adobe
2014-01-30 21:58 - 2007-03-14 22:35 - 00000000 ____D () C:\Users\Mayra\AppData\Local\Google
2014-01-30 21:57 - 2006-12-16 15:51 - 00000000 ____D () C:\Program Files\Google
2014-01-30 21:51 - 2008-01-21 17:40 - 00000000 ____D () C:\Users\Mayra\Documents\My Received Files
2014-01-30 21:41 - 2006-12-16 15:52 - 00000000 ____D () C:\Program Files\Java
2014-01-30 21:29 - 2014-01-30 21:29 - 00001057 _____ () C:\Users\Mayra\Desktop\Revo Uninstaller.lnk
2014-01-30 21:29 - 2014-01-30 21:29 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-01-30 21:01 - 2014-01-30 21:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-30 21:00 - 2014-01-30 21:00 - 00000000 ____D () C:\ProgramData\Sun
2014-01-30 21:00 - 2006-12-16 15:52 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-01-30 20:57 - 2014-01-30 21:00 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-30 20:57 - 2014-01-30 20:59 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-30 20:57 - 2014-01-30 20:59 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-30 20:57 - 2014-01-30 20:59 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-30 07:18 - 2014-01-30 06:52 - 00000000 ____D () C:\Users\Mayra\Doctor Web
2014-01-30 06:53 - 2014-01-30 06:52 - 00000000 ____D () C:\ProgramData\Doctor Web
2014-01-30 06:28 - 2014-01-30 06:28 - 00000000 ____D () C:\Windows\ERUNT
2014-01-30 06:23 - 2014-01-30 06:23 - 01037068 _____ (Thisisu) C:\Users\Mayra\Desktop\JRT.exe
2014-01-29 23:31 - 2014-01-29 23:31 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\SUPERAntiSpyware.com
2014-01-29 23:31 - 2014-01-29 23:31 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-01-29 21:49 - 2014-01-29 21:49 - 00000000 ____D () C:\Users\Mayra\AppData\Roaming\Malwarebytes
2014-01-29 21:24 - 2006-12-16 15:47 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-29 19:41 - 2014-01-29 19:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-29 19:03 - 2014-01-29 19:03 - 00019788 _____ () C:\Windows\system32\HitmanPro_20140129_1903.log
2014-01-29 19:03 - 2014-01-29 18:43 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-01-29 18:44 - 2014-01-29 18:44 - 00135464 _____ (SurfRight B.V.) C:\Windows\system32\LnkProtect.dll
2014-01-29 18:21 - 2006-12-16 15:52 - 00000000 ____D () C:\ProgramData\Google
2014-01-16 09:59 - 2009-10-03 12:25 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
 
==================== Bamital & volsnap Check =================
 
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-02-07 07:53
 
==================== End Of Log ============================
 
 
 
 

Attached Files



#15 KeithBam

KeithBam
  • Topic Starter

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:02:22 PM

Posted 07 February 2014 - 09:39 AM

OTL logfile created on: 2/7/2014 8:12:40 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Mayra\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
444.84 Mb Total Physical Memory | 65.36 Mb Available Physical Memory | 14.69% Memory free
1.46 Gb Paging File | 0.69 Gb Available in Paging File | 47.38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 140.54 Gb Total Space | 87.46 Gb Free Space | 62.23% Space Free | Partition Type: NTFS
Drive D: | 8.51 Gb Total Space | 3.65 Gb Free Space | 42.84% Space Free | Partition Type: NTFS
 
Computer Name: MAYRA-PC | User Name: Mayra | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Mayra\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\ProgramData\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe ()
PRC - C:\Program Files\AVG\AVG2014\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgemcx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2014\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\SymcPCCULaunchSvc.exe (Symantec Corporation)
PRC - C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS (New Boundary Technologies, Inc.)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe (AOL LLC)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Windows\System32\atitmmxx.dll ()
MOD - C:\Program Files\Roxio\Easy Media Creator 8\Virtual Drive\DC_ShellExt.dll ()
 
 
========== Services (SafeList) ==========
 
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
SRV - (avgwd) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (Norton PC Checkup Application Launcher) -- C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\SymcPCCULaunchSvc.exe (Symantec Corporation)
SRV - (PCCUJobMgr) -- C:\Program Files\Norton PC Checkup\Norton PC Checkup\Engine\2.0.2.506\ccSvcHst.exe (Symantec Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (PrismXL) -- C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS (New Boundary Technologies, Inc.)
SRV - (GoogleDesktopManager) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe (Google)
SRV - (AOL ACS) -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe (AOL LLC)
 
 
========== Driver Services (SafeList) ==========
 
DRV - (SASKUTIL) -- C:\Users\Mayra\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS File not found
DRV - (SASDIFSV) -- C:\Users\Mayra\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS File not found
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (catchme) -- C:\Users\Mayra\AppData\Local\Temp\catchme.sys File not found
DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found
DRV - (Avgdiskx) -- C:\Windows\System32\drivers\avgdiskx.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSDriver) -- C:\Windows\System32\drivers\avgidsdriverx.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgldx86) -- C:\Windows\System32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avglogx) -- C:\Windows\System32\drivers\avglogx.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSHX) -- C:\Windows\System32\drivers\avgidshx.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgmfx86) -- C:\Windows\System32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSShim) -- C:\Windows\System32\drivers\avgidsshimx.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgrkx86) -- C:\Windows\System32\drivers\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgtdix) -- C:\Windows\System32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (athur) -- C:\Windows\System32\drivers\athur.sys (Atheros Communications, Inc.)
DRV - (MRESP50) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (MREMP50) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation                           )
DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.)
DRV - (HSXHWBS2) -- C:\Windows\System32\drivers\HSXHWBS2.sys (Conexant Systems, Inc.)
DRV - (R300) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (NETw2v32) -- C:\Windows\System32\drivers\NETw2v32.sys (Intel® Corporation)
DRV - (wanatw) -- C:\Windows\System32\drivers\wanatw4.sys (America Online, Inc.)
DRV - (Cdralw2k) -- C:\Windows\System32\drivers\cdralw2k.sys (Sonic Solutions)
DRV - (Cdr4_xp) -- C:\Windows\System32\drivers\cdr4_xp.sys (Sonic Solutions)
DRV - (sscdbus) -- C:\Windows\System32\drivers\sscdbus.sys (MCCI)
DRV - (USBModem) -- C:\Windows\System32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (UsbDiag) -- C:\Windows\System32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\Windows\System32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (MRENDIS5) -- C:\Program Files\Common Files\Motive\MRENDIS5.sys (Motive, Inc.)
DRV - (MREMPR5) -- C:\Program Files\Common Files\Motive\MREMPR5.sys (Motive, Inc.)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.gateway.com/g/startpage.html?Ch=Retail&Br=EM&Loc=ENG_US&Sys=DTP&M=T5082
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page = http://www.Google.com/
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\..\SearchScopes\{5696fcb1-3919-4f82-a64a-3ac2166d102e}: "URL" = http://www.searchsave.com/index.php?req=search&term={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
========== FireFox ==========
 
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll File not found
FF - HKCU\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.4.21: C:\Users\Mayra\AppData\Local\Yahoo!\BrowserPlus\2.4.21\Plugins\npybrowserplus_2.4.21.dll (Yahoo! Inc.)
 
 
[2008/06/18 17:03:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Mayra\AppData\Roaming\Mozilla\Firefox\Profiles\y9e4ph4m.default\extensions
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\INSPECTOR@MOZILLA.ORG
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\TALKBACK@MOZILLA.ORG
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.2 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Motive Plugin (Enabled) = C:\Program Files\Common Files\Motive\npMotive.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll
CHR - plugin: Java Deployment Toolkit 7.0.510.13 (Enabled) = C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java™ Platform SE 7 U51 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Yahoo! BrowserPlus Plugin (Enabled) = C:\Users\Mayra\AppData\Local\Yahoo!\BrowserPlus\2.4.21\Plugins\npybrowserplus_2.4.21.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Google Docs = C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google Wallet = C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
CHR - Extension: Gmail = C:\Users\Mayra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2014/02/06 19:01:57 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar2.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &3D Satellite Search - C:\Users\Mayra\AppData\Roaming\OSI\dlls\EFOToolbar.dll ()
O8 - Extra context menu item: &Windows Live Search - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx File not found
O8 - Extra context menu item: S&earchSave Web Search - C:\Users\Mayra\AppData\Roaming\OSI\dlls\EFOToolbar.dll ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll ()
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range -  5)
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {26FCCDF9-A7E1-452A-A73D-7BF7B4D0BA6C} http://o.aolcdn.com/pictures/ap/Resources/2.0.6.9/cab/aolpPlugins.10.6.0.4.cab (AOL Pictures Uploader Class)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support)
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} http://lads.myspace.com/upload/MySpaceUploader1006.cab (MySpace Uploader Control)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 10.51.2)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 10.51.2)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe (Virtools WebPlayer Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9F36A383-E0E8-4F5F-8A3F-591F72B2BEC9}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F88B3CCC-9538-4E20-B035-30E372AA84F7}: DhcpNameServer = 192.168.1.254
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 15:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/02/07 08:03:30 | 000,000,000 | ---D | C] -- C:\FRST
[2014/02/07 08:00:08 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Mayra\Desktop\OTL.exe
[2014/02/07 08:00:01 | 001,136,640 | ---- | C] (Farbar) -- C:\Users\Mayra\Desktop\FRST.exe
[2014/02/06 19:08:46 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014/02/06 19:08:26 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014/02/06 19:08:25 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Local\temp
[2014/02/06 18:31:55 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2014/02/06 18:31:55 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2014/02/06 18:31:55 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2014/02/06 18:31:27 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014/02/06 18:30:04 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014/02/06 18:29:05 | 005,180,173 | R--- | C] (Swearware) -- C:\Users\Mayra\Desktop\ComboFix.exe
[2014/02/06 08:15:00 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Mayra\Desktop\tdsskiller.exe
[2014/02/05 07:31:49 | 000,688,992 | R--- | C] (Swearware) -- C:\Users\Mayra\Desktop\dds.com
[2014/02/05 04:35:04 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014/02/05 04:35:04 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014/02/05 04:35:04 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2014/02/05 04:35:03 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2014/02/05 04:35:03 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2014/02/05 04:35:03 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2014/02/05 04:35:02 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2014/02/05 04:35:01 | 001,069,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2014/02/05 04:33:13 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SysFxUI.dll
[2014/02/05 04:33:13 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2014/02/05 04:33:13 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2014/02/05 04:33:09 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2014/02/04 23:20:31 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2014/02/04 21:20:46 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2014/02/04 21:20:45 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2014/02/04 21:20:44 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2014/02/04 21:13:53 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2014/02/04 21:13:53 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2014/02/04 21:13:47 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2014/02/04 21:13:41 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll
[2014/02/04 21:13:41 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdConns.dll
[2014/02/04 21:13:40 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2014/02/04 21:13:40 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2014/02/04 21:13:40 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2014/02/04 21:13:40 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll
[2014/02/04 21:13:40 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2014/02/04 21:13:40 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2014/02/04 21:13:40 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2014/02/04 20:03:38 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014/02/04 20:03:35 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/02/04 20:03:29 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/02/04 20:03:25 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014/02/04 20:03:24 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014/02/04 20:03:23 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014/02/04 20:03:23 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014/02/04 20:03:22 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/02/04 20:03:13 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014/02/04 20:03:13 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/02/04 20:03:13 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/02/04 20:03:09 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014/02/04 20:03:09 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/02/04 20:03:07 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/02/04 20:03:07 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/02/04 20:03:06 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/02/04 20:03:05 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/02/04 20:03:05 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014/02/04 20:03:02 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/02/04 20:02:58 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014/02/04 20:02:57 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014/02/04 20:02:54 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014/02/04 20:02:52 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014/02/04 20:02:51 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/02/04 20:02:43 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/02/04 20:02:43 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/02/04 20:02:38 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014/02/04 20:02:36 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2014/02/04 20:02:35 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2014/02/04 20:02:34 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2014/02/04 20:02:31 | 001,806,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/02/04 20:02:28 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014/02/04 20:02:26 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014/02/04 20:02:22 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014/02/04 20:02:22 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014/02/04 20:02:21 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014/02/04 20:02:18 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2014/02/04 19:58:11 | 000,979,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2014/02/04 19:58:10 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2014/02/04 19:58:09 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2014/02/04 19:58:08 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2014/02/04 19:58:07 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2014/02/04 19:58:06 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2014/02/04 19:58:00 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2014/02/04 19:57:48 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2014/02/04 19:57:35 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014/02/04 19:57:29 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2014/02/04 19:57:29 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2014/02/04 19:57:26 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2014/02/04 19:57:25 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2014/02/04 19:54:21 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2014/02/04 19:54:21 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2014/02/04 19:54:20 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2014/02/04 19:54:14 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014/02/04 19:54:05 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2014/02/04 19:54:02 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014/02/04 19:01:40 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll
[2014/02/04 19:01:31 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winusb.dll
[2014/02/04 19:01:30 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2014/02/04 19:01:29 | 000,047,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2014/02/04 19:01:26 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2014/02/04 19:01:25 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2014/02/04 11:59:26 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2014/02/04 11:59:26 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnsvr.exe
[2014/02/04 11:59:09 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2014/02/04 11:59:03 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2014/02/04 11:59:02 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2014/02/04 11:59:02 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2014/02/04 11:59:02 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2014/02/04 11:58:56 | 002,050,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014/02/04 11:58:39 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll
[2014/02/04 11:56:24 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2014/02/04 11:54:54 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2014/02/04 11:52:31 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2014/02/04 11:52:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2014/02/04 08:04:10 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2014/02/04 07:50:46 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014/02/04 07:48:41 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2014/02/04 07:43:02 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2014/02/04 07:43:01 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2014/02/04 07:41:25 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2014/02/04 07:40:55 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2014/02/04 07:40:42 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2014/02/04 07:40:25 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2014/02/04 07:40:23 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshcon.dll
[2014/02/04 07:39:54 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2014/02/04 07:39:51 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2014/02/04 07:38:10 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2014/02/04 07:37:52 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2014/02/04 07:37:15 | 000,293,376 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2014/02/04 07:37:15 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2014/02/04 07:36:36 | 003,603,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014/02/04 07:36:35 | 003,551,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014/02/04 07:36:28 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2014/02/04 07:35:56 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2014/02/04 07:35:56 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2014/02/04 07:34:48 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014/02/04 07:33:09 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2014/02/04 07:32:11 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2014/02/04 07:31:54 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
[2014/02/04 07:31:38 | 000,025,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2014/02/04 07:27:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2014/02/04 06:29:12 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2014/02/04 05:14:23 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2014/02/04 05:14:22 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2014/02/04 05:13:48 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2014/02/04 05:13:48 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2014/02/04 05:13:48 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2014/02/04 05:13:20 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2014/02/04 05:13:20 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2014/02/03 23:10:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2014/02/03 23:10:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2014/02/03 23:10:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2014/02/03 18:02:45 | 000,000,000 | ---D | C] -- C:\Windows\System32\EventProviders
[2014/02/03 07:32:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2014/02/03 07:29:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2014/02/01 17:26:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2014/02/01 17:23:20 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2014/02/01 17:22:44 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2014/02/01 17:22:44 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2014/02/01 17:22:44 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2014/02/01 17:22:40 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2014/02/01 17:22:40 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2014/02/01 17:22:36 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2014/02/01 17:22:36 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2014/02/01 17:22:36 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2014/02/01 17:22:36 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2014/02/01 17:22:35 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2014/02/01 17:21:55 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2014/02/01 17:21:55 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2014/02/01 17:21:55 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2014/02/01 17:21:55 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2014/02/01 17:21:55 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2014/02/01 14:58:35 | 001,696,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2014/02/01 14:58:34 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2014/02/01 14:58:29 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2014/02/01 13:55:49 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2014/02/01 13:55:44 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2014/02/01 13:55:44 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2014/02/01 13:55:44 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2014/02/01 13:55:29 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2014/02/01 13:55:21 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2014/02/01 13:55:13 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2014/02/01 13:55:12 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2014/02/01 13:54:23 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2014/02/01 13:53:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2014/02/01 13:50:42 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2014/02/01 13:49:44 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2014/02/01 13:48:24 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2014/02/01 13:47:20 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2014/02/01 13:42:43 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2014/02/01 13:41:51 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2014/02/01 13:41:50 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2014/02/01 13:41:39 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2014/02/01 13:40:13 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
[2014/02/01 13:40:09 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2014/02/01 13:40:08 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll
[2014/02/01 12:32:45 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscupgrd.exe
[2014/02/01 10:45:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[2014/02/01 10:37:19 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/02/01 08:40:21 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2014/02/01 08:40:20 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2014/02/01 08:40:20 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2014/02/01 08:34:44 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG 0214c Campaign
[2014/01/31 19:03:36 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2014/01/31 19:03:27 | 001,081,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCExt.dll
[2014/01/31 19:03:24 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FunctionDiscoveryFolder.dll
[2014/01/31 19:03:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingWizard.exe
[2014/01/31 19:03:21 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2014/01/31 19:03:20 | 001,480,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2014/01/31 19:03:18 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spsys.sys
[2014/01/31 19:03:17 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2014/01/31 19:03:17 | 000,779,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2014/01/31 19:03:16 | 000,928,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavenge.dll
[2014/01/31 19:03:13 | 000,968,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz2.dll
[2014/01/31 19:03:13 | 000,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2fs.dll
[2014/01/31 19:03:13 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WscEapPr.dll
[2014/01/31 19:03:12 | 000,619,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2014/01/31 19:03:08 | 000,978,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2014/01/31 19:03:08 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spinstall.exe
[2014/01/31 19:03:08 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spreview.exe
[2014/01/31 19:03:05 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwizui.dll
[2014/01/31 19:03:02 | 000,438,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2014/01/31 19:02:57 | 000,670,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2014/01/31 19:02:51 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPEG2VDEC.DLL
[2014/01/31 19:02:51 | 000,351,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2014/01/31 19:02:51 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2014/01/31 19:02:46 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
[2014/01/31 19:02:44 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2014/01/31 19:02:42 | 000,729,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10K.DLL
[2014/01/31 19:02:41 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairing.dll
[2014/01/31 19:02:37 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sperror.dll
[2014/01/31 19:02:37 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\korwbrkr.dll
[2014/01/31 19:02:34 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IasMigReader.exe
[2014/01/31 19:02:27 | 001,589,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjet40.dll
[2014/01/31 19:02:23 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IMJP10.IME
[2014/01/31 19:02:23 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexch40.dll
[2014/01/31 19:02:22 | 001,078,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diagperf.dll
[2014/01/31 19:02:22 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2014/01/31 19:02:20 | 000,986,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2014/01/31 19:02:20 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
[2014/01/31 19:02:19 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mblctr.exe
[2014/01/31 19:02:19 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
[2014/01/31 19:02:18 | 001,792,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2014/01/31 19:02:18 | 000,454,144 | ---- | C] (Microsoft) -- C:\Windows\System32\IasMigPlugin.dll
[2014/01/31 19:02:17 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2014/01/31 19:02:16 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RacEngn.dll
[2014/01/31 19:02:16 | 000,736,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntmsmgr.dll
[2014/01/31 19:02:13 | 002,012,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
[2014/01/31 19:02:12 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
[2014/01/31 19:02:11 | 001,112,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2014/01/31 19:02:09 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2014/01/31 19:02:05 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjtes40.dll
[2014/01/31 19:02:04 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpedit.dll
[2014/01/31 19:02:04 | 000,099,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2014/01/31 19:02:03 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSAT.exe
[2014/01/31 19:02:01 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Magnify.exe
[2014/01/31 19:01:58 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstext40.dll
[2014/01/31 19:01:57 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msexcl40.dll
[2014/01/31 19:01:56 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2014/01/31 19:01:55 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsAnytimeUpgradeCPL.dll
[2014/01/31 19:01:55 | 000,454,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxbde40.dll
[2014/01/31 19:01:53 | 001,985,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2014/01/31 19:01:51 | 000,643,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrepl40.dll
[2014/01/31 19:01:51 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
[2014/01/31 19:01:51 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.dll
[2014/01/31 19:01:50 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eudcedit.exe
[2014/01/31 19:01:50 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2014/01/31 19:01:49 | 002,926,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2014/01/31 19:01:47 | 001,788,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2014/01/31 19:01:47 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mspbde40.dll
[2014/01/31 19:01:44 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msltus40.dll
[2014/01/31 19:01:43 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EhStorPwdMgr.dll
[2014/01/31 19:01:42 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd3x40.dll
[2014/01/31 19:01:41 | 001,053,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2014/01/31 19:01:41 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
[2014/01/31 19:01:40 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nlhtml.dll
[2014/01/31 19:01:37 | 000,614,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2014/01/31 19:01:36 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2014/01/31 19:01:36 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WcnNetsh.dll
[2014/01/31 19:01:32 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\compcln.exe
[2014/01/31 19:01:27 | 001,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apds.dll
[2014/01/31 19:01:25 | 000,618,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswstr10.dll
[2014/01/31 19:01:24 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlfilter.dll
[2014/01/31 19:01:23 | 000,223,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2014/01/31 19:01:20 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2014/01/31 19:01:19 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sqlsrv32.dll
[2014/01/31 19:01:19 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrd2x40.dll
[2014/01/31 19:01:19 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2014/01/31 19:01:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\propdefs.dll
[2014/01/31 19:01:16 | 000,926,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2014/01/31 19:01:09 | 001,856,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dbgeng.dll
[2014/01/31 19:01:08 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtutil.exe
[2014/01/31 19:01:08 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssitlb.dll
[2014/01/31 19:01:06 | 002,167,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcndmgr.dll
[2014/01/31 19:01:01 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devmgr.dll
[2014/01/31 19:01:01 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2014/01/31 19:01:00 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBthProxy.dll
[2014/01/31 19:00:59 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DevicePairingProxy.dll
[2014/01/31 19:00:59 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscb.dll
[2014/01/31 19:00:54 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2014/01/31 19:00:52 | 001,533,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcnwiz.dll
[2014/01/31 19:00:50 | 001,382,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVSDECD.DLL
[2014/01/31 19:00:49 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quick.ime
[2014/01/31 19:00:49 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\phon.ime
[2014/01/31 19:00:49 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cintlgnt.ime
[2014/01/31 19:00:49 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chajei.ime
[2014/01/31 19:00:48 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qintlgnt.ime
[2014/01/31 19:00:46 | 001,143,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wercon.exe
[2014/01/31 19:00:45 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2014/01/31 19:00:45 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mimefilt.dll
[2014/01/31 19:00:41 | 000,856,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mswdat10.dll
[2014/01/31 19:00:41 | 000,560,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2014/01/31 19:00:41 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsmsnap.dll
[2014/01/31 19:00:41 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjter40.dll
[2014/01/31 19:00:40 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reg.exe
[2014/01/31 19:00:40 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtffilt.dll
[2014/01/31 19:00:38 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2014/01/31 19:00:38 | 000,035,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2014/01/31 19:00:35 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2014/01/31 19:00:35 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
[2014/01/31 19:00:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2014/01/31 19:00:34 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msshooks.dll
[2014/01/31 19:00:31 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msihnd.dll
[2014/01/31 19:00:30 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
[2014/01/31 19:00:30 | 000,035,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TsWpfWrp.exe
[2014/01/31 19:00:29 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll
[2014/01/31 19:00:26 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
[2014/01/31 19:00:26 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2014/01/31 19:00:25 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2014/01/31 19:00:22 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imapi.dll
[2014/01/31 19:00:21 | 001,020,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2014/01/31 19:00:21 | 000,125,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2014/01/31 19:00:20 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chsbrkr.dll
[2014/01/31 19:00:20 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Kswdmcap.ax
[2014/01/31 19:00:19 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassdo.dll
[2014/01/31 19:00:18 | 001,823,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
[2014/01/31 19:00:18 | 000,009,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2014/01/31 19:00:17 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autofmt.exe
[2014/01/31 19:00:16 | 000,122,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Storport.sys
[2014/01/31 19:00:16 | 000,109,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2014/01/31 19:00:16 | 000,050,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PSHED.DLL
[2014/01/31 19:00:16 | 000,035,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\crashdmp.sys
[2014/01/31 19:00:15 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2014/01/31 19:00:14 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnrollUI.dll
[2014/01/31 19:00:13 | 001,107,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pidgenx.dll
[2014/01/31 19:00:12 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2014/01/31 19:00:10 | 002,205,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
[2014/01/31 19:00:06 | 001,502,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certmgr.dll
[2014/01/31 19:00:06 | 000,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comuid.dll
[2014/01/31 19:00:04 | 000,017,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2014/01/31 19:00:00 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2014/01/31 18:59:59 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassam.dll
[2014/01/31 18:59:58 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2014/01/31 18:59:58 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scrobj.dll
[2014/01/31 18:59:57 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imkr80.ime
[2014/01/31 18:59:56 | 000,099,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2014/01/31 18:59:56 | 000,043,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2014/01/31 18:59:55 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2014/01/31 18:59:54 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoconv.exe
[2014/01/31 18:59:53 | 000,027,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dumpata.sys
[2014/01/31 18:59:52 | 000,130,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2014/01/31 18:59:52 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2014/01/31 18:59:52 | 000,017,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdcom.dll
[2014/01/31 18:59:51 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wow32.dll
[2014/01/31 18:59:51 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2014/01/31 18:59:49 | 000,019,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kdusb.dll
[2014/01/31 18:59:49 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spcmsg.dll
[2014/01/31 18:59:42 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RelMon.dll
[2014/01/31 18:59:38 | 000,860,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFaultSecure.exe
[2014/01/31 18:59:38 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2014/01/31 18:59:37 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\offfilt.dll
[2014/01/31 18:59:33 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2014/01/31 18:59:33 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2014/01/31 18:59:32 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsepno.dll
[2014/01/31 18:59:30 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskraid.exe
[2014/01/31 18:59:25 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SndVol.exe
[2014/01/31 18:59:24 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
[2014/01/31 18:59:24 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2014/01/31 18:59:23 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prnntfy.dll
[2014/01/31 18:59:23 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysclass.dll
[2014/01/31 18:59:23 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adsmsext.dll
[2014/01/31 18:59:20 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2014/01/31 18:59:19 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2014/01/31 18:59:18 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ulib.dll
[2014/01/31 18:59:10 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
[2014/01/31 18:59:08 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
[2014/01/31 18:59:08 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpsetup.dll
[2014/01/31 18:59:08 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
[2014/01/31 18:59:07 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipsecsnp.dll
[2014/01/31 18:59:06 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\brcpl.dll
[2014/01/31 18:59:05 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlangpui.dll
[2014/01/31 18:59:05 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\diskpart.exe
[2014/01/31 18:59:04 | 000,507,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsdyn.dll
[2014/01/31 18:59:04 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
[2014/01/31 18:59:04 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashlpr.dll
[2014/01/31 18:59:02 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVENCOD.DLL
[2014/01/31 18:59:02 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2014/01/31 18:58:59 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2014/01/31 18:58:58 | 000,155,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2014/01/31 18:58:57 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wusa.exe
[2014/01/31 18:58:56 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrad.dll
[2014/01/31 18:58:56 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\findstr.exe
[2014/01/31 18:58:53 | 002,225,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcenter.dll
[2014/01/31 18:58:53 | 001,580,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpccpl.dll
[2014/01/31 18:58:50 | 000,876,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2014/01/31 18:58:50 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iassvcs.dll
[2014/01/31 18:58:49 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsnmp32.dll
[2014/01/31 18:58:48 | 001,152,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themecpl.dll
[2014/01/31 18:58:45 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
[2014/01/31 18:58:43 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scansetting.dll
[2014/01/31 18:58:43 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2014/01/31 18:58:42 | 000,777,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcc.dll
[2014/01/31 18:58:40 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2014/01/31 18:58:39 | 003,072,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2014/01/31 18:58:39 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasacct.dll
[2014/01/31 18:58:38 | 001,248,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2014/01/31 18:58:38 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\powercpl.dll
[2014/01/31 18:58:37 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2014/01/31 18:58:37 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\newdev.exe
[2014/01/31 18:58:35 | 001,224,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sud.dll
[2014/01/31 18:58:35 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2014/01/31 18:58:34 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2014/01/31 18:58:33 | 002,515,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\accessibilitycpl.dll
[2014/01/31 18:58:32 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2014/01/31 18:58:32 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmci.dll
[2014/01/31 18:58:31 | 000,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\autoplay.dll
[2014/01/31 18:58:29 | 001,671,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanpref.dll
[2014/01/31 18:58:29 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpchttp.dll
[2014/01/31 18:58:29 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pintlgnt.ime
[2014/01/31 18:58:27 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinfo32.exe
[2014/01/31 18:58:26 | 000,532,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpcao.dll
[2014/01/31 18:58:26 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdsutil.dll
[2014/01/31 18:58:24 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2014/01/31 18:58:24 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
[2014/01/31 18:58:22 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2014/01/31 18:58:22 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2014/01/31 18:58:21 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2014/01/31 18:58:20 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2014/01/31 18:58:20 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rekeywiz.exe
[2014/01/31 18:58:20 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iaspolcy.dll
[2014/01/31 18:58:20 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscisvif.dll
[2014/01/31 18:58:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceEject.exe
[2014/01/31 18:58:18 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
[2014/01/31 18:58:18 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapimig.exe
[2014/01/31 18:58:17 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptui.dll
[2014/01/31 18:58:15 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pnpui.dll
[2014/01/31 18:58:15 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certreq.exe
[2014/01/31 18:58:14 | 000,642,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasgcw.dll
[2014/01/31 18:58:14 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hdwwiz.exe
[2014/01/31 18:58:13 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2014/01/31 18:58:12 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2014/01/31 18:58:12 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSTheme.exe
[2014/01/31 18:58:12 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll
[2014/01/31 18:58:10 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2014/01/31 18:58:10 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWSD.dll
[2014/01/31 18:58:10 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPUnattend.exe
[2014/01/31 18:58:10 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmmon32.exe
[2014/01/31 18:58:09 | 000,378,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2014/01/31 18:58:09 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\whealogr.dll
[2014/01/31 18:58:09 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD2.sys
[2014/01/31 18:58:09 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBCAMD.sys
[2014/01/31 18:58:08 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmdial32.dll
[2014/01/31 18:58:06 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
[2014/01/31 18:58:02 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaaut.dll
[2014/01/31 18:58:00 | 000,657,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVXENCD.DLL
[2014/01/31 18:58:00 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanui.dll
[2014/01/31 18:57:59 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PnPutil.exe
[2014/01/31 18:57:58 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shwebsvc.dll
[2014/01/31 18:57:58 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dsprop.dll
[2014/01/31 18:57:57 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2014/01/31 18:57:56 | 002,153,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
[2014/01/31 18:57:54 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\modemui.dll
[2014/01/31 18:57:54 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2014/01/31 18:57:54 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2014/01/31 18:57:53 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscandui.dll
[2014/01/31 18:57:53 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmontr.dll
[2014/01/31 18:57:52 | 006,103,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\chtbrkr.dll
[2014/01/31 18:57:50 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2014/01/31 18:57:50 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dataclen.dll
[2014/01/31 18:57:49 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlgpclnt.dll
[2014/01/31 18:57:48 | 000,542,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2014/01/31 18:57:48 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll
[2014/01/31 18:57:45 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2014/01/31 18:57:45 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2014/01/31 18:57:43 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2014/01/31 18:57:32 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2014/01/31 18:57:32 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cipher.exe
[2014/01/31 18:57:32 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifmon.dll
[2014/01/31 18:57:31 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2014/01/31 18:57:31 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\InkEd.dll
[2014/01/31 18:57:31 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2014/01/31 18:57:30 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
[2014/01/31 18:57:30 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
[2014/01/31 18:57:29 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\thawbrkr.dll
[2014/01/31 18:57:29 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\watchdog.sys
[2014/01/31 18:57:27 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2014/01/31 18:57:27 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\softkbd.dll
[2014/01/31 18:57:27 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
[2014/01/31 18:57:26 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmsynth.dll
[2014/01/31 18:57:25 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2014/01/31 18:57:24 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\input.dll
[2014/01/31 18:57:24 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\puiapi.dll
[2014/01/31 18:57:23 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2014/01/31 18:57:22 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2014/01/31 18:57:22 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msisip.dll
[2014/01/31 18:57:21 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fc.exe
[2014/01/31 18:57:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2014/01/31 18:57:19 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdSSDP.dll
[2014/01/31 18:57:18 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dmusic.dll
[2014/01/31 18:57:17 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tintlgnt.ime
[2014/01/31 18:57:17 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
[2014/01/31 18:57:16 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2014/01/31 18:57:16 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msjint40.dll
[2014/01/31 18:57:15 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\l2nacp.dll
[2014/01/31 18:57:15 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2014/01/31 18:57:11 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsdchngr.dll
[2014/01/31 18:57:10 | 000,083,456 | ---- | C] (Microsoft) -- C:\Windows\System32\SMBHelperClass.dll
[2014/01/31 18:57:10 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthci.dll
[2014/01/31 18:57:09 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Storprop.dll
[2014/01/31 18:57:09 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2014/01/31 18:57:09 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bthudtask.exe
[2014/01/31 18:57:09 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdial.exe
[2014/01/31 18:57:08 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWCN.dll
[2014/01/31 18:57:08 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3cfg.dll
[2014/01/31 18:57:06 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ipconfig.exe
[2014/01/31 18:57:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CHxReadingStringIME.dll
[2014/01/31 18:57:05 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2014/01/31 18:57:04 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nslookup.exe
[2014/01/31 18:57:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2014/01/31 18:57:00 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2014/01/31 18:57:00 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2014/01/31 18:57:00 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ocsetup.exe
[2014/01/31 18:57:00 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2014/01/31 18:56:59 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2014/01/31 18:56:58 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdeploy.dll
[2014/01/31 18:56:56 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmcico.dll
[2014/01/31 18:56:54 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PNPXAssoc.dll
[2014/01/31 18:56:50 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpupdate.exe
[2014/01/31 18:56:46 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cbsra.exe
[2014/01/31 18:56:45 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrstub.exe
[2014/01/31 18:56:45 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bitsigd.dll
[2014/01/31 18:56:43 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NcdProp.dll
[2014/01/31 18:56:43 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iscsilog.dll
[2014/01/31 18:56:40 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcconf.dll
[2014/01/31 18:56:40 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vdmdbg.dll
[2014/01/31 18:56:39 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxg.sys
[2014/01/31 18:56:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2014/01/31 18:56:39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetppui.dll
[2014/01/31 18:56:39 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2014/01/31 18:56:31 | 000,052,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stream.sys
[2014/01/31 18:56:28 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2014/01/31 18:56:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2014/01/31 18:56:25 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msimsg.dll
[2014/01/31 18:53:03 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmiEngine.dll
[2014/01/31 18:52:43 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdscore.dll
[2014/01/31 18:52:40 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PkgMgr.exe
[2014/01/31 18:51:06 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvstore.dll
[2014/01/31 08:58:49 | 000,000,000 | ---D | C] -- C:\PerfLogs
[2014/01/30 23:03:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2014/01/30 22:47:47 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Roaming\AVG2014
[2014/01/30 22:45:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2014/01/30 22:45:08 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Roaming\TuneUp Software
[2014/01/30 22:43:06 | 000,000,000 | ---D | C] -- C:\$AVG
[2014/01/30 22:43:05 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2014
[2014/01/30 22:40:12 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2014/01/30 22:35:09 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2014/01/30 22:35:08 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Local\MFAData
[2014/01/30 22:35:08 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2014/01/30 22:35:08 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Local\Avg2014
[2014/01/30 21:55:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014/01/30 21:53:09 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/01/30 21:53:09 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/01/30 21:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2014/01/30 21:29:39 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2014/01/30 21:01:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014/01/30 21:00:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2014/01/30 21:00:25 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014/01/30 20:59:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/01/30 20:59:40 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014/01/30 20:59:39 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014/01/30 20:59:39 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014/01/30 06:52:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Doctor Web
[2014/01/30 06:52:40 | 000,000,000 | ---D | C] -- C:\Users\Mayra\Doctor Web
[2014/01/30 06:35:38 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/01/30 06:28:32 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2014/01/30 06:23:46 | 001,037,068 | ---- | C] (Thisisu) -- C:\Users\Mayra\Desktop\JRT.exe
[2014/01/29 23:31:36 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Roaming\SUPERAntiSpyware.com
[2014/01/29 23:31:35 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2014/01/29 21:49:54 | 000,000,000 | ---D | C] -- C:\Users\Mayra\AppData\Roaming\Malwarebytes
[2014/01/29 19:41:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/01/29 18:44:55 | 000,135,464 | ---- | C] (SurfRight B.V.) -- C:\Windows\System32\LnkProtect.dll
[2014/01/29 18:43:34 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014/02/07 08:07:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/02/07 08:00:53 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Mayra\Desktop\OTL.exe
[2014/02/07 08:00:47 | 001,136,640 | ---- | M] (Farbar) -- C:\Users\Mayra\Desktop\FRST.exe
[2014/02/07 07:52:26 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/02/07 07:28:56 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/02/07 07:13:28 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\AVG_SYS_TASK_DELETE.job
[2014/02/07 07:12:55 | 000,000,358 | ---- | M] () -- C:\Windows\tasks\AVG_SYS_TASK.job
[2014/02/07 07:12:47 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014/02/07 07:12:47 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2014/02/07 07:12:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/02/07 07:12:04 | 467,202,048 | -HS- | M] () -- C:\hiberfil.sys
[2014/02/06 19:01:57 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014/02/06 18:29:12 | 005,180,173 | R--- | M] (Swearware) -- C:\Users\Mayra\Desktop\ComboFix.exe
[2014/02/06 08:50:04 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/02/06 08:50:03 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/02/06 08:15:10 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Mayra\Desktop\tdsskiller.exe
[2014/02/06 08:14:54 | 001,166,132 | ---- | M] () -- C:\Users\Mayra\Desktop\AdwCleaner.exe
[2014/02/05 07:31:50 | 000,688,992 | R--- | M] (Swearware) -- C:\Users\Mayra\Desktop\dds.com
[2014/02/05 06:35:53 | 000,000,943 | ---- | M] () -- C:\Users\Mayra\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014/02/04 23:36:16 | 000,608,406 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/02/04 23:36:16 | 000,105,908 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/02/04 23:27:49 | 000,368,200 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014/02/04 23:03:20 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2014/02/04 23:01:02 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2014/02/04 20:04:21 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat
[2014/02/04 20:04:20 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat
[2014/02/04 20:03:38 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2014/02/04 20:03:35 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/02/04 20:03:29 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/02/04 20:03:25 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2014/02/04 20:03:24 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2014/02/04 20:03:23 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2014/02/04 20:03:23 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2014/02/04 20:03:22 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/02/04 20:03:14 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2014/02/04 20:03:13 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/02/04 20:03:13 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/02/04 20:03:11 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2014/02/04 20:03:09 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/02/04 20:03:08 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/02/04 20:03:07 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2014/02/04 20:03:07 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/02/04 20:03:06 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/02/04 20:03:05 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014/02/04 20:03:05 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2014/02/04 20:03:02 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/02/04 20:02:58 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2014/02/04 20:02:57 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2014/02/04 20:02:54 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2014/02/04 20:02:52 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2014/02/04 20:02:51 | 000,607,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/02/04 20:02:43 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/02/04 20:02:43 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/02/04 20:02:38 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2014/02/04 20:02:36 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2014/02/04 20:02:35 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2014/02/04 20:02:34 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2014/02/04 20:02:31 | 001,806,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/02/04 20:02:28 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2014/02/04 20:02:26 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2014/02/04 20:02:22 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2014/02/04 20:02:22 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2014/02/04 20:02:21 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2014/02/04 20:02:18 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll
[2014/02/04 19:58:11 | 000,979,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFH264Dec.dll
[2014/02/04 19:58:10 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFHEAACdec.dll
[2014/02/04 19:58:09 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfmp4src.dll
[2014/02/04 19:58:08 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2014/02/04 19:58:07 | 002,873,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2014/02/04 19:58:06 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2014/02/04 19:58:00 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2014/02/04 19:57:48 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2014/02/04 19:57:35 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014/02/04 19:57:29 | 000,667,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2014/02/04 19:57:29 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2014/02/04 19:57:26 | 000,847,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2014/02/04 19:57:25 | 001,554,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2014/02/04 19:54:28 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\dxgkrnl.sys.mui
[2014/02/04 19:54:21 | 000,369,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2014/02/04 19:54:21 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2014/02/04 19:54:20 | 000,252,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2014/02/04 19:54:14 | 000,519,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014/02/04 19:54:05 | 000,321,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2014/02/04 19:54:02 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2014/02/04 04:13:27 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/02/03 23:02:33 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2014/02/01 12:28:40 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2014/02/01 12:04:45 | 000,070,268 | ---- | M] () -- C:\Users\Mayra\Documents\cc_20140201_120342.reg
[2014/01/31 07:52:33 | 000,101,888 | ---- | M] (Infineon Technologies AG) -- C:\Windows\System32\ifxcardm.dll
[2014/01/31 07:51:50 | 000,082,432 | ---- | M] (Gemalto, Inc.) -- C:\Windows\System32\axaltocm.dll
[2014/01/30 22:45:10 | 000,000,842 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2014.lnk
[2014/01/30 22:08:38 | 000,001,995 | ---- | M] () -- C:\Users\Mayra\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/01/30 21:29:40 | 000,001,057 | ---- | M] () -- C:\Users\Mayra\Desktop\Revo Uninstaller.lnk
[2014/01/30 20:57:51 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2014/01/30 20:57:32 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2014/01/30 20:57:32 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2014/01/30 20:57:29 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2014/01/30 06:23:56 | 001,037,068 | ---- | M] (Thisisu) -- C:\Users\Mayra\Desktop\JRT.exe
[2014/01/29 18:44:55 | 000,135,464 | ---- | M] (SurfRight B.V.) -- C:\Windows\System32\LnkProtect.dll
[2014/01/16 09:59:46 | 000,231,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014/02/06 18:31:55 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2014/02/06 18:31:55 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2014/02/06 18:31:55 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2014/02/06 18:31:55 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2014/02/06 18:31:55 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2014/02/06 08:20:49 | 467,202,048 | -HS- | C] () -- C:\hiberfil.sys
[2014/02/06 08:14:52 | 001,166,132 | ---- | C] () -- C:\Users\Mayra\Desktop\AdwCleaner.exe
[2014/02/04 23:03:20 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2014/02/04 23:01:02 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2014/02/04 20:03:07 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2014/02/04 19:01:54 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2014/02/04 07:38:11 | 000,218,228 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2014/02/03 23:02:33 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2014/02/01 17:21:58 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2014/02/01 17:21:58 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2014/02/01 17:21:58 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2014/02/01 14:07:16 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2014/02/01 14:07:10 | 011,967,524 | ---- | C] () -- C:\Windows\System32\korwbrkr.lex
[2014/02/01 12:28:40 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2014/02/01 12:04:17 | 000,070,268 | ---- | C] () -- C:\Users\Mayra\Documents\cc_20140201_120342.reg
[2014/02/01 08:35:11 | 000,000,358 | ---- | C] () -- C:\Windows\tasks\AVG_SYS_TASK.job
[2014/02/01 08:35:02 | 000,000,386 | ---- | C] () -- C:\Windows\tasks\AVG_SYS_TASK_DELETE.job
[2014/02/01 01:21:17 | 000,000,949 | ---- | C] () -- C:\Users\Mayra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014/01/31 19:02:17 | 000,130,008 | ---- | C] () -- C:\Windows\System32\systemsf.ebd
[2014/01/31 19:02:10 | 000,009,239 | ---- | C] () -- C:\Windows\System32\spcinstrumentation.man
[2014/01/31 19:01:49 | 000,442,788 | ---- | C] () -- C:\Windows\System32\dot3.tmf
[2014/01/31 19:01:43 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2014/01/31 19:01:43 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2014/01/31 19:01:36 | 000,392,170 | ---- | C] () -- C:\Windows\System32\onex.tmf
[2014/01/31 19:01:19 | 000,344,698 | ---- | C] () -- C:\Windows\System32\eaphost.tmf
[2014/01/31 19:00:16 | 000,092,918 | ---- | C] () -- C:\Windows\System32\slmgr.vbs
[2014/01/31 18:56:38 | 000,009,212 | ---- | C] () -- C:\Windows\System32\RacUR.xml
[2014/01/31 18:56:15 | 000,000,153 | ---- | C] () -- C:\Windows\System32\RacUREx.xml
[2014/01/30 22:45:10 | 000,000,842 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2014.lnk
[2014/01/30 21:55:38 | 000,001,995 | ---- | C] () -- C:\Users\Mayra\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/01/30 21:55:38 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/01/30 21:54:18 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/01/30 21:54:16 | 000,000,880 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/01/30 21:53:15 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/01/30 21:29:40 | 000,001,057 | ---- | C] () -- C:\Users\Mayra\Desktop\Revo Uninstaller.lnk
[2008/12/13 09:58:44 | 000,276,448 | ---- | C] () -- C:\Users\Mayra\AppData\Local\Open Source Software Bundle Installer2.exe
[2008/03/01 12:40:36 | 000,000,000 | ---- | C] () -- C:\Users\Mayra\AppData\Local\rx_image.Cache
[2007/03/24 14:13:21 | 000,000,680 | ---- | C] () -- C:\Users\Mayra\AppData\Local\d3d9caps.dat
[2007/03/14 23:15:40 | 000,020,480 | ---- | C] () -- C:\Users\Mayra\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/03/14 22:45:32 | 000,008,572 | ---- | C] () -- C:\Users\Mayra\AppData\Roaming\wklnhst.dat
 
========== ZeroAccess Check ==========
 
[2006/11/02 06:51:16 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 11:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 00:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 00:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2014/01/30 22:47:47 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\AVG2014
[2008/06/17 21:07:09 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\FrostWire
[2008/12/13 10:01:55 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\OSI
[2007/03/16 17:56:37 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\PlayFirst
[2007/03/14 23:23:18 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\SampleView
[2007/03/14 22:45:36 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\Template
[2009/12/19 18:37:24 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\Tific
[2014/01/30 22:45:08 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\TuneUp Software
[2007/03/15 23:46:46 | 000,000,000 | ---D | M] -- C:\Users\Mayra\AppData\Roaming\WildTangent
 
========== Purity Check ==========
 
 
 
< End of report >
 

OTL Extras logfile created on: 2/7/2014 8:12:40 AM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Mayra\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
444.84 Mb Total Physical Memory | 65.36 Mb Available Physical Memory | 14.69% Memory free
1.46 Gb Paging File | 0.69 Gb Available in Paging File | 47.38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 140.54 Gb Total Space | 87.46 Gb Free Space | 62.23% Space Free | Partition Type: NTFS
Drive D: | 8.51 Gb Total Space | 3.65 Gb Free Space | 42.84% Space Free | Partition Type: NTFS
 
Computer Name: MAYRA-PC | User Name: Mayra | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- Reg Error: Key error. File not found
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- C:\PROGRA~1\MOZILL~1\FIREFOX.EXE -url "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-3074645540-534623877-3370066440-1000]
"EnableNotificationsRef" = 2
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-3074645540-534623877-3370066440-500]
"EnableNotificationsRef" = 2
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
========== System Restore Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe" = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe:*:Enabled:Yahoo! Music Jukebox
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{030A3F8D-2015-4A1D-A632-8F7F00C95651}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{051287ED-CD8F-4C65-8BFB-C74678E0E823}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{10C65FBD-25BF-48A4-AD97-0D39D26F1C6D}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{164B5CB4-A930-4E8B-BF87-C97BDA1FED70}" = rport=2178 | protocol=6 | dir=out | app=system | 
"{19C9D505-74AA-4E51-B872-10461B945382}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{20F58BE7-A862-49B2-B438-7E367A7321E8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | 
"{2655AFA3-1CC7-4B61-8768-01193CC3C0B6}" = lport=2178 | protocol=6 | dir=in | app=system | 
"{2A4551F1-95AD-44E1-AC35-28AB85748BF5}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{2B46F68B-EC8F-4F03-8239-197ADD7E4CD8}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=c:\windows\system32\svchost.exe | 
"{2C1EBB19-7123-4AC8-A63C-0FD089C1BA74}" = lport=rpc | protocol=6 | dir=in | svc=* | app=c:\windows\system32\svchost.exe | 
"{2CB9EFFB-0EC7-4365-B2C6-585EC03967A0}" = lport=445 | protocol=6 | dir=in | app=system | 
"{2EBA0C87-BC6B-4B85-8EE1-37D82A627120}" = rport=3702 | protocol=17 | dir=out | svc=bits | app=c:\windows\system32\svchost.exe | 
"{2F01C3E9-E83E-4FCF-B230-98A180CCAE17}" = lport=445 | protocol=6 | dir=in | app=system | 
"{3473E0C2-96E3-48A7-863C-43940844CB14}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{351C8125-660B-443A-8E4A-ADCC3C416E09}" = lport=rpc | protocol=6 | dir=in | svc=bits | app=c:\windows\system32\svchost.exe | 
"{36D5469A-51A5-4AA9-AD0E-D3C2992ACB92}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{37F8E889-A9D1-4373-AA94-5F064369B415}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{39881618-5FA5-4083-90B0-8F6FEFEE13FA}" = lport=5985 | protocol=6 | dir=in | app=system | 
"{3CD21D3D-D33E-4C97-B78D-729F6FA5CAF7}" = lport=1701 | protocol=17 | dir=in | app=system | 
"{4159F24E-8A73-4C67-A102-24294A0D43E2}" = rport=3702 | protocol=17 | dir=out | app=c:\windows\system32\p2phost.exe | 
"{44A8163C-38A8-42EB-9F40-8FFEB7623B3C}" = lport=5722 | protocol=6 | dir=in | svc=dfsr | app=c:\windows\system32\dfsr.exe | 
"{45CEE140-6D1C-43E7-B174-2A67029ED6AE}" = lport=3702 | protocol=17 | dir=in | app=c:\windows\system32\p2phost.exe | 
"{4FBEA049-B679-4AB6-93BB-2B57249B1834}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{52684684-E8AD-4874-A2D4-876C3608F965}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{5592963C-9856-49FC-8061-ED0539CAD56C}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\vdsldr.exe | 
"{5DAD65E4-E128-41F0-95E4-903804EC1A90}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{5E82B98D-F6F8-46AF-9654-05FAE15298F8}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{68E4423C-D4F3-4C27-802D-67917B3AC52E}" = lport=1723 | protocol=6 | dir=in | app=system | 
"{6BA57E10-3E6E-4A23-8E67-F85E33DB5CDA}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{722EE82E-9796-48C5-A670-59598CB2781D}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{7344B63F-FFA9-48D2-BDC4-DDE78914E54A}" = lport=rpc | protocol=6 | dir=in | svc=ktmrm | app=c:\windows\system32\svchost.exe | 
"{766483BB-FA94-4271-B549-23D04CD19EE8}" = lport=rpc | protocol=6 | dir=in | app=c:\windows\system32\services.exe | 
"{76D88280-1B69-4527-A31D-BCD61BC50A5B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{7E70D5D4-E853-4657-9754-0C20ED232FF9}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{836637AA-5471-4040-B7AA-E39F84B4B066}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{8CB90B1A-2BEE-46AF-BF29-C082D44CD7C2}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{92C7AAB6-B8AD-40E4-AF8A-6CF4DEF9B0C2}" = rport=1701 | protocol=17 | dir=out | app=system | 
"{947FB20D-C4E5-4042-9E57-5175BA32BA66}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{9728A3F9-00C7-405E-ADC5-18ADFA2AB996}" = lport=445 | protocol=6 | dir=in | app=system | 
"{98B9AF9C-24E4-4415-8E8F-F4761D623EC8}" = lport=3702 | protocol=17 | dir=in | svc=bits | app=c:\windows\system32\svchost.exe | 
"{9E03000A-BFBA-41A8-AA70-FB0B63C627B5}" = rport=1723 | protocol=6 | dir=out | app=system | 
"{A8DB2776-FE89-48A2-854B-3723A794E3E1}" = lport=3587 | protocol=6 | dir=in | svc=p2psvc | app=c:\windows\system32\svchost.exe | 
"{B15C34A1-FD9B-4ECA-AB16-7B32319A62B2}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=c:\windows\system32\svchost.exe | 
"{B2608346-96EC-4102-8C0A-3359E6E19FE2}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{BA59093F-C9E0-4C93-9548-16D27ECD3906}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=c:\windows\system32\svchost.exe | 
"{BAC205F7-BECD-46E9-9C5E-E48A448ED5D0}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=c:\windows\system32\vds.exe | 
"{BE70DF00-DD7F-4DD8-B1B3-8E9B854CBFCB}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{C9200874-5026-4581-A13E-E656D8CD7EAE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{CAB22A81-9188-4BC7-95BC-4B73196D09BE}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=c:\windows\system32\svchost.exe | 
"{D906B9E6-3429-4D16-B25F-FDA92B2DFECA}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | 
"{DD837210-5C37-440A-850A-4041D3E5083B}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | 
"{E28E2A8A-5CCF-4410-AACB-9B30D3BB12E9}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{E559DA0C-73D8-4E53-96FE-FB6BED51A82D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{E63BECE4-AE98-466A-8A72-755BF3DB4F9E}" = lport=80 | protocol=6 | dir=in | name=@wsmres.dll,-50 | 
"{E6E0DA49-2780-48F1-9828-B72D4294FC78}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=c:\windows\system32\svchost.exe | 
"{ED8A12E9-84D5-4A68-8F8C-C929F225C4F4}" = rport=3587 | protocol=6 | dir=out | svc=p2psvc | app=c:\windows\system32\svchost.exe | 
"{F195FE9E-C91F-43C5-A075-9C9368007FD8}" = rport=5722 | protocol=6 | dir=out | svc=dfsr | app=c:\windows\system32\dfsr.exe | 
"{F802754A-7F45-406E-98B0-C828BD51CFA1}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | 
"{FA7352D4-EDAF-4485-83DE-1DF1B0213E8B}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=c:\windows\system32\svchost.exe | 
"{FE20BF2B-9154-449C-B0A3-E8EA14367502}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=c:\windows\system32\svchost.exe | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0D844946-72BC-49D1-8454-9F2FFFE15663}" = protocol=17 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe | 
"{20E3C573-4586-4BDF-8DEA-86F82A436F3B}" = protocol=6 | dir=out | app=system | 
"{20F04488-355F-4B2D-B2E8-AD72EC294154}" = protocol=17 | dir=in | app=c:\program files\common files\aol\1173975032\ee\aolsoftware.exe | 
"{21AD344D-2D18-4364-8BEC-F68255F009F1}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe | 
"{24C0B899-4B0B-48AC-8542-35F534C45677}" = protocol=6 | dir=in | app=c:\windows\system32\wbem\unsecapp.exe | 
"{25C65E0E-6775-40A2-AECA-5C1CBE4F21A6}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgnsx.exe | 
"{2679CDA2-DDEE-48A2-970F-5DCA2D95E716}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe | 
"{2C7C4B72-3B57-466D-8B26-DEA06EB5AD09}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe | 
"{2EE6D2A3-E6ED-480D-A8A7-BDC49CA121DE}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe | 
"{32AA6AAB-7FF1-452E-A856-DF6D13F9DBA2}" = protocol=17 | dir=in | app=c:\program files\aol 9.0a\waol.exe | 
"{355984C5-6126-4A96-B2A8-DA10259E0826}" = protocol=6 | dir=in | svc=msiscsi | app=c:\windows\system32\svchost.exe | 
"{35EF1B45-8129-4A27-A069-899148352978}" = protocol=6 | dir=out | app=system | 
"{3A921CB7-0860-4477-9900-A0670404380B}" = protocol=6 | dir=in | app=c:\windows\system32\p2phost.exe | 
"{49653696-F168-45E0-B3B0-CCFE73D28654}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgemcx.exe | 
"{498A00A5-77A9-4AF5-9477-6A844C2DF15D}" = protocol=6 | dir=out | app=c:\windows\system32\wudfhost.exe | 
"{5103EE2D-48C2-422F-86E0-2CA25BD31AB3}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgdiagex.exe | 
"{59411FF5-5932-4BA2-A3C5-5EAF6D5906C6}" = protocol=6 | dir=in | app=c:\windows\system32\plasrv.exe | 
"{5E0D0A2B-423C-43FF-AF06-B87381B5DDDB}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{6653285B-0DB7-474D-ABD4-BAAB90916810}" = protocol=17 | dir=in | app=c:\program files\windows collaboration\wincollab.exe | 
"{6A6A474F-FB17-434C-B0D0-64A3A74812CB}" = protocol=6 | dir=out | app=c:\program files\windows collaboration\wincollab.exe | 
"{6E3CE0BD-163E-4DBF-8BCB-A2C58F8E0DBD}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe | 
"{7285B392-A2A1-4CF1-8582-22085BB8F12C}" = protocol=6 | dir=in | app=c:\program files\common files\aol\acs\aoldial.exe | 
"{74135B62-562B-4006-AECE-864AD1271EB7}" = protocol=6 | dir=in | app=c:\program files\aol 9.0a\waol.exe | 
"{7870D7BF-DF5C-4B3A-B385-53D95E4A5C6C}" = protocol=6 | dir=out | svc=winmgmt | app=c:\windows\system32\svchost.exe | 
"{7C159B28-A1EB-4935-A4D4-35729EE546CC}" = protocol=17 | dir=out | app=c:\program files\windows collaboration\wincollab.exe | 
"{7E33E464-8D49-439B-8C4B-041124BDF016}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgmfapx.exe | 
"{80B37F6E-7E71-48B5-ABA3-3508CC5B5D35}" = protocol=17 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe | 
"{8C81577B-837E-42AC-8820-7F2C09D02BAD}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgdiagex.exe | 
"{91A1C31D-9853-45E3-B248-D44E46454123}" = protocol=6 | dir=in | app=c:\program files\aol 9.0b\waol.exe | 
"{A14B9C08-DC64-4EDA-BC54-8DC0063E7DB6}" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe | 
"{A2CDCAFF-2FC4-4786-ABE1-6727C1F94F37}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | 
"{A451BAC6-023E-407B-95D4-E032D37ECAA3}" = protocol=6 | dir=in | app=c:\program files\windows media player\wmpnetwk.exe | 
"{A6D7E9A0-AC6A-4287-9E1C-8370738D014B}" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe | 
"{A85AE860-D42F-4770-ACF1-09A12BCC447E}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmpnetwk.exe | 
"{A9EAE754-15E7-49D4-A1C2-124AD0EA187E}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgmfapx.exe | 
"{AC6FECF1-8998-401D-B321-04858E39A80E}" = protocol=6 | dir=in | app=c:\program files\common files\aol\system information\sinf.exe | 
"{AE675B44-BFA5-4D40-A085-9532EA3301A2}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe | 
"{AF7133F0-17BC-4B40-9C6D-F89598909C4B}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe | 
"{BF987072-0969-4A30-806D-F06DEF9E0313}" = protocol=6 | dir=out | svc=msiscsi | app=c:\windows\system32\svchost.exe | 
"{C03113C3-53F6-4F41-A1C0-2413618A829A}" = protocol=6 | dir=in | svc=winmgmt | app=c:\windows\system32\svchost.exe | 
"{C6B9B83A-DF42-49F2-8D7F-E7A5D6999E74}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe | 
"{C8F8472E-2F01-4D5B-9E26-18CC12B46363}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgemcx.exe | 
"{D43DB25A-EDB8-4BC7-B3BF-FA68C2CAB63D}" = protocol=6 | dir=in | app=c:\program files\common files\aol\topspeed\3.0\aoltpsd3.exe | 
"{DB450AF2-3E23-4120-B4ED-FB5F2A771556}" = protocol=6 | dir=in | app=c:\windows\system32\msdtc.exe | 
"{DDE52426-FEB7-4337-AF34-D3E1ADDF6BF3}" = protocol=6 | dir=out | app=c:\windows\system32\msdtc.exe | 
"{DE6B83C5-06C1-4478-9D39-FCEBB4DC8D8E}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmpnetwk.exe | 
"{DF0346D9-942E-453B-9701-DF6060C45055}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe | 
"{DF4BD2CD-410B-4E56-9AC2-A88334B33B94}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe | 
"{DFB34932-ED7E-472F-9F49-F385BEBDF5F2}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe | 
"{E2D25672-BD40-4B4F-AA86-7C34A60D27C7}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmpnetwk.exe | 
"{E37F56AC-7DD9-4BAB-94D0-62FAC6EB3391}" = protocol=6 | dir=in | app=c:\program files\windows collaboration\wincollab.exe | 
"{E4F14996-1465-44D2-A5C8-1B88F8438627}" = protocol=6 | dir=in | app=c:\program files\common files\aol\1173975032\ee\aolsoftware.exe | 
"{E5D6428C-7381-4AC0-B04E-0452B6B53CEE}" = protocol=17 | dir=in | app=c:\program files\aol 9.0b\waol.exe | 
"{F18FE159-0C9D-4264-A709-745AF86DA961}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgnsx.exe | 
"{F56E001F-8672-4D10-9B2B-7B6DB352DC1B}" = protocol=6 | dir=out | app=c:\windows\system32\p2phost.exe | 
"{F7BC5765-999B-4EA4-B39E-8993E117CBDD}" = protocol=17 | dir=in | app=c:\program files\common files\aol\acs\aolacsd.exe | 
"{FC0A96E5-1AEE-4C4C-903D-19EFD1B48BEC}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe | 
"TCP Query User{4FCB9A3D-6536-4A3A-9A93-B974ADB5912A}C:\stubinstaller.exe" = protocol=6 | dir=in | app=c:\stubinstaller.exe | 
"TCP Query User{D1BEB708-1876-4AA9-84F3-5B50D8D17DE2}C:\program files\aol 9.0b\waol.exe" = protocol=6 | dir=in | app=c:\program files\aol 9.0b\waol.exe | 
"TCP Query User{FA74E28B-2481-4226-878F-1D5FC080B28B}C:\program files\emachines games\jeopardy\jeopardy!.exe" = protocol=6 | dir=in | app=c:\program files\emachines games\jeopardy\jeopardy!.exe | 
"UDP Query User{BFE1CF75-3E5D-49C7-BCB5-8B252DF3492C}C:\stubinstaller.exe" = protocol=17 | dir=in | app=c:\stubinstaller.exe | 
"UDP Query User{C345FC82-45CE-4101-8BE5-AD24E70E8D1B}C:\program files\aol 9.0b\waol.exe" = protocol=17 | dir=in | app=c:\program files\aol 9.0b\waol.exe | 
"UDP Query User{E9F0CE3F-BDF3-4C8A-ACE0-2EBC782B2A39}C:\program files\emachines games\jeopardy\jeopardy!.exe" = protocol=17 | dir=in | app=c:\program files\emachines games\jeopardy\jeopardy!.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{10798AE3-DCBB-43C3-9C93-C23512427E25}" = The Sims Deluxe Edition
"{184E7118-0295-43C4-B72C-1D54AA75AAF7}" = Windows Live Mail
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 51
"{341201D4-4F61-4ADB-987E-9CCE4D83A58D}" = Windows Live Toolbar Extension (Windows Live Toolbar)
"{3B97ADB7-3DA1-4964-BC10-68384BA6A66F}" = AVG 2014
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{401C04AC-99A0-4DE2-879F-30D03A633FEF}" = AVG 2014
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go 5.0
"{4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B}" = ATI Catalyst Install Manager
"{44C05309-60F4-410B-BC32-31733CFF1A41}" = Microsoft Digital Image Starter Edition 2006 Editor
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4FE542EB-FF0B-4739-94DD-25C8AE0AB251}" = Microsoft Digital Image Starter Edition 2006 Library
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6BF49607-636D-05B5-26C1-60ADACAED1E2}" = ATI Catalyst Control Center Ex
"{6D52C408-B09A-4520-9B18-475B81D393F1}" = Microsoft Works
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{74EC78BC-B379-4E29-9006-8F161DCAABA6}" = Apple Software Update
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7745B7A9-F323-4BB9-9811-01BF57A028DA}" = Map Button (Windows Live Toolbar)
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}" = Windows Live Favorites for Windows Live Toolbar
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX
"{7F3BCF8A-8E02-4659-AF25-F9AB66BD6718}" = eMachines Recovery Center Installer
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AB8D458-939E-403F-0097-9BA1C1F013D5}" = The Sims 2
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{9176251A-4CC1-4DDB-B343-B487195EB397}" = Windows Live Writer
"{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}" = QuickTime
"{9862E0CB-4727-4FFC-963A-E22A9E9EC10C}" = Creative ZEN V Series (R2)
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9F7FC79B-3059-4264-9450-39EB368E3225}" = Microsoft Digital Image Library 9 - Blocker
"{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}" = Highlight Viewer (Windows Live Toolbar)
"{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}" = Windows Live installer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A70800000002}" = Adobe Reader 7.0.8
"{AE46ABD3-D625-467F-B5A7-8D3FFF077F0D}" = Realtek 8139 and 8139C+ Ethernet Network Card Driver for Windows Vista
"{B3E699B5-7EEE-4AB1-A7BB-A43B7B4D94ED}" = Windows NT Backup - Restore Utility
"{CA8802A2-2840-4FDE-B5E1-DA276F8842CD}" = EA-Land
"{CDD55C1D-FC16-41F7-9E8D-884466E622EC}" = Roxio Easy DVD Copy 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D5A145FC-D00C-4F1A-9119-EB4D9D659750}" = Windows Live Toolbar
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{F084395C-40FB-4DB3-981C-B51E74E1E83D}" = Smart Menus (Windows Live Toolbar)
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"AOL Pictures" = AOL Pictures Tools (version 10.6.0.4)
"AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove)
"AVG" = AVG 2014
"CCleaner" = CCleaner
"Click'N Design 3D" = Click'N Design 3D
"CNXT_MODEM_PCI_HSF" = Soft Data Fax Modem with SmartCP
"Creative Removable Disk Manager" = Creative Removable Disk Manager
"eMachines Game Console" = eMachines Game Console
"Extensions Bundle_is1" = Extensions Bundle 1.1
"Google Chrome" = Google Chrome
"Google Desktop" = Google Desktop
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Money2006b" = Microsoft Money 2006
"MotiveReportAgent" = BellSouth FastAccess DSL Report Agent
"NortonPCCheckup" = Norton PC Checkup
"PictureItSuiteTrial_v12" = Microsoft Digital Image Starter Edition 2006
"Revo Uninstaller" = Revo Uninstaller 1.95
"SysInfo" = Creative System Information
"Windows Live Toolbar" = Windows Live Toolbar
"WT013188" = Diner Dash
"WT014943" = Bejeweled 2 Deluxe
"WT014951" = Penguins!
"WT014953" = Polar Bowler
"WT014955" = Polar Golfer
"WT014957" = Chuzzle Deluxe
"WT014959" = JEOPARDY
"WT014961" = SCRABBLE
"WT015730" = FATE
"WT015795" = Blasterball 3
"YInstHelper" = Yahoo! Install Manager
"ZENcast Organizer" = ZENcast Organizer
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Yahoo! BrowserPlus" = Yahoo! BrowserPlus
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 2/1/2014 7:30:40 PM | Computer Name = Mayra-PC | Source = .NET Runtime Optimization Service | ID = 1111
Description = 
 
Error - 2/2/2014 10:41:05 AM | Computer Name = Mayra-PC | Source = .NET Runtime Optimization Service | ID = 1111
Description = 
 
Error - 2/4/2014 12:52:56 AM | Computer Name = Mayra-PC | Source = EventSystem | ID = 4621
Description = 
 
Error - 2/4/2014 1:53:31 AM | Computer Name = Mayra-PC | Source = ESENT | ID = 215
Description = WinMail (672) WindowsMail0: The backup has been stopped because it
 was halted by the client or the connection with the client failed.
 
Error - 2/5/2014 8:34:42 AM | Computer Name = Mayra-PC | Source = EventSystem | ID = 4621
Description = 
 
Error - 2/5/2014 8:43:01 AM | Computer Name = Mayra-PC | Source = EventSystem | ID = 4621
Description = 
 
Error - 2/5/2014 9:21:42 AM | Computer Name = Mayra-PC | Source = EventSystem | ID = 4609
Description = 
 
Error - 2/5/2014 10:16:30 AM | Computer Name = Mayra-PC | Source = EventSystem | ID = 4609
Description = 
 
Error - 2/6/2014 10:12:52 AM | Computer Name = Mayra-PC | Source = EventSystem | ID = 4609
Description = 
 
Error - 2/6/2014 10:18:07 AM | Computer Name = Mayra-PC | Source = Microsoft-Windows-CAPI2 | ID = 131584
Description = 
 
[ System Events ]
Error - 2/6/2014 8:48:25 PM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7030
Description = 
 
Error - 2/6/2014 9:02:12 PM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7030
Description = 
 
Error - 2/7/2014 9:15:29 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7026
Description = 
 
Error - 2/7/2014 9:18:06 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7009
Description = 
 
Error - 2/7/2014 9:22:37 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 2/7/2014 9:24:37 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 2/7/2014 9:27:09 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7011
Description = 
 
Error - 2/7/2014 9:28:07 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7022
Description = 
 
Error - 2/7/2014 9:28:07 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7011
Description = 
 
Error - 2/7/2014 9:28:36 AM | Computer Name = Mayra-PC | Source = Service Control Manager | ID = 7022
Description = 
 
 
< End of report >
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users