MyCity » Ambulanta -> Arhiva Ambulante » Facebook napast

Facebook napast

Napisano na dan: 3.11.2014
1

Facebook napast
Sledeća strana Pagination

Idi na vrh

Poslao: 03 Nov 2014 15:43
Idi na vrh
offline
  • Pridružio: 12 Feb 2007
  • Poruke: 1239

Zetov laptop, klasika, klik na link i počelo je slanjelinka prijateljima na FB. Combofix je samo skinut, nije pokretan. Nije bio instaliran SP3, i bilo je dosta programa koji se nisu koristili, ako ima nekih ostataka koje bi trebalo obrisati, ne bi bilo loše da se to sada uradi ili da se napomene šta treba obrisati od zaostalih repova.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-11-2014
Ran by milos (administrator) on MILOS-SO5DAGLHS on 03-11-2014 15:26:35
Running from C:\Documents and Settings\milos\Desktop
Loaded Profile: milos (Available profiles: milos & Guest)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
() C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
() C:\Documents and Settings\All Users\Application Data\mts mobilni internet\OnlineUpdate\ouc.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2014-01-21] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Winlogon: [UIHost] C:\WINDOWS\system32\logonui.exe [514560 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {466fe6ac-1da4-11e1-8388-001c238f293c} - table/situation.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {55d40e9e-af85-11e3-83dc-001c238f293c} - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {55d40ea1-af85-11e3-83dc-001c238f293c} - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {682b77fa-7277-11e0-8359-001c238f293c} - E:\RECYCLER\autorun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {78dceb90-5353-11e0-8350-001c238f293c} - F:\ClickMe.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {9dcf06d4-9f65-11e0-835f-001c238f293c} - F:\Windows\Autorun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {a0e8f452-a2c6-11df-831f-001c238f293c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C0\KB915866.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {a0e8f453-a2c6-11df-831f-001c238f293c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C0\KB915866.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {f88df7fa-6bef-11e3-83bf-001c238f293c} - F:\setup.exe
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AutorunsDisabled ()
Startup: C:\Documents and Settings\Guest\Start Menu\Programs\Startup\LimeWire On Startup.lnk
ShortcutTarget: LimeWire On Startup.lnk -> C:\Program Files\LimeWire\LimeWire.exe (No File)
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://www.yahoo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\System32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} http://messenger.zone.msn.com/MessengerGamesConten.....109791.cab
DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5C.....4768038031
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default
FF NewTab: about:home
FF Homepage: https://www.google.rs/
FF NetworkProxy: "no_proxies_on", "*.local"
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Extension: DownloadHelper - C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-10-31]
FF Extension: Easy Youtube Video Downloader Express - C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2014-10-31]
FF Extension: Adblock Edge - C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2014-10-31]

Chrome:
=======
CHR StartupUrls: Default -> "https://www.google.rs/"
CHR Profile: C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-31]
CHR Extension: (Google Docs) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-31]
CHR Extension: (Google Drive) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-31]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-31]
CHR Extension: (YouTube) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-31]
CHR Extension: (Videos AdPlusing) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bmegpamfpaffcbgicfacnehfmgefaibk [2014-11-02]
CHR Extension: (Google Search) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-31]
CHR Extension: (Google Sheets) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-31]
CHR Extension: (Google Wallet) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-31]
CHR Extension: (Gmail) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-31]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-11-20] (AVG Technologies CZ, s.r.o.)
S2 gupdate1c9ceb9f1d49122; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-10-31] (Google Inc.)
R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S3 idsvc; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [864256 2007-10-11] (Microsoft Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2006-12-14] (Hewlett-Packard Company) [File not signed]
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S2 mts mobilni internet. RunOuc; C:\Program Files\mts mobilni internet\UpdateDog\ouc.exe [239968 2014-03-19] ()
S4 NetTcpPortSharing; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [122880 2007-10-11] (Microsoft Corporation) [File not signed]
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [572416 2008-05-30] (Nokia.) [File not signed]
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [1253376 2007-03-17] (Dell Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [16512 2005-11-21] (Adaptec) [File not signed]
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [208184 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [60216 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [22328 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [96568 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [39224 2013-10-23] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [182072 2014-04-15] (AVG Technologies CZ, s.r.o.)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [604928 2007-03-17] (Broadcom Corporation)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [209152 2006-11-03] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [989696 2006-11-03] (Conexant Systems, Inc.)
S3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [90112 2014-03-19] (Huawei Technologies Co., Ltd.)
R1 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [54232 2014-11-03] (Malwarebytes Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 NTIDrvr; C:\WINDOWS\System32\DRIVERS\NTIDrvr.sys [6144 2008-11-17] (NewTech Infosystems, Inc.) [File not signed]
S3 SndTAudio; C:\WINDOWS\System32\drivers\SndTAudio.sys [23096 2008-11-14] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 SndTVideo; C:\WINDOWS\System32\DRIVERS\SndTVideo.sys [3768 2008-11-14] (Windows (R) 2000 DDK provider) [File not signed]
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1222840 2007-05-07] (SigmaTel, Inc.)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2012-01-05] (AnchorFree Inc)
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [43520 2012-02-15] (Apple, Inc.) [File not signed]
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [235392 2014-03-19] (Huawei Technologies Co., Ltd.)
S4 IntelIde; No ImagePath
S3 massfilter; system32\drivers\massfilter.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)
S3 UIUSys; System32\DRIVERS\UIUSYS.SYS [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-03 15:26 - 2014-11-03 15:27 - 00014096 _____ () C:\Documents and Settings\milos\Desktop\FRST.txt
2014-11-03 15:26 - 2014-11-03 15:26 - 00000000 ____D () C:\FRST
2014-11-03 15:09 - 2014-11-03 15:26 - 00000000 ____D () C:\Documents and Settings\milos\Desktop\mbar
2014-11-03 15:08 - 2014-11-03 15:08 - 00000589 _____ () C:\Documents and Settings\milos\Desktop\JRT.txt
2014-11-03 14:58 - 2014-11-03 15:00 - 00000000 ____D () C:\AdwCleaner
2014-11-03 14:56 - 2014-11-03 14:56 - 00190592 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-03 14:52 - 2014-11-03 14:53 - 00002872 _____ () C:\Documents and Settings\milos\Desktop\Rkill.txt
2014-11-03 14:51 - 2014-11-03 14:51 - 05591672 _____ (Swearware) C:\Documents and Settings\milos\Desktop\ComboFix.exe
2014-11-03 14:50 - 2014-11-03 14:50 - 01106432 _____ (Farbar) C:\Documents and Settings\milos\Desktop\FRST.exe
2014-11-03 14:49 - 2014-11-03 14:49 - 00448512 _____ (OldTimer Tools) C:\Documents and Settings\milos\Desktop\TFC.exe
2014-11-03 14:49 - 2014-11-03 14:49 - 00037888 _____ (Soeperman Enterprises Ltd.) C:\Documents and Settings\milos\Desktop\ADSSpy.exe
2014-11-03 14:48 - 2014-11-03 14:48 - 01944824 _____ (Bleeping Computer, LLC) C:\Documents and Settings\milos\Desktop\rkill.exe
2014-11-03 14:48 - 2014-11-03 14:48 - 01706359 _____ (Thisisu) C:\Documents and Settings\milos\Desktop\JRT.exe
2014-11-03 14:48 - 2014-11-03 14:48 - 01375089 _____ () C:\Documents and Settings\milos\Desktop\AdwCleaner.exe
2014-11-03 14:47 - 2014-11-03 14:48 - 04184008 _____ (Kaspersky Lab ZAO) C:\Documents and Settings\milos\Desktop\tdsskiller.exe
2014-11-03 14:47 - 2014-11-03 14:47 - 14349744 _____ (Malwarebytes Corp.) C:\Documents and Settings\milos\Desktop\mbar-1.07.0.1012.exe
2014-11-03 12:38 - 2014-11-03 12:38 - 00000000 ____D () C:\Documents and Settings\milos\Desktop\ccleaner
2014-11-02 11:34 - 2014-11-02 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB970430$
2014-11-02 11:34 - 2014-11-02 11:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2345886$
2014-10-31 20:37 - 2014-10-31 20:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB959426$
2014-10-31 20:37 - 2014-10-31 20:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952954$
2014-10-31 20:37 - 2014-10-31 20:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2922229$
2014-10-31 20:37 - 2014-10-31 20:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868626$
2014-10-31 20:36 - 2014-10-31 20:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2712808$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960859$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2691442$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2631813$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2585542$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2544893-v2$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2479943$
2014-10-31 20:36 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478971$
2014-10-31 20:35 - 2014-10-31 20:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2847311$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974318$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969059$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951978$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950974$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2802968$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2655992$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2481109$
2014-10-31 20:35 - 2014-10-31 20:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2443105$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982132$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978338$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975713$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971657$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2898715$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2780091$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2598479$
2014-10-31 20:34 - 2014-10-31 20:34 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2507938$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979687$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975025$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974112$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876217$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2864063$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2483185$
2014-10-31 20:33 - 2014-10-31 20:33 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2347290$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977816$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975560$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974571$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952004$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862152$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2850869$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2770660$
2014-10-31 20:32 - 2014-10-31 20:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2719985$
2014-10-31 20:31 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2893294$
2014-10-31 20:31 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2876331$
2014-10-31 20:31 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2859537$
2014-10-31 20:31 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2820917$
2014-10-31 20:31 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2757638$
2014-10-31 20:31 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2653956$
2014-10-31 20:31 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2508429$
2014-10-31 20:30 - 2014-10-31 20:31 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB974392$
2014-10-31 20:30 - 2014-10-31 20:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB977914$
2014-10-31 20:30 - 2014-10-31 20:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB971029$
2014-10-31 20:30 - 2014-10-31 20:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2892075$
2014-10-31 20:30 - 2014-10-31 20:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2749655$
2014-10-31 20:30 - 2014-10-31 20:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2506212$
2014-10-31 20:29 - 2014-10-31 20:30 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2619339$
2014-10-31 20:29 - 2014-10-31 20:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979482$
2014-10-31 20:29 - 2014-10-31 20:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978706$
2014-10-31 20:29 - 2014-10-31 20:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978542$
2014-10-31 20:29 - 2014-10-31 20:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2813345$
2014-10-31 20:29 - 2014-10-31 20:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2727528$
2014-10-31 20:29 - 2014-10-31 20:29 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2705219-v2$
2014-10-31 19:20 - 2014-10-31 19:20 - 00000000 __SHD () C:\Documents and Settings\NetworkService\IETldCache
2014-10-31 19:19 - 2014-10-31 19:19 - 00000000 __SHD () C:\Documents and Settings\milos\IETldCache
2014-10-31 18:47 - 2014-10-31 18:47 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB951376-v2$
2014-10-31 18:46 - 2014-10-31 18:46 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2467659$
2014-10-31 18:46 - 2014-03-06 18:59 - 00522240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2014-10-31 18:46 - 2011-08-16 11:45 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2014-10-31 18:45 - 2014-11-02 11:33 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-10-31 18:45 - 2014-03-06 18:59 - 11113472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2014-10-31 18:45 - 2014-03-06 18:59 - 02006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2014-10-31 18:45 - 2014-03-06 18:59 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2014-10-31 18:45 - 2014-03-06 18:59 - 00630272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2014-10-31 18:45 - 2014-03-06 18:59 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2014-10-31 18:45 - 2014-03-06 18:59 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2014-10-31 18:45 - 2014-03-06 18:59 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2014-10-31 18:43 - 2014-10-31 18:45 - 00000000 __HDC () C:\WINDOWS\ie8
2014-10-31 18:38 - 2014-10-03 10:03 - 100290944 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975558_WM8$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955759$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB946648$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2900986$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834886$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2659262$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2564958$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2536276-v2$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2387149$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2378111_WM9$
2014-10-31 18:36 - 2014-10-31 18:36 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2296011$
2014-10-31 18:35 - 2014-10-31 18:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862335$
2014-10-31 18:35 - 2014-10-31 18:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2686509$
2014-10-31 18:35 - 2014-10-31 18:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2485663$
2014-10-31 18:35 - 2014-10-31 18:35 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$
2014-10-31 18:32 - 2014-10-31 18:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB972270$
2014-10-31 18:32 - 2014-10-31 18:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB954155_WM9$
2014-10-31 18:32 - 2014-10-31 18:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$
2014-10-31 18:26 - 2014-10-31 18:26 - 00006632 _____ () C:\WINDOWS\system32\TZLog.log
2014-10-31 18:26 - 2014-10-31 18:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956844$
2014-10-31 18:26 - 2014-10-31 18:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB956572$
2014-10-31 18:26 - 2014-10-31 18:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2904266$
2014-10-31 18:26 - 2014-10-31 18:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2845142_WM64$
2014-10-31 18:26 - 2014-10-31 18:26 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-10-31 18:25 - 2014-10-31 18:25 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973869$
2014-10-31 18:22 - 2014-10-31 18:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2014-10-31 18:22 - 2014-10-31 18:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2592799$
2014-10-31 18:21 - 2014-10-31 18:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952287$
2014-10-31 18:21 - 2014-10-31 18:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB950762$
2014-10-31 18:21 - 2014-10-31 18:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB941569$
2014-10-31 18:21 - 2014-10-31 18:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2807986$
2014-10-31 18:21 - 2014-10-31 18:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2570947$
2014-10-31 18:21 - 2014-10-31 18:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2535512$
2014-10-31 18:20 - 2014-10-31 18:20 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB978695_WM9$
2014-10-31 18:20 - 2014-10-31 18:20 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973904$
2014-10-31 18:20 - 2014-10-31 18:20 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973540_WM9$
2014-10-31 18:20 - 2014-10-31 18:20 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB929399$
2014-10-31 18:20 - 2014-10-31 18:20 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2868038$
2014-10-31 18:20 - 2014-10-31 18:20 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2603381$
2014-10-31 18:20 - 2014-10-31 18:20 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2419632$
2014-10-31 18:18 - 2014-10-31 18:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981997$
2014-10-31 18:18 - 2014-10-31 18:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2014-10-31 18:18 - 2014-10-31 18:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB960803$
2014-10-31 18:18 - 2014-10-31 18:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB952069_WM9$
2014-10-31 18:18 - 2014-10-31 18:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2723135-v2$
2014-10-31 18:18 - 2014-10-31 18:18 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2698365$
2014-10-31 18:17 - 2014-10-31 18:17 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973815$
2014-10-31 18:17 - 2014-10-31 18:17 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2862330$
2014-10-31 18:16 - 2014-10-31 18:16 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2509553$
2014-10-31 18:15 - 2014-10-31 18:15 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2676562$
2014-10-31 18:14 - 2014-10-31 18:14 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB982665$
2014-10-31 18:14 - 2014-10-31 18:14 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB923561$
2014-10-31 18:14 - 2014-10-31 18:14 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2620712$
2014-10-31 18:14 - 2014-10-31 18:14 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2478960$
2014-10-31 18:14 - 2014-10-31 18:14 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2393802$
2014-10-31 18:13 - 2014-10-31 18:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB975467$
2014-10-31 18:13 - 2014-10-31 18:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB968389$
2014-10-31 18:13 - 2014-10-31 18:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-10-31 18:13 - 2014-10-31 18:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2661637$
2014-10-31 18:13 - 2014-10-31 18:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2014-10-31 18:13 - 2014-10-31 18:13 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2566454$
2014-10-31 18:12 - 2014-10-31 18:12 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2423089$
2014-10-31 18:08 - 2014-10-31 18:08 - 00000000 ____D () C:\Documents and Settings\milos\Application Data\Adobe
2014-10-31 18:08 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2014-10-31 18:08 - 2013-07-03 02:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2014-10-31 18:08 - 2008-06-13 12:05 - 00272128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthport.sys
2014-10-31 18:07 - 2014-11-03 15:03 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-10-31 18:07 - 2014-10-31 18:07 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-10-31 18:07 - 2014-10-31 18:07 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-10-31 18:07 - 2011-07-15 14:29 - 00456320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mrxsmb.sys
2014-10-31 18:06 - 2010-08-23 17:12 - 00617472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comctl32.dll
2014-10-31 18:06 - 2010-06-14 15:31 - 00744448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2014-10-31 18:05 - 2014-10-31 18:05 - 00483562 _____ () C:\Documents and Settings\milos\My Documents\cc_20141031_180511.reg
2014-10-31 18:05 - 2014-10-31 18:05 - 00010632 _____ () C:\Documents and Settings\milos\My Documents\cc_20141031_180529.reg
2014-10-31 18:05 - 2014-10-31 18:05 - 00000540 _____ () C:\Documents and Settings\milos\My Documents\cc_20141031_180545.reg
2014-10-31 18:05 - 2011-02-08 14:33 - 00978944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc42.dll
2014-10-31 18:05 - 2010-09-18 07:53 - 00953856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mfc40u.dll
2014-10-31 18:04 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-10-31 18:04 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2014-10-31 18:04 - 2013-07-17 01:58 - 00046848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys
2014-10-31 18:04 - 2009-11-21 16:51 - 00471552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aclayers.dll
2014-10-31 18:03 - 2013-08-09 01:55 - 00144128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2014-10-31 18:03 - 2013-08-09 01:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2014-10-31 18:03 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2014-10-31 18:03 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2014-10-31 18:03 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023.sys
2014-10-31 18:03 - 2009-03-18 12:02 - 00030336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2014-10-31 18:02 - 2012-07-04 15:05 - 00139784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2014-10-31 18:02 - 2010-08-27 09:02 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\t2embed.dll
2014-10-31 18:02 - 2009-10-15 17:28 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fontsub.dll
2014-10-31 18:00 - 2012-05-28 19:16 - 00536576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2014-10-31 17:59 - 2008-05-08 15:02 - 00203136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rmcast.sys
2014-10-31 17:58 - 2008-05-01 15:33 - 00331776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2014-10-31 17:57 - 2010-06-18 14:36 - 03558912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2014-10-31 17:57 - 2009-06-21 22:44 - 00153088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2014-10-31 17:57 - 2009-03-06 15:22 - 00284160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pdh.dll
2014-10-31 17:57 - 2009-02-09 13:10 - 00617472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\advapi32.dll
2014-10-31 17:57 - 2009-02-09 13:10 - 00473600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2014-10-31 17:57 - 2009-02-09 13:10 - 00453120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2014-10-31 17:57 - 2009-02-09 13:10 - 00401408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcss.dll
2014-10-31 17:57 - 2009-02-06 12:11 - 00110592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\services.exe
2014-10-31 17:57 - 2009-02-06 11:10 - 00227840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2014-10-31 17:56 - 2014-10-31 18:03 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-10-31 17:56 - 2014-10-31 17:56 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
2014-10-31 17:54 - 2011-04-21 14:37 - 00105472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mup.sys
2014-10-31 17:54 - 2009-07-27 23:27 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2014-10-31 17:51 - 2014-10-31 17:56 - 00000000 ____D () C:\Documents and Settings\milos\Local Settings\Application Data\Google
2014-10-31 17:51 - 2014-10-31 17:55 - 00000000 ____D () C:\Program Files\Google
2014-10-31 17:51 - 2014-10-31 17:51 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-31 17:51 - 2014-10-31 17:51 - 00000000 ____D () C:\Documents and Settings\milos\Start Menu\Programs\CCleaner
2014-10-31 17:46 - 2013-11-27 21:21 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndproxy.sys
2014-10-31 17:46 - 2013-11-06 02:03 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsp4res.dll
2014-10-31 17:46 - 2013-07-04 04:03 - 02149888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2014-10-31 17:46 - 2013-07-04 03:59 - 02193536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2014-10-31 17:46 - 2013-07-04 03:08 - 02070144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2014-10-31 17:46 - 2013-07-04 03:08 - 02028544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2014-10-31 17:46 - 2012-01-11 20:06 - 00003072 ____N () C:\WINDOWS\system32\iacenc.dll
2014-10-31 17:46 - 2012-01-11 20:06 - 00003072 ____C () C:\WINDOWS\system32\dllcache\iacenc.dll
2014-10-31 17:46 - 2011-07-08 15:02 - 00010496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndistapi.sys
2014-10-31 17:46 - 2010-12-09 16:15 - 00718336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntdll.dll
2014-10-31 17:46 - 2010-07-12 13:55 - 00218112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2014-10-31 17:46 - 2009-11-21 16:51 - 01206508 ____C () C:\WINDOWS\system32\dllcache\sysmain.sdb
2014-10-31 17:43 - 2014-10-31 18:07 - 00000000 ____D () C:\Documents and Settings\milos\Local Settings\Application Data\Adobe
2014-10-31 17:38 - 2010-10-11 15:59 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2014-10-31 17:29 - 2012-06-02 15:18 - 00275696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll
2014-10-31 17:29 - 2012-06-02 15:18 - 00017136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll.mui
2014-10-31 17:28 - 2014-10-31 17:28 - 00000722 _____ () C:\Documents and Settings\milos\Desktop\Skype.exe.lnk
2014-10-31 17:23 - 2014-10-31 17:23 - 00000000 ____D () C:\Documents and Settings\milos\Local Settings\Application Data\Skype
2014-10-31 16:53 - 2013-11-13 02:13 - 00046080 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe
2014-10-31 16:53 - 2012-11-06 03:01 - 01371648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll
2014-10-31 16:53 - 2010-08-26 17:16 - 04886528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmp.dll
2014-10-31 16:53 - 2009-07-12 12:21 - 00233472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpdxm.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00291328 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00193024 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe
2014-10-31 16:53 - 2008-04-14 05:42 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00114688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpasf.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe
2014-10-31 16:53 - 2008-04-14 05:42 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe
2014-10-31 16:53 - 2008-04-14 05:42 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\verclsid.exe
2014-10-31 16:53 - 2008-04-14 05:42 - 00010752 ____N (Microsoft Corporation) C:\WINDOWS\system32\smtpapi.dll
2014-10-31 16:53 - 2008-04-14 05:42 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rwnh.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00384512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mp4sdmod.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00310272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mp43dmod.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00180224 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00132096 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2014-10-31 16:53 - 2008-04-14 05:41 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2014-10-31 16:53 - 2008-04-14 05:40 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm
2014-10-31 16:53 - 2008-04-14 05:40 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll
2014-10-31 16:53 - 2008-04-14 05:40 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm
2014-10-31 16:53 - 2008-04-14 05:39 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm
2014-10-31 16:53 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll
2014-10-31 16:53 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll
2014-10-31 16:53 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll
2014-10-31 16:53 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll
2014-10-31 16:53 - 2008-04-13 23:45 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll
2014-10-31 16:53 - 2008-04-13 22:58 - 00184959 ____C () C:\WINDOWS\system32\dllcache\compact.wmz
2014-10-31 16:53 - 2008-04-13 22:58 - 00066725 ____C () C:\WINDOWS\system32\dllcache\revert.wmz
2014-10-31 16:53 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll
2014-10-31 16:53 - 2008-04-13 22:53 - 00168448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmerror.dll
2014-10-31 16:53 - 2007-06-26 11:30 - 00572557 ____C () C:\WINDOWS\system32\dllcache\rtuner.wmv
2014-10-31 16:53 - 2007-06-26 11:30 - 00457607 ____C () C:\WINDOWS\system32\dllcache\mdlib.wmv
2014-10-31 16:53 - 2007-06-26 11:30 - 00381425 ____C () C:\WINDOWS\system32\dllcache\copycd.wmv
2014-10-31 16:53 - 2007-06-26 11:30 - 00375519 ____C () C:\WINDOWS\system32\dllcache\nuskin.wmv
2014-10-31 16:53 - 2007-06-26 11:30 - 00354468 ____C () C:\WINDOWS\system32\dllcache\wmpaud1.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00343204 ____C () C:\WINDOWS\system32\dllcache\wmpaud7.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00343204 ____C () C:\WINDOWS\system32\dllcache\wmpaud6.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00300969 ____C () C:\WINDOWS\system32\dllcache\viz.wmv
2014-10-31 16:53 - 2007-06-26 11:30 - 00172196 ____C () C:\WINDOWS\system32\dllcache\wmpaud9.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00172196 ____C () C:\WINDOWS\system32\dllcache\wmpaud8.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00172196 ____C () C:\WINDOWS\system32\dllcache\wmpaud3.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00086196 ____C () C:\WINDOWS\system32\dllcache\wmpaud5.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00086180 ____C () C:\WINDOWS\system32\dllcache\wmpaud4.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00086180 ____C () C:\WINDOWS\system32\dllcache\wmpaud2.wav
2014-10-31 16:53 - 2007-06-26 11:30 - 00022060 ____C () C:\WINDOWS\system32\dllcache\npds.zip
2014-10-31 16:53 - 2007-06-26 11:30 - 00010457 ____C () C:\WINDOWS\system32\dllcache\wmptour.hta
2014-10-31 16:53 - 2007-06-26 11:30 - 00009585 ____C () C:\WINDOWS\system32\dllcache\controls.css
2014-10-31 16:53 - 2007-06-26 11:30 - 00008298 ____C () C:\WINDOWS\system32\dllcache\contents.htm
2014-10-31 16:53 - 2007-06-26 11:30 - 00006878 ____C () C:\WINDOWS\system32\dllcache\controls.js
2014-10-31 16:53 - 2007-06-26 11:30 - 00005971 ____C () C:\WINDOWS\system32\dllcache\events.js
2014-10-31 16:53 - 2007-06-26 11:30 - 00003187 ____C () C:\WINDOWS\system32\dllcache\tour.js
2014-10-31 16:53 - 2007-06-26 11:30 - 00001771 ____C () C:\WINDOWS\system32\dllcache\wmptour.css
2014-10-31 16:53 - 2007-06-26 11:30 - 00001148 ____C () C:\WINDOWS\system32\dllcache\snd.htm
2014-10-31 16:53 - 2007-06-26 11:30 - 00000420 ____C () C:\WINDOWS\system32\dllcache\wmploc.js
2014-10-31 16:53 - 2007-06-26 11:29 - 00097117 ____C () C:\WINDOWS\system32\dllcache\mplayer2.hlp
2014-10-31 16:53 - 2007-06-26 11:29 - 00001885 ____C () C:\WINDOWS\system32\dllcache\mplayer2.cnt
2014-10-31 16:53 - 2007-06-26 11:28 - 00613334 ____C () C:\WINDOWS\system32\dllcache\wmplayer.chm
2014-10-31 16:53 - 2007-06-26 11:28 - 00067374 ____C () C:\WINDOWS\system32\dllcache\wmplayer.adm
2014-10-31 16:53 - 2007-06-26 11:26 - 00077307 ____C () C:\WINDOWS\system32\dllcache\plyr_err.chm
2014-10-31 16:53 - 2007-06-26 11:26 - 00001477 ____C () C:\WINDOWS\system32\dllcache\plylst6.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001477 ____C () C:\WINDOWS\system32\dllcache\plylst5.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001474 ____C () C:\WINDOWS\system32\dllcache\plylst3.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001451 ____C () C:\WINDOWS\system32\dllcache\plylst12.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001448 ____C () C:\WINDOWS\system32\dllcache\plylst4.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001250 ____C () C:\WINDOWS\system32\dllcache\plylst1.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001049 ____C () C:\WINDOWS\system32\dllcache\plylst2.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001046 ____C () C:\WINDOWS\system32\dllcache\plylst7.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00001036 ____C () C:\WINDOWS\system32\dllcache\plylst8.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00000789 ____C () C:\WINDOWS\system32\dllcache\plylst11.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00000787 ____C () C:\WINDOWS\system32\dllcache\plylst10.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00000784 ____C () C:\WINDOWS\system32\dllcache\plylst9.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00000783 ____C () C:\WINDOWS\system32\dllcache\plylst13.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00000775 ____C () C:\WINDOWS\system32\dllcache\plylst14.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00000733 ____C () C:\WINDOWS\system32\dllcache\plylst15.wpl
2014-10-31 16:53 - 2007-06-26 11:26 - 00000403 ____C () C:\WINDOWS\system32\dllcache\npdrmv2.zip
2014-10-31 16:53 - 2007-04-02 23:21 - 00023195 ____C () C:\WINDOWS\system32\dllcache\wmplay.chm
2014-10-31 16:52 - 2014-10-31 16:52 - 00000000 ____D () C:\WINDOWS\system32\scripting
2014-10-31 16:52 - 2014-10-31 16:52 - 00000000 ____D () C:\WINDOWS\system32\bits
2014-10-31 16:52 - 2014-10-31 16:52 - 00000000 ____D () C:\WINDOWS\l2schemas
2014-10-31 16:52 - 2008-04-14 05:42 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-10-31 16:52 - 2008-04-13 23:09 - 00689152 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp3res.dll
2014-10-31 16:48 - 2010-03-30 00:52 - 00262416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpg4ds32.ax
2014-10-31 16:48 - 2009-08-26 09:00 - 00247326 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\strmdll.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00364544 ____C (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00303616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmstream.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe
2014-10-31 16:48 - 2008-04-14 05:42 - 00278559 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmv8ds32.ax
2014-10-31 16:48 - 2008-04-14 05:42 - 00258048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmvds32.ax
2014-10-31 16:48 - 2008-04-14 05:42 - 00226816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadds32.ax
2014-10-31 16:48 - 2008-04-14 05:42 - 00208896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unregmp2.exe
2014-10-31 16:48 - 2008-04-14 05:42 - 00152064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shmedia.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplay32.exe
2014-10-31 16:48 - 2008-04-14 05:42 - 00115200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmsdmoe.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpshell.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmplayer.exe
2014-10-31 16:48 - 2008-04-14 05:42 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msscds32.ax
2014-10-31 16:48 - 2008-04-14 05:42 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpui.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpcore.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpcd.dll
2014-10-31 16:48 - 2008-04-14 05:42 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll
2014-10-31 16:48 - 2008-04-14 05:41 - 00498742 ____C () C:\WINDOWS\system32\dllcache\dxmasf.dll
2014-10-31 16:48 - 2008-04-14 05:41 - 00240640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpg4dmod.dll
2014-10-31 16:48 - 2008-04-14 05:41 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmp.ocx
2014-10-31 16:48 - 2008-04-14 05:40 - 00844314 ____C () C:\WINDOWS\system32\dllcache\msdxm.ocx
2014-10-31 16:48 - 2008-04-14 05:40 - 00004126 ____C () C:\WINDOWS\system32\dllcache\msdxmlc.dll
2014-10-31 16:48 - 2008-04-13 22:58 - 02940928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmploc.dll
2014-10-31 16:48 - 2008-04-13 22:53 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asferror.dll
2014-10-31 16:40 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys
2014-10-31 15:16 - 2014-11-03 15:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2014-10-31 15:08 - 2014-10-31 15:09 - 00000000 ____D () C:\Documents and Settings\milos\Application Data\SumatraPDF
2014-10-31 15:08 - 2014-10-31 15:08 - 00001586 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\SumatraPDF.lnk
2014-10-31 15:08 - 2014-10-31 15:08 - 00000000 ____D () C:\Program Files\SumatraPDF
2014-10-31 15:01 - 2014-10-31 18:03 - 00000000 ____D () C:\Program Files\SRWare Iron
2014-10-31 15:01 - 2014-10-31 15:01 - 00000000 ____D () C:\Documents and Settings\milos\Local Settings\Application Data\Chromium
2014-10-31 14:24 - 2014-10-31 14:24 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-10-31 14:17 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-10-31 13:55 - 2014-10-31 13:55 - 00000000 ____D () C:\Program Files\7-Zip
2014-10-31 13:55 - 2014-10-31 13:55 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
2014-10-31 13:49 - 2014-10-31 13:49 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-31 13:43 - 2014-10-31 13:44 - 00000000 ____D () C:\Documents and Settings\milos\Application Data\oldskypePM
2014-10-31 13:00 - 2014-10-31 13:00 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-10-31 13:00 - 2006-10-26 19:58 - 00030512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdimon.dll
2014-10-31 12:50 - 2014-10-31 13:59 - 00000000 ____D () C:\WINDOWS\SxsCaPendDel
2014-10-20 14:47 - 2014-11-03 15:09 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-10-20 14:47 - 2014-11-03 15:09 - 00054232 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-10-20 14:47 - 2014-10-20 14:47 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-10-20 14:47 - 2014-10-20 14:47 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-10-20 14:47 - 2014-10-20 14:47 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-20 14:47 - 2014-10-20 14:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-10-20 14:47 - 2014-10-01 10:11 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-10-20 14:41 - 2014-10-20 14:41 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-10-20 14:41 - 2014-10-20 14:41 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Skype
2014-10-20 14:40 - 2014-10-20 14:41 - 00000000 ___RD () C:\Program Files\Skype

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-03 15:27 - 2008-06-18 22:23 - 00000000 ____D () C:\Documents and Settings\milos\Local Settings\Temp
2014-11-03 15:10 - 2008-06-18 22:51 - 01632668 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-03 15:06 - 2008-06-19 00:08 - 00508956 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-03 15:02 - 2008-06-19 00:10 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-11-03 15:02 - 2008-06-19 00:10 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-11-03 15:02 - 2008-06-18 22:30 - 00027335 _____ () C:\WINDOWS\system32\nvModes.001
2014-11-03 15:01 - 2012-02-01 01:25 - 00000880 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cce077f47ba258.job
2014-11-03 15:01 - 2008-06-18 22:16 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-03 15:00 - 2008-06-18 22:22 - 00032566 _____ () C:\WINDOWS\SchedLgU.Txt
2014-11-03 14:59 - 2009-07-01 00:36 - 00000884 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-03 14:50 - 2014-04-28 14:45 - 00000998 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1715567821-1604221776-682003330-1003UA.job
2014-11-03 14:45 - 2008-06-19 08:23 - 00000000 __SHD () C:\Documents and Settings\milos\UserData
2014-11-03 14:45 - 2008-06-18 22:23 - 00000000 ____D () C:\Documents and Settings\milos
2014-11-03 12:42 - 2013-12-23 17:36 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-11-03 08:59 - 2008-07-18 00:03 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-11-02 11:33 - 2008-07-28 22:27 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-10-31 20:29 - 2008-06-18 22:14 - 00000000 ____D () C:\Program Files\Outlook Express
2014-10-31 19:20 - 2008-06-18 22:23 - 00000803 _____ () C:\Documents and Settings\milos\Start Menu\Programs\Internet Explorer.lnk
2014-10-31 19:20 - 2008-06-18 22:22 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-10-31 19:18 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\Media
2014-10-31 19:18 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\Help
2014-10-31 18:36 - 2008-06-18 22:13 - 00000000 ____D () C:\Program Files\Messenger
2014-10-31 18:25 - 2008-06-18 23:02 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-10-31 18:18 - 2008-06-18 22:14 - 00000000 ____D () C:\Program Files\Movie Maker
2014-10-31 18:11 - 2008-06-21 23:34 - 00000000 ____D () C:\Documents and Settings\milos\Application Data\Skype
2014-10-31 17:07 - 2008-06-18 22:52 - 00000792 _____ () C:\Documents and Settings\LocalService\Start Menu\Programs\Windows Media Player.lnk
2014-10-31 17:06 - 2008-06-18 22:51 - 00000269 ____C () C:\WINDOWS\system32\spupdwxp.log
2014-10-31 17:06 - 2008-06-18 22:23 - 00000792 _____ () C:\Documents and Settings\milos\Start Menu\Programs\Windows Media Player.lnk
2014-10-31 17:06 - 2008-06-18 22:23 - 00000738 _____ () C:\Documents and Settings\milos\Start Menu\Programs\Outlook Express.lnk
2014-10-31 17:05 - 2001-08-23 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-10-31 17:01 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\security
2014-10-31 16:59 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\system
2014-10-31 16:58 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\msagent
2014-10-31 16:58 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\ime
2014-10-31 16:56 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\system32\usmt
2014-10-31 16:54 - 2008-06-18 22:16 - 00001563 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2014-10-31 16:54 - 2008-06-18 22:11 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2014-10-31 16:53 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-10-31 16:53 - 2008-06-18 22:44 - 00000000 ____D () C:\WINDOWS\ServicePackFiles
2014-10-31 16:52 - 2008-06-18 22:45 - 00000000 ____D () C:\WINDOWS\peernet
2014-10-31 16:49 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\system32\npp
2014-10-31 16:49 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\mui
2014-10-31 16:49 - 2008-06-18 22:14 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-10-31 16:49 - 2008-06-18 22:14 - 00000000 ____D () C:\WINDOWS\srchasst
2014-10-31 16:49 - 2008-06-18 22:14 - 00000000 ____D () C:\Program Files\NetMeeting
2014-10-31 16:49 - 2008-06-18 22:12 - 00000000 ____D () C:\WINDOWS\system32\Com
2014-10-31 16:49 - 2008-06-18 22:12 - 00000000 ____D () C:\Program Files\Windows NT
2014-10-31 16:48 - 2008-06-18 22:13 - 00000000 ____D () C:\Program Files\Common Files\System
2014-10-31 16:40 - 2002-08-29 02:05 - 00250048 __RSH () C:\ntldr
2014-10-31 16:38 - 2008-06-18 22:40 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstall$
2014-10-31 16:38 - 2008-06-18 22:27 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-10-31 16:10 - 2011-12-22 04:20 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2014-10-31 14:55 - 2008-11-17 19:05 - 00000000 ____D () C:\Program Files\Common Files\LightScribe
2014-10-31 14:08 - 2010-09-09 23:49 - 00000000 ____D () C:\WINDOWS\system32\LogFiles
2014-10-31 14:03 - 2008-06-19 00:06 - 00000211 __RSH () C:\boot.ini
2014-10-31 14:03 - 2001-08-23 13:00 - 00000487 _____ () C:\WINDOWS\win.ini
2014-10-31 14:03 - 2001-08-23 13:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-10-31 13:59 - 2012-12-23 05:41 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-10-31 13:56 - 2008-07-19 12:55 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Temp
2014-10-31 13:56 - 2008-06-18 22:22 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2014-10-31 13:43 - 2009-02-14 06:47 - 00000000 ____D () C:\Documents and Settings\milos\Application Data\skypePM
2014-10-31 13:40 - 2009-10-22 00:14 - 00000000 ____D () C:\Documents and Settings\Guest\Tracing
2014-10-31 13:40 - 2009-09-28 21:36 - 00000000 ____D () C:\Documents and Settings\milos\Tracing
2014-10-31 13:10 - 2008-06-19 11:14 - 00000000 ____D () C:\Program Files\WinRAR
2014-10-31 13:10 - 2008-06-19 00:08 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-31 13:00 - 2008-06-18 23:09 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office
2014-10-31 12:55 - 2013-01-04 15:33 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-10-31 12:53 - 2008-06-18 22:53 - 00000000 ____D () C:\Program Files\DivX
2014-10-31 12:25 - 2008-06-19 00:01 - 00000000 ____D () C:\WINDOWS\Cursors
2014-10-30 20:50 - 2014-04-28 14:45 - 00000976 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1715567821-1604221776-682003330-1003Core.job
2014-10-23 20:40 - 2008-06-19 12:15 - 00000116 _____ () C:\WINDOWS\NeroDigital.ini
2014-10-20 14:41 - 2008-06-21 23:34 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-10-13 20:12 - 2008-06-18 22:30 - 00027335 _____ () C:\WINDOWS\system32\nvModes.dat

Some content of TEMP:
====================
C:\Documents and Settings\milos\Local Settings\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================


https://www.mycity.rs/must-login.png

Poslao: 03 Nov 2014 16:45
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow

Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.

HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {466fe6ac-1da4-11e1-8388-001c238f293c} - table/situation.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {55d40e9e-af85-11e3-83dc-001c238f293c} - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {55d40ea1-af85-11e3-83dc-001c238f293c} - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {682b77fa-7277-11e0-8359-001c238f293c} - E:\RECYCLER\autorun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {78dceb90-5353-11e0-8350-001c238f293c} - F:\ClickMe.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {9dcf06d4-9f65-11e0-835f-001c238f293c} - F:\Windows\Autorun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {a0e8f452-a2c6-11df-831f-001c238f293c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C0\KB915866.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {a0e8f453-a2c6-11df-831f-001c238f293c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C0\KB915866.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {f88df7fa-6bef-11e3-83bf-001c238f293c} - F:\setup.exe
CHR Extension: (Videos AdPlusing) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bmegpamfpaffcbgicfacnehfmgefaibk [2014-11-02]
EmptyTemp:


U okviru Notepad-a klikni na File --> Save As
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum

Poslao: 03 Nov 2014 18:04
Idi na vrh
offline
  • Pridružio: 12 Feb 2007
  • Poruke: 1239

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 02-11-2014
Ran by milos at 2014-11-03 17:56:04 Run:1
Running from C:\Documents and Settings\milos\Desktop
Loaded Profile: milos (Available profiles: milos & Guest)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {466fe6ac-1da4-11e1-8388-001c238f293c} - table/situation.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {55d40e9e-af85-11e3-83dc-001c238f293c} - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {55d40ea1-af85-11e3-83dc-001c238f293c} - F:\AutoRun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {682b77fa-7277-11e0-8359-001c238f293c} - E:\RECYCLER\autorun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {78dceb90-5353-11e0-8350-001c238f293c} - F:\ClickMe.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {9dcf06d4-9f65-11e0-835f-001c238f293c} - F:\Windows\Autorun.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {a0e8f452-a2c6-11df-831f-001c238f293c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C0\KB915866.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {a0e8f453-a2c6-11df-831f-001c238f293c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL .\MSOCache\90000804-6000-11D3-8CFE-0150048383C0\KB915866.exe
HKU\S-1-5-21-1715567821-1604221776-682003330-1003\...\MountPoints2: {f88df7fa-6bef-11e3-83bf-001c238f293c} - F:\setup.exe
CHR Extension: (Videos AdPlusing) - C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bmegpamfpaffcbgicfacnehfmgefaibk [2014-11-02]
EmptyTemp:
*****************

"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-1715567821-1604221776-682003330-1003" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{466fe6ac-1da4-11e1-8388-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{466fe6ac-1da4-11e1-8388-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{55d40e9e-af85-11e3-83dc-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{55d40e9e-af85-11e3-83dc-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{55d40ea1-af85-11e3-83dc-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{55d40ea1-af85-11e3-83dc-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{682b77fa-7277-11e0-8359-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{682b77fa-7277-11e0-8359-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{78dceb90-5353-11e0-8350-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{78dceb90-5353-11e0-8350-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9dcf06d4-9f65-11e0-835f-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{9dcf06d4-9f65-11e0-835f-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a0e8f452-a2c6-11df-831f-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{a0e8f452-a2c6-11df-831f-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a0e8f453-a2c6-11df-831f-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{a0e8f453-a2c6-11df-831f-001c238f293c}" => Key not found.
"HKU\S-1-5-21-1715567821-1604221776-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f88df7fa-6bef-11e3-83bf-001c238f293c}" => Key deleted successfully.
"HKCR\CLSID\{f88df7fa-6bef-11e3-83bf-001c238f293c}" => Key not found.
C:\Documents and Settings\milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bmegpamfpaffcbgicfacnehfmgefaibk => Moved successfully.
EmptyTemp: => Removed 36.9 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====

Poslao: 03 Nov 2014 18:17
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop.


Zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sljedeći tekst:

process;
startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;
filesrcm;


Klikni na dugme i pričekaj da se skeniranje završi.


Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju.

Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadržaj tog loga u poruku.

Poslao: 03 Nov 2014 18:32
Idi na vrh
offline
  • Pridružio: 12 Feb 2007
  • Poruke: 1239

Zoek.exe v5.0.0.0 Updated 03-November-2014
Tool run by milos on pon 03.11.2014 at 18:23:26,92.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\milos\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

3.11.2014 18:25:01 Zoek.exe System Restore Point Created Succesfully.

==== Running Processes ======================

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Documents and Settings\All Users\Application Data\mts mobilni internet\OnlineUpdate\ouc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\System32\alg.exe
C:\Documents and Settings\milos\Desktop\zoek.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k imgsvc

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\DOCUME~1\milos\LOCALS~1\Temp ====
====== Java Cache =====
====== C:\WINDOWS\system32 =====
2014-11-03 13:56:19 64568093B75B0B610CB865C8E3485B43 190592 ----a-w- C:\WINDOWS\System32\FNTCACHE.DAT
2014-10-31 17:38:49 EE3F95001CD661ED824282C6CF7DE440 100290944 ----a-w- C:\WINDOWS\System32\MRT.exe
2014-10-31 17:07:33 BD66DA54FFF371C491CE1C342BB23763 701104 ----a-w- C:\WINDOWS\System32\FlashPlayerApp.exe
2014-10-31 17:07:33 A4A64E86CE5D3090C82D0A7D4C90AA32 71344 ----a-w- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
2014-10-31 16:46:38 94FDCDEAB19D5151D388EDC3502F18BB 7168 ----a-w- C:\WINDOWS\System32\xpsp4res.dll
2014-10-31 16:46:16 C30B851A482C4549125F4209788791E6 3072 ------w- C:\WINDOWS\System32\iacenc.dll
2014-10-31 16:29:14 BBDFDBEAD1B7A1CFD44BFFFD177FB627 275696 ----a-w- C:\WINDOWS\System32\mucltui.dll
2014-10-31 16:29:14 34A0D56B1332DD8E38D5078D5EE17080 17136 ----a-w- C:\WINDOWS\System32\mucltui.dll.mui
2014-10-31 15:53:18 F22ED2CD5E26514C6E8D21B5DA4572A3 10752 ------w- C:\WINDOWS\System32\smtpapi.dll
2014-10-31 15:53:18 5D55DEFB3AB92BC43C4DFD06935FA0F1 9728 ------w- C:\WINDOWS\System32\rwnh.dll
2014-10-31 15:53:11 B0C23B6813A9FCBAE18370247BE594CE 136192 ------w- C:\WINDOWS\System32\aaclient.dll
2014-10-31 15:53:10 97AE3A4180CAB360F44F7F03E5E0F409 7168 ------w- C:\WINDOWS\System32\bitsprx4.dll
2014-10-31 15:53:10 8E20D83D04076A3682706A2BE1BBA80E 12800 ------w- C:\WINDOWS\System32\credssp.dll
2014-10-31 15:53:10 5B6245518D71A6108BC385C4A8348218 233472 ------w- C:\WINDOWS\System32\azroles.dll
2014-10-31 15:53:09 F69189EB97B118B690ACCA93760AD738 39936 ------w- C:\WINDOWS\System32\dot3gpclnt.dll
2014-10-31 15:53:09 F21A712EB2B656CD86FCC057446F9C34 650752 ------w- C:\WINDOWS\System32\dot3ui.dll
2014-10-31 15:53:09 EA39DA293C8BBAA0F89419BA64734CC7 56320 ------w- C:\WINDOWS\System32\dot3msm.dll
2014-10-31 15:53:09 E85FD6ABA80BD637AA2AA9D93308D355 57856 ------w- C:\WINDOWS\System32\dot3cfg.dll
2014-10-31 15:53:09 E6EF7BC927D9F8F9BA1584BFC39E0C6F 30720 ------w- C:\WINDOWS\System32\eapolqec.dll
2014-10-31 15:53:09 E2092F0A1D7ABC243F9C2362483D150D 19456 ------w- C:\WINDOWS\System32\dimsntfy.dll
2014-10-31 15:53:09 8E2CC37BA87D8F681066E0E9C8A19F73 26112 ------w- C:\WINDOWS\System32\dot3api.dll
2014-10-31 15:53:09 7954A8B0657676E947403F0AC0F21755 184832 ------w- C:\WINDOWS\System32\eapp3hst.dll
2014-10-31 15:53:09 5DB625E7D095604010CF84DE2D8ACFA6 126976 ------w- C:\WINDOWS\System32\eappcfg.dll
2014-10-31 15:53:09 4E8F3230BAC8C1CAADF01A8C728E1C5C 9216 ------w- C:\WINDOWS\System32\dot3dlg.dll
2014-10-31 15:53:09 395FD41D69C1AB8CE91FEABD2168097E 94208 ------w- C:\WINDOWS\System32\eappgnui.dll
2014-10-31 15:53:09 11F4A22796CB652BD574D8CB03B9874C 39936 ------w- C:\WINDOWS\System32\dimsroam.dll
2014-10-31 15:53:09 11A9E0581F6441876FFBF331D294C10A 48640 ------w- C:\WINDOWS\System32\dhcpqec.dll
2014-10-31 15:53:09 0F0F6E687E5E15579EF4DA8DD6945814 132096 ------w- C:\WINDOWS\System32\dot3svc.dll
2014-10-31 15:53:08 ABC4206543450C0666D152F4B65833B8 40960 ------w- C:\WINDOWS\System32\eappprxy.dll
2014-10-31 15:53:08 3B06CDD1A41618944A906589C052F2B3 59392 ------w- C:\WINDOWS\System32\eapqec.dll
2014-10-31 15:53:08 2187855A7703ADEF0CEF9EE4285182CC 33792 ------w- C:\WINDOWS\System32\eapsvc.dll
2014-10-31 15:53:08 0BCB0EBC1B08FA384EC68F253C7253EF 180224 ------w- C:\WINDOWS\System32\eapphost.dll
2014-10-31 15:53:06 F0874563D668EEC633AC52F8B6167ACD 6144 ------w- C:\WINDOWS\System32\kbdbhc.dll
2014-10-31 15:53:06 A445F7BE8100EFB90161E4868A643E34 6144 ------w- C:\WINDOWS\System32\kbdnepr.dll
2014-10-31 15:53:06 9FE65E81B4C27D967DB6646271AB242F 6144 ------w- C:\WINDOWS\System32\kbdpash.dll
2014-10-31 15:53:06 8878BD685E490239777BFE51320B88E9 61440 ------w- C:\WINDOWS\System32\kmsvc.dll
2014-10-31 15:53:06 82FDD74B54E27D9BB2A486B1181EC7A9 6144 ------w- C:\WINDOWS\System32\kbdiultn.dll
2014-10-31 15:53:06 3879D931FBB110292A16C8A3A11D7ED4 37376 ------w- C:\WINDOWS\System32\l2gpstore.dll
2014-10-31 15:53:05 9A425D4F1C1ED0DA1A35B25DE5632378 184320 ------w- C:\WINDOWS\System32\microsoft.managementconsole.dll
2014-10-31 15:53:05 308EC3363A4784EDF02100D597111F2D 397312 ------w- C:\WINDOWS\System32\mmcex.dll
2014-10-31 15:53:04 4BD42056A26567FF609902DC2840BFEC 106496 ------w- C:\WINDOWS\System32\mmcfxcommon.dll
2014-10-31 15:53:04 3F8C2784BD466834FA87F973D0FBB120 33792 ------w- C:\WINDOWS\System32\mmcperf.exe
2014-10-31 15:53:03 F7BBAA9485F04E46A053E147CDFAD079 155136 ------w- C:\WINDOWS\System32\mssha.dll
2014-10-31 15:53:03 CA04959077AFE36369D37B3504740C87 144384 ------w- C:\WINDOWS\System32\onex.dll
2014-10-31 15:53:03 87906187B3AF89582380D156DA601F68 30208 ------w- C:\WINDOWS\System32\napipsec.dll
2014-10-31 15:53:03 568B07313D95BD82BF7C9089FBAB1118 76800 ------w- C:\WINDOWS\System32\msshavmsg.dll
2014-10-31 15:53:03 5099188F965E8C3DA76281E9CBCB0E7F 193024 ------w- C:\WINDOWS\System32\napmontr.dll
2014-10-31 15:53:03 3AF52290B3C5F21E25F1C582A60CEBF2 176640 ------w- C:\WINDOWS\System32\napstat.exe
2014-10-31 15:53:02 FB8E05CEDB3EF65C80FEBD2698C80998 150528 ------w- C:\WINDOWS\System32\qagent.dll
2014-10-31 15:53:02 A655C88AA555BB8EF8957BD29408827F 61952 ------w- C:\WINDOWS\System32\rasqec.dll
2014-10-31 15:53:02 8AE93AACC648921BAACB8602991AC4B3 76800 ------w- C:\WINDOWS\System32\qutil.dll
2014-10-31 15:53:02 492D127C533F328380F0BD1C2C59B44B 62464 ------w- C:\WINDOWS\System32\qcliprov.dll
2014-10-31 15:53:02 28D9646A6B8DE72980B683AF06D9D981 290304 ------w- C:\WINDOWS\System32\rhttpaa.dll
2014-10-31 15:53:02 0102140028FAD045756796E1C685D695 291328 ------w- C:\WINDOWS\System32\qagentrt.dll
2014-10-31 15:53:01 B726ACE88025433615F2918B0FD07F9C 32768 ------w- C:\WINDOWS\System32\setupn.exe
2014-10-31 15:53:01 1396F781364754123E5180074FC3CB85 53248 ------w- C:\WINDOWS\System32\tsgqec.dll
2014-10-31 15:53:00 E23C2933A53B4459482E84BB56D24681 50688 ------w- C:\WINDOWS\System32\tspkg.dll
2014-10-31 15:53:00 91790D6749EBED90E2C40479C0A91879 28672 ------w- C:\WINDOWS\System32\verclsid.exe
2014-10-31 15:53:00 6B2315C4462BB542A6B6C2D0B09357FD 46080 ------w- C:\WINDOWS\System32\tzchange.exe
2014-10-31 15:52:59 9EEFE69139FDBB4A3C327630F8EB993A 69120 ------w- C:\WINDOWS\System32\wlanapi.dll
2014-10-31 15:52:57 1B3B381E1AAB46F7B321A46150D890CB 689152 ------w- C:\WINDOWS\System32\xpsp3res.dll
2014-10-31 13:17:33 0DC5AF80D059DEC792B665ED598C6567 536576 ----a-w- C:\WINDOWS\System32\sqlite3.dll
2014-10-31 12:00:54 27CCEA9CE41A726B13E45795CCC3B7BA 30512 ----a-w- C:\WINDOWS\System32\mdimon.dll
====== C:\WINDOWS\system32\drivers =====
2014-10-31 15:40:46 D66D22D76878BF3483A6BE30183FB648 10240 ------w- C:\WINDOWS\System32\drivers\sffp_mmc.sys
2014-10-20 13:47:43 6802E1A143C49D7BDAB0BF952E5A231C 113880 ----a-w- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
2014-10-20 13:47:12 D2DED3C333A5D9CB3F4C244B0F0DD877 23256 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys
2014-10-20 13:47:12 A5B9DEC3FCFB6BCA24ED9A2154DA2C53 54232 ----a-w- C:\WINDOWS\System32\drivers\mbamchameleon.sys
====== C:\WINDOWS\Tasks ======
2014-10-31 17:07:37 1170765B82C7E1C407D1628A15839036 830 ----a-w- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-10-31 16:51:14 -------- d-----w- C:\Program Files\Google
2014-10-31 14:08:16 -------- d-----w- C:\Program Files\SumatraPDF
2014-10-31 14:01:02 -------- d-----w- C:\Program Files\SRWare Iron
2014-10-31 12:55:56 -------- d-----w- C:\Program Files\7-Zip
2014-10-31 12:00:10 -------- d-----w- C:\Program Files\Microsoft.NET
2014-10-20 13:41:02 -------- d-----w- C:\Program Files\Common Files\Skype
2014-10-20 13:40:59 -------- d-----r- C:\Program Files\Skype
======= C: =====
====== C:\Documents and Settings\milos\Application Data ======
2014-10-31 17:08:39 -------- d-----w- C:\Documents and Settings\milos\Application Data\Adobe
2014-10-31 16:51:22 -------- d-----w- C:\Documents and Settings\milos\Local Settings\Application Data\Google
2014-10-31 16:43:02 -------- d-----w- C:\Documents and Settings\milos\Local Settings\Application Data\Adobe
2014-10-31 16:23:58 -------- d-----w- C:\Documents and Settings\milos\Local Settings\Application Data\Skype
2014-10-31 14:08:23 -------- d-----w- C:\Documents and Settings\milos\Application Data\SumatraPDF
2014-10-31 14:01:18 -------- d-----w- C:\Documents and Settings\milos\Local Settings\Application Data\Chromium
2014-10-31 12:43:56 -------- d-----w- C:\Documents and Settings\milos\Application Data\oldskypePM
====== C:\Documents and Settings\milos ======
2014-11-03 13:50:45 D30FA77E5771C882F9B71E733C3CDB76 1106432 ----a-w- C:\Documents and Settings\milos\Desktop\FRST.exe
2014-11-03 13:49:58 D171B1B840DD85EDB70DCC84AEDCE05E 37888 ----a-w- C:\Documents and Settings\milos\Desktop\ADSSpy.exe
2014-11-03 13:49:41 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Documents and Settings\milos\Desktop\TFC.exe
2014-11-03 13:48:51 057B958D43AE746624F31ACFFEE78542 1706359 ----a-w- C:\Documents and Settings\milos\Desktop\JRT.exe
2014-11-03 13:48:28 12EFD5FA51597F188E5DB50BE20EE597 1375089 ----a-w- C:\Documents and Settings\milos\Desktop\AdwCleaner.exe
2014-11-03 13:48:14 FCCD0F6A733248E8F624B9FE813F0324 1944824 ----a-w- C:\Documents and Settings\milos\Desktop\rkill.exe
2014-11-03 13:47:51 2AD9820E4B17E78110A6AA06BF5C1CE2 4184008 ----a-w- C:\Documents and Settings\milos\Desktop\tdsskiller.exe
2014-11-03 13:47:29 DFF72B75746001A9060AB2B80310012E 14349744 ----a-w- C:\Documents and Settings\milos\Desktop\mbar-1.07.0.1012.exe
2014-11-03 13:45:21 -------- d--h--r- C:\Documents and Settings\milos\Recent
2014-10-31 18:20:22 -------- d-sh--w- C:\Documents and Settings\NetworkService\IETldCache
2014-10-31 18:19:36 -------- d-sh--w- C:\Documents and Settings\milos\IETldCache
2014-10-31 15:20:00 -------- d-----r- C:\Documents and Settings\All Users\Documents\My Music

====== C: exe-files ==
2014-11-03 14:09:14 9689A7E5F79A661E8BAA83819482A33E 54072 ----a-w- C:\Documents and Settings\milos\Desktop\mbar\mbamdor.exe
2014-11-03 14:09:14 830259CA42B59F809F1E01BAF29FA4A2 1184056 ----a-w- C:\Documents and Settings\milos\Desktop\mbar\mbar.exe
2014-11-03 14:09:14 5F9B2112F55EC84DBF4C5DAA8CA58402 821560 ----a-w- C:\Documents and Settings\milos\Desktop\mbar\Plugins\fixdamage.exe
2014-11-03 13:50:45 D30FA77E5771C882F9B71E733C3CDB76 1106432 ----a-w- C:\Documents and Settings\milos\Desktop\FRST.exe
2014-11-03 13:49:58 D171B1B840DD85EDB70DCC84AEDCE05E 37888 ----a-w- C:\Documents and Settings\milos\Desktop\ADSSpy.exe
2014-11-03 13:49:41 788FCDDD88240A85039F7F561093B118 448512 ----a-w- C:\Documents and Settings\milos\Desktop\TFC.exe
2014-11-03 13:48:51 057B958D43AE746624F31ACFFEE78542 1706359 ----a-w- C:\Documents and Settings\milos\Desktop\JRT.exe
2014-11-03 13:48:28 12EFD5FA51597F188E5DB50BE20EE597 1375089 ----a-w- C:\Documents and Settings\milos\Desktop\AdwCleaner.exe
2014-11-03 13:48:14 FCCD0F6A733248E8F624B9FE813F0324 1944824 ----a-w- C:\Documents and Settings\milos\Desktop\rkill.exe
2014-11-03 13:47:51 2AD9820E4B17E78110A6AA06BF5C1CE2 4184008 ----a-w- C:\Documents and Settings\milos\Desktop\tdsskiller.exe
2014-11-03 13:47:29 DFF72B75746001A9060AB2B80310012E 14349744 ----a-w- C:\Documents and Settings\milos\Desktop\mbar-1.07.0.1012.exe
2014-11-02 10:34:04 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB2964358-IE8\spuninst\spuninst.exe
2014-11-02 10:33:51 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB2909210-IE8\spuninst\spuninst.exe
2014-11-02 10:33:36 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe
2014-10-31 17:47:30 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB2936068-IE8\spuninst\spuninst.exe
2014-10-31 17:47:18 9690B079450A711BC1942D0E1FD7AC37 174592 -c----w- C:\WINDOWS\ie8updates\KB2936068-IE8\ie4uinit.exe
2014-10-31 17:46:49 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB2909921-IE8\spuninst\spuninst.exe
2014-10-31 17:46:40 3E568A0DED68CC798037654861527C69 173056 -c----w- C:\WINDOWS\ie8updates\KB2909921-IE8\ie4uinit.exe
2014-10-31 17:46:24 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB2598845-IE8\spuninst\spuninst.exe
2014-10-31 17:45:40 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe
2014-10-31 17:45:37 670709F5BC284AABF4E1B603FA1B3095 173056 -c----w- C:\WINDOWS\ie8updates\KB982381-IE8\ie4uinit.exe
2014-10-31 17:44:33 AD8EF61AF3B6654899BEA533AC7F6D9E 231456 -c--a-w- C:\WINDOWS\ie8\spuninst\spuninst.exe
2014-10-31 17:43:14 A251B726EED494F2FD9E5C6B1205BDB0 206336 -c--a-w- C:\WINDOWS\ie8\winfxdocobj.exe
2014-10-31 17:43:14 2152542C06731D48EF55E8697D3490C3 12288 -c--a-w- C:\WINDOWS\ie8\msfeedssync.exe
2014-10-31 17:43:11 DE49B348A18369B4626FBA1D49B07FB4 622080 -c--a-w- C:\WINDOWS\ie8\iexplore.exe
2014-10-31 17:43:11 B5FF6305E3B6FDFC91057D2FAC100E4C 213216 -c--a-w- C:\WINDOWS\ie8\spuninst.exe
2014-10-31 17:43:11 B540FC036262B4B4499E49F582E9E3C3 54784 -c--a-w- C:\WINDOWS\ie8\ie4uinit.exe
2014-10-31 17:43:11 2667B412F7453B8C39197D3C550536CD 45568 -c--a-w- C:\WINDOWS\ie8\mshta.exe
2014-10-31 17:26:08 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie7updates\KB2964358-IE7\spuninst\spuninst.exe
2014-10-31 16:55:08 859FC9E24C1F51D74B8A4C90E7FA646F 41100368 ----a-w- C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\38.0.2125.111\38.0.2125.111_chrome_installer.exe
2014-10-31 16:54:13 821E577AB0B119278BD1940FEF224DDA 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateBroker.exe
2014-10-31 16:54:13 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Program Files\Google\Update\GoogleUpdate.exe
2014-10-31 16:54:13 4067DC9EA0640485F1CF395427FD5E9B 51080 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateOnDemand.exe
2014-10-31 16:54:13 0B44951CFF8D434683C0E7E669B9E1E1 880272 ----a-w- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateSetup.exe
2014-10-31 16:54:12 976D5F35A058340DA2C160CEC4063C4B 230792 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler.exe
2014-10-31 16:54:12 51508F0C2476177E50C31B0BBFBF1BDB 107912 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdate.exe
2014-10-31 16:54:12 26E37D5EAC3F1CF66587183AB348168C 114568 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleUpdateComRegisterShell64.exe
2014-10-31 16:54:12 047556104954A72A2222FFF169166EEE 285064 ----atw- C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
2014-10-31 16:46:42 AFEE19399CF992A098309F7FDF87880A 2149888 ------w- C:\WINDOWS\Driver Cache\i386\ntkrnlmp.exe
2014-10-31 16:46:42 A4A50A53FFBFEC545CDA85E98AF2106B 2193536 ------w- C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
2014-10-31 16:46:41 4C47B37CF351FFEB1227CED0FF4751D5 2070144 ------w- C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
2014-10-31 16:46:41 05F3DB567EAE368AE3BBD7E973490646 2028544 ------w- C:\WINDOWS\Driver Cache\i386\ntkrpamp.exe
2014-10-31 15:53:16 AAC1D4EE39DF138C5D30AC5883E3B59F 558080 ------w- C:\WINDOWS\network diagnostic\xpnetdiag.exe
2014-10-31 15:52:54 14A1E5A8CFEF5F18B96540C1FB52CCB2 1327320 ------w- C:\Program Files\MSN\MSNCoreFiles\install\msnsusii.exe
2014-10-31 15:52:53 8AFC7670B061D457897BE947F591BC24 884712 ------w- C:\Program Files\MSN\MSNCoreFiles\install\msn9components\digcore.exe
2014-10-31 15:52:51 C010EC2378BFBED7D652CF9982A34AE2 11053008 ------w- C:\Program Files\MSN\MSNCoreFiles\install\msn9components\msncli.exe
2014-10-31 15:52:28 3045293662B6602A2EE7D754C8F1EDCC 76288 ------w- C:\WINDOWS\ServicePackFiles\i386\taskkill.exe
2014-10-31 15:52:24 72D1890E6F0CD5C3CF05A1F1DBC598D9 59904 ------w- C:\WINDOWS\ServicePackFiles\i386\getmac.exe
2014-10-31 15:52:20 E8B108654C5789AD3F75E08B0A89C609 77824 ------w- C:\WINDOWS\ServicePackFiles\i386\tasklist.exe
2014-10-31 15:52:19 DF42260BA2A5826F77B7A4BD105BAACC 142848 ------w- C:\WINDOWS\ServicePackFiles\i386\bootcfg.exe
2014-10-31 15:52:18 E9F6BDB0D4578C4A27590FC6AA0713D3 62976 ------w- C:\WINDOWS\ServicePackFiles\i386\drvqry.exe
2014-10-31 15:52:16 F5AD210CF45C5340195AB20FA775BDE3 82944 ------w- C:\WINDOWS\ServicePackFiles\i386\evtrig.exe
2014-10-31 15:52:12 A279F4091F940C15A288767F4285C0FF 71680 ------w- C:\WINDOWS\ServicePackFiles\i386\sysinfo.exe
2014-10-31 15:51:51 14A1E5A8CFEF5F18B96540C1FB52CCB2 1327320 ------w- C:\WINDOWS\ServicePackFiles\i386\msnsusii.exe
2014-10-31 15:51:49 1DE6ABBFCCB3F8E3FA19898A182998D2 24576 ------w- C:\WINDOWS\ServicePackFiles\i386\sort.exe
2014-10-31 15:51:33 482AE619667429CD12D23A9089F5BF22 29184 ------w- C:\WINDOWS\ServicePackFiles\i386\msoobe.exe
2014-10-31 15:51:26 8DD5CF6D82BD78433E95D86EFA117D67 677888 ------w- C:\WINDOWS\ServicePackFiles\i386\lhmstsc.exe
2014-10-31 15:51:03 B726ACE88025433615F2918B0FD07F9C 32768 ------w- C:\WINDOWS\ServicePackFiles\i386\setupn.exe
2014-10-31 15:51:02 5F176F9431BB67B54A233BA2494CE718 6144 ------w- C:\WINDOWS\ServicePackFiles\i386\comrereg.exe
2014-10-31 15:50:55 84759CB654F45422BC2458806AB07762 15872 ------w- C:\WINDOWS\ServicePackFiles\i386\help.exe
2014-10-31 15:50:55 20E27F7A6FE3EAE808EF8460E668FB3E 241152 ------w- C:\WINDOWS\ServicePackFiles\i386\migwiza.exe
2014-10-31 15:50:49 3F8C2784BD466834FA87F973D0FBB120 33792 ------w- C:\WINDOWS\ServicePackFiles\i386\mmcperf.exe
2014-10-31 15:50:46 2248F303CCFF449FC5DEA712C92D4B2E 60416 ------w- C:\WINDOWS\ServicePackFiles\i386\tzchange.exe
2014-10-31 15:50:45 45CC061D9581E52F008E90E81DA2CFD9 19968 ------w- C:\WINDOWS\ServicePackFiles\i386\cacls.exe
2014-10-31 15:50:44 E6D680494C812B82A15600FD23C94424 12288 ------w- C:\WINDOWS\ServicePackFiles\i386\attrib.exe
2014-10-31 15:50:31 AAC1D4EE39DF138C5D30AC5883E3B59F 558080 ------w- C:\WINDOWS\ServicePackFiles\i386\xpnetdg.exe
2014-10-31 15:50:25 665666ADAEA4ECA5942518785CB94CAF 119808 ------w- C:\WINDOWS\ServicePackFiles\i386\mtstocom.exe
2014-10-31 15:49:47 C010EC2378BFBED7D652CF9982A34AE2 11053008 ------w- C:\WINDOWS\ServicePackFiles\i386\msncli.exe
2014-10-31 15:49:45 238BDCE83AF21A6C2C0FCF216D3260E3 6144 ------w- C:\WINDOWS\ServicePackFiles\i386\dcomcnfg.exe
2014-10-31 15:49:39 91790D6749EBED90E2C40479C0A91879 28672 ------w- C:\WINDOWS\ServicePackFiles\i386\verclsid.exe
2014-10-31 15:49:36 4AB98661E251E53F3A2C00919F0A3EB8 7680 ------w- C:\WINDOWS\ServicePackFiles\i386\forcedos.exe
2014-10-31 15:49:35 3AF52290B3C5F21E25F1C582A60CEBF2 176640 ------w- C:\WINDOWS\ServicePackFiles\i386\napstat.exe
2014-10-31 15:49:25 8AFC7670B061D457897BE947F591BC24 884712 ------w- C:\WINDOWS\ServicePackFiles\i386\digcore.exe
2014-10-31 15:33:38 B53343FE60A33EE765C2476D50D27B26 1667584 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msmsgs.exe
2014-10-31 15:33:34 B3F8341410367B57A15DBC9440E2DA9A 786432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\migrate.exe
2014-10-31 15:32:57 8148D865276C330ED47160728816BF12 407552 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mstsc.exe
2014-10-31 15:32:50 AB25F5F8899CC9E37B0E436D1B4E0149 119808 -c----w- C:\WINDOWS\$NtServicePackUninstall$\gprslt.exe
2014-10-31 15:32:49 74B9FA2AFAF60B7F4E2A952E77B9DC6C 15872 -c----w- C:\WINDOWS\$NtServicePackUninstall$\inetin51.exe
2014-10-31 15:32:47 C8394F5825A4F6DF4F2C181619D8DD5F 102400 -c----w- C:\WINDOWS\$NtServicePackUninstall$\setregni.exe
2014-10-31 15:32:46 8D3DE69A9A484C801C2012BE2346F851 50176 -c----w- C:\WINDOWS\$NtServicePackUninstall$\evcreate.exe
2014-10-31 15:32:41 21FE463CA17E596D1FF9CB6E3C045904 9728 -c----w- C:\WINDOWS\$NtServicePackUninstall$\comsdupd.exe
2014-10-31 15:32:35 AA0825F71B3054B789B0FD9D46D69C32 42496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\davcdata.exe
2014-10-31 15:32:26 86E33A8D9174DB2DB5001D0FD5DCFB8D 121856 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sctasks.exe
2014-10-31 15:32:25 B8A44C04BA6EDE4B759EB1B2BF51A10B 12800 -c----w- C:\WINDOWS\$NtServicePackUninstall$\spiisupd.exe
2014-10-31 15:32:20 AF57372C1E4F14FFAED7E4AB787AA0DC 118784 -c----w- C:\WINDOWS\$NtServicePackUninstall$\togac.exe
2014-10-31 15:32:15 07B0E978939B04AD6E69C1554FE214E3 32768 -c----w- C:\WINDOWS\$NtServicePackUninstall$\asr_pfu.exe
2014-10-31 15:32:12 B2E88CCAC98DF4C081AB318180D3B868 106496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\netfxupdate.exe
2014-10-31 15:32:11 9996A128D81EA50D969DE772E38186FD 7680 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ieexec.exe
2014-10-31 15:32:10 57CBB6370412906C1697D7EAEC4D4A16 24576 -c----w- C:\WINDOWS\$NtServicePackUninstall$\aspnet_regiis.exe
2014-10-31 15:32:06 3496CDDD2E08355EFC714842A8826907 67584 -c----w- C:\WINDOWS\$NtServicePackUninstall$\opnfiles.exe
2014-10-31 15:32:06 11D94A3739E54B252E84DB31D72CAA32 32768 -c----w- C:\WINDOWS\$NtServicePackUninstall$\aspnet_wp.exe
2014-10-31 15:32:05 B76B175D3C6FFEAEB144C6264A8F9F08 30720 -c----w- C:\WINDOWS\$NtServicePackUninstall$\iisrstas.exe
2014-10-31 15:32:04 0CFD77715E899E9FDE1DB92E64A4A897 18432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\secedit.exe
2014-10-31 15:32:02 82EE156E1E0FA4CDEFDB297F61155E08 16437 -c----w- C:\WINDOWS\$NtServicePackUninstall$\shtml.exe
2014-10-31 15:32:01 8033EA9DDFEC1215D144D0D3B1F23E8B 109840 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fp98swin.exe
2014-10-31 15:32:01 69197A49051D3BE070E7AC747649DC69 24064 -c----w- C:\WINDOWS\$NtServicePackUninstall$\evntcmd.exe
2014-10-31 15:32:00 38A327E29B424BFB9DD58B56F1BD3B71 32827 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tcptest.exe
2014-10-31 15:31:59 91437E27E0B5EF6B59821135A2C00AAB 73796 -c----w- C:\WINDOWS\$NtServicePackUninstall$\slserv.exe
2014-10-31 15:31:58 B54BAAAE1345484E35072A47694FD8C4 24632 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fpadmcgi.exe
2014-10-31 15:31:58 B39375CA677AF22CF3567F6BB04150AA 236544 -c----w- C:\WINDOWS\$NtServicePackUninstall$\smi2smir.exe
2014-10-31 15:31:58 149D4CCA007AEB67A02B2DAC6BE32C29 188494 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fpcount.exe
2014-10-31 15:31:56 425664A886E7BD13EF0FF474BA54036F 166400 -c----w- C:\WINDOWS\$NtServicePackUninstall$\oschoice.exe
2014-10-31 15:31:56 1075D51B46F61F4FDD3489387468EFA7 18432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\iedw.exe
2014-10-31 15:31:55 626309040459C3915997EF98EC1C8D40 2148352 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ntkrnlmp.exe
2014-10-31 15:31:55 11688538913C6DAE8AF3469B1F8AC769 92160 -c----w- C:\WINDOWS\$NtServicePackUninstall$\evntwin.exe
2014-10-31 15:31:54 FCBD571FA0EE8DC238944AE5FAB74461 267776 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fxssvc.exe
2014-10-31 15:31:52 49911DD39E023BB6C45E4E436CFBD297 13824 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wscntfy.exe
2014-10-31 15:31:50 03BA37583B500F4E6ACA82517A4A1A60 152576 -c----w- C:\WINDOWS\$NtServicePackUninstall$\irftp.exe
2014-10-31 15:31:45 D32C4A0DFA90D7CAD50F120433F33DD5 21504 -c----w- C:\WINDOWS\$NtServicePackUninstall$\spupdwxp.exe
2014-10-31 15:31:43 AF323F157730D7DD5C095F8AE1B7A4BE 15120 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fp98sadm.exe
2014-10-31 15:31:42 4E39664ACBEA1E4FF01696DA2C5A7706 40960 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msiregmv.exe
2014-10-31 15:31:42 3887F2214D976A0A440EDBBFDC148262 20538 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fpremadm.exe
2014-10-31 15:31:41 4126D27CECE4471E00E425411F7306B5 111104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wuauclt.exe
2014-10-31 15:31:38 CC628842B0078BB70CE0653D16B74643 32866 -c----w- C:\WINDOWS\$NtServicePackUninstall$\slrundll.exe
2014-10-31 15:31:38 09FA7C05D56C0C8001F4AC53C790FB44 16439 -c----w- C:\WINDOWS\$NtServicePackUninstall$\author.exe
2014-10-31 15:31:37 C4445BD306656ADE30900E6197FABED1 29184 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mshta.exe
2014-10-31 15:31:35 5417E3435139EB7686605BB1038BF24E 7680 -c----w- C:\WINDOWS\$NtServicePackUninstall$\migregdb.exe
2014-10-31 15:31:35 30344293216BA699C5C16203CF79E914 34304 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ie4uinit.exe
2014-10-31 15:31:34 D9E4C16D208DEBD2D89B18C662FDC8B7 8192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\smbinst.exe
2014-10-31 15:31:33 D6D51A5752637B14351704CB900E74A0 165888 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wuauclt1.exe
2014-10-31 15:31:33 795E9244A49AFE66D867FD1154DCB576 229376 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fxscover.exe
2014-10-31 15:31:30 E7484514C0464642BE7B4DC2689354C8 93184 -c----w- C:\WINDOWS\$NtServicePackUninstall$\iexplore.exe
2014-10-31 15:31:27 D923BF27723E28E3C121B77F52DB4BCE 32768 -c----w- C:\WINDOWS\$NtServicePackUninstall$\snmp.exe
2014-10-31 15:31:26 6F591DBEFD11F7697042907B516F1212 8704 -c----w- C:\WINDOWS\$NtServicePackUninstall$\snmptrap.exe
2014-10-31 15:31:25 7CADB4F8D7B1EF7D5DD0A776F876B16B 8192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\spdwnwxp.exe
2014-10-31 15:31:25 70E9C484EBAD7C9A91CB3D393DC19615 11776 -c----w- C:\WINDOWS\$NtServicePackUninstall$\spnpinst.exe
2014-10-31 15:31:24 5D5B06C49DB5BFE698754F654205020E 188480 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cfgwiz.exe
2014-10-31 15:31:19 A0E275F747AD2D7A21B0586086234FDF 22528 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fltmc.exe
2014-10-31 15:31:18 F1673FD5C161121B3D6AB022F45C3E91 193024 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fsquirt.exe
2014-10-31 15:31:15 D97351B73CF3D140672C443CF68066F5 65601 -c----w- C:\WINDOWS\$NtServicePackUninstall$\stub_fpsrvwin.exe
2014-10-31 15:31:15 4736BFF198BBF13123C545DAA0C15A38 49152 -c----w- C:\WINDOWS\$NtServicePackUninstall$\powercfg.exe
2014-10-31 15:31:14 20FA372F8DA8B1DA402DCEEFF2C91B03 82432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tp4mon.exe
2014-10-31 15:31:08 28A1F34D372C544AC4CE2BADD558F016 20992 -c----w- C:\WINDOWS\$NtServicePackUninstall$\faxpatch.exe
2014-10-31 15:31:01 89C27954A453A7D531C58719DA2A8FF7 143360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fxsclnt.exe
2014-10-31 15:31:01 7472458C7107464AD51F3B652DFBBD31 14336 -c----w- C:\WINDOWS\$NtServicePackUninstall$\auditusr.exe
2014-10-31 15:30:58 31B6039D8F5A08E91740C5CD13E2EC88 71680 -c----w- C:\WINDOWS\$NtServicePackUninstall$\blastcln.exe
2014-10-31 15:30:57 C5A7B9834438E784489FA15023A3A66C 28728 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fpsrvadm.exe
2014-10-31 15:30:56 B76C95D9984C98A3BDEABC2861B939FE 230400 -c----w- C:\WINDOWS\$NtServicePackUninstall$\osloader.exe
2014-10-31 15:30:56 637A73DDA087FE8C915BF0D24536C0BA 16449 -c----w- C:\WINDOWS\$NtServicePackUninstall$\stub_fpsrvadm.exe
2014-10-31 15:30:55 DC37651A8025BC210DC8C8EA98CE3127 347136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tourstrt.exe
2014-10-31 15:30:52 FB142B7007CA2EEA76966C6C5CC12150 2015232 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ntkrpamp.exe
2014-10-31 15:30:52 817754B7A435D78AE8FC49E78E9161DE 18944 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hscupd.exe
2014-10-31 15:30:52 09FA7C05D56C0C8001F4AC53C790FB44 16439 -c----w- C:\WINDOWS\$NtServicePackUninstall$\admin.exe
2014-10-31 15:30:35 84989557565ECC4149C1ED43053BCCF9 358912 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wmic.exe
2014-10-31 15:30:35 366E6DFAB584D9E91C28C514D9FE3AAF 30208 -c----w- C:\WINDOWS\$NtServicePackUninstall$\asr_fmt.exe
2014-10-31 15:30:34 DD84BB924ADB943E177368A225A7F69D 58368 -c----w- C:\WINDOWS\$NtServicePackUninstall$\driverquery.exe
2014-10-31 15:30:34 C49F197542DF63BD7CED9E9A24F53091 56320 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cipher.exe
2014-10-31 15:30:34 AB25F5F8899CC9E37B0E436D1B4E0149 119808 -c----w- C:\WINDOWS\$NtServicePackUninstall$\gpresult.exe
2014-10-31 15:30:34 8D3DE69A9A484C801C2012BE2346F851 50176 -c----w- C:\WINDOWS\$NtServicePackUninstall$\eventcreate.exe
2014-10-31 15:30:34 8262E29A46F8F5D8068C6F0B2F1D5C11 77824 -c----w- C:\WINDOWS\$NtServicePackUninstall$\eventtriggers.exe
2014-10-31 15:30:33 D6601C082B560A1DACEF1D989CB24EC8 19968 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mqbkup.exe
2014-10-31 15:30:32 96C102D0B66D7A6AA3EF9B07DF7EE025 117248 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mqtgsvc.exe
2014-10-31 15:30:32 72EF444E51025F389C6C232A28B7D736 4608 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mqsvc.exe
2014-10-31 15:30:31 E006CB72837A438F0B58880A58CF51EB 1200128 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ntbackup.exe
2014-10-31 15:30:30 FAF14A1BB2441D1D845A6F3BF6A9187D 68096 -c----w- C:\WINDOWS\$NtServicePackUninstall$\systeminfo.exe
2014-10-31 15:30:30 E51950001F6B2E3DF5916EDCB4AAA390 61440 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tlntadmn.exe
2014-10-31 15:30:30 86E33A8D9174DB2DB5001D0FD5DCFB8D 121856 -c----w- C:\WINDOWS\$NtServicePackUninstall$\schtasks.exe
2014-10-31 15:30:30 52D7CF2179DDCE61701F3AE9C4679F49 9216 -c----w- C:\WINDOWS\$NtServicePackUninstall$\proxycfg.exe
2014-10-31 15:30:30 5230A07C44B1750C4F35A61C364E6806 107520 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rsnotify.exe
2014-10-31 15:30:30 37DB0A7D097310E8B4DE803FC3119C78 73216 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tlntsvr.exe
2014-10-31 15:30:30 3496CDDD2E08355EFC714842A8826907 67584 -c----w- C:\WINDOWS\$NtServicePackUninstall$\openfiles.exe
2014-10-31 15:30:30 2A1E4A15FD2309C75BD46FC5188F42F3 78336 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tlntsess.exe
2014-10-31 15:30:29 2F6A22D6F91CDD5B0C2A6C26727E8CBF 259584 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tracerpt.exe
2014-10-31 15:30:28 FAF14A1BB2441D1D845A6F3BF6A9187D 68096 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sysinfo.exe
2014-10-31 15:30:28 DD84BB924ADB943E177368A225A7F69D 58368 -c----w- C:\WINDOWS\$NtServicePackUninstall$\drvqry.exe
2014-10-31 15:30:28 D82BA004D3D48A5889EB261AC663DDC4 136704 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bootcfg.exe
2014-10-31 15:30:28 8262E29A46F8F5D8068C6F0B2F1D5C11 77824 -c----w- C:\WINDOWS\$NtServicePackUninstall$\evtrig.exe
2014-10-31 15:30:28 802E4BB4945D8E923481E90B8CF8D62C 55296 -c----w- C:\WINDOWS\$NtServicePackUninstall$\getmac.exe
2014-10-31 15:30:28 70363A3228DF8FC8CFF4E78F36B31C45 72192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tasklist.exe
2014-10-31 15:30:28 051036EB5A44774ED861A63F025D062D 72192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\taskkill.exe
2014-10-31 15:30:22 B719C7D08847D3C9EFD63732E1072A40 743936 -c----w- C:\WINDOWS\$NtServicePackUninstall$\helpsvc.exe
2014-10-31 15:30:22 3BA608F5B5EB81B972E047FCC1813BFE 768512 -c----w- C:\WINDOWS\$NtServicePackUninstall$\helpctr.exe
2014-10-31 15:30:22 0F98A6CABD2E04E01ADA3F793C1A077D 150528 -c----w- C:\WINDOWS\$NtServicePackUninstall$\uploadm.exe
2014-10-31 15:30:21 4FD22142F54692463A7B98B7DE175573 158208 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msconfig.exe
2014-10-31 15:30:19 F0543ACEEB5CD8821469958C9F3DD9A4 214528 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wordpad.exe
2014-10-31 15:30:19 DB893168B7ABEE8D4FAC488FDD3A0B76 3555328 -c----w- C:\WINDOWS\$NtServicePackUninstall$\moviemk.exe
2014-10-31 15:30:16 BD7A16C651B1F5FE6BC7AA6801EAE805 90624 -c----w- C:\WINDOWS\$NtServicePackUninstall$\muisetup.exe
2014-10-31 15:30:16 4375CD59161C0A033DF68D9510D1F8CF 380416 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rstrui.exe
2014-10-31 15:30:16 2144B771CD4B0818A35D4C3337786008 15360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nppagent.exe
2014-10-31 15:30:15 1AC9BE9C1F2D5119D234A1B468808963 256512 -c----w- C:\WINDOWS\$NtServicePackUninstall$\agentsvr.exe
2014-10-31 15:30:10 B1B5C7807DB18FA91C767645F8EC484A 1032192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\conf.exe
2014-10-31 15:30:08 42B1F1CE95A41D35AF65CCF8925728A3 9728 -c----w- C:\WINDOWS\$NtServicePackUninstall$\comrepl.exe
2014-10-31 15:30:06 09A25348786B267204B300CFBC9960EC 214528 -c----w- C:\WINDOWS\$NtServicePackUninstall$\icwconn1.exe
2014-10-31 15:30:05 E7D34346EB9AD89CC37848ED1BA6A804 20480 -c----w- C:\WINDOWS\$NtServicePackUninstall$\inetwiz.exe
2014-10-31 15:30:05 E5F457E3D89281B97B099A757B4D9577 294912 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dlimport.exe
2014-10-31 15:30:05 B45C6C6F4E52530860011D9245EFE7D9 24576 -c----w- C:\WINDOWS\$NtServicePackUninstall$\icwrmind.exe
2014-10-31 15:30:05 7448DD5C9860E02EE99F2DCCDBC0A43E 86016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\icwconn2.exe
2014-10-31 15:30:04 48CDAB5EB8C952534AE2C5AED72CCB70 73728 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wmplayer.exe
2014-10-31 15:30:03 091C14F4C71328D4316248A2421190DE 60416 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msimn.exe
2014-10-31 15:30:02 A7B050F20F8008E7BCDA4A5359C2063F 46080 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wab.exe
2014-10-31 15:30:02 1A67EEE45C2045A69E4DCDDF20C41100 73216 -c----w- C:\WINDOWS\$NtServicePackUninstall$\setup50.exe
2014-10-31 15:29:54 908F0EDA6A49625F9858E6B6C7C2A463 5120 -c----w- C:\WINDOWS\$NtServicePackUninstall$\comrereg.exe
2014-10-31 15:29:53 26976F1218F15406E4D9A0C9D1654EAD 539136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dialer.exe
2014-10-31 15:29:46 96641889EEA85EDEFA239AF098FEE8AD 4639 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mplayer2.exe
2014-10-31 15:29:45 D5683E97135348DD081C5269980B0893 111104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mtstocom.exe
2014-10-31 15:29:44 EFA500C2882EAD296DA76F1DC6025EDA 60416 -c----w- C:\WINDOWS\$NtServicePackUninstall$\oemig50.exe
2014-10-31 15:29:44 BB3707496FA1954C92AEFE539FC2694D 70144 -c----w- C:\WINDOWS\$NtServicePackUninstall$\pintlphr.exe
2014-10-31 15:29:44 2BA71093C32C6150E57C9A3205063DC6 281088 -c----w- C:\WINDOWS\$NtServicePackUninstall$\pinball.exe
2014-10-31 15:29:43 697B612EE59ADE30B25BFAD1F1BA588D 774144 -c----w- C:\WINDOWS\$NtServicePackUninstall$\setup_wm.exe
2014-10-31 15:29:41 BD2731756148627532BFD77D05CFB4FC 30208 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wabmig.exe
2014-10-31 15:29:39 084A6735DDEDD46D404F87C100A4E3D6 16384 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mofcomp.exe
2014-10-31 15:29:38 D0DCD145DDAD62236FA63D71E58B213A 36864 -c----w- C:\WINDOWS\$NtServicePackUninstall$\scrcons.exe
2014-10-31 15:29:37 C4E0D8A03AEDA76D4746ECFED1B09B68 116224 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wbemtest.exe
2014-10-31 15:29:36 BA8CECC3E813E1F7C441B20393D4F86C 126464 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wmiapsrv.exe
2014-10-31 15:29:36 28BD3128DD85EEBA6AEF9A15D25B2346 196608 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wmiadap.exe
2014-10-31 15:29:35 075EA6C849AB0FE416A3D6DD65C3CF41 218112 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wmiprvse.exe
2014-10-31 15:29:31 95F11851AA8794B9716CB1EA39D00FB5 208896 -c----w- C:\WINDOWS\$NtServicePackUninstall$\unregmp2.exe
2014-10-31 15:29:30 DE6FEE4DEFBC2A7D54AC0227191F827E 10752 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hh.exe
2014-10-31 15:29:30 A0732187050030AE399B241436565E64 1032192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
2014-10-31 15:29:30 783AFC80383C176B22DBF8333343992D 146432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\regedit.exe
2014-10-31 15:29:30 3371D02425BF6D8CA33DE9C92F359519 283648 -c----w- C:\WINDOWS\$NtServicePackUninstall$\winhlp32.exe
2014-10-31 15:29:28 6EFEE479AE08192225BF198E276B5731 28160 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msoobe.exe
2014-10-31 15:29:27 D623276C3C72C8226EF4AFC5EB12DAB1 51200 -c----w- C:\WINDOWS\$NtServicePackUninstall$\oobebaln.exe
2014-10-31 15:29:26 994C093C50ADAA8D43FB5AFDE2B6312E 103424 -c----w- C:\WINDOWS\$NtServicePackUninstall$\migload.exe
2014-10-31 15:29:26 3DC9256DA25BDFF582D7D46C59AD7112 240128 -c----w- C:\WINDOWS\$NtServicePackUninstall$\migwiz.exe
2014-10-31 15:29:24 CA77F7869E93AEF1C6CA76FCCAD26E62 183808 -c----w- C:\WINDOWS\$NtServicePackUninstall$\accwiz.exe
2014-10-31 15:29:24 A459AA940D845A972576AE48C7AAB71B 4096 -c----w- C:\WINDOWS\$NtServicePackUninstall$\actmovie.exe
2014-10-31 15:29:23 74628B0E5267E71DE3ABAEB2BB75A8EE 98304 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ahui.exe
2014-10-31 15:29:22 F1958FBF86D5C004CF19A5951A9514B7 44544 -c----w- C:\WINDOWS\$NtServicePackUninstall$\alg.exe
2014-10-31 15:29:21 9BDF13167FBEF8DA3A4E9A558B169E5E 25088 -c----w- C:\WINDOWS\$NtServicePackUninstall$\at.exe
2014-10-31 15:29:21 58999128E35656DBA81C721D2A9F8FF8 11264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\atmadm.exe
2014-10-31 15:29:21 2FF66C854FF8D666356EF800426465E9 11264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\attrib.exe
2014-10-31 15:29:20 DAAA427046A60901A82448F75DEC0BEB 580608 -c----w- C:\WINDOWS\$NtServicePackUninstall$\autofmt.exe
2014-10-31 15:29:20 2E4D50D6FFF72A013118B7F1BB01326D 11264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\autolfn.exe
2014-10-31 15:29:13 3192BD04D032A9C4A85A3278C268A13A 5632 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cisvc.exe
2014-10-31 15:29:12 3D1FC5DE6DBE1DBED07C89D0498B1D88 64000 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cleanmgr.exe
2014-10-31 15:29:11 99AFE57F0484ED18BBAFEECDB1C17F78 20480 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cliconfg.exe
2014-10-31 15:29:11 8A75C6A8ACBFCC21D6ADDF66DE4C8363 102912 -c----w- C:\WINDOWS\$NtServicePackUninstall$\clipbrd.exe
2014-10-31 15:29:10 C8DEC22C4137D7A90F8BDF41CA4B82AE 33280 -c----w- C:\WINDOWS\$NtServicePackUninstall$\clipsrv.exe
2014-10-31 15:29:09 C674E935BF5E96FFCC8E5378D6ED06B1 47104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cmdl32.exe
2014-10-31 15:29:09 7671D26C046BE6C8A53D83795BDEC5FE 39936 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cmmon32.exe
2014-10-31 15:29:09 69B231148006E8B15EE839ABBF8CA576 63488 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cmstp.exe
2014-10-31 15:29:05 054DF8F752497C6B74DD7B65CCA61132 27648 -c----w- C:\WINDOWS\$NtServicePackUninstall$\conime.exe
2014-10-31 15:29:04 EA04AD67501587F2C018E79B6B541224 98304 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cscript.exe
2014-10-31 15:29:03 F12B178B1678D778CFD3FF1FC38C71FB 6144 -c----w- C:\WINDOWS\$NtServicePackUninstall$\csrss.exe
2014-10-31 15:29:03 24232996A38C0B0CF151C2140AE29FC8 15360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ctfmon.exe
2014-10-31 15:29:02 AFCA556AFC55E4DFA304F3B2CB1B6527 30208 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ddeshare.exe
2014-10-31 15:29:02 AD13E23A2CCDF46C0EB354E5867EAE72 104960 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dfrgntfs.exe
2014-10-31 15:29:02 8CB76728A17487C7317AD95723817881 25088 -c----w- C:\WINDOWS\$NtServicePackUninstall$\defrag.exe
2014-10-31 15:29:02 1178CD20B90936837DF945162A194465 5120 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dcomcnfg.exe
2014-10-31 15:29:02 01496E720AB441C541E19FDE9902B0A9 82432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dfrgfat.exe
2014-10-31 15:29:01 ECA57A224047AFF2890B589DFC0B39F5 163840 -c----w- C:\WINDOWS\$NtServicePackUninstall$\diskpart.exe
2014-10-31 15:29:01 48734E9B45DCA36E8A3C48A648826A5F 85504 -c----w- C:\WINDOWS\$NtServicePackUninstall$\diantz.exe
2014-10-31 15:29:00 DD87DB7387B9EB441C5674888A0D840C 5120 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dllhost.exe
2014-10-31 15:29:00 9766F1F735C635BE391E59D5DF648A46 15872 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dmremote.exe
2014-10-31 15:29:00 554C7CB178FE3BD12450B81AD63ADBC3 224768 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dmadmin.exe
2014-10-31 15:28:59 FEA9D7A368A6D8F517ABBFAF2DE01248 83456 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dpvsetup.exe
2014-10-31 15:28:59 86420CA7DA82362757E3925355A5F001 30208 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dplaysvr.exe
2014-10-31 15:28:59 084CD12D8261AFA77C6CFC4E5E2C4F32 18432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dpnsvr.exe
2014-10-31 15:28:57 945911BE809DFD96551750048A149600 17920 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dvdupgrd.exe
2014-10-31 15:28:57 7C25440617EEE6F69709AA8C915D2C32 180224 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dwwin.exe
2014-10-31 15:28:57 13922EB54890C77005268882629A31FE 10752 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dumprep.exe
2014-10-31 15:28:56 79D390B707701CF0019053BB77C26933 193024 -c----w- C:\WINDOWS\$NtServicePackUninstall$\eudcedit.exe
2014-10-31 15:28:56 2101F6C53C5F74F8CE0302E36B363F58 1298432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dxdiag.exe
2014-10-31 15:28:56 0750F142CAC1EB1F57BCC1A56D1FF5F1 45568 -c----w- C:\WINDOWS\$NtServicePackUninstall$\extrac32.exe
2014-10-31 15:28:55 F3DB73848AF4BF8B7DE2BF88FD39180B 20992 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fontview.exe
2014-10-31 15:28:55 E62CB31AE2DFFBA6836C7CB780EBF7DE 27136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\findstr.exe
2014-10-31 15:28:55 9EE8C35B3391F30A7D088F5C43435AFB 39424 -c----w- C:\WINDOWS\$NtServicePackUninstall$\grpconv.exe
2014-10-31 15:28:55 16B037EEC30DC5649749B5848F56123F 7168 -c----w- C:\WINDOWS\$NtServicePackUninstall$\forcedos.exe
2014-10-31 15:28:54 4784301C7E558E99716F8F044EFCBCBB 14848 -c----w- C:\WINDOWS\$NtServicePackUninstall$\help.exe
2014-10-31 15:28:53 10E47A14BEC13D96BBB689CF381C0934 114688 -c----w- C:\WINDOWS\$NtServicePackUninstall$\iexpress.exe
2014-10-31 15:28:52 FA788520BCAC0F5D9D5CDE5615C0D931 150016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\imapi.exe
2014-10-31 15:28:52 7F7C195E9E5E81EB7F39A32CD7D637CF 55808 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ipconfig.exe
2014-10-31 15:28:51 A57F40DC553A2D63438668AABC99344F 23552 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ipxroute.exe
2014-10-31 15:28:51 38FBBB9ADD402BFF3200883FB24B4384 53248 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ipv6.exe
2014-10-31 15:28:48 84885F9B82F4D55C6146EBF6065D75D2 13312 -c----w- C:\WINDOWS\$NtServicePackUninstall$\lsass.exe
2014-10-31 15:28:48 2740DC2FBEFADDB891FD8C056494830B 85504 -c----w- C:\WINDOWS\$NtServicePackUninstall$\makecab.exe
2014-10-31 15:28:48 04A3684E0C08DDBA891825C0C40AD528 72704 -c----w- C:\WINDOWS\$NtServicePackUninstall$\magnify.exe
2014-10-31 15:28:47 808A9C735682FA8F23747F7E3E765C3B 815104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mmc.exe
2014-10-31 15:28:46 F6415361201915B9FE3896B0E4E724FF 32768 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mnmsrvc.exe
2014-10-31 15:28:46 5531C63F05C7D041F7DA9F8B7D88F00E 143360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mobsync.exe
2014-10-31 15:28:45 E0336EE56521D27FB42C5D08EBBEC428 123392 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mplay32.exe
2014-10-31 15:28:43 C7C3D89EB0A6F3DBA622EA737FA335B1 6144 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msdtc.exe
2014-10-31 15:28:41 F5F0146580E7023ADB963879840777F8 78848 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msiexec.exe
2014-10-31 15:28:39 57ADB09ED3617B042D155449490A9F76 343040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mspaint.exe
2014-10-31 15:28:38 4EC9A411607BFB7288EFF808223C25D6 12288 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mstinit.exe
2014-10-31 15:28:35 797B56BB7F031926FC540D8F6CFFAD50 53760 -c----w- C:\WINDOWS\$NtServicePackUninstall$\narrator.exe
2014-10-31 15:28:35 2BF3FB5250790A6FC421217A251224BA 4096 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nddeapir.exe
2014-10-31 15:28:35 29ED429A12DEEAEE5E40307C5215E8D8 42496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\net.exe
2014-10-31 15:28:34 9E39EDEEC9905E499886F530975A94A1 329728 -c----w- C:\WINDOWS\$NtServicePackUninstall$\netsetup.exe
2014-10-31 15:28:34 7C52632DDCD68A5D87F293E5E9D0361C 124928 -c----w- C:\WINDOWS\$NtServicePackUninstall$\net1.exe
2014-10-31 15:28:34 388B8FBC36A8558587AFC90FB23A3B99 69120 -c----w- C:\WINDOWS\$NtServicePackUninstall$\notepad.exe
2014-10-31 15:28:34 373E5BBC38B2330EBE1C7E4B54765FB9 86016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\netsh.exe
2014-10-31 15:28:34 368314E76FC8C0C05E4BA52A91807C31 36864 -c----w- C:\WINDOWS\$NtServicePackUninstall$\netstat.exe
2014-10-31 15:28:34 05AFB5AD06462257BEA7495283C86D50 111104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\netdde.exe
2014-10-31 15:28:33 156B130BD457BC14027C5947DD641626 32768 -c----w- C:\WINDOWS\$NtServicePackUninstall$\odbcad32.exe
2014-10-31 15:28:33 06F7F2A4C19CE866DAB370696856FF5B 69632 -c----w- C:\WINDOWS\$NtServicePackUninstall$\odbcconf.exe
2014-10-31 15:28:32 C449FDB6D69414B5E5FF8FC9F7FB5B0F 215552 -c----w- C:\WINDOWS\$NtServicePackUninstall$\osk.exe
2014-10-31 15:28:32 62B84D99295346AF5A3B1A9C3BDE04AB 17920 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ping.exe
2014-10-31 15:28:32 4EF9B136216C0FC563D911BB3503B632 58368 -c----w- C:\WINDOWS\$NtServicePackUninstall$\packager.exe
2014-10-31 15:28:32 230F51F2E4D9C7590F8E1DD76A627143 15872 -c----w- C:\WINDOWS\$NtServicePackUninstall$\perfmon.exe
2014-10-31 15:28:31 FCC64F08E0F26958303AE61805263C86 20480 -c----w- C:\WINDOWS\$NtServicePackUninstall$\qprocess.exe
2014-10-31 15:28:31 4D9D45A4370E0C2AD00C362B7118E2A4 50176 -c----w- C:\WINDOWS\$NtServicePackUninstall$\proquota.exe
2014-10-31 15:28:31 311D0118CB2AF6DCCEE56DBD1275FEB2 109568 -c----w- C:\WINDOWS\$NtServicePackUninstall$\progman.exe
2014-10-31 15:28:30 CED12C3CD1D6599C6DAC53AE6C3A3449 67072 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rdshost.exe
2014-10-31 15:28:30 AE09D65C7D4EA3B7296C3E0ECA4DCAEA 21504 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rcp.exe
2014-10-31 15:28:30 AB978E64B3CB5B78842BC2BDAE19D0CD 62464 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rdpclip.exe
2014-10-31 15:28:30 9709EAD856A690333138AC40804F914E 11776 -c----w- C:\WINDOWS\$NtServicePackUninstall$\regsvr32.exe
2014-10-31 15:28:30 8ABBAA7EECEE223B8F854C0393221EB5 56832 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rasphone.exe
2014-10-31 15:28:30 80660EC4F6ED48B0A0BE54740D121924 13824 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rexec.exe
2014-10-31 15:28:30 57FB84D077C5C99A365FDDA1100D4BB5 35840 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rcimlby.exe
2014-10-31 15:28:30 4C2638746BD851949FB9280D4C6B21D3 13824 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rdsaddin.exe
2014-10-31 15:28:30 3F1DF5D22C775B5E5DE561755FA9AB55 50176 -c----w- C:\WINDOWS\$NtServicePackUninstall$\reg.exe
2014-10-31 15:28:29 F75133006C6D350E90FA2339C64882B1 14848 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rsh.exe
2014-10-31 15:28:29 E4F5BB68F1827FD42C423BB82EBD5BDE 77312 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sdbinst.exe
2014-10-31 15:28:29 DA285490BBD8A1D0CE6623577D5BA1FF 33280 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rundll32.exe
2014-10-31 15:28:29 95D68E67CE9ED03F9AA0AC10D715DDBC 14336 -c----w- C:\WINDOWS\$NtServicePackUninstall$\runonce.exe
2014-10-31 15:28:29 38A34F7E08514C7543784497D75D5384 77312 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rtcshare.exe
2014-10-31 15:28:28 C861F40822FB4FCAF6E82FB79E82F337 23040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\setup.exe
2014-10-31 15:28:28 4DB5C6C8A76EEA7C0461D5C4EE41B4AB 31232 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sethc.exe
2014-10-31 15:28:27 D6C6F5126C671C6C224C4A1A0C72EF7D 42496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\shmgrate.exe
2014-10-31 15:28:27 6F06118F68E7BD7EBD1C66255DF5CAC8 19456 -c----w- C:\WINDOWS\$NtServicePackUninstall$\shutdown.exe
2014-10-31 15:28:27 582CD03E4F84350150AF8CFD2FA00C22 77824 -c----w- C:\WINDOWS\$NtServicePackUninstall$\shrpubw.exe
2014-10-31 15:28:26 DEE64FD8AD3B76A74DB310CC898226A6 23552 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sort.exe
2014-10-31 15:28:26 DC510347C206F3028A7E10B7CA014934 70144 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sigverif.exe
2014-10-31 15:28:26 D99EEC67F0E7AEED4833DC9DDB3527A9 26112 -c----w- C:\WINDOWS\$NtServicePackUninstall$\skeys.exe
2014-10-31 15:28:26 ABBFEE135A0B6C23D5B3D1BF758CA8F3 131584 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sndrec32.exe
2014-10-31 15:28:26 7435B108B935E42EA92CA94F59C8E717 57856 -c----w- C:\WINDOWS\$NtServicePackUninstall$\spoolsv.exe
2014-10-31 15:28:26 4749198C70F4162D622F24601B527645 538624 -c----w- C:\WINDOWS\$NtServicePackUninstall$\spider.exe
2014-10-31 15:28:25 8F078AE4ED187AAABC0A305146DE6716 14336 -c----w- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe
2014-10-31 15:28:25 8B9A897BA5DB04AA59DC32BD2A112563 14848 -c----w- C:\WINDOWS\$NtServicePackUninstall$\stimon.exe
2014-10-31 15:28:25 520278F77ABD386A42C7A83A0CD57F16 105984 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sysocmgr.exe
2014-10-31 15:28:24 FC160ACE21C81837692B339D230DD4BE 135680 -c----w- C:\WINDOWS\$NtServicePackUninstall$\taskmgr.exe
2014-10-31 15:28:24 F64F6C05B94F637A1C90E8EE341EBFB9 75264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\telnet.exe
2014-10-31 15:28:24 DC37651A8025BC210DC8C8EA98CE3127 347136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tourstart.exe
2014-10-31 15:28:24 BDC85C41E0A1FC0B7E080D903512083B 12288 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tracert.exe
2014-10-31 15:28:24 96B52354BD09D09335D84890CD67499F 16896 -c----w- C:\WINDOWS\$NtServicePackUninstall$\upnpcont.exe
2014-10-31 15:28:24 3F5DF65B0758675F95A2D43918A740A3 18432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ups.exe
2014-10-31 15:28:23 D49212322BA85BD4DBE5D5D8657FC0C5 65536 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wextract.exe
2014-10-31 15:28:23 C701829A65D5A09F8CBA4F21B3D4AB18 433664 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wiaacmgr.exe
2014-10-31 15:28:23 970E01C0FD2EA78669E5995D5FF70F35 50176 -c----w- C:\WINDOWS\$NtServicePackUninstall$\utilman.exe
2014-10-31 15:28:23 3EE00364AE0FD8D604F46CBAF512838A 289792 -c----w- C:\WINDOWS\$NtServicePackUninstall$\vssvc.exe
2014-10-31 15:28:22 68C0DD27EB8FE05AC1F7386B349CE08C 5632 -c----w- C:\WINDOWS\$NtServicePackUninstall$\winver.exe
2014-10-31 15:28:18 E999F3CC5334F36E14BD7DDEB8E11975 32256 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wpnpinst.exe
2014-10-31 15:28:18 C5F10136A584CB4B2B4E794E8739B96D 32256 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wpabaln.exe
2014-10-31 15:28:17 3ADCE7346E279C8E7ADEC5F2428385C6 114688 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wscript.exe
2014-10-31 15:28:17 2C046FCD15DAB01FFDE9652569CE43E5 30720 -c----w- C:\WINDOWS\$NtServicePackUninstall$\xcopy.exe
2014-10-31 15:28:16 EEB024F2C81F0D55936FB825D21A91D6 388608 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cmd.exe
2014-10-31 15:28:16 CEFBCDBADD70C6BB9538B6CAF224FB2E 18432 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cacls.exe
2014-10-31 15:28:16 B3415B9D6026F65E43089ABED096C38C 588800 -c----w- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe
2014-10-31 15:28:16 7AD3256835AABF22DF47E232CCFF312F 42496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ftp.exe
2014-10-31 15:28:16 3B5CA9D66D010F1CFC7738EAB0599FD4 602624 -c----w- C:\WINDOWS\$NtServicePackUninstall$\autoconv.exe
2014-10-31 15:28:15 CE3E0B8C9FB00AE2B214B1C951C4326F 76800 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nslookup.exe
2014-10-31 15:28:15 793F04A09B15E7C6C11DBDFFAF06C0AB 75264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\locator.exe
2014-10-31 15:28:15 0738F4B53D967E46CC5E51F84BC1EB39 419840 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ntvdm.exe
2014-10-31 15:28:14 C6CE6EEC82F187615D1002BB3BB50ED4 108032 -c----w- C:\WINDOWS\$NtServicePackUninstall$\services.exe
2014-10-31 15:28:14 910362F6BFC1F0832691ED3BAD8ECDD5 13312 -c----w- C:\WINDOWS\$NtServicePackUninstall$\savedump.exe
2014-10-31 15:28:14 25D8DE134DF108E3DBC8D7D23B1AA58E 95744 -c----w- C:\WINDOWS\$NtServicePackUninstall$\scardsvr.exe
2014-10-31 15:28:13 BD7FB0957C716F1A60333AEE04DE2178 50688 -c----w- C:\WINDOWS\$NtServicePackUninstall$\smss.exe
2014-10-31 15:28:13 729798E0933076B8FCFCD9934698F164 140800 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sessmgr.exe
2014-10-31 15:28:13 39B1FFB03C2296323832ACBAE50D2AFF 24576 -c----w- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
2014-10-31 15:28:10 626309040459C3915997EF98EC1C8D40 2148352 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ntoskrnl.exe
2014-10-31 15:28:09 FB142B7007CA2EEA76966C6C5CC12150 2015232 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ntkrnlpa.exe
2014-10-31 14:08:21 37D7F35D09B2C1D48E05E5F31871864F 242272 ----a-w- C:\Program Files\SumatraPDF\uninstall.exe
2014-10-31 14:08:18 9DAD30147BC7F6176EF4049F24047744 1481312 ----a-w- C:\Program Files\SumatraPDF\SumatraPDF.exe
2014-10-31 12:55:57 78E662D435A8E1F5B9CED236FD331856 58641 ----a-w- C:\Program Files\7-Zip\Uninstall.exe
=== C: other files ==
2014-10-31 17:08:59 F8EDE2B6928970DCE3D5614C27D9E7F6 14976 -c----w- C:\WINDOWS\system32\dllcache\usbscan.sys
2014-10-31 17:08:59 F8EDE2B6928970DCE3D5614C27D9E7F6 14976 ------w- C:\WINDOWS\Driver Cache\i386\usbscan.sys
2014-10-31 17:08:59 C569EF030B11F896E123A30AC92678DB 25088 -c----w- C:\WINDOWS\system32\dllcache\hidparse.sys
2014-10-31 17:08:59 C569EF030B11F896E123A30AC92678DB 25088 ------w- C:\WINDOWS\Driver Cache\i386\hidparse.sys
2014-10-31 17:08:57 662BFD909447DD9CC15B1A1C366583B4 272128 -c----w- C:\WINDOWS\system32\dllcache\bthport.sys
2014-10-31 17:08:57 662BFD909447DD9CC15B1A1C366583B4 272128 ------w- C:\WINDOWS\Driver Cache\i386\bthport.sys
2014-10-31 17:07:06 7D304A5EB4344EBEEAB53A2FE3FFB9F0 456320 -c----w- C:\WINDOWS\system32\dllcache\mrxsmb.sys
2014-10-31 17:07:06 7D304A5EB4344EBEEAB53A2FE3FFB9F0 456320 ------w- C:\WINDOWS\Driver Cache\i386\mrxsmb.sys
2014-10-31 17:04:24 65898A183FBF1D1F7759D5CCB364DCD4 60160 -c----w- C:\WINDOWS\system32\dllcache\usbaudio.sys
2014-10-31 17:04:24 65898A183FBF1D1F7759D5CCB364DCD4 60160 ------w- C:\WINDOWS\Driver Cache\i386\usbaudio.sys
2014-10-31 17:04:24 4F9694BDEFC1F0629704A1E2B7B96A66 46848 -c----w- C:\WINDOWS\system32\dllcache\irbus.sys
2014-10-31 17:04:24 4F9694BDEFC1F0629704A1E2B7B96A66 46848 ------w- C:\WINDOWS\Driver Cache\i386\irbus.sys
2014-10-31 17:04:23 813236B1183CFCF289E367BD5DE6E29E 123008 -c----w- C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-10-31 17:04:23 813236B1183CFCF289E367BD5DE6E29E 123008 ------w- C:\WINDOWS\Driver Cache\i386\usbvideo.sys
2014-10-31 17:03:42 4BAC8DF07F1D8434FC640E677A62204E 30336 -c----w- C:\WINDOWS\system32\dllcache\usbehci.sys
2014-10-31 17:03:42 4BAC8DF07F1D8434FC640E677A62204E 30336 ------w- C:\WINDOWS\Driver Cache\i386\usbehci.sys
2014-10-31 17:03:42 1B611611C28D2DF25BC057D79C6F13FC 32384 -c----w- C:\WINDOWS\system32\dllcache\usbccgp.sys
2014-10-31 17:03:42 1B611611C28D2DF25BC057D79C6F13FC 32384 ------w- C:\WINDOWS\Driver Cache\i386\usbccgp.sys
2014-10-31 17:03:42 04FE5EF6ED4818EC4839EA5C611A6310 5376 -c----w- C:\WINDOWS\system32\dllcache\usbd.sys
2014-10-31 17:03:42 04FE5EF6ED4818EC4839EA5C611A6310 5376 ------w- C:\WINDOWS\Driver Cache\i386\usbd.sys
2014-10-31 17:03:41 6DF35CA139C3BC15CC74390ABB114EFE 144128 -c----w- C:\WINDOWS\system32\dllcache\usbport.sys
2014-10-31 17:03:41 6DF35CA139C3BC15CC74390ABB114EFE 144128 ------w- C:\WINDOWS\Driver Cache\i386\usbport.sys
2014-10-31 17:03:22 2A7A8AD9D39A2FAF9D9293B5DAFF3A4B 12928 -c----w- C:\WINDOWS\system32\dllcache\usb8023.sys
2014-10-31 17:03:21 B4D7B7AD8A9F7C063C5CC3E2C1A0724E 12928 -c----w- C:\WINDOWS\system32\dllcache\usb8023x.sys
2014-10-31 17:03:21 B4D7B7AD8A9F7C063C5CC3E2C1A0724E 12928 ------w- C:\WINDOWS\Driver Cache\i386\usb8023x.sys
2014-10-31 17:02:01 43AF5212BD8FB5BA6EED9754358BD8F7 139784 -c----w- C:\WINDOWS\system32\dllcache\rdpwd.sys
2014-10-31 16:59:59 96F7A9A7BF0C9C0440A967440065D33C 203136 -c----w- C:\WINDOWS\system32\dllcache\rmcast.sys
2014-10-31 16:54:08 DE6A75F5C270E756C5508D94B6CF68F5 105472 -c----w- C:\WINDOWS\system32\dllcache\mup.sys
2014-10-31 16:46:20 0109C4F3850DFBAB279542515386AE22 10496 -c----w- C:\WINDOWS\system32\dllcache\ndistapi.sys
2014-10-31 16:46:12 2F597BB467E05B1FE3830EABD821B8E0 40960 -c----w- C:\WINDOWS\system32\dllcache\ndproxy.sys
2014-10-31 16:35:44 2BC6D120F3F27FE0C04A29E126B1CAD9 135526 ----a-w- C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi
2014-10-31 16:34:17 08755FC7E8E839A4C3B16DAF7EE74B99 556429 ----a-w- C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default\extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi
2014-10-31 15:53:33 D0AB9975792977E620A5E42B3B88A4F1 403 -c----w- C:\WINDOWS\system32\dllcache\npdrmv2.zip
2014-10-31 15:53:33 C1A05574369B552F87898FDC6124AA74 22060 -c----w- C:\WINDOWS\system32\dllcache\npds.zip
2014-10-31 15:51:51 8733A00B08F8CF05D50A5B8F61758A93 8832 ------w- C:\WINDOWS\ServicePackFiles\i386\powerfil.sys
2014-10-31 15:51:30 0A38F11C446ADA33CAFA1B415AF568E2 12800 ------w- C:\WINDOWS\ServicePackFiles\i386\tree.com
2014-10-31 15:51:28 ECFF394D65671EFDE5A872EB9EF4F2D5 202624 ------w- C:\WINDOWS\ServicePackFiles\i386\rmcast.sys
2014-10-31 15:51:27 AD363B8456AB92C88E33B8F544D9D07E 13801 ------w- C:\WINDOWS\ServicePackFiles\i386\tscuinst.vbs
2014-10-31 15:51:19 B1E4EC35BD16D7FAF0B090A74FFD284C 2247 ------w- C:\WINDOWS\ServicePackFiles\i386\tscdsbl.bat
2014-10-31 15:51:18 1C1A47B40C23358245AA8D0443B6935E 25600 ------w- C:\WINDOWS\ServicePackFiles\i386\usbcamd.sys
2014-10-31 15:51:17 089870DAB7AA277585C475AE09EE4C63 11520 ------w- C:\WINDOWS\ServicePackFiles\i386\scsiscan.sys
2014-10-31 15:51:16 D66D22D76878BF3483A6BE30183FB648 10240 ------w- C:\WINDOWS\ServicePackFiles\i386\sffp_mmc.sys
2014-10-31 15:51:11 BEB3BA25197665D82EC7065B724171C6 19712 ------w- C:\WINDOWS\ServicePackFiles\i386\partmgr.sys
2014-10-31 15:50:58 748031FF4FE45CCC47546294905FEAB8 20352 ------w- C:\WINDOWS\ServicePackFiles\i386\hidbatt.sys
2014-10-31 15:50:57 8CE882BCC6CF8A62F2B2323D95CB3D01 56576 ------w- C:\WINDOWS\ServicePackFiles\i386\swmidi.sys
2014-10-31 15:50:46 D45926117EB9FA946A6AF572FBE1CAA3 44544 ------w- C:\WINDOWS\ServicePackFiles\i386\fips.sys
2014-10-31 15:50:45 05A299EC56E52649B1CF2FC52D20F2D7 37248 ------w- C:\WINDOWS\ServicePackFiles\i386\isapnp.sys
2014-10-31 15:50:44 1AB3D00C991AB086E69DB84B6C0ED78F 10112 ------w- C:\WINDOWS\ServicePackFiles\i386\ndistapi.sys
2014-10-31 15:50:41 6E4C9F21F0FAE8940661144F41B13203 10240 ------w- C:\WINDOWS\ServicePackFiles\i386\compbatt.sys
2014-10-31 15:50:40 0D93976F7801B7FCD8135CC77257BBD0 14208 ------w- C:\WINDOWS\ServicePackFiles\i386\battc.sys
2014-10-31 15:50:32 01B3E28A153D49F8F6DF82BF9E5900FC 18917 ------w- C:\WINDOWS\ServicePackFiles\i386\tscinst.vbs
2014-10-31 15:50:28 A0F70EDB428EAB4422B665B1943626DD 29696 ------w- C:\WINDOWS\ServicePackFiles\i386\format.com
2014-10-31 15:50:22 6215023940CFD3702B46ABC304E1D45A 40576 ------w- C:\WINDOWS\ServicePackFiles\i386\ndproxy.sys
2014-10-31 15:50:11 2EF8C49FD0FCBEE4A94B47D3E1F36C86 16896 ------w- C:\WINDOWS\ServicePackFiles\i386\more.com
2014-10-31 15:49:45 CE97845D2E3F0D274B8BAC1ED07C6149 25728 ------w- C:\WINDOWS\ServicePackFiles\i386\usbcamd2.sys
2014-10-31 15:49:29 CCF82C5EC8A7326C3066DE870C06DAF1 10368 ------w- C:\WINDOWS\ServicePackFiles\i386\hidusb.sys
2014-10-31 15:49:23 573C7D0A32852B48F3058CFD8026F511 144384 ------w- C:\WINDOWS\ServicePackFiles\i386\hdaudbus.sys
2014-10-31 15:40:46 D66D22D76878BF3483A6BE30183FB648 10240 ------w- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2014-10-31 15:38:37 E31363D186B3E1D7C4E9117884A6AEE5 137728 ----a-w- C:\WINDOWS\system32\ReinstallBackups\0017\DriverFiles\hdaudbus.sys
2014-10-31 15:38:33 02FC71B020EC8700EE8A46C58BC6F276 67584 ----a-w- C:\WINDOWS\system32\ReinstallBackups\0016\DriverFiles\i386\sdbus.sys
2014-10-31 15:38:31 279FB78702454DFF2BB445F238C048D2 36096 ----a-w- C:\WINDOWS\system32\ReinstallBackups\0015\DriverFiles\i386\intelppm.sys
2014-10-31 15:38:30 279FB78702454DFF2BB445F238C048D2 36096 ----a-w- C:\WINDOWS\system32\ReinstallBackups\0020\DriverFiles\i386\intelppm.sys
2014-10-31 15:32:05 9D0F94E4FEB6DCDDAEF975DEF0A32949 40832 -c----w- C:\WINDOWS\$NtServicePackUninstall$\irbus.sys
2014-10-31 15:32:03 97983DB98129EFE4E2D215CE350A7546 59136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\gckernel.sys
2014-10-31 15:32:02 EE55F5C64417CC369866D7EAFE9B07AB 22016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msircomm.sys
2014-10-31 15:32:02 1023FC75551B2D8BC0ACA99D9C1C5D63 17664 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ppa3.sys
2014-10-31 15:31:58 B85B448FD2C398970382A28E47CF4BC6 31744 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wceusbsh.sys
2014-10-31 15:31:56 55A9A7E6BB297BF0F5B144029DCB79CC 15360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mpe.sys
2014-10-31 15:31:55 A42369B7CD8886CD7C70F33DA6FCBCF5 25856 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbprint.sys
2014-10-31 15:31:52 D4E1153D2217529BB925CEC2F478D578 7552 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sonyait.sys
2014-10-31 15:31:49 5FDE6D93E120B1BA2B59329B1D3027B0 16128 -c----w- C:\WINDOWS\$NtServicePackUninstall$\smbbatt.sys
2014-10-31 15:31:48 66C748322A33E3183F4339CAB0D93A1D 27904 -c----w- C:\WINDOWS\$NtServicePackUninstall$\perm2.sys
2014-10-31 15:31:47 E82C5AE309AB903D1019A240E5E469A9 11776 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bdasup.sys
2014-10-31 15:31:47 47A15DE75F64102F44D5806BEA12CE10 26112 -c----w- C:\WINDOWS\$NtServicePackUninstall$\memstpci.sys
2014-10-31 15:31:45 49106EE29074E6A3D3AC9E24C6D791D8 25600 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbser.sys
2014-10-31 15:31:42 3E2C3B180872BE4120F246D85560B734 43136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sbp2port.sys
2014-10-31 15:31:41 AD7FC1963B152B3728E3C4F83554A576 207360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dot4.sys
2014-10-31 15:31:38 9B6DC04FB5391F670D3E7755382F54A3 28288 -c----w- C:\WINDOWS\$NtServicePackUninstall$\grserial.sys
2014-10-31 15:31:37 7F78371E0AF2609EA3A95D8843B076F8 20736 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ramdisk.sys
2014-10-31 15:31:32 86D7B1E70661D754685B9AC6D749AAE5 48128 -c----w- C:\WINDOWS\$NtServicePackUninstall$\61883.sys
2014-10-31 15:31:27 867D73A2E43B2DDAF0B0263F88E217AC 13696 -c----w- C:\WINDOWS\$NtServicePackUninstall$\avcstrm.sys
2014-10-31 15:31:24 86C204836FEEC22510D434982D4221B8 87424 -c----w- C:\WINDOWS\$NtServicePackUninstall$\irda.sys
2014-10-31 15:31:24 658437CE4D53B7F7295AE7D2AAC3FAFF 7040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ltotape.sys
2014-10-31 15:31:23 9546D4CF7F9E902D20B269511CA1F95D 12288 -c----w- C:\WINDOWS\$NtServicePackUninstall$\4mmdat.sys
2014-10-31 15:31:18 77F7F2683CF22EFE704E65ED82865A1D 6912 -c----w- C:\WINDOWS\$NtServicePackUninstall$\smbclass.sys
2014-10-31 15:31:16 8D388BD5D2EFC221E12D174718660E2C 8320 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dlttape.sys
2014-10-31 15:31:16 5F92FD09E5610A5995DA7D775EADCD12 10624 -c----w- C:\WINDOWS\$NtServicePackUninstall$\gameenum.sys
2014-10-31 15:31:14 6DD721DFD2648F3F6D5808B5BA6CB095 51328 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msdv.sys
2014-10-31 15:31:12 87C223ADB8F7596B31CAAE3C67B16DDD 38912 -c----w- C:\WINDOWS\$NtServicePackUninstall$\avc.sys
2014-10-31 15:31:12 07C4CF2679650F60B392BFCDED87F347 28032 -c----w- C:\WINDOWS\$NtServicePackUninstall$\perm3.sys
2014-10-31 15:31:10 45A0D14B26C35497AD93BCE7E15C9941 59264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbaudio.sys
2014-10-31 15:31:08 6BBA0D2FE1F33545E438FF888A0716F7 79104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rocket.sys
2014-10-31 15:31:06 ED6BF9E441FDEA13292A6D30A64A24C3 18560 -c----w- C:\WINDOWS\$NtServicePackUninstall$\i2omp.sys
2014-10-31 15:31:06 77E8A9B5CEC79B2E4A69B9C484633DBF 6016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\qic157.sys
2014-10-31 15:31:05 BDFE799A8531BAD8A5A985821FE78760 17024 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbohci.sys
2014-10-31 15:31:03 DAF1A8193B6CAF0FB858CADCC5C4AF4A 8192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\changer.sys
2014-10-31 15:31:02 E70124B772AD84B6BC1E3A92A59D1799 149376 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tffsport.sys
2014-10-31 15:31:02 74A538DEADE5EA5F9762F488C7904127 49024 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mstape.sys
2014-10-31 15:31:02 2D722B2B54AB55B2FA475EB58D7B2AAD 5504 -c----w- C:\WINDOWS\$NtServicePackUninstall$\intelide.sys
2014-10-31 15:30:57 CC50A66548C2F285BC8A7B0B8AA578E3 34688 -c----w- C:\WINDOWS\$NtServicePackUninstall$\lbrtfdc.sys
2014-10-31 15:30:57 8F09F91B5C91363B77BCD15599570F2C 8192 -c----w- C:\WINDOWS\$NtServicePackUninstall$\i2omgmt.sys
2014-10-31 15:30:54 59CB1338AD3654417BEA49636457F65D 5376 -c----w- C:\WINDOWS\$NtServicePackUninstall$\viaide.sys
2014-10-31 15:30:52 6216798D29C3BA9D0D6F40BBBAB694A5 28672 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nscirda.sys
2014-10-31 15:30:49 F312B7CEF21EFF52FA23056B9D815FAD 42752 -c----w- C:\WINDOWS\$NtServicePackUninstall$\alim1541.sys
2014-10-31 15:30:49 F06D4CB9918B462A84D9AC00027EFC30 18944 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bthusb.sys
2014-10-31 15:30:49 D24B8D1784C68A25060FFFBE8ED34B76 17024 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bthenum.sys
2014-10-31 15:30:49 9DF0ADF74CE1D6371ED60CF92EB1D9A6 38016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bthmodem.sys
2014-10-31 15:30:49 680AD1C1BB16239E28D8F33A54A7A3C7 37376 -c----w- C:\WINDOWS\$NtServicePackUninstall$\amdk7.sys
2014-10-31 15:30:49 675C16A3C1F8482F85EE4A97FC0DDE3D 43008 -c----w- C:\WINDOWS\$NtServicePackUninstall$\amdagp.sys
2014-10-31 15:30:49 67288B07D6ABA6C1267B626E67BC56FD 44928 -c----w- C:\WINDOWS\$NtServicePackUninstall$\agpcpq.sys
2014-10-31 15:30:49 30B76EC553B202890E90A93A4E1A27B5 274304 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bthport.sys
2014-10-31 15:30:49 2C428FA0C3E3A01ED93C9B2A27D8D4BB 42368 -c----w- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys
2014-10-31 15:30:49 275BEF3567B48225B0836E138325430C 35456 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bthprint.sys
2014-10-31 15:30:49 157754F0DF355A9E0A6F54721914F9C6 124800 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fltmgr.sys
2014-10-31 15:30:49 10355270BE12641B9764235DA39DCF0F 100992 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bthpan.sys
2014-10-31 15:30:48 E31363D186B3E1D7C4E9117884A6AEE5 137728 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hdaudbus.sys
2014-10-31 15:30:48 CDA7C5208286249BA83ACA396CE84CF7 25600 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hidbth.sys
2014-10-31 15:30:48 C19B522A9AE0BBC3293397F3055E80A1 263040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\http.sys
2014-10-31 15:30:48 A82A06278B29004D5DA49965565AC2FD 30080 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rndismpx.sys
2014-10-31 15:30:48 99C4B74981A1413F142A3903130088CB 59648 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rfcomm.sys
2014-10-31 15:30:48 94AF9D9D9E9A562B43D573A82FB5AB60 12672 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mutohpen.sys
2014-10-31 15:30:48 87A0E9E18C10A9E454238E3330E2A26D 12416 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tunmp.sys
2014-10-31 15:30:48 732D859B286DA692119F286B21A2A114 41088 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sisagp.sys
2014-10-31 15:30:48 654DD37334FB4621043003188C48D582 6016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\smbali.sys
2014-10-31 15:30:48 586499FD312FFD7F78553F408E71682E 10240 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sffp_sd.sys
2014-10-31 15:30:48 49C805D42D75EDDC9B6A7130999C9054 44672 -c----w- C:\WINDOWS\$NtServicePackUninstall$\uagp35.sys
2014-10-31 15:30:48 469541F8BFD2B32659D5D463A6714BCE 15488 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mssmbios.sys
2014-10-31 15:30:48 4448006B6BC60E6C027932CFC38D6855 29056 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ip6fw.sys
2014-10-31 15:30:48 442915553E99782FA5713B04C3EEB94A 15104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hidir.sys
2014-10-31 15:30:48 4216CD545E5C30807B560C5DCAA812E6 46464 -c----w- C:\WINDOWS\$NtServicePackUninstall$\gagp30kx.sys
2014-10-31 15:30:48 279FB78702454DFF2BB445F238C048D2 36096 -c----w- C:\WINDOWS\$NtServicePackUninstall$\intelppm.sys
2014-10-31 15:30:48 1D9F1BEC651815741F088A8FB88E17EE 11136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sffdisk.sys
2014-10-31 15:30:48 02FC71B020EC8700EE8A46C58BC6F276 67584 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sdbus.sys
2014-10-31 15:30:47 EE37E5C79D6C788711296075B2BC95F4 12672 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usb8023x.sys
2014-10-31 15:30:47 D92E7C8A30CFD14D8E15B5F7F032151B 42240 -c----w- C:\WINDOWS\$NtServicePackUninstall$\viaagp.sys
2014-10-31 15:30:47 8968FF3973A883C49E8B564200F565B9 78464 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbvideo.sys
2014-10-31 15:30:47 497F6CDB901EF8DE81BD501E2AEFB0D0 13568 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wacompen.sys
2014-10-31 15:30:47 15E993BA2F6946B2BFBBFCD30398621E 26624 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbehci.sys
2014-10-31 15:30:35 DB07B0088CDFD20C2A22E675120EDE34 72960 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mqac.sys
2014-10-31 15:30:35 03373A79440473062C6F3AEDEC6A49C8 163584 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nwrdr.sys
2014-10-31 15:28:46 3998593E148DA03A4359FDE9FE2102E6 15872 -c----w- C:\WINDOWS\$NtServicePackUninstall$\more.com
2014-10-31 15:28:24 108F5B9CFAE8D11ADD7EFEE91D8112C3 11264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tree.com
2014-10-31 15:28:23 C9BF2F12C4E6C12F8A85FBA4B6BC6208 17664 -c----w- C:\WINDOWS\$NtServicePackUninstall$\watchdog.sys
2014-10-31 15:28:16 739A53AB0955D58B15B66F277F9CCBF8 25600 -c----w- C:\WINDOWS\$NtServicePackUninstall$\format.com
2014-10-31 15:28:13 F0D692B0BFFB46E30EB3CEA168BBC49F 60800 -c----w- C:\WINDOWS\$NtServicePackUninstall$\arp1394.sys
2014-10-31 15:28:13 EC88DA854AB7D7752EC8BE11A741BB7F 59904 -c----w- C:\WINDOWS\$NtServicePackUninstall$\atmarpc.sys
2014-10-31 15:28:13 EA22EDADF90C0ABA8319454B2A07B700 14080 -c----w- C:\WINDOWS\$NtServicePackUninstall$\battc.sys
2014-10-31 15:28:13 E4E6A0922E3D983728C9AD4E8D466954 71552 -c----w- C:\WINDOWS\$NtServicePackUninstall$\bridge.sys
2014-10-31 15:28:13 DAD16A9D5C873E7219E6B43802ED316A 36992 -c----w- C:\WINDOWS\$NtServicePackUninstall$\amdk6.sys
2014-10-31 15:28:13 CDFE4411A69C224BD1D11B2DA92DAC51 95360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
2014-10-31 15:28:13 B74C69A810949E7A54DC688CAE662206 1835904 -c----w- C:\WINDOWS\$NtServicePackUninstall$\win32k.sys
2014-10-31 15:28:13 A10C7534F7223F4A73A948967D00E69B 187776 -c----w- C:\WINDOWS\$NtServicePackUninstall$\acpi.sys
2014-10-31 15:28:13 841F385C6CFAF66B58FBD898722BB4F0 142464 -c----w- C:\WINDOWS\$NtServicePackUninstall$\aec.sys
2014-10-31 15:28:13 5AC495F4CB807B2B98AD2AD591E6D92E 138496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\afd.sys
2014-10-31 15:28:13 02000ABF34AF4C218C35D257024807D6 14336 -c----w- C:\WINDOWS\$NtServicePackUninstall$\asyncmac.sys
2014-10-31 15:28:13 0128E78FE835F074E469F03DB681CA9E 55936 -c----w- C:\WINDOWS\$NtServicePackUninstall$\atmlane.sys
2014-10-31 15:28:13 009927DB8019C54477DABF6F9D795053 53248 -c----w- C:\WINDOWS\$NtServicePackUninstall$\1394bus.sys
2014-10-31 15:28:12 FF86422268DE771D571E123EB7092C6A 60288 -c----w- C:\WINDOWS\$NtServicePackUninstall$\drmk.sys
2014-10-31 15:28:12 F8AA320C6A0409C0380E5D8A99D76EC6 41856 -c----w- C:\WINDOWS\$NtServicePackUninstall$\imapi.sys
2014-10-31 15:28:12 F5E7B358A732D09F4BCF2824B88B9E28 153344 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dmio.sys
2014-10-31 15:28:12 EBDEE8A2EE5393890A1ACEE971C4C246 24576 -c----w- C:\WINDOWS\$NtServicePackUninstall$\kbdclass.sys
2014-10-31 15:28:12 EB7FFE87FD367EA8FCA0506F74A87FBB 92032 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ksecdd.sys
2014-10-31 15:28:12 E504F706CCB699C2596E9A3DA1596E87 35840 -c----w- C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys
2014-10-31 15:28:12 E1EC7F5DA720B640CD8FB8424F1B14BB 20992 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ipinip.sys
2014-10-31 15:28:12 E182FA8E49E8EE41B4ADC53093F3C7E6 14848 -c----w- C:\WINDOWS\$NtServicePackUninstall$\kbdhid.sys
2014-10-31 15:28:12 E153AB8A11DE5452BCF5AC7652DBF3ED 34944 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fips.sys
2014-10-31 15:28:12 DF1B1A24BF52D0EBC01ED4ECE8979F50 9344 -c----w- C:\WINDOWS\$NtServicePackUninstall$\compbatt.sys
2014-10-31 15:28:12 D93CAD07C5683DB066B0B2D2D3790EAD 171776 -c----w- C:\WINDOWS\$NtServicePackUninstall$\kmixer.sys
2014-10-31 15:28:12 D86173B401470F06D9810F7962969DDF 49664 -c----w- C:\WINDOWS\$NtServicePackUninstall$\classpnp.sys
2014-10-31 15:28:12 D3DAC8432110AAD0B02A58B4459AB835 71040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dxg.sys
2014-10-31 15:28:12 D16C81677A9BE399C63CD2EA486472A5 14208 -c----w- C:\WINDOWS\$NtServicePackUninstall$\diskdump.sys
2014-10-31 15:28:12 CED2E8396A8838E59D8FD529C680E02C 27392 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fdc.sys
2014-10-31 15:28:12 CD7D5152DF32B47F4E36F710B35AAE02 63744 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cdfs.sys
2014-10-31 15:28:12 C0FBB516E06E243F0CF31F597E7EBF7D 799744 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dmboot.sys
2014-10-31 15:28:12 C0F1D4A21DE5A415DF8170616703DEBF 35072 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msgpc.sys
2014-10-31 15:28:12 BF13612142995096AB084F2DB7F40F77 5504 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mstee.sys
2014-10-31 15:28:12 B9540E258F952650DE8DEC68719A5C97 140928 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ks.sys
2014-10-31 15:28:12 B5A8E215AC29D24D60B4D1250EF05ACE 134912 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ipnat.sys
2014-10-31 15:28:12 AF9C19B3100FE010496B1A27181FBF72 49536 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
2014-10-31 15:28:12 AE431A8DD3C1D0D0610CDBAC16057AD0 7552 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mskssrv.sys
2014-10-31 15:28:12 A6F881284AC1150E37D9AE47FF601267 52864 -c----w- C:\WINDOWS\$NtServicePackUninstall$\dmusic.sys
2014-10-31 15:28:12 82035E0F41C2DD05AE41D27FE6CF7DE1 107904 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mup.sys
2014-10-31 15:28:12 729D83E56C29C510258A6E9E79FFDDC3 63744 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mf.sys
2014-10-31 15:28:12 6FC6F9D7ACC36DCA9B914565A3AEDA05 30080 -c----w- C:\WINDOWS\$NtServicePackUninstall$\modem.sys
2014-10-31 15:28:12 6AF1684CCAAC3F7EF4EE9BA65EB0677A 36480 -c----w- C:\WINDOWS\$NtServicePackUninstall$\crusoe.sys
2014-10-31 15:28:12 65653F3B4477F3C63E68A9659F85EE2E 42240 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mountmgr.sys
2014-10-31 15:28:12 64537AA5C003A6AFEEE1DF819062D0D1 74752 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ipsec.sys
2014-10-31 15:28:12 6163ED60B684BAB19D3352AB22FC48B2 17024 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ccdecode.sys
2014-10-31 15:28:12 5FFF41CD5108E9051D255C37825AF697 24960 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hidparse.sys
2014-10-31 15:28:12 5C8DC6429C43DC6177C1FA5B76290D1A 85376 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nabtsfec.sys
2014-10-31 15:28:12 561B3A4333CA2DBDBA28B5B956822519 19072 -c----w- C:\WINDOWS\$NtServicePackUninstall$\msfs.sys
2014-10-31 15:28:12 558635D3AF1C7546D26067D5D9B6959E 182912 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
2014-10-31 15:28:12 5502B58EEF7486EE6F93F3F164DCB808 52736 -c----w- C:\WINDOWS\$NtServicePackUninstall$\i8042prt.sys
2014-10-31 15:28:12 50708DAA1B1CBB7D6AC1CF8F56A24410 11264 -c----w- C:\WINDOWS\$NtServicePackUninstall$\irenum.sys
2014-10-31 15:28:12 46EDCC8F2DB2F322C24F48785CB46366 181248 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mrxdav.sys
2014-10-31 15:28:12 4266BE808F85826AEDF3C64C1E240203 14080 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cmbatt.sys
2014-10-31 15:28:12 378055AB8DDA86228683C697C4E11685 36224 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hidclass.sys
2014-10-31 15:28:12 34E1F0031153E491910E12551400192C 23040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mouclass.sys
2014-10-31 15:28:12 3117F595E9615E04F05A54FC15A03B20 143360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\fastfat.sys
2014-10-31 15:28:12 1FD607FC67F7F7C633C3DA65BFC53D18 451456 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mrxsmb.sys
2014-10-31 15:28:12 1ED4DBBAE9F5D558DBBA4CC450E3EB2E 2944 -c----w- C:\WINDOWS\$NtServicePackUninstall$\drmkaud.sys
2014-10-31 15:28:12 1DE6783B918F540149AA69943BDFEBA8 9600 -c----w- C:\WINDOWS\$NtServicePackUninstall$\hidusb.sys
2014-10-31 15:28:12 1988A33FF19242576C3D0EF9CE785DA7 4992 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mspqm.sys
2014-10-31 15:28:12 13E75FEF9DFEB08EEDED9D0246E1F448 5376 -c----w- C:\WINDOWS\$NtServicePackUninstall$\mspclock.sys
2014-10-31 15:28:12 0DD1DE43115B93F4D85E889D7A86F548 20480 -c----w- C:\WINDOWS\$NtServicePackUninstall$\flpydisk.sys
2014-10-31 15:28:12 00CA44E4534865F8A3B64F7C0984BFF0 36352 -c----w- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
2014-10-31 15:28:11 D4F5643D7714EF499AE9527FDCD50894 139400 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rdpwd.sys
2014-10-31 15:28:11 B78BE402C3F63DD55521F73876951CDD 574592 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys
2014-10-31 15:28:11 B31B4588E4086D8D84ADBF9845C2402B 57472 -c----w- C:\WINDOWS\$NtServicePackUninstall$\redbook.sys
2014-10-31 15:28:11 A2CAE2C60BC37E0751EF9DDA7CEAF4AD 196864 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rdpdr.sys
2014-10-31 15:28:11 98FAEB4A4DCF812BA1C6FCA4AA3E115C 51328 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rasl2tp.sys
2014-10-31 15:28:11 82A087207DECEC8456FBE8537947D579 119936 -c----w- C:\WINDOWS\$NtServicePackUninstall$\pcmcia.sys
2014-10-31 15:28:11 8086D9979234B603AD5BC2F5D890B234 68224 -c----w- C:\WINDOWS\$NtServicePackUninstall$\pci.sys
2014-10-31 15:28:11 79EA3FCDA7067977625B3363A2657C80 88448 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nwlnkipx.sys
2014-10-31 15:28:11 7306EEED8895454CBED4669BE9F79FAA 41472 -c----w- C:\WINDOWS\$NtServicePackUninstall$\raspppoe.sys
2014-10-31 15:28:11 60CF8C7192B3614F240838DDBAA4A245 40320 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nmnt.sys
2014-10-31 15:28:11 5C5C53DB4FEF16CF87B9911C7E8C6FBC 61824 -c----w- C:\WINDOWS\$NtServicePackUninstall$\nic1394.sys
2014-10-31 15:28:11 5B0F00E43A7094C0B7E433CB42C79164 145792 -c----w- C:\WINDOWS\$NtServicePackUninstall$\portcls.sys
2014-10-31 15:28:11 59FC3FB44D2669BC144FD87826BB571F 38016 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ndproxy.sys
2014-10-31 15:28:11 520CE427A8B298F54112857BCF6BDE15 10880 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ndisip.sys
2014-10-31 15:28:11 520B91AB011456B940D9B05FC91108FF 25088 -c----w- C:\WINDOWS\$NtServicePackUninstall$\pciidex.sys
2014-10-31 15:28:11 4F601BCB8F64EA3AC0994F98FED03F8E 30848 -c----w- C:\WINDOWS\$NtServicePackUninstall$\npfs.sys
2014-10-31 15:28:11 48671F327553DCF1D27F6197F622A668 69120 -c----w- C:\WINDOWS\$NtServicePackUninstall$\psched.sys
2014-10-31 15:28:11 3E16EFF2A6FED2D8D7F5A66DFE65D183 42496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\p3.sys
2014-10-31 15:28:11 3A2ACA8FC1D7786902CA434998D7CEB4 34560 -c----w- C:\WINDOWS\$NtServicePackUninstall$\netbios.sys
2014-10-31 15:28:11 35E81B908AE4E97FC7BDF4607C516FF4 200064 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rmcast.sys
2014-10-31 15:28:11 34D6CD56409DA9A7ED573E1C90A308BF 12928 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ndisuio.sys
2014-10-31 15:28:11 3334430C29DC338092F79C38EF7B4CD0 18688 -c----w- C:\WINDOWS\$NtServicePackUninstall$\partmgr.sys
2014-10-31 15:28:11 29D66245ADBA878FFF574CD66ABD2884 176512 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rdbss.sys
2014-10-31 15:28:11 29744EB4CE659DFE3B4122DEB45BC478 80128 -c----w- C:\WINDOWS\$NtServicePackUninstall$\parport.sys
2014-10-31 15:28:11 1C5CC65AAC0783C344F16353E60B72AC 48384 -c----w- C:\WINDOWS\$NtServicePackUninstall$\raspptp.sys
2014-10-31 15:28:11 0D97D88720A4087EC93AF7DBB303B30A 35328 -c----w- C:\WINDOWS\$NtServicePackUninstall$\processr.sys
2014-10-31 15:28:11 0C80E410CD2F47134407EE7DD19CC86B 162816 -c----w- C:\WINDOWS\$NtServicePackUninstall$\netbt.sys
2014-10-31 15:28:11 0B90E255A9490166AB368CD55A529893 91776 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ndiswan.sys
2014-10-31 15:28:11 0951DB8E5823EA366B0E408D71E1BA2A 61056 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ohci1394.sys
2014-10-31 15:28:11 08D43BBDACDF23F34D79E44ED35C1B4C 9600 -c----w- C:\WINDOWS\$NtServicePackUninstall$\ndistapi.sys
2014-10-31 15:28:10 F8FD1400092E23C8F2F31406EF06167B 20480 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbuhci.sys
2014-10-31 15:28:10 EE4660083DEBA849FF6C485D944B379B 52352 -c----w- C:\WINDOWS\$NtServicePackUninstall$\volsnap.sys
2014-10-31 15:28:10 ED0580AF02502D00AD8C4C066B156BE9 21896 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tdtcp.sys
2014-10-31 15:28:10 E41B6D037D6CD08461470AF04500DC24 73472 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sr.sys
2014-10-31 15:28:10 D7FD0FF761E28AC0EA35AD71E0CD67E9 96256 -c----w- C:\WINDOWS\$NtServicePackUninstall$\scsiport.sys
2014-10-31 15:28:10 D5A9D123F5ED7C9965A481BD20CF66D8 79744 -c----w- C:\WINDOWS\$NtServicePackUninstall$\videoprt.sys
2014-10-31 15:28:10 D5842484F05E12121C511AA93F6439EC 19328 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wstcodec.sys
2014-10-31 15:28:10 D26E26EA516450AF9D072635C60387F4 27440 -c----w- C:\WINDOWS\$NtServicePackUninstall$\secdrv.sys
2014-10-31 15:28:10 CD9404D115A00D249F70A371B46D5A26 64896 -c----w- C:\WINDOWS\$NtServicePackUninstall$\serial.sys
2014-10-31 15:28:10 C72F40947F92CEA56A8FB532EDF025F1 57600 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbhub.sys
2014-10-31 15:28:10 C43356072EB3E88CD62958DB10CEAD47 48640 -c----w- C:\WINDOWS\$NtServicePackUninstall$\stream.sys
2014-10-31 15:28:10 BFFD9F120CC63BCBAA3D840F3EEF9F79 31616 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbccgp.sys
2014-10-31 15:28:10 AFF2E5045961BBC0A602BB6F95EB1345 209408 -c----w- C:\WINDOWS\$NtServicePackUninstall$\update.sys
2014-10-31 15:28:10 AF090265EC388BAB320F1FF7E7A7D5EA 12672 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usb8023.sys
2014-10-31 15:28:10 AE2C8544E747C20062DB27456EA2D67A 8832 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wmiacpi.sys
2014-10-31 15:28:10 ADDC9E4757A68AB60562AD3CB9C288D6 25472 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sonydcam.sys
2014-10-31 15:28:10 A6BC71402F4F7DD5B77FD7F4A8DDBA85 15104 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbscan.sys
2014-10-31 15:28:10 A540A99C281D933F3D69D55E48727F47 40840 -c----w- C:\WINDOWS\$NtServicePackUninstall$\termdd.sys
2014-10-31 15:28:10 A2D868AEEFF612E70E213C451A70CAFB 15488 -c----w- C:\WINDOWS\$NtServicePackUninstall$\serenum.sys
2014-10-31 15:28:10 A2A9CA0D1A9AC1FF54220AA0789FE5CF 14976 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tape.sys
2014-10-31 15:28:10 9F4B36614A0FC234525BA224957DE55C 359040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
2014-10-31 15:28:10 984EF0B9788ABF89974CFED4BFBAACBC 34560 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wanarp.sys
2014-10-31 15:28:10 94ABC808FC4B6D7D2BBF42B85E25BB4D 54272 -c----w- C:\WINDOWS\$NtServicePackUninstall$\swmidi.sys
2014-10-31 15:28:10 8E186B8F23295D1E42C573B82B80D548 6400 -c----w- C:\WINDOWS\$NtServicePackUninstall$\splitter.sys
2014-10-31 15:28:10 8A60EDD72B4EA5AEA8202DAF0E427925 20992 -c----w- C:\WINDOWS\$NtServicePackUninstall$\vga.sys
2014-10-31 15:28:10 7CE8B277F3207EA82D7D22AD348BEFC6 30080 -c----w- C:\WINDOWS\$NtServicePackUninstall$\rndismp.sys
2014-10-31 15:28:10 6CD7B22193718F1D17A47A1CD6D37E75 26496 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbstor.sys
2014-10-31 15:28:10 6891B74AB9A016064E82A419388D0601 18560 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tdi.sys
2014-10-31 15:28:10 650AD082D46BAC0E64C9C0E0928492FD 60800 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sysaudio.sys
2014-10-31 15:28:10 61018BA9DF6B63E51D9753C980E73EC2 23936 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbcamd2.sys
2014-10-31 15:28:10 5CAEED86821FA2C6139E32E9E05CCDC9 11136 -c----w- C:\WINDOWS\$NtServicePackUninstall$\slip.sys
2014-10-31 15:28:10 4D58BB1AE8841AAFD8790AD7E1E3B8EA 223616 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tcpip6.sys
2014-10-31 15:28:10 38D437CF2D98965F239B0ABCD66DCB0F 12040 -c----w- C:\WINDOWS\$NtServicePackUninstall$\tdpipe.sys
2014-10-31 15:28:10 2853FD4C4489E0F8BFCF78EFCDB7E998 16000 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbintel.sys
2014-10-31 15:28:10 284C57DF5DC7ABCA656BC2B96A667AFB 15360 -c----w- C:\WINDOWS\$NtServicePackUninstall$\streamip.sys
2014-10-31 15:28:10 2797F33EBF50466020C430EE4F037933 82944 -c----w- C:\WINDOWS\$NtServicePackUninstall$\wdmaud.sys
2014-10-31 15:28:10 2654EECC6FB13603EBDDCD5C8EA943D1 23808 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbcamd.sys
2014-10-31 15:28:10 20B7E396720353E4117D64D9DCB926CA 336256 -c----w- C:\WINDOWS\$NtServicePackUninstall$\srv.sys
2014-10-31 15:28:10 2034CA78F9C6E787B4B76D81AC888351 142976 -c----w- C:\WINDOWS\$NtServicePackUninstall$\usbport.sys
2014-10-31 15:28:10 12F70256F140CD7D52C58C7048FDE657 66176 -c----w- C:\WINDOWS\$NtServicePackUninstall$\udfs.sys
2014-10-31 15:28:10 0D13B6DF6E9E101013A7AFB0CE629FE0 11392 -c----w- C:\WINDOWS\$NtServicePackUninstall$\sfloppy.sys
2014-10-31 15:28:10 03C1BAE4766E2450219D20B993D6E046 4352 -c----w- C:\WINDOWS\$NtServicePackUninstall$\swenum.sys
2014-10-31 15:28:07 CD82587E344EB1C9FC46BA77B33D4B76 558142 -c----w- C:\WINDOWS\$NtServicePackUninstall$\oi0c9zr1.zip
2014-10-31 15:28:07 C040DB5AD3967931C102B68D5DEB2BA8 4314156 -c----w- C:\WINDOWS\$NtServicePackUninstall$\up3xfl3h.zip
2014-10-31 15:28:07 8D108950A30BA416747AEE1EC064329F 191842 -c----w- C:\WINDOWS\$NtServicePackUninstall$\k1vj9ff9.zip
2014-10-31 15:28:06 D3C3EFCB8CE5FC802B18D65DC47217AD 155995 -c----w- C:\WINDOWS\$NtServicePackUninstall$\cifz7rzz.zip
2014-10-31 15:28:06 B841C94A6287B48F24E6304A50DC0073 323696 -c----w- C:\WINDOWS\$NtServicePackUninstall$\7vjtf35j.zip
2014-10-31 15:28:06 894A9E19CBB5A4E1436090D1EB2432BE 11139 -c----w- C:\WINDOWS\$NtServicePackUninstall$\3p79rf5j.zip
2014-10-31 15:28:06 886BBA83E37D779DFEB51A909502FF76 137126 -c----w- C:\WINDOWS\$NtServicePackUninstall$\05jvjjp3.zip
2014-10-31 15:28:06 1833E7F9D599700C80136C99460EDB34 5750389 -c----w- C:\WINDOWS\$NtServicePackUninstall$\j3zfrbx7.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1715567821-1604221776-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"
"NvCplDaemon"="RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup"
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe -osboot"
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe -atboottime"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe"
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Broadcom Wireless Manager UI]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="WLTRAY"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\System32\\WLTRAY.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GoogleUpdate"
"hkey"="HKCU"
"command"="\"C:\\Documents and Settings\\milos\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MsnMsgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MsnMsgr"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NvCpl"
"hkey"="HKLM"
"command"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NvMcTray"
"hkey"="HKLM"
"command"="RUNDLL32.EXE C:\\WINDOWS\\System32\\NvMcTray.dll,NvTaskbarInit"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\nwiz]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="nwiz"
"hkey"="HKLM"
"command"="nwiz.exe /installquiet"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SigmatelSysTrayApp]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="stsystra"
"hkey"="HKLM"
"command"="stsystra.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun"


==== Startup Folders ======================

2009-10-21 16:53:38 1536 -c--a-w- C:\Documents and Settings\Guest\Start Menu\Programs\Startup\LimeWire On Startup.lnk

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [31.10.2014 18:07]
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1715567821-1604221776-682003330-1003Core.job --a------ C:\Documents and Settings\milos\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe []
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1715567821-1604221776-682003330-1003UA.job --a------ [Undetermined Task]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cce077f47ba258.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31.10.2014 17:54]
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [31.10.2014 17:54]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default
- Undetermined - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Easy Youtube Video Downloader Express - %ProfilePath%\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi
- Adblock Edge - %ProfilePath%\extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\milos\Application Data\Mozilla\Firefox\Profiles\cb05vfbe.default
63F8C13F269B10BC9363B007DAAACAE6 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll - Shockwave Flash
40AAE0A1A4F664828DF5A95875AEA1C8 - C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll - Google Update
28000D7EEB2FD95A36E1A7539F599C3B - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
5D41BCD19A3D90E4EBB58A6BFB79E4F7 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
8B6884E3E1E5F8ABA5FA0C6A2B13181D - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
A4315454EE75C8E8C0653457B642965A - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation


==== Chromium Look ======================

YouTube - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Gmail - LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Google Voice Search Hotword (Beta) - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn
YouTube - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - milos\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://www.yahoo.com"
"Search Bar"="http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html"
"SearchMigratedDefaultURL"="http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Bar"="http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search]
"CustomSearch"="http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr8/*http://www.yahoo.com/ext/search/search.html"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_en"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on pon 03.11.2014 at 18:29:23,45 ======================

Poslao: 03 Nov 2014 18:56
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

OK.

Neka promijeni FB lozinku i nek vidi da li će se problem mainfestovati i dalje.

Poslao: 03 Nov 2014 19:05
Idi na vrh
offline
  • Pridružio: 12 Feb 2007
  • Poruke: 1239

Još jedna stvar, ovaj AVG je izgleda neka piraska verzija jer sam našao na D particiji folder sa više verzija sa instalacijom i text fajl sa gomilom ključeva za registraciju. Koji od AVG programa da koristim za uklanjanje ovog instaliranog AVG?

Poslao: 03 Nov 2014 19:15
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Deinstaliraj ga kroz Control Panel -> Add/Remove programs.

Poslao: 03 Nov 2014 19:16
Idi na vrh
offline
  • Pridružio: 12 Feb 2007
  • Poruke: 1239

OK

Hvala na pomoći.

Poslao: 03 Nov 2014 20:27
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop.

Dvoklikom pokreni MBAR () na ikonicu programa:
- Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u;
- mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.;
- U uvodnom prozoru klikni dugme Next ukoliko si saglasan;


• Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next;
• Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan;

Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka:
- 'Could not load protection driver' => u tom slucaju klikni OK.
- 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta.




>> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje.

>> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje.
- Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja.



Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe:
- Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ...
- Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem.




Sledeci izvestaji ce biti formirani u mbar folderu.
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt

Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

MyCity » Ambulanta -> Arhiva Ambulante » Facebook napast

Ko je trenutno na forumu
 

Ukupno su 789 korisnika na forumu :: 17 registrovanih, 1 sakriven i 771 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: darkangel, goxin, havoc995, ILGromovnik, ivica976, KOV, Krvava Devetka, Kubovac, ljubacv, mikrimaus, milenko crazy north, RJ, royst33, sabros, strela, wizzardone, šumar bk2