• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 12

    Varios Virus

    Hola gente del foto spyware! Creo que uds son la mejor solucion que tengo ya que siempre tienen una respuesta! Paso a comentar empece a usar la pc de mi viejo y me encontre los ...

    1. #1
      Usuario Avatar de ks gregn
      Registrado
      may 2012
      Ubicación
      rojas
      Mensajes
      16

      Varios Virus

      Hola gente del foto spyware! Creo que uds son la mejor solucion que tengo ya que siempre tienen una respuesta!
      Paso a comentar empece a usar la pc de mi viejo y me encontre los siguientes problemas:
      La pc anda lenta, dos por tres tira este error "Generic Host Process for Win32 Services ha detectado un problema y debe cerrarse." y cada vez que juego algun juego luego de un tiempito me tira el siguiente error del exe ej: " Helbreath Argentina BiG Bar v3.exe ha detectado un problema y debe cerrarse" creo que debe de tener un par de virus, si me podrian ayudar y decirme que programas pasarle a la pc le pegare los logs.

      Desde ya gracias por su atencion!

    2. #2
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Varios Virus

      Hola ks gregn

      Por mi parte te pediria realizar lo siguiente:
      Descarga y/o actualiza los siguientes programas pero no los ejecutes aun:
      Ejecuta Rkill (de usar windows vista o 7 ejecutalo como administrador) de preferncia colocandolo en el escritorio primero teniendo en cuenta esto.
      • Aparecera una ventana negra que indicara que la herramienta se ha ejecutado con exito.
      • Una vez ejecutado trata de no reiniciar hasta que en los demas pasos tengas que hacerlo o hasta que termines todo el procedimiento.
      • Si no sucede vuelve a ejecutarlo hasta que se ejecute (de ser necesario insiste, este paso es importante).


      Instala y actualiza Malwarebytes, te dejo su manual.
      • Realiza un escaneo Completo.
      • Cuando termine da en Mostrar resultados, y selecciona todo lo que aparesca y no este seleccionado.
      • Presiona en Eliminar Seleccionados, si te pide reiniciar procedes.


      Instala, y ejecuta glary utilities, despues ejecuta un mantenimiento one-click. Cualquier cosa te dejo su manual

      Realiza un escaneo con Bitdefender QuickScan segun su manual y desactiva temporalmente cualquier programa de seguridad:
      Y cuando termine presiona View Report (ver reporte), se abrira un reporte que puedes guardar en una ubicacion conocida o pegar directamente. En esta imagen te muestro donde se saca:
      Nos traerias los reporetes de Rkill (c:\rkill.log), Malwarebytes (de la pestaña Registros del programa) y BitDefender(si no lo guardaste esta en %appdata%\QuickScan\Report [año]-[mes]-[dia] [hora].[minuto].[segundo].txt) y nos comentarias como se encuentra el sistema.

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de ks gregn
      Registrado
      may 2012
      Ubicación
      rojas
      Mensajes
      16

      Re: Varios Virus

      bueno aca te dejo los logs espero que te sirvan de ayuda para ayudarme jeje!

      Rkill 2.4.3

      Program started at: 10/25/2012 01:25:44 PM in x86 mode.
      Windows Version: Microsoft Windows XP Service Pack 2

      Checking for Windows services to stop:

      * No malware services found to stop.

      Checking for processes to terminate:

      * C:\WINDOWS\system32\NOTEPAD.EXE (PID: 2084) [WD-HEUR]

      1 proccess terminated!

      Checking Registry for malware related settings:

      * No issues found in the Registry.

      Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

      Performing miscellaneous checks:

      * System Restore Disabled

      [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
      "DisableSR" = dword:00000001

      Checking Windows Service Integrity:

      * Servicio de restauración de sistema (srservice) is not Running.
      Startup Type set to: Automatic

      * Messenger [Missing Service]
      * wscsvc [Missing Service]

      Searching for Missing Digital Signatures:

      * C:\WINDOWS\System32\Drivers\tcpip.sys [NoSig]

      * C:\WINDOWS\System32\setupapi.dll [NoSig]
      +-> C:\WINDOWS\SoftwareDistribution\Download\4fcdf3a74fe834ce16dc12a720df5cc7\i386\update\setupapi.dll : 1.000.960 : 04/14/2008 00:48 AM : 7fbd75db6aeb0768c41299da7034c249 [Pos Repl]
      +-> C:\WINDOWS\SoftwareDistribution\Download\4fcdf3a74fe834ce16dc12a720df5cc7\i386\win9xupg\setupapi.dll : 901.120 : 04/14/2008 00:21 AM : f7f40c6a0feb0ecf461c5727c5a71744 [Pos Repl]
      +-> C:\WINDOWS\SoftwareDistribution\Download\4fcdf3a74fe834ce16dc12a720df5cc7\i386\winntupg\setupapi.dll : 323.344 : 04/14/2008 00:47 AM : d5f66e0c6833d37689a54c91ef01b4f9 [Pos Repl]

      * C:\WINDOWS\System32\UxTheme.dll [NoSig]

      * C:\WINDOWS\explorer.exe [NoSig]

      Checking HOSTS File:

      * Cannot edit the HOSTS file.
      * Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

      * HOSTS file entries found:

      127.0.0.1 localhost
      127.0.0.1 www.007guard.com
      127.0.0.1 007guard.com
      127.0.0.1 008i.com
      127.0.0.1 www.008k.com
      127.0.0.1 008k.com
      127.0.0.1 www.00hq.com
      127.0.0.1 00hq.com
      127.0.0.1 010402.com
      127.0.0.1 www.032439.com
      127.0.0.1 032439.com
      127.0.0.1 www.0scan.com
      127.0.0.1 0scan.com
      127.0.0.1 1000gratisproben.com
      127.0.0.1 www.1000gratisproben.com
      127.0.0.1 1001namen.com
      127.0.0.1 www.1001namen.com
      127.0.0.1 100888290cs.com
      127.0.0.1 www.100888290cs.com
      127.0.0.1 www.100sexlinks.com

      20 out of 13147 HOSTS entries shown.
      Please review HOSTS file for further entries.

      Program finished at: 10/25/2012 01:26:39 PM
      Execution time: 0 hours(s), 0 minute(s), and 54 seconds(s)

      -------------------------------------------------------------------

      Malwarebytes Anti-Malware

      Versión de la Base de Datos: v2012.10.25.05

      Windows XP Service Pack 2 x86 NTFS
      Internet Explorer 7.0.5730.11

      Protección: Habilitado

      25/10/2012 01:32:09 p.m.
      mbam-log-2012-10-25 (13-32-09).txt

      Tipos de Análisis: Análisis Completo (C:\|D:\|)
      Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
      Opciones de análisis desactivados: P2P
      Objetos examinados: 234753
      Tiempo transcurrido: 34 minuto(s), 53 segundo(s)

      Procesos en Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Módulos de Memoria Detectados: 0
      (No se han detectado elementos maliciosos)

      Claves del Registro Detectados: 7
      HKCR\CLSID\{1D4DB7D2-6EC9-47a3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      HKCR\TypeLib\{1D4DB7D0-6EC9-47a3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      HKCR\Interface\{1D4DB7D1-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      HKCR\FunWebProductsInstaller.Start.1 (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      HKCR\FunWebProductsInstaller.Start (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      HKLM\SOFTWARE\FunWebProducts (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.

      Valores del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Elementos de Datos del Registro Detectados: 0
      (No se han detectado elementos maliciosos)

      Carpetas Detectadas: 3
      C:\Archivos de programa\FunWebProducts (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      C:\Archivos de programa\FunWebProducts\Installr (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      C:\Archivos de programa\FunWebProducts\Installr\f.bin (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.

      Archivos Detectados: 6
      C:\Archivos de programa\FunWebProducts\Installr\f.bin\F3EZSETP.DLL (PUP.MyWebSearch) -> En cuarentena y eliminado con éxito.
      C:\Archivos de programa\FunWebProducts\Installr\f.bin\F3PLUGIN.DLL (PUP.FunWebProducts) -> En cuarentena y eliminado con éxito.
      C:\Archivos de programa\FunWebProducts\Installr\f.bin\NPFUNWEB.DLL (PUP.FunWebProducts) -> En cuarentena y eliminado con éxito.
      C:\Documents and Settings\Administrador\Mis documentos\Descargas\Everest Casino.exe (PUP.Casino) -> En cuarentena y eliminado con éxito.
      C:\Documents and Settings\Administrador\Mis documentos\Descargas\sirba.exe (PUP.Adware.Installcore) -> En cuarentena y eliminado con éxito.
      C:\Documents and Settings\Administrador\Escritorio\WiNlOgOn.exe (Heuristics.Reserved.Word.Exploit) -> En cuarentena y eliminado con éxito.

      fin)

      -------------------------------------------------------------------------------------

      Desde ya muchas gracias por tu tiempo.

    4. #4
      Usuario Avatar de ks gregn
      Registrado
      may 2012
      Ubicación
      rojas
      Mensajes
      16

      Re: Varios Virus

      QuickScan 32-bit v0.9.9.118
      ---------------------------
      Fecha de Análisis: Thu Oct 25 15:48:49 2012
      ¡Encontrado 1 archivo infectado!
      --------------------------------
      C:\WINDOWS\system32\cdswitch.exe --> Trojan.Generic.1468450
      Procesos
      --------
      Akamai NetSession Client 2228 C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Akamai\netsession_win.exe
      Akamai NetSession Client 3912 C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Akamai\netsession_win.exe
      AVG Internet Security 2980 C:\Archivos de programa\AVG\AVG2012\avgtray.exe
      AVG Internet Security 420 C:\Archivos de programa\AVG\AVG2012\avgwdsvc.exe
      Google Chrome 3932 C:\Archivos de programa\Google\Chrome\Application\chrome.exe
      Google Chrome 3572 C:\Archivos de programa\Google\Chrome\Application\chrome.exe
      Google Chrome 2492 C:\Archivos de programa\Google\Chrome\Application\chrome.exe
      Google Chrome 2432 C:\Archivos de programa\Google\Chrome\Application\chrome.exe
      Google Chrome 2196 C:\Archivos de programa\Google\Chrome\Application\chrome.exe
      Google Chrome 2020 C:\Archivos de programa\Google\Chrome\Application\chrome.exe
      Malwarebytes Anti-Malware 248 C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamgui.exe
      Malwarebytes Anti-Malware 100 C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe
      Malwarebytes Anti-Malware 1504 C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe
      Microsoft Application Error Reporting 3080 C:\WINDOWS\system32\dwwin.exe
      Microsoft® Windows® Operating System 2692 C:\WINDOWS\system32\alg.exe
      Microsoft® Windows® Operating System 824 C:\WINDOWS\system32\csrss.exe
      Microsoft® Windows® Operating System 3548 C:\WINDOWS\system32\ctfmon.exe
      Microsoft® Windows® Operating System 1956 C:\WINDOWS\system32\dumprep.exe
      Microsoft® Windows® Operating System 904 C:\WINDOWS\system32\lsass.exe
      Microsoft® Windows® Operating System 1600 C:\WINDOWS\system32\spoolsv.exe
      Microsoft® Windows® Operating System 328 C:\WINDOWS\system32\svchost.exe
      Microsoft® Windows® Operating System 812 C:\WINDOWS\system32\svchost.exe
      Microsoft® Windows® Operating System 1328 C:\WINDOWS\system32\svchost.exe
      Microsoft® Windows® Operating System 1272 C:\WINDOWS\system32\svchost.exe
      Microsoft® Windows® Operating System 1216 C:\WINDOWS\system32\svchost.exe
      Microsoft® Windows® Operating System 1176 C:\WINDOWS\system32\svchost.exe
      Microsoft® Windows® Operating System 1108 C:\WINDOWS\system32\svchost.exe
      Microsoft® Windows® Operating System 1060 C:\WINDOWS\system32\svchost.exe
      SATUF 3636 C:\Archivos de programa\Telefonica\Speedy\SATConMon.exe
      Sistema operativo Microsoft® Windows® 1840 C:\WINDOWS\explorer.exe
      Sistema operativo Microsoft® Windows® 892 C:\WINDOWS\system32\services.exe
      Sistema operativo Microsoft® Windows® 540 C:\WINDOWS\system32\smss.exe
      Sistema operativo Microsoft® Windows® 848 C:\WINDOWS\system32\winlogon.exe
      StartMan Application 176 C:\Archivos de programa\Archivos comunes\PC Tools\sMonitor\StartManSvc.exe
      (verificado) GoogleToolbarNotifier 3692 C:\Archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      (verificado) Microsoft Search Enhancement Pack 244 C:\Archivos de programa\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

      Actividad de red
      ----------------
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 173.194.42.14
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 173.194.42.17
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 23.56.239.144
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 173.194.42.14
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 173.194.42.12
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 74.125.134.95
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 69.171.242.74
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 173.194.42.24
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 173.194.42.25
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 69.171.242.74
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 173.194.42.1
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 173.194.42.15
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 69.171.242.74
      Proceso chrome.exe (2020) conectado en el puerto 443 (HTTP over SSL) --> 173.194.42.0
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 173.194.42.26
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 63.140.35.28
      Proceso chrome.exe (2020) conectado en el puerto 80 (HTTP) --> 69.171.242.74
      Proceso netsession_win.exe (2228) conectado en el puerto 443 (HTTP over SSL) --> 146.82.184.6

      Proceso svchost.exe (1108) escuchar en puertos: 135 (RPC)
      Proceso netsession_win.exe (2228) escuchar en puertos: 1046

      Autoruns y archivos críticos
      ----------------------------
      Adobe® Flash® Player Update Service C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      Akamai NetSession Client C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Akamai\netsession_win.exe
      AVG Internet Security C:\Archivos de programa\AVG\AVG2012\avgtray.exe
      Glary Utilities C:\Archivos de programa\Glary Utilities\initialize.exe
      Intel(R) Common User Interface C:\WINDOWS\system32\igfxdev.dll
      Microsoft® Windows® Operating System C:\WINDOWS\system32\cryptnet.dll
      Microsoft® Windows® Operating System C:\WINDOWS\system32\ctfmon.exe
      Microsoft® Windows® Operating System C:\WINDOWS\system32\dumprep.exe
      PC Tools Registry Mechanic C:\Archivos de programa\PC Tools Registry Mechanic\RegMech.exe
      PC Tools Smart Update C:\Archivos de programa\PC Tools Registry Mechanic\Update.exe
      SATUF C:\Archivos de programa\Telefonica\Speedy\SATConMon.exe
      Sistema operativo Microsoft® Windows® C:\WINDOWS\system32\BROWSEUI.dll
      Sistema operativo Microsoft® Windows® C:\WINDOWS\system32\CRYPT32.dll
      Sistema operativo Microsoft® Windows® C:\WINDOWS\system32\cscdll.dll
      Sistema operativo Microsoft® Windows® C:\WINDOWS\system32\sclgntfy.dll
      Sistema operativo Microsoft® Windows® C:\WINDOWS\system32\SHELL32.dll
      Sistema operativo Microsoft® Windows® C:\WINDOWS\system32\stobject.dll
      Sistema operativo Microsoft® Windows® c:\windows\system32\userinit.exe
      Sistema operativo Microsoft® Windows® C:\WINDOWS\system32\WlNotify.dll
      vistaui.exe C:\WINDOWS\system32\vistaui.exe
      WgaLogon.dll C:\WINDOWS\system32\WgaLogon.dll
      Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll
      (verificado) Google Update C:\Archivos de programa\Google\Update\GoogleUpdate.exe
      (verificado) GoogleToolbarNotifier C:\Archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
      (verificado) Microsoft® Windows® Operating System C:\WINDOWS\system32\WPDShServiceObj.dll

      Plugins del Navegador
      ---------------------
      Adobe Acrobat C:\Archivos de programa\Internet Explorer\plugins\nppdf32.dll
      AlotXpcom.dll C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\AlotXpcom.dll
      AVG Internet Security c:\archivos de programa\avg\avg2012\avgdtiex.dll
      AVG Internet Security c:\archivos de programa\avg\avg2012\avgssie.dll
      Bitdefender QuickScan C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.118_0\npqscan.dll
      Conduit Toolbar c:\archivos de programa\conduitengine\prxconduitengine.dll
      Conduit Toolbar c:\archivos de programa\isobuster_es\prxtbisob.dll
      Control de carga de fotos de MSN C:\WINDOWS\Downloaded Program Files\PURes-us.dll
      Google Toolbar for Internet Explorer c:\archivos de programa\google\google toolbar\googletoolbar_32.dll
      Google Update C:\Archivos de programa\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      GoogleToolbarNotifier C:\Archivos de programa\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
      IE Tab Plug-in C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}\plugins\npietab.dll
      Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll
      Microsoft® Windows® Operating System C:\WINDOWS\System32\winrnr.dll
      MSN Photo Upload Control C:\WINDOWS\Downloaded Program Files\PURen-us.dll
      MyFunCards for Internet Explorer and Fi c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8bar.dll
      MyFunCards Search Assistant for Interne c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8srcas.dll
      NPSWF32_11_4_402_287.dll C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll
      Pando Web Plugin C:\Archivos de programa\Pando Networks\Media Booster\npPandoWebPlugin.dll
      RadioWMPCore.dll C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\RadioWMPCore.dll
      RadioWMPCore.dll C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}\components\RadioWMPCore.dll
      RealPlayer Version Plugin C:\Archivos de programa\Real Alternative\browser\plugins\nprpjplug.dll
      RealPlayer(tm) G2 LiveConnect-Enabled P C:\Archivos de programa\Real Alternative\browser\plugins\nppl3260.dll
      Silverlight Plug-In c:\Archivos de programa\Microsoft Silverlight\4.1.10329.0\npctrl.dll
      Sistema operativo Microsoft® Windows® C:\WINDOWS\System32\mswsock.dll
      ToolBand Module c:\archivos de programa\daemon tools toolbar\dttoolbar.dll
      ToolBand Module C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\DTToolbarFF.dll
      Unity Player C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Unity\WebPlayer\loader\npUnity3D32.dll
      Windows Live Photo Upload Control C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll
      Windows Live Toolbar c:\archivos de programa\windows live\toolbar\wltcore.dll
      Windows Live® Photo Gallery C:\Archivos de programa\Windows Live\Photo Gallery\NPWLPG.dll
      (verificado) FFExternalAlert.dll C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{9c905b42-976e-43c1-bc30-fc5937017909}\components\FFExternalAlert.dll
      (verificado) Microsoft Office Live Plug-in for Firef C:\Archivos de programa\Microsoft\Office Live\npOLW.dll
      (verificado) RadioWMPCore.dll C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{9c905b42-976e-43c1-bc30-fc5937017909}\components\RadioWMPCore.dll
      (verificado) RadioWMPCoreGecko19.dll C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\RadioWMPCoreGecko19.dll
      (verificado) RadioWMPCoreGecko19.dll C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}\components\RadioWMPCoreGecko19.dll

      Analizar
      --------
      MD5: 0923671cf87cd511e46d4668b53f5e76 C:/Archivos de programa/Archivos comunes/Akamai/netsession_win_5891ae0.dll
      MD5: 0923671cf87cd511e46d4668b53f5e76 c:\archivos de programa\archivos comunes\akamai\netsession_win_5891ae0.dll
      MD5: 82ec1531bc74adc34e0342c12958c55a C:\Archivos de programa\Archivos comunes\PC Tools\sMonitor\StartManSvc.exe
      MD5: db4c494406ecaa861c49e4bf2fe1352e C:\Archivos de programa\AVG\AVG2012\avgadvisorx.dll
      MD5: e2c78d19572aacc2062a00f01503807e C:\Archivos de programa\AVG\AVG2012\avgcfgx.dll
      MD5: fcf1a9c3fb29786946302b4470952d85 C:\Archivos de programa\AVG\AVG2012\avgcslx.dll
      MD5: 17d469c94763642cd58ff8c98c12ca6f C:\Archivos de programa\AVG\AVG2012\avgdecider.dll
      MD5: 2de0f0cf9a7f1cbbc4860eb020e08660 c:\archivos de programa\avg\avg2012\avgdtiex.dll
      MD5: b2e9db5e5f4091fcda0c9249c1e3f974 C:\Archivos de programa\AVG\AVG2012\avgidpmx.dll
      MD5: 5b8d71ac2074550d78bc188a8888054f C:\Archivos de programa\AVG\AVG2012\avgidpsdkx.dll
      MD5: f6a528de535396c2fb1a4e3c6f00cec4 C:\Archivos de programa\AVG\AVG2012\AVGIDSAgent.exe
      MD5: 8b9d6d070113cfd8e20793768afa26fc C:\Archivos de programa\AVG\AVG2012\avglngx.dll
      MD5: 25cd97f030ae70af458ff6ab0b7e9b2e C:\Archivos de programa\AVG\AVG2012\avglogx.dll
      MD5: 91dc97f9da3e2b59049d410870935c78 C:\Archivos de programa\AVG\AVG2012\avgntopensslx.dll
      MD5: aff2e23e4e867140f07abadc9e29acdc C:\Archivos de programa\AVG\AVG2012\avgopensslx.dll
      MD5: eb4a30eac3b3c304eac8a10970e3402e C:\Archivos de programa\AVG\AVG2012\avgsched.dll
      MD5: b496b116f621223357defe4508b0987e C:\Archivos de programa\AVG\AVG2012\avgsrmx.dll
      MD5: 9fe93e05194427727a755032436533b3 c:\archivos de programa\avg\avg2012\avgssie.dll
      MD5: 93312f83fd4d5c38cee8aa1265c061ee C:\Archivos de programa\AVG\AVG2012\avgsysx.dll
      MD5: 596f5a2c5916efd177b0614788b0cdf1 C:\Archivos de programa\AVG\AVG2012\avgtray.exe
      MD5: 6f20729e802d5cc643a73a7f0339032b C:\Archivos de programa\AVG\AVG2012\avguires.dll
      MD5: ac633c7d40c63a197649955a512ad7bd C:\Archivos de programa\AVG\AVG2012\avgwd.dll
      MD5: ea1145debcd508fd25bd1e95c4346929 C:\Archivos de programa\AVG\AVG2012\avgwdsvc.exe
      MD5: b642e645d7a790e0fa41e16c6c4234e6 C:\Archivos de programa\AVG\AVG2012\avgwdwsc.dll
      MD5: b92293778555ce3dabe7f0a7e98b34c0 c:\archivos de programa\conduitengine\prxconduitengine.dll
      MD5: a089407510aa813320e50f557b9085ee c:\archivos de programa\daemon tools toolbar\dttoolbar.dll
      MD5: d65560625f5f6247332d0633f991b0f6 C:\Archivos de programa\Glary Utilities\initialize.exe
      MD5: 4d1d5601d0432a934c1ae350c62d8bcd C:\Archivos de programa\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll
      MD5: fe83339e96a291f0fb3f7ca241cce44e C:\Archivos de programa\Google\Chrome\Application\22.0.1229.94\avformat-54.dll
      MD5: 7f06b88ddeeeea5c482180ddf66804c9 C:\Archivos de programa\Google\Chrome\Application\22.0.1229.94\avutil-51.dll
      MD5: bc280f34612d5b1d69503c5646d3e8ad C:\Archivos de programa\Google\Chrome\Application\22.0.1229.94\chrome.dll
      MD5: abfa7811184fde6c7402271b3a3b1718 C:\Archivos de programa\Google\Chrome\Application\22.0.1229.94\icudt.dll
      MD5: e120e3c6c12b09262b9b64c3d93fce00 C:\Archivos de programa\Google\Chrome\Application\22.0.1229.94\pdf.dll
      MD5: 68d3573e3708bf5ee352e0d927ce256a C:\Archivos de programa\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
      MD5: 848d034d067be2ff5cd3d779becbda00 C:\Archivos de programa\Google\Chrome\Application\chrome.exe
      MD5: c097df5cd7dcb95e0d95644a993ac7ec c:\archivos de programa\google\google toolbar\googletoolbar_32.dll
      MD5: 872e0242259f0cdda05354dd1a5f3b89 C:\Archivos de programa\Google\GoogleToolbarNotifier\5.7.6406.1642\gtn.dll
      MD5: a953e104137df406b70477d60bc29008 C:\Archivos de programa\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
      MD5: 586fdc4e02623ee228ec35b9604ae5f2 C:\Archivos de programa\Google\Update\1.3.21.123\npGoogleUpdate3.dll
      MD5: a795a7f26131d0b10f6ee75c4de3d320 C:\Archivos de programa\Internet Explorer\plugins\nppdf32.dll
      MD5: b92293778555ce3dabe7f0a7e98b34c0 c:\archivos de programa\isobuster_es\prxtbisob.dll
      MD5: c0f7c25eefb1c5fd554aaa801201a83c C:\Archivos de programa\Malwarebytes' Anti-Malware\mbam.dll
      MD5: 8eb9df4d405524d5ef69ae9ecb0edd16 C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamcore.dll
      MD5: 12e33dd823d74680de6f33bfa359efb3 C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamgui.exe
      MD5: a8ad2773202a3913d1e1564bd5703183 C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamnet.dll
      MD5: 85b16a92b117a5a800032ecd904b86db C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe
      MD5: 20e2469db709fc675e655ceaa11be312 C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe
      MD5: 89a5ddd8729de5f0416042c8a0e65c6a C:\Archivos de programa\Microsoft Office\OFFICE11\MCPS.DLL
      MD5: 711a2e6a55ec7bfd59b5f649d58b704b c:\Archivos de programa\Microsoft Silverlight\4.1.10329.0\npctrl.dll
      MD5: e9af8b12cffc04c0f4399ed8e4d3826e C:\Archivos de programa\Microsoft Silverlight\xapauthenticodesip.dll
      MD5: 1755f4933644f656c7f30bfb81a8ecd0 C:\Archivos de programa\Microsoft\Search Enhancement Pack\SeaShadow\SEASHADO.dll
      MD5: 8cb8dff62f05687274831fbbdcb81b91 c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8bar.dll
      MD5: 78cbbb26cf7ce7bda2dfb5d54a8e739b c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8srcas.dll
      MD5: 019ab047b932ad277a4da2673e5cc19c C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe
      MD5: ee691eae7c057ff95b42fd23f2c32e2e C:\Archivos de programa\PC Tools Registry Mechanic\RegMech.exe
      MD5: c99a7aa2c311b3031a6d8bd077bc260e C:\Archivos de programa\PC Tools Registry Mechanic\Update.exe
      MD5: f0b8c822a200250edf60049f07e4cc41 C:\Archivos de programa\Real Alternative\browser\plugins\nppl3260.dll
      MD5: 30257426f6da31808c6698ec01de2d97 C:\Archivos de programa\Real Alternative\browser\plugins\nprpjplug.dll
      MD5: 797c70482ddeb771d8aea9fa47d3fa70 C:\Archivos de programa\Telefonica\Speedy\AMHBAS.dll
      MD5: dd28b6b30ea2d3e48977ebc9c45a21a3 C:\Archivos de programa\Telefonica\Speedy\AMHCG0.dll
      MD5: 577269731fd1da4daa1ea07d9d618bb7 C:\Archivos de programa\Telefonica\Speedy\amhnet.dll
      MD5: 9b93062df4400196a0e2321ba49efda5 C:\Archivos de programa\Telefonica\Speedy\AMHRAS.dll
      MD5: cb6889f4cfc6bd6197f9122d799ff121 C:\Archivos de programa\Telefonica\Speedy\AMHSEC.dll
      MD5: 87628761b0da70ca1b3460bb1316c26c C:\Archivos de programa\Telefonica\Speedy\BEAMixer.dll
      MD5: 76ecd9f31374df0b821f154f8d56c524 C:\Archivos de programa\Telefonica\Speedy\BEATcpip.dll
      MD5: a88c33b8360d48b7cf7adeb108cf60f3 C:\Archivos de programa\Telefonica\Speedy\BEATrans.dll
      MD5: 5f2e5e8190633b58cb52a534a1e4aef7 C:\Archivos de programa\Telefonica\Speedy\BEAWPoet.dll
      MD5: ce0d82a7df717bff6318276c530cda79 C:\Archivos de programa\Telefonica\Speedy\BEAXml.dll
      MD5: ac49546baffc5e165a1079b166331689 C:\Archivos de programa\Telefonica\Speedy\EBEASys.dll
      MD5: bab001db5d898f39e3c7c728352c47a3 C:\Archivos de programa\Telefonica\Speedy\SATComun.dll
      MD5: 1e87c5c326920dfe764282fb281f6895 C:\Archivos de programa\Telefonica\Speedy\SATConMon.exe
      MD5: 755fb897ad31c7ab8be0dcf6e11242f2 C:\Archivos de programa\Telefonica\Speedy\SATRC.dll
      MD5: 6782482a8ca4b5b5dab4ef0ad78db08f C:\Archivos de programa\Windows Media Player\WMPNetwk.exe
      MD5: e5886c8a1d319dfca76dae1dabc41a25 C:\ARCHIV~1\MYFUNC~2\bar\1.bin\c8barsvc.exe
      MD5: f023a14fe899f5401935cac119a723ce C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Akamai\netsession_win.exe
      MD5: 853e987a635c0008f53e3cc13290af6b C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.118_0\npqscan.dll
      MD5: cd375f6297dfd24baa250c7e62fa1216 C:\Documents and Settings\Administrador\Configuración local\Datos de programa\Unity\WebPlayer\loader\npUnity3D32.dll
      MD5: c7c1146aa2a25cbe4e403390ecc7fc63 C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\AlotXpcom.dll
      MD5: 7a781806c982140c98658ac3be4ccdc1 C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\DTToolbarFF.dll
      MD5: 34c084b321ea0308c58eed1cf6b5fb02 C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\RadioWMPCore.dll
      MD5: ede60ce68508b2b574de96da77ae2e33 C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}\plugins\npietab.dll
      MD5: 34c084b321ea0308c58eed1cf6b5fb02 C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}\components\RadioWMPCore.dll
      MD5: 23f0158563f40775334dc86cbc3760c7 C:\Documents and Settings\Administrador\Mis documentos\Nokia PC Suite 6\Lang\PhoneBrowser_eng-us.nlr
      MD5: 0e51263ea765f9ab45aa8f04cadb22b9 C:\Documents and Settings\Administrador\Mis documentos\Nokia PC Suite 6\PCSCM.dll
      MD5: 600d719d720715b28c3234c624e95bab C:\Documents and Settings\Administrador\Mis documentos\Nokia PC Suite 6\PhoneBrowser.dll
      MD5: b058e4e76a4524dc13fc44b7829fee5f C:\Documents and Settings\Administrador\Mis documentos\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
      MD5: ec05e964058693d1f71d1b5506b5cf09 C:\WINDOWS\ALCWZRD.EXE
      MD5: 744ea281298317e91c3bea70bf3843d4 C:\WINDOWS\AppPatch\AcAdProc.dll
      MD5: e41d3574f7d3d5399a0b5a5f401e3468 C:\WINDOWS\AppPatch\AcGenral.DLL
      MD5: 03f57e8a00774d831926dac89b21bb2d C:\WINDOWS\Downloaded Program Files\PURen-us.dll
      MD5: ee5c6390a649d5d3fc98f9ab7ed17f8c C:\WINDOWS\Downloaded Program Files\PURes-us.dll
      MD5: a0b26357d8f43d6380b7fe00249eb97d C:\WINDOWS\explorer.exe
      MD5: f1f064ec126bebf50db92553065f8837 C:\WINDOWS\hh.exe
      MD5: d3fb45b90f195fe86d9949a4b62cbbd6 C:\WINDOWS\MicCal.exe
      MD5: e9982061a16ec28239efede6bd6de846 c:\windows\pchealth\helpctr\binaries\pchsvc.dll
      MD5: 2ba8f4a46c83c6d3a02e9073a304f82c C:\WINDOWS\regedit.exe
      MD5: eabe00b18dcbeab7d5b3823fd371f008 C:\WINDOWS\RTHDCPL.EXE
      MD5: 0ec019fe4712a63978112e6d8e36c9ae C:\WINDOWS\RTLCPL.EXE
      MD5: 71418c522e13798d7768c7ce3bce93a7 C:\WINDOWS\RtlUpd.exe
      MD5: c74b86642f131d76c0ede673fdf137b2 C:\WINDOWS\SkyTel.exe
      MD5: 0d034e8c4f88c5b2b0c1af3cf438cc4f C:\WINDOWS\SOUNDMAN.EXE
      MD5: 73804a7edd5a4bb41f39ab744b9cd03d C:\WINDOWS\system32\3082\dwintl.dll
      MD5: 3b81a5e497be780b50427961864ecff2 C:\WINDOWS\system32\6to4svc.dll
      MD5: 1cbc000ecd2de2e6fd2b19bc9aabcc52 C:\WINDOWS\system32\_000116_.tmp.dll
      MD5: f3a91695f71b627bbf6c983be78fd8d8 C:\WINDOWS\system32\aaaamon.dll
      MD5: d95393b383fb3db265836c84b53892a3 C:\WINDOWS\system32\ac3acm.acm
      MD5: a07787bce3623dd75e818dcfc3b14c8b C:\WINDOWS\system32\access.cpl
      MD5: 6c9b5a812bf414e7ea2f4aaa6ee77f4a C:\WINDOWS\system32\acctres.dll
      MD5: df0a7204a4dc703a84ce0c63f1f4a507 C:\WINDOWS\system32\accwiz.exe
      MD5: c93089a3fbb9aa64434a3939186a02d3 C:\WINDOWS\system32\acelpdec.ax
      MD5: 85b573b46ec7b6b0c1de302120ce1a46 C:\WINDOWS\system32\acledit.dll
      MD5: 81e373fd7bcfa93de0fcc395f4cf0953 C:\WINDOWS\system32\aclui.dll
      MD5: 9a649823fa393eba5c427d94c197961d c:\windows\system32\ACTIVEDS.dll
      MD5: f5cea0ed3328e3957cb0a355907f9911 C:\WINDOWS\system32\activeds.tlb
      MD5: 5b67e6e72b47a164c981584b562476a9 C:\WINDOWS\system32\actmovie.exe
      MD5: 99825c8aed2fa0ac76aa0fad770f44c1 C:\WINDOWS\system32\actskin4.ocx
      MD5: 1cd82280bae58847755d1f0b5e4e950a C:\WINDOWS\system32\actxprxy.dll
      MD5: 6bd714829a4885fd231c2faa1ec536a1 C:\WINDOWS\system32\admparse.dll
      MD5: 84d8e57b6ef671771ed489fc6ed75852 C:\WINDOWS\system32\adptif.dll
      MD5: de52e3e6a421ae667c4735af2cbecc6f C:\WINDOWS\system32\adsldp.dll
      MD5: 1b66592b7c458b3f1da127e5a4e48b5a c:\windows\system32\adsldpc.dll
      MD5: d66fa6fef36b1cc896e1965ac929d9c9 C:\WINDOWS\system32\adsmsext.dll
      MD5: fcf09d05b12a97ce1d7a900782ed4f75 C:\WINDOWS\system32\adsnds.dll
      MD5: c79d73d84718c4ac298ab6a40204a3c6 C:\WINDOWS\system32\adsnt.dll
      MD5: f5600696ef3cf8b2cbe903066f2c1b96 C:\WINDOWS\system32\adsnw.dll
      MD5: d8f738e92ea2122f5767acd5378c732b C:\WINDOWS\system32\ADVAPI32.dll
      MD5: 184f4af8bd2ae9bdbeac87e491259e85 C:\WINDOWS\system32\advpack.dll
      MD5: e7f9dfbf4d7193a59996e27fe36bf4db C:\WINDOWS\system32\advpack.dll.mui
      MD5: 07651ebc123400ab004d681d3a820e68 C:\WINDOWS\system32\ahui.exe
      MD5: 906d6932d533f1591caa84e846b9ba06 C:\WINDOWS\system32\alg.exe
      MD5: ffd14ea04a74ce3aa34e9511c994c590 C:\WINDOWS\system32\alrsvc.dll
      MD5: c76445e155590d42f47ea86f9c2d7c2b C:\WINDOWS\system32\ALSNDMGR.CPL
      MD5: f315609a1fb7b8187fcd0303fcf5f8aa C:\WINDOWS\system32\amstream.dll
      MD5: 616e45178320eefa6bdfb07e25eb7915 C:\WINDOWS\system32\apcups.dll
      MD5: 8c8f2a0666f605c8da5c8dead7e88e1b C:\WINDOWS\system32\Apphelp.dll
      MD5: 0cf68b185221e5b162ef1b0559428b40 C:\WINDOWS\System32\appmgmts.dll
      MD5: 4f19d9844afa0af77f5f3449e70c3eac C:\WINDOWS\system32\appmgr.dll
      MD5: 1df6b50e5b75b66f6be37fdac84c48ec C:\WINDOWS\system32\appwiz.cpl
      MD5: 9ee41dc4ef6eaabbb6a96010aa1441a0 C:\WINDOWS\system32\arp.exe
      MD5: a2eac09cfd9bd86a2577aafcb8b84113 C:\WINDOWS\system32\asctrls.ocx
      MD5: f911c9e674c2be0e920d0cdf7072ee69 C:\WINDOWS\system32\asferror.dll
      MD5: be8a3b679597df5db5e217cdd54ed66d C:\WINDOWS\system32\asr_fmt.exe
      MD5: cd9dd55c687beb55d43ec478baac95b6 C:\WINDOWS\system32\asr_ldm.exe
      MD5: 66c83deb009328d86e56f953df1ee007 C:\WINDOWS\system32\asr_pfu.exe
      MD5: e3bf8c843e8bbb8b598b642db1f7051d C:\WINDOWS\system32\asycfilt.dll
      MD5: 3393e9afe7c43feb76a5841e8755af15 C:\WINDOWS\system32\at.exe
      MD5: ebcc1d71f8c2978a2ffc47c6648ec6af C:\WINDOWS\system32\atkctrs.dll
      MD5: ee659a8525e9047720fc26596884a3a7 c:\windows\system32\ATL.DLL
      MD5: a5c66e1132ce8dfd863421f82f14f5aa C:\WINDOWS\system32\atmadm.exe
      MD5: 7929dd7556dd1076e5d42df50f69b0e4 C:\WINDOWS\system32\atmfd.dll
      MD5: 632ce7d9ccd4c3f6862b797e9491afe2 C:\WINDOWS\system32\atmlib.dll
      MD5: 453b6a0247a401314925c2c8d253fd5f C:\WINDOWS\system32\atmpvcno.dll
      MD5: 4426c4795410f76b1e515dbe50fc3b2c C:\WINDOWS\system32\atrace.dll
      MD5: dc7aa5a42297f5990ed4b85d0fe66f27 C:\WINDOWS\system32\attrib.exe
      MD5: 4c48f1b30a82583caee0da02dd7259ee C:\WINDOWS\system32\audiodev.dll
      MD5: f72df7512d92c2abedfae488411c9fe4 c:\windows\system32\audiosrv.dll
      MD5: 9831ff8de51e401f2bfa21d6890991d4 C:\WINDOWS\system32\auditusr.exe
      MD5: 2db8355e08c5275a733c92b6f9119395 C:\WINDOWS\system32\AUTHZ.dll
      MD5: 100307a13956bd15b99a57c6a763463b C:\WINDOWS\system32\autochk.exe
      MD5: 71796fd728f98deeb8c772066b8baa2f C:\WINDOWS\system32\autoconv.exe
      MD5: a6e827650fff6af0e13fdebf1887ca19 C:\WINDOWS\system32\autodisc.dll
      MD5: 849ef7b513d5652956783e22cd8c17bb C:\WINDOWS\system32\autofmt.exe
      MD5: 6e7b53b3a7f53f83f14d022ec8039eb3 C:\WINDOWS\system32\autolfn.exe
      MD5: ba96e85477f377be302741126f781d58 C:\WINDOWS\system32\avicap32.dll
      MD5: ad21ab6e8149d07aceaf2128e5db6870 C:\WINDOWS\system32\avifil32.dll
      MD5: 3ba43c5a1e92edc8fe33a26cab550f74 C:\WINDOWS\system32\avmeter.dll
      MD5: ca1057c6d625fd13bd8a8e58c5b1508e C:\WINDOWS\system32\avtapi.dll
      MD5: 1be5d6306e29fc2e3208015997214f3a C:\WINDOWS\system32\avwav.dll
      MD5: a59e41efa1a7bfb9597926ff1c4b08c1 C:\WINDOWS\system32\axaltocm.dll
      MD5: 0e69e2995965788470bcbfa2e9ad43b3 C:\WINDOWS\system32\basecsp.dll
      MD5: b594a2f6778b6b05cbf5022a645427f8 C:\WINDOWS\system32\basesrv.dll
      MD5: b5e6ab132bd567a2b25df6ae0730b750 C:\WINDOWS\system32\BatMeter.dll
      MD5: 279788d31935de69f76ab258cbf4980f C:\WINDOWS\system32\batt.dll
      MD5: c7f36b217643d9ddafba2ff5e2f20f01 C:\WINDOWS\system32\bcsprsrc.dll
      MD5: 0f6768fd9c82118176ff12890d3b456e C:\WINDOWS\system32\bidispl.dll
      MD5: 65fe17e6667d362e6cb6596335083f36 C:\WINDOWS\system32\bitsprx2.dll
      MD5: 957613046e1ecc8c9b956610d66fb22c C:\WINDOWS\system32\bitsprx3.dll
      MD5: ca4603ab0cb1c86736302baa0ab5177c C:\WINDOWS\system32\blackbox.dll
      MD5: fa3cb26ddf0003776d51fd09e32665cc C:\WINDOWS\system32\bootcfg.exe
      MD5: a5737a5d8774ad84fceb6126b6af9f94 C:\WINDOWS\system32\bootok.exe
      MD5: cc306bf581446d5e443eae5b3bb900f0 C:\WINDOWS\system32\bootvid.dll
      MD5: 0c48d0ce9802c6db543569403c8f830c C:\WINDOWS\system32\bootvrfy.exe
      MD5: ebe08a9fce68cf902ba3ae664a3e32f2 C:\WINDOWS\system32\browselc.dll
      MD5: d01cfcc753b09e70f5b7622501ff5383 c:\windows\system32\browser.dll
      MD5: 377c3a2c3f7d843b6c0a31337f02dd29 C:\WINDOWS\system32\BROWSEUI.dll
      MD5: e2cde916c3e66e9b0ee1efb0f47c78b8 C:\WINDOWS\system32\browsewm.dll
      MD5: 27a54794f46cdeb55a6c82da0076559a C:\WINDOWS\system32\bthci.dll
      MD5: 73b006c1597352b3749b0ffe80686a4c C:\WINDOWS\system32\bthprops.cpl
      MD5: 4da7d3b931ab2755a24093dd9728840e C:\WINDOWS\system32\bthserv.dll
      MD5: e67934e40d40f7c40000cc56bcc8adc3 C:\WINDOWS\system32\btpanui.dll
      MD5: ae340c61b8ea7157d086b136f58bf075 C:\WINDOWS\System32\Cabinet.dll
      MD5: 575d0caf97e77a70c70df8865f80ae29 C:\WINDOWS\system32\cacls.exe
      MD5: b1ba46c7da0ff9f123e0515e81525ca5 C:\WINDOWS\system32\calc.exe
      MD5: 40638f3db7fb54a3f5c8956f06310caf C:\WINDOWS\system32\camocx.dll
      MD5: 4438a8ef514ab487075e89faa596a03d C:\WINDOWS\system32\capesnpn.dll
      MD5: 5a93c845ea4730a4eb4762e9fa7a9545 C:\WINDOWS\system32\cards.dll
      MD5: e4c8034be0e8b80000e457bc543b6f9e C:\WINDOWS\system32\catsrv.dll
      MD5: 14e6b5daa3db764e7d4f45513e3e9e5e C:\WINDOWS\system32\catsrvps.dll
      MD5: a4fdbabd8db40c96e73fe0a6fabfec3d C:\WINDOWS\system32\catsrvut.dll
      MD5: 1440a084267a53deacd77e410b9158b2 C:\WINDOWS\system32\ccfgnt.dll
      MD5: b44dc14788639684669fa55ff30ff6e4 C:\WINDOWS\system32\CddbCdda.dll
      MD5: e2485325b691c644cc53f7f5bd659924 C:\WINDOWS\system32\cdfview.dll
      MD5: 5627047f35ea56a7ed8e513434b45d6c C:\WINDOWS\system32\cdm.dll
      MD5: 20579a00acfc65b5aaaf406b8ea8188b C:\WINDOWS\system32\cdmodem.dll
      MD5: 82aa47a60bae7f73b8f98c1074e84b44 C:\WINDOWS\system32\cdosys.dll
      MD5: 4b8a72d3baa70c115cbbeb6a1bc24846 C:\WINDOWS\system32\cdswitch.exe
      MD5: d21812c506d9de5f0a31ad5f48c17f55 c:\windows\system32\certcli.dll
      MD5: b0b3e44741d7f1bc25d8189b26f09184 C:\WINDOWS\system32\certmgr.dll
      MD5: 402c9d2691ae7b2a8efdded9124203b7 C:\WINDOWS\system32\cewmdm.dll
      MD5: 5026b3d893c5cdf69636ddcd33acc509 C:\WINDOWS\system32\cfgbkend.dll
      MD5: fbbe0298b27b18f592946d964752cd55 c:\windows\system32\CFGMGR32.dll
      MD5: df10cf0d1fb686165c155cd9e685d82a C:\WINDOWS\system32\charmap.exe
      MD5: 377f93cd24abe3dc05357d2c1bd1cae1 C:\WINDOWS\system32\chcp.com
      MD5: 7ab19df92730dd460465884314a7aa50 C:\WINDOWS\system32\chkdsk.exe
      MD5: 37f400f27ae6e46339cab59472a0f85c C:\WINDOWS\system32\chkntfs.exe
      MD5: 636b6f58991f302d13d81e46aab07195 C:\WINDOWS\system32\ciadmin.dll
      MD5: 38b9468ab31943e40a96c68a02f153fe C:\WINDOWS\system32\cic.dll
      MD5: 6617d825e521a01b5098c461f6ed6108 C:\WINDOWS\system32\cidaemon.exe
      MD5: aa5aed73e4e35f44fb29a7ce9718960d C:\WINDOWS\system32\ciodm.dll
      MD5: de6c0cb8cfbf7353004efee9873ac10f C:\WINDOWS\system32\cipher.exe
      MD5: c2991bbef6836c9b3abce7f87b19b0e8 C:\WINDOWS\system32\cisvc.exe
      MD5: c72350426f81fdbc461aafeca3d15d4b C:\WINDOWS\system32\ckcnv.exe
      MD5: 66d210661ce44fa0eb5ca1063364a73c C:\WINDOWS\system32\clb.dll
      MD5: 0dc8c12f018217db35e384a34717d2d7 C:\WINDOWS\system32\clbcatex.dll
      MD5: 96a96e81145bcf87915b95310f177a96 C:\WINDOWS\system32\CLBCATQ.DLL
      MD5: 2532b8f88077bef9ea3e2bf0dd6d1105 C:\WINDOWS\system32\cleanmgr.exe
      MD5: dcc7c72451f0bfbd8c047fd16c6bbe0c C:\WINDOWS\system32\cliconfg.dll
      MD5: ae83406e493b55b6f39e221d7c253061 C:\WINDOWS\system32\cliconfg.exe
      MD5: 16c04509b1c429eb6964fcb0305267be C:\WINDOWS\system32\cliconfg.rll
      MD5: 88cb481ae9ddc9a5a4a191e71bcb01e8 C:\WINDOWS\system32\clipbrd.exe
      MD5: 7931f88db9b42b3f7b5d9978bbacb22a C:\WINDOWS\system32\clipsrv.exe
      MD5: a2ad5f6b1e5277166fad8bfee13d137d C:\WINDOWS\system32\closeapp.exe
      MD5: bed591c019f8cdfe9d5b338407be03d9 C:\WINDOWS\System32\CLUSAPI.DLL
      MD5: bb8f0249be84fea445910209f59a1f3a C:\WINDOWS\system32\cmcfg32.dll
      MD5: 175530916470edbe41700f926eed4bb7 C:\WINDOWS\system32\cmd.exe
      MD5: 4819944271e2db2187aff11be5c6e363 C:\WINDOWS\system32\cmdial32.dll
      MD5: 61bf078b7a73d11850635e5674711e97 C:\WINDOWS\system32\cmdl32.exe
      MD5: 91a291786e35bec23de249b939782078 C:\WINDOWS\system32\CmdLineExt.dll
      MD5: 48a78bf8ef453d9ca4d6c0587ae2de94 C:\WINDOWS\system32\cmdow.exe
      MD5: 54a92b93a7fedbb12077f22591e2c6b0 C:\WINDOWS\system32\cmmon32.exe
      MD5: 679c6cff817deb19dcc9af18da8c3d5d C:\WINDOWS\system32\cmpbk32.dll
      MD5: 4e3010095bf8cafd71a5d67b1d7fca6f C:\WINDOWS\system32\cmprops.dll
      MD5: 2be8c14c368d05b413e45dbe41ce1b8c C:\WINDOWS\system32\cmsetACL.dll
      MD5: e882670015a6bdb07de5a3de453b3038 C:\WINDOWS\system32\cmstp.exe
      MD5: 291b4ee606b75222c4383c554c379101 C:\WINDOWS\system32\cmutil.dll
      MD5: d6f0e5e0a8d7604f57de5b2f5d4cf337 C:\WINDOWS\system32\cnbjmon.dll
      MD5: ef0a7217cb446540e67c82717ed938ec C:\WINDOWS\system32\cnetcfg.dll
      MD5: e4419b4a5bb2b5ffecac4eed85204341 C:\WINDOWS\system32\cnvfat.dll
      MD5: eb6782345f6c94a7f32e5828b3b1db68 C:\WINDOWS\system32\colbact.DLL
      MD5: 6180a866bddafaae5c530dddc4fdba96 C:\WINDOWS\system32\comaddin.dll
      MD5: c12914a9179d56a8f774277a07c64d34 C:\WINDOWS\system32\comcat.dll
      MD5: 3e555c1abb1f5df1649b83b1878ac123 C:\WINDOWS\system32\comctl32.dll
      MD5: a22b344bb1e589c023d771d1b94aeb86 C:\WINDOWS\system32\comdlg32.dll
      MD5: 064b539a0c6a7466b729aebf66c8062c C:\WINDOWS\system32\comp.exe
      MD5: 5b6cd04e9247a71be9ae02e6736904b4 C:\WINDOWS\system32\compact.exe
      MD5: 7463bc9ae206ecc95f96e0b7f2cbc828 C:\WINDOWS\system32\compatUI.dll
      MD5: 753a922c9a143ce4118d8e17420565f4 C:\WINDOWS\system32\compstui.dll
      MD5: d0ea6f47367348bf70ceabecff80cc3a C:\WINDOWS\system32\comrepl.dll
      MD5: decf5947ef11b06d716e08d0b86fc62a C:\WINDOWS\system32\COMRes.dll
      MD5: dae10d899381275eb83ece496cbacad0 C:\WINDOWS\system32\comsnap.dll
      MD5: 3e4794c53a338ec4317183ad143b5cae C:\WINDOWS\system32\comsvcs.dll
      MD5: 27062a90dd02e342a4e69464cf714625 C:\WINDOWS\system32\comuid.dll
      MD5: aa34870aa31cd985dfd4881613141af3 C:\WINDOWS\system32\confmsp.dll
      MD5: 1ca443eac5e5775393ab148acb99e4d0 C:\WINDOWS\system32\conime.exe
      MD5: c379b49ba9a538fcc721752c7d4daed3 C:\WINDOWS\system32\console.dll
      MD5: adbba17231cc4d357348d0013943360d C:\WINDOWS\system32\control.exe
      MD5: 6d7d2ba8a6474c2158df551a9c35536e C:\WINDOWS\system32\convert.exe
      MD5: 3f17ab3c70f1d7aca820895c396ce19a C:\WINDOWS\system32\corpol.dll
      MD5: 35ec2fe1461eae519172f7c6fe368163 c:\windows\system32\credui.dll
      MD5: 349bd91d18cebecc2e0bf26b2174749e C:\WINDOWS\system32\crtdll.dll
      MD5: 1c02966bad0af1077844edccabbf610b C:\WINDOWS\system32\CRYPT32.dll
      MD5: 2af6358746a77f31bc99450f649dab8b C:\WINDOWS\system32\cryptdlg.dll
      MD5: abbebc02d387395cd85edde1370f1e35 C:\WINDOWS\system32\cryptdll.dll
      MD5: daff710d2f85da2047231d442128b5a4 C:\WINDOWS\system32\cryptext.dll
      MD5: fcb811d94e66133d2439879ff95ca444 C:\WINDOWS\system32\cryptnet.dll
      MD5: 149cffbf77cc1306fc535557cf513b91 c:\windows\system32\cryptsvc.dll
      MD5: e42dac97a2997a668a274b9956f88b5b C:\WINDOWS\system32\CRYPTUI.dll
      MD5: 50fe234cf757dc3074476a4f8bac1331 C:\WINDOWS\system32\cscdll.dll
      MD5: a873c85fcbeb8c5259f7939b7731bf8d C:\WINDOWS\system32\cscript.exe
      MD5: 0f9186bf14e774e0bccd0871f4ff7e07 C:\WINDOWS\system32\cscui.dll
      MD5: 1332d23b702062f3af4d980d969eb525 C:\WINDOWS\system32\CSRSRV.dll
      MD5: a503973fb26bc316bbb4b834e79b609f C:\WINDOWS\system32\csrss.exe
      MD5: 12fc6891a8974e57ee6775724db99fb5 C:\WINDOWS\system32\csseqchk.dll
      MD5: 25ecfa69af1563fde8dfd31f9954497a C:\WINDOWS\system32\ctfmon.exe
      MD5: 2060f1d69e3062bd6a63cdbc5d0f89b9 C:\WINDOWS\system32\ctl3d32.dll
      MD5: addc2c32d28d17a0449c9833fb2d3873 C:\WINDOWS\system32\d3d8.dll
      MD5: 22d917c98bd99be8ad9acfeb40f74edf C:\WINDOWS\system32\d3d8thk.dll
      MD5: 77a1379688f15b02d5100183a54778bb C:\WINDOWS\system32\d3d9.dll
      MD5: fae7e1d578c42a7c3d9d61a99d178bd5 C:\WINDOWS\system32\D3DCompiler_33.dll
      MD5: 75f206c195bbaca6ef28565b1c0cd75c C:\WINDOWS\system32\D3DCompiler_34.dll
      MD5: 5b441670a4f5f8bcce76741902b8af56 C:\WINDOWS\system32\D3DCompiler_35.dll
      MD5: fb4299688a0d3a37687c015ac2b9922d C:\WINDOWS\system32\D3DCompiler_36.dll
      MD5: d5c26287c6b16f78afcd9cc67c32a437 C:\WINDOWS\system32\d3dim.dll
      MD5: 813e9c2ecdf8108f5367945404bf76f3 C:\WINDOWS\system32\d3dim700.dll
      MD5: 0a3c1805e51589b072ae7d0ad1ddfb8b C:\WINDOWS\system32\d3dpmesh.dll
      MD5: 17408f6163f809957caabe2b3ae9f4b7 C:\WINDOWS\system32\d3dramp.dll
      MD5: 98e32af2474b80988525c87d4d8597d8 C:\WINDOWS\system32\d3drm.dll
      MD5: 37a8171accf46a9c196054066c28827f C:\WINDOWS\system32\d3dx10_33.dll
      MD5: 5aa9987f2e62b56d7661b6901901f927 C:\WINDOWS\system32\d3dx10_34.dll
      MD5: f3764552e45880dc49b82f38699aa87c C:\WINDOWS\system32\d3dx10_35.dll
      MD5: d9158e78a368b08d9133043eb3058c12 C:\WINDOWS\system32\d3dx10_36.dll
      MD5: 4a43e9a2b17e4cafa9cb5fec0b5b686b C:\WINDOWS\system32\d3dx10_37.dll
      MD5: a2650b27472c21cdd817eeede65648e1 C:\WINDOWS\system32\d3dx10_38.dll
      MD5: e6c2f1d8b667ddc04cb55b9f0159ef97 C:\WINDOWS\system32\d3dx10_39.dll
      MD5: 91b4aad4412bb223b466f3dfb43e86da C:\WINDOWS\system32\d3dx10_40.dll
      MD5: bc831661963763ac4d504c5cabb1fdd9 C:\WINDOWS\system32\d3dx9_24.dll
      MD5: 5b48fe9d6686f0d54b26a005ace24d1d C:\WINDOWS\system32\d3dx9_25.dll
      MD5: 523ab607eef81cc4d909e7febd8a788e C:\WINDOWS\system32\d3dx9_26.dll
      MD5: 852edc778a7a50077694f84d8e601234 C:\WINDOWS\system32\d3dx9_27.dll
      MD5: be19b603dfbaa829ee5b7749b3ba97db C:\WINDOWS\system32\d3dx9_28.dll
      MD5: 99f4fc172a5ace36cf00aa7038d23f2c C:\WINDOWS\system32\d3dx9_29.dll
      MD5: e415862612e65f10d7d888443ecd7594 C:\WINDOWS\system32\d3dx9_30.dll
      MD5: 797e24743937d67d69f28f2cf5052ee8 C:\WINDOWS\system32\d3dx9_31.dll
      MD5: 26af232140c88b42d92a88f2198edf6a C:\WINDOWS\system32\d3dx9_32.dll
      MD5: cdb1cd22baff21f48606b3c1a18b000b C:\WINDOWS\system32\d3dx9_33.dll
      MD5: 1ca939918ed1b930059b3a882de6f648 C:\WINDOWS\system32\d3dx9_34.dll
      MD5: 3ef18b78d17c962f2b71ac1cb7757684 C:\WINDOWS\system32\d3dx9_35.dll
      MD5: 44bfec5c9c82a2ee9871d88fd3b9a0e2 C:\WINDOWS\system32\d3dx9_36.dll
      MD5: ac3c517fb0fbbe45fe44007bcd3625a7 C:\WINDOWS\system32\d3dx9_37.dll
      MD5: 8f3eb548ac4ed90252394f60c77e3196 C:\WINDOWS\system32\D3DX9_38.dll
      MD5: 8cb3defb8887c4f0846db1fc1304d6d2 C:\WINDOWS\system32\D3DX9_39.dll
      MD5: eea5e428ce63804f9b12d21c97b5968f C:\WINDOWS\system32\D3DX9_40.dll
      MD5: 2c0e9ad16f092af200916f2a91c4870c C:\WINDOWS\system32\d3dxof.dll
      MD5: 04dfc8041621776f008b7e899ffa19d5 C:\WINDOWS\system32\danim.dll
      MD5: 64150e0a42094ed0f0a6ee98d6cf2a57 C:\WINDOWS\system32\dataclen.dll
      MD5: 12b96cd3890c610d91e9a1ed311170b1 C:\WINDOWS\system32\datime.dll
      MD5: 24579f0a166721ef7fda35ff4a760ac4 C:\WINDOWS\System32\davclnt.dll
      MD5: 134ecb6a6c4bca59aa1b421b8da1af43 C:\WINDOWS\system32\daxctle.ocx
      MD5: f8e180a687159f7147d0e63093d78d36 C:\WINDOWS\system32\dbgeng.dll
      MD5: e4e3b6d7a77a2cf206d8127feb01b6c0 C:\WINDOWS\system32\dbghelp.dll
      MD5: cab898a481be1f4a0bd06e26ddc6b745 C:\WINDOWS\system32\dbmsrpcn.dll
      MD5: 76369d7447002a1f1097b3525634245e C:\WINDOWS\system32\dbnetlib.dll
      MD5: 74d9b031a3db8b38692aaa5958017808 C:\WINDOWS\system32\dbnmpntw.dll
      MD5: 01a5fd9f690562c92b7dbb2a9a70a0de C:\WINDOWS\system32\dciman32.dll
      MD5: d4e5456da799f52f788d6b4f43936f9a C:\WINDOWS\system32\dcomcnfg.exe
      MD5: cea13e762862f779860e5df38e9db5cf C:\WINDOWS\system32\ddeshare.exe
      MD5: 285b7ea6c449da0e08b1195fe7033a1a C:\WINDOWS\system32\ddraw.dll
      MD5: 6d275d7da81118e422d52062f7776cfa C:\WINDOWS\system32\ddrawex.dll
      MD5: 82967e27b25415193d87a08c86e50f39 C:\WINDOWS\system32\defrag.exe
      MD5: 6c2d8a9d40ce9a73834cd1245494df71 C:\WINDOWS\system32\desk.cpl
      MD5: c7fb8651c98c3ccc52fd83b66e645faa C:\WINDOWS\system32\deskadp.dll
      MD5: 8574dde5fe9dd7f44fc731e34aee4a46 C:\WINDOWS\system32\deskmon.dll
      MD5: 3e7223f2a57066403a0df0cb2eeec07e C:\WINDOWS\system32\deskperf.dll
      MD5: 238a8d2643b4994ef76bc4b85e07cbb8 C:\WINDOWS\system32\devenum.dll
      MD5: c4c853c7ef8d4f51925c8524b324a7eb C:\WINDOWS\system32\devmgr.dll
      MD5: 5ef2002126cfe6682fdaa02a4568bacf C:\WINDOWS\system32\dfrgfat.exe
      MD5: a8b865b48b849c287c947cee43927ecc C:\WINDOWS\system32\dfrgntfs.exe
      MD5: 39aff3a690ed41df404e28951ccafa1f C:\WINDOWS\system32\dfrgres.dll
      MD5: 9765bcc423405ab21577250765a7a98f C:\WINDOWS\system32\dfrgsnap.dll
      MD5: 1bff490b62e81b60e67aab300c3b1c71 C:\WINDOWS\system32\dfrgui.dll
      MD5: b3511383c8be3a8c5b88a78971fc1141 C:\WINDOWS\system32\dfshim.dll
      MD5: b7b7aa40cd7fe37508bc1318d867be6c C:\WINDOWS\system32\dfsshlex.dll
      MD5: 8fb576c060db6a27c5564532f48bbed9 C:\WINDOWS\system32\dgnet.dll
      MD5: 0f920b4086df1f2286b460cb9973d358 C:\WINDOWS\system32\dgrpsetu.dll
      MD5: e1948441bb6b1fd9c7c940f56bf00f42 C:\WINDOWS\system32\dgsetup.dll
      MD5: 563803fa2ccfcf663d6da0c46b87aa9d c:\windows\system32\dhcpcsvc.dll
      MD5: 1d73c3d3828d5c19e2cbda65aad1f332 C:\WINDOWS\system32\dhcpmon.dll
      MD5: 7e51f23079b258d135f43d2861c04159 C:\WINDOWS\system32\dhcpsapi.dll
      MD5: 1c1a3ca12745dd02e277774a565b44be C:\WINDOWS\system32\diactfrm.dll
      MD5: 856af53fe58deafdd74580ecc3b10b90 C:\WINDOWS\system32\diantz.exe
      MD5: 1bd976dd77b31fe0f25708ad5c1351ae C:\WINDOWS\system32\difxapi.dll
      MD5: aff21745e4bb4992c16117e665955595 C:\WINDOWS\system32\digest.dll
      MD5: bddca49e68438a995d8d6dfa6077ce5c C:\WINDOWS\system32\dimap.dll
      MD5: 60056b2402a4f5123aaed1a2fb785dec C:\WINDOWS\system32\dinput.dll
      MD5: 1305ab827cfdb2cda203b1b5a339c594 C:\WINDOWS\system32\dinput8.dll
      MD5: 19d11b32805a84dff41a8af16b1fc46a C:\WINDOWS\system32\diskcomp.com
      MD5: 7b4bf067e7861fda9edad42eca933a34 C:\WINDOWS\system32\diskcopy.com
      MD5: 73e614a12cfab3852d4a948a919ef9d7 C:\WINDOWS\system32\diskcopy.dll
      MD5: 3926ccb70ab086aeab71d829fa75563d C:\WINDOWS\system32\diskpart.exe
      MD5: 348b211dfa27a025d461d5fe5c556a1a C:\WINDOWS\system32\diskperf.exe
      MD5: 191d07857c4e5bc416577744d5ebfd05 C:\WINDOWS\system32\dispex.dll
      MD5: 5e1e3db1e221217a9d8741df89b739a1 C:\WINDOWS\system32\divx.dll
      MD5: e7b97b5564d8362f95c4227a196da4e1 C:\WINDOWS\system32\dllhost.exe
      MD5: 9e24bbb6cf440b31b713676ade29d75f C:\WINDOWS\system32\dllhst3g.exe
      MD5: 3a34e50142e8917d33dd8531c75884f9 C:\WINDOWS\System32\dmadmin.exe
      MD5: 63a1ca7859a377941b101f7e18b8eda4 C:\WINDOWS\system32\dmband.dll
      MD5: adcac4730e5b419590396ffb78e72176 C:\WINDOWS\system32\dmcompos.dll
      MD5: dc8812d0f1b52277b9a1f64c54e977bb C:\WINDOWS\system32\dmconfig.dll
      MD5: c527f05807ca19755bebbd83fee1207a C:\WINDOWS\system32\dmdlgs.dll
      MD5: 40e1076de6e44d3811bb20439ddc434d C:\WINDOWS\system32\dmdskmgr.dll
      MD5: 8f8166c42a199dd8cb0f39da6b22ed94 C:\WINDOWS\system32\dmdskres.dll
      MD5: 83572d7c85ae8354ddb475e569b16432 C:\WINDOWS\system32\dmime.dll
      MD5: ce449b4b01e3db07e1b2f45253857d64 C:\WINDOWS\system32\dmintf.dll
      MD5: 386c611d747f96610434f615a253beab C:\WINDOWS\system32\dmloader.dll
      MD5: 6d3b28911820bcc652c3d540c9ec0c2e C:\WINDOWS\system32\dmocx.dll
      MD5: 9299c41a38bdd58431dc0accbbd30c8e C:\WINDOWS\system32\dmremote.exe
      MD5: 03a8ec228e8d810d73fbf9543e613741 C:\WINDOWS\system32\dmscript.dll
      MD5: 9108afa79d60ebfb2d6af87b9515ba1a c:\windows\system32\dmserver.dll
      MD5: 78da85d9eaaa2e5c10c9d16c4e834c85 C:\WINDOWS\system32\dmstyle.dll
      MD5: 0b5bc528494dc8d6a33b631c55fc5e7d C:\WINDOWS\system32\dmsynth.dll
      MD5: 6e51d420cf6d80f4c47b38ab91b9bcae C:\WINDOWS\system32\dmusic.dll
      MD5: 1f8680f457f497cac5430963cf965f19 C:\WINDOWS\system32\dmutil.dll
      MD5: 45a7d3373e29ab46b6272e072925b51c C:\WINDOWS\system32\dmview.ocx
      MD5: 8e7b8cddef7888b82dc915b8708896f1 C:\WINDOWS\system32\DNSAPI.dll
      MD5: 8739d42144e3687f5d107d1a1b10b9c1 c:\windows\system32\dnsrslvr.dll
      MD5: 41d6262aa9e102bb7a6a06d3fdf884c1 C:\WINDOWS\system32\docprop.dll
      MD5: 0ff199a11ddb9d31963403981a2a42c7 C:\WINDOWS\system32\docprop2.dll
      MD5: 0dd096a760bb232086dce74e5ea274cd C:\WINDOWS\system32\doskey.exe
      MD5: d7317b0d3cdc21181ba712a1cf980e06 C:\WINDOWS\system32\dpcdll.dll
      MD5: a02a458e8725bb0c21895703faa92c2b C:\WINDOWS\system32\dpl100.dll
      MD5: ed5a7e91f9a7f12dde9652fa8cfe08ee C:\WINDOWS\system32\dplay.dll
      MD5: 0cf003ba48ba32bc6a9864d61c9507b5 C:\WINDOWS\system32\dplaysvr.exe
      MD5: 6a9498cfb9d666fb90cdbe902c40435d C:\WINDOWS\system32\dplayx.dll
      MD5: 50079ee9233d744275cd170d47754223 C:\WINDOWS\system32\dpmodemx.dll
      MD5: 93b12b0f1fd5ae0a03e7c92c6510716b C:\WINDOWS\system32\dpnaddr.dll
      MD5: e58f326a87d097b920f58f786a457e7c C:\WINDOWS\system32\dpnet.dll
      MD5: c5e322baae3758608f10233f8bac8061 C:\WINDOWS\system32\dpnhpast.dll
      MD5: 4740dbe83477c04c983e9ba1b2dc2bb3 C:\WINDOWS\system32\dpnhupnp.dll
      MD5: 4817d5ef3546d29934495bf87426fe35 C:\WINDOWS\system32\dpnlobby.dll
      MD5: 336271e0428876dfe9ca3d479a6ab06d C:\WINDOWS\system32\dpnmodem.dll
      MD5: 13a455f663adc6c91badeabc24a2d8f2 C:\WINDOWS\system32\dpnsvr.exe
      MD5: bb0eeb0671a8748fc96df15604d402c2 C:\WINDOWS\system32\dpnwsock.dll
      MD5: 970c6533dbc1c8df0a47eb1aff0b44d7 C:\WINDOWS\system32\dpserial.dll
      MD5: 9d7dc6767afc5733c1eec16acd0cbcda C:\WINDOWS\system32\dpvacm.dll
      MD5: 6c70c52d866953005098b0ff50cec67e C:\WINDOWS\system32\dpvoice.dll
      MD5: b61e17ed629ce36819545c24caf9949c C:\WINDOWS\system32\dpvsetup.exe
      MD5: 799a1c6107bd280432e69afabdcca59f C:\WINDOWS\system32\dpvvox.dll
      MD5: 01153ee526ee2bf18cd92eb261318b4c C:\WINDOWS\system32\dpwsock.dll
      MD5: bc8cda708f6403702f8c5e426f640cdf C:\WINDOWS\system32\dpwsockx.dll
      MD5: fd1d88da511cdb949fac964d1d9a0275 C:\WINDOWS\system32\driverquery.exe
      MD5: 33d1373ee875ce8b063777f7e77815b7 C:\WINDOWS\system32\DRIVERS\ACPI.sys
      MD5: 1074f787080068c71303b61fae7e7ca4 C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
      MD5: 61a7e0b02f82cff3db2445bbe50b3589 C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
      MD5: d63d83659eedf60b3a3e620281a888e5 C:\WINDOWS\system32\DRIVERS\avgidshx.sys
      MD5: baf975b72062f53d327788e99d64197e C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
      MD5: dcb09125c8b4766a88c86914b65487c1 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
      MD5: ccdd61545aaea265977e4b1efdc74e8c C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
      MD5: 1fd90b28d2c3100bf4500199c8ad6358 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
      MD5: c0bc3b2e3fd625e7f55e1ff863e94592 C:\WINDOWS\system32\DRIVERS\avgtdix.sys
      MD5: 9fb634a0ed429aa64de57c53dd10ccf9 C:\WINDOWS\System32\drivers\dmboot.sys
      MD5: 67decfaf3b6cdb34b3fa77d965281bb5 C:\WINDOWS\System32\drivers\dmio.sys
      MD5: 5a85cd3d07273e3f6fe72ee9c6431632 C:\WINDOWS\system32\DRIVERS\fltMgr.sys
      MD5: 909d110c9634b0f1487eaaea837317d9 C:\WINDOWS\System32\Drivers\HTTP.sys
      MD5: 0cab3ee361cfeab260b3906c8b6fb2be C:\WINDOWS\system32\DRIVERS\i8042prt.sys
      MD5: c4018896856a1a1f1f3a0a6ee7206551 C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
      MD5: 161b54c8200663ada2c145d87e8d4340 C:\WINDOWS\system32\DRIVERS\intelide.sys
      MD5: 98bbc0e8efa90fff1ec9456ee7b0b1f1 C:\WINDOWS\system32\DRIVERS\intelppm.sys
      MD5: 5191673215c91ff13ceaa83ef8e9653f C:\WINDOWS\system32\DRIVERS\ipnat.sys
      MD5: 86c204836feec22510d434982d4221b8 C:\WINDOWS\system32\DRIVERS\irda.sys
      MD5: 0501f0b9ab08425f8c0eacbdcc04aa32 C:\WINDOWS\system32\DRIVERS\irsir.sys
      MD5: 90bc6118193b4e8a76f0fc0d4a3572de C:\WINDOWS\system32\DRIVERS\isapnp.sys
      MD5: 71bfdda7b3006b45b18d8bac92bc9993 C:\WINDOWS\system32\DRIVERS\kbdclass.sys
      MD5: 24334eb02603262309f648ef9e06496e C:\WINDOWS\system32\DRIVERS\kbdhid.sys
      MD5: 8531438246ce9474e41ee1599904c0c7 C:\WINDOWS\system32\drivers\kmixer.sys
      MD5: 500d089ce760d83da2b6cba681aa9949 C:\WINDOWS\system32\drivers\mbam.sys
      MD5: 05e9c75c6797145a4983e9d0a4778bc3 C:\WINDOWS\system32\DRIVERS\mouclass.sys
      MD5: 8ee532e516b2d23d686cfc1cc0a15c25 C:\WINDOWS\system32\DRIVERS\mouhid.sys
      MD5: 7412ce77c6fd823f8889b4df420c680b C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
      MD5: 696b37ea78f9d9767a2f18ba0304a51a C:\WINDOWS\system32\drivers\nmwcd.sys
      MD5: bbb6010fc01d9239d88fcdf133e03ff0 C:\WINDOWS\system32\drivers\nmwcdc.sys
      MD5: 4c3726467d67483f054c88f058e9c153 C:\WINDOWS\system32\drivers\nmwcdcj.sys
      MD5: 4c3726467d67483f054c88f058e9c153 C:\WINDOWS\system32\drivers\nmwcdcm.sys
      MD5: 0df0b83c90473ccfdc3dc882cbb6e4a9 C:\WINDOWS\system32\DRIVERS\parport.sys
      MD5: a566b8da5e70b3237274d418853a87e0 C:\WINDOWS\system32\DRIVERS\pci.sys
      MD5: ed375ce745c42a14f10753f7022ecd6a C:\WINDOWS\system32\DRIVERS\rdbss.sys
      MD5: 28531a950381da67fc6412dfebcc8c5c C:\WINDOWS\system32\DRIVERS\redbook.sys
      MD5: 25be98c05808c57e4d8d26477dc12d39 C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
      MD5: 60d7460b07012d364ced11dd9fd83e1f C:\WINDOWS\system32\drivers\RtkHDAud.sys
      MD5: fa9c4c4ac544301fa13c5c00a270399f C:\WINDOWS\system32\DRIVERS\serial.sys
      MD5: 9bb1dd670cb7505a90fc4e61d4aa8227 C:\WINDOWS\system32\drivers\splitter.sys
      MD5: 3c151d50cf3ae1683c6e3ec201b2ad3d C:\WINDOWS\system32\DRIVERS\sr.sys
      MD5: 5230953c21c811b5fc1ff31ae2b48097 C:\WINDOWS\system32\DRIVERS\srv.sys
      MD5: c7be59b07c6eb74bea6fd67c1b164015 C:\WINDOWS\system32\DRIVERS\tcpip.sys
      MD5: a4815a4884898f355a3513e60843a4fd C:\WINDOWS\system32\DRIVERS\update.sys
      MD5: 0bfa8203b8148fb4e54bc212c41ce497 C:\WINDOWS\system32\drivers\wdmaud.sys
      MD5: 50eb9e21963b4f06fd010d007d54351b C:\WINDOWS\system32\DRIVERS\WudfPf.sys
      MD5: 6e209664bdea8a15b5e8e480d6c607c2 C:\WINDOWS\system32\DRIVERS\wudfrd.sys
      MD5: bec4291016ebe29d534cf31e91f6bfe1 C:\WINDOWS\system32\drmclien.dll
      MD5: 61687c2160fbe9058e35161cff15b807 C:\WINDOWS\system32\drmstor.dll
      MD5: abf0fadf619630041732d1ea5656ee45 C:\WINDOWS\system32\drmupgds.exe
      MD5: e989e4badcccf78e18aabf3d42b306ce C:\WINDOWS\system32\drmv2clt.dll
      MD5: 00858f010bf09207c52c6232610a648f C:\WINDOWS\System32\drprov.dll
      MD5: 6f8ab80e6a245d83b370137ad17f2121 C:\WINDOWS\system32\drwtsn32.exe
      MD5: c50588cfde61006a3131e5b08a348453 C:\WINDOWS\system32\ds32gt.dll
      MD5: 67a969acb25d190910e1781ccd674406 C:\WINDOWS\system32\dsauth.dll
      MD5: 9e40b138142abc5e91c2104f03824d1a C:\WINDOWS\system32\dsdmo.dll
      MD5: 6fe658c061f27fc97a8afdec12e663c4 C:\WINDOWS\system32\dsdmoprp.dll
      MD5: ff9c61a3d90dac864c99bf90ec165e07 C:\WINDOWS\system32\dskquota.dll
      MD5: 3ac48d660e634c6eb32aba54dcf641c7 C:\WINDOWS\system32\dskquoui.dll
      MD5: bde6aedfd66768c08c42dae5056b6779 C:\WINDOWS\system32\dsound.dll
      MD5: 1a0dc077466511fb13cdeca4a9e3dc86 C:\WINDOWS\system32\dsound3d.dll
      MD5: f03edff0d46c7842045bdb0e9ed4d849 C:\WINDOWS\system32\dsprop.dll
      MD5: d2b1ee5d0f6c1db9de6cd4cfd4ef8445 C:\WINDOWS\system32\dsprpres.dll
      MD5: 4448967158b8fe6d7dfc9d5bdd65f788 C:\WINDOWS\system32\dsquery.dll
      MD5: 1d475e6c89ce42baa88a627aa9ebf906 C:\WINDOWS\system32\dssec.dll
      MD5: cacd2c63a79268d131ea37e85524cc44 C:\WINDOWS\system32\dssenh.dll
      MD5: b2b4163ae2e44b21506b503383553add C:\WINDOWS\system32\dsuiext.dll
      MD5: 9492cb5bc99929252c34af425b0507f5 C:\WINDOWS\system32\dswave.dll
      MD5: 64e003a0eaad29cff972c7c67ac66b0c C:\WINDOWS\system32\dumprep.exe
      MD5: f8b4549513e77358950ef6927e9893ca C:\WINDOWS\system32\duser.dll
      MD5: 9a5fb3dbba64df24210270c8e8794b2c C:\WINDOWS\system32\dvdplay.exe
      MD5: 3309157e43cf66fb6b8969e1f78ea831 C:\WINDOWS\system32\dvdupgrd.exe
      MD5: 6dc562a7999477fc35360a03fc1f5e76 C:\WINDOWS\system32\dwwin.exe
      MD5: a18e26e89736b5d6ad249b2a1ef1ea04 C:\WINDOWS\system32\dx7vb.dll
      MD5: d2305fb7d9c69a06425cdcbf69e7fcb9 C:\WINDOWS\system32\dx8vb.dll
      MD5: aba8d2b615b72e906a39cf3064c6bf0e C:\WINDOWS\system32\dxdiag.exe
      MD5: cfaa097aa92bc2f33cc770e20370cdc4 C:\WINDOWS\system32\dxdiagn.dll
      MD5: ce8898cb1cbdabd64b1236570b2ad8ec C:\WINDOWS\system32\dxmasf.dll
      MD5: 8f4aaabeb926a294559c8a884a88a04e C:\WINDOWS\system32\dxtmsft.dll
      MD5: eec89d7bf84cb8c3129ae2bdf30ab5ff C:\WINDOWS\system32\dxtrans.dll
      MD5: d085df20df317c78c55f8f8aec49e9cd C:\WINDOWS\system32\efsadu.dll
      MD5: 89eb7ae1763055b1f4c7047dc78ab37d C:\WINDOWS\system32\els.dll
      MD5: 6c6c326c563d4a8e352907bd1c73b39d C:\WINDOWS\system32\encapi.dll
      MD5: f75749871fc07e47d4c43789f7f8074f C:\WINDOWS\system32\encdec.dll
      MD5: dc91c0d64bd53acea7b3a2eca83b51be C:\WINDOWS\system32\EqnClass.Dll
      MD5: 90c85a6f2e6529526b897be25343663a c:\windows\system32\ersvc.dll
      MD5: 0d0f85237e32538f58278d673032676a c:\windows\system32\es.dll
      MD5: c4b88309cda02c0143a6474b57afb53d c:\windows\system32\ESENT.dll
      MD5: 4779e6bc06108c34ec4128badcb2ef17 C:\WINDOWS\system32\esent97.dll
      MD5: 597475702c8b905a8dabb7f37655f9d0 C:\WINDOWS\system32\esentprf.dll
      MD5: 876eaa3c0b25d4c9af7723c97bbc77f1 C:\WINDOWS\system32\esentutl.exe
      MD5: 4b88bd336213a75271ef404ed32188ec C:\WINDOWS\system32\eudcedit.exe
      MD5: aff906ed215563f13db56bd93221305f C:\WINDOWS\system32\eventcls.dll
      MD5: 4257819738fbc4969a716d7d8ffd8d66 C:\WINDOWS\system32\eventcreate.exe
      MD5: 5696df4ef09c375ce42fb2dde1e68ab7 C:\WINDOWS\system32\eventlog.dll
      MD5: 93541cd0eb099bf9827a4806bf71e674 C:\WINDOWS\system32\eventtriggers.exe
      MD5: 787c6961964a4d7094ca8b4adf37c137 C:\WINDOWS\system32\eventvwr.exe
      MD5: b5a5da554fe351cd750360877f257072 C:\WINDOWS\system32\expand.exe
      MD5: 0cb5c8838efb113d847eecf0dfdc5231 C:\WINDOWS\system32\expsrv.dll
      MD5: ef712ff59fbfedc75f74831b81ed43c2 C:\WINDOWS\system32\extmgr.dll
      MD5: 28b471e4aba063d88379f07ed50a1f96 C:\WINDOWS\system32\extrac32.exe
      MD5: c7791b7b92f1ea2d26e32be50a6be7ce C:\WINDOWS\system32\exts.dll

    5. #5
      Usuario Avatar de ks gregn
      Registrado
      may 2012
      Ubicación
      rojas
      Mensajes
      16

      Re: Varios Virus

      MD5: 36aaa3ad179026a32bfb40201d898024 C:\WINDOWS\system32\faultrep.dll
      MD5: 58e0c994e958ab33607c4a1a60d44d1d C:\WINDOWS\system32\fc.exe
      MD5: 642edab70d9bb7e2207ac2d44aad1c9d C:\WINDOWS\system32\fde.dll
      MD5: fba5ca9a2414b974f1bd05b5b52339c5 C:\WINDOWS\system32\fdeploy.dll
      MD5: 73800851e5a103f79b316b6c770db7f1 C:\WINDOWS\system32\feclient.dll
      MD5: e98c08770fe5fe6c39770c459116373b C:\WINDOWS\system32\ff_vfw.dll
      MD5: a9b1efec13c950fc442d728782b630c3 C:\WINDOWS\system32\filemgmt.dll
      MD5: c8d4a8e46aa45d548a61772e98b4b74e C:\WINDOWS\system32\find.exe
      MD5: 98d8aae7052a4774e8ab277dd8bc0f48 C:\WINDOWS\system32\findstr.exe
      MD5: 16cd2d7344e33cbb3ac371f1ce15603f C:\WINDOWS\system32\finger.exe
      MD5: db1e219e5eabcf0d911327e16b80d836 C:\WINDOWS\system32\firewall.cpl
      MD5: ac30a94426391c970aa3b00d7c61f222 C:\WINDOWS\system32\fixmapi.exe
      MD5: 5f80ee6063c081e709b91711b89c2d4d C:\WINDOWS\system32\fltlib.dll
      MD5: c320377f9afbf3afe579d64ded82d455 C:\WINDOWS\system32\fltMc.exe
      MD5: 33fe19de8f056693a0d0903ec4a9e831 C:\WINDOWS\system32\FM20.DLL
      MD5: 0f2997f23ce965249e58999aba987c64 C:\WINDOWS\system32\FM20ESN.DLL
      MD5: 154c51bb3915afb80596bf35f4d97597 C:\WINDOWS\system32\FM20ESP.DLL
      MD5: d58245f727e79cd944fbeb25147356a9 C:\WINDOWS\system32\fmifs.dll
      MD5: 4f8ff7efebf9383c3e06df61b0216fb4 C:\WINDOWS\system32\fontext.dll
      MD5: 99c5e0911123a7d4f8060b542af8bddb C:\WINDOWS\system32\fontsub.dll
      MD5: 792949aa6b3504260a10505736f85113 C:\WINDOWS\system32\fontview.exe
      MD5: cd5e2517f115c410ff6efb0c167870eb C:\WINDOWS\system32\forcedos.exe
      MD5: 9c1991ae9b1ac4c1e4055d466c009e2e C:\WINDOWS\system32\format.com
      MD5: 22c380829d4177681e0bcb82ca34e490 C:\WINDOWS\system32\framebuf.dll
      MD5: d3aa1dadcf5c0614f03392c2fea2f674 C:\WINDOWS\system32\freecell.exe
      MD5: ce346c96184ddf8eb0d7b470f6bd039c C:\WINDOWS\system32\fsquirt.exe
      MD5: 18cbe4649c2087153f4d4daa82ce53f8 C:\WINDOWS\system32\fsusd.dll
      MD5: b2e474ce980150d8af69176edaf98106 C:\WINDOWS\system32\fsutil.exe
      MD5: 765b8bdd9ef55705183f84cd61cb86b7 C:\WINDOWS\system32\ftp.exe
      MD5: 3262a68027d4c5237c49c32079179a8d C:\WINDOWS\system32\ftsrch.dll
      MD5: 6bff3c3a58c2ede5d75a05e2c685c74d C:\WINDOWS\system32\fwcfg.dll
      MD5: 6892f2383b21aabca09774c2d13245f2 C:\WINDOWS\system32\g711codc.ax
      MD5: ddd60039063d750a6823bcf193791dc4 C:\WINDOWS\system32\gcdef.dll
      MD5: a9742f5c51a58de3377c587f00f2fd61 C:\WINDOWS\system32\GDI32.dll
      MD5: 932e14f60055241d20df565de4a2c0eb C:\WINDOWS\system32\getmac.exe
      MD5: be85a05b748e57fc6e79b2ad5301d260 C:\WINDOWS\system32\getuname.dll
      MD5: bd043e01edf58d8ead0dc6c0bb3c00ec C:\WINDOWS\system32\glmf32.dll
      MD5: 30845d85d62b39be05cb1193ba291711 C:\WINDOWS\system32\glu32.dll
      MD5: ef3acaf8e267d44c98c68dc2bf7644f0 C:\WINDOWS\system32\gpedit.dll
      MD5: 0e13deaa35e93ea67c84c7c7236722ad C:\WINDOWS\system32\gpkcsp.dll
      MD5: e14ff8931168e5e27f9ac34bfe274bc8 C:\WINDOWS\system32\gpkrsrc.dll
      MD5: 7afe198341d7e3e8f65d2cb51d28f60f C:\WINDOWS\system32\gpresult.exe
      MD5: f7d0ec47f6025e9054923998003439cd C:\WINDOWS\system32\gptext.dll
      MD5: e64481610ec6acfe212e002665989e67 C:\WINDOWS\system32\gpupdate.exe
      MD5: 51d84095937e1690e0931774e8275b6f C:\WINDOWS\system32\graftabl.com
      MD5: 5739a52c6eea31860e34d4b41ea7e302 C:\WINDOWS\system32\grpconv.exe
      MD5: b039981612e7cf0ba5b42ca81844c44f C:\WINDOWS\System32\h323.tsp
      MD5: 3040e38b09b42407f54d46504f08eeed C:\WINDOWS\system32\h323msp.dll
      MD5: dfce51fd96909d1b97d4a1a72d060d77 C:\WINDOWS\system32\hal.dll
      MD5: 9b877e86522d4d6aa2c1c80160cf0842 C:\WINDOWS\system32\hccoin.dll
      MD5: df129616c10dd0642b14606306ac1718 C:\WINDOWS\system32\hccutils.dll
      MD5: ccb5449e9bf1ba2b2cb7d0a0c7e34e65 C:\WINDOWS\system32\hdaprop.dll
      MD5: 9c3b2302b60fb0efb13bc880a5e3e93e C:\WINDOWS\system32\hdashcut.exe
      MD5: 25fa7a6a8e081eac69cabfd13297a5d0 C:\WINDOWS\system32\hdaudres.dll
      MD5: 5391ff176ed65a90a11b1913e3ab34cd C:\WINDOWS\system32\hdwwiz.cpl
      MD5: 76d465aef9ac64cc7b0f9a94c6751be4 C:\WINDOWS\system32\help.exe
      MD5: 5482083eb1ce744548ffc36615e782bf C:\WINDOWS\system32\hhctrl.ocx
      MD5: 4139954e9c87aa5efff0fb109ac05888 C:\WINDOWS\system32\hhsetup.dll
      MD5: 48cf9c2101c7fc575bb37f601e2724d9 c:\windows\system32\HID.DLL
      MD5: 486c95673e0abe2bf1a481f5f09890e1 C:\WINDOWS\System32\hidphone.tsp
      MD5: 157b84b72b1918b9b8018346f7186f9b c:\windows\system32\hidserv.dll
      MD5: 4ccd8266e948d29c698fe6393d5a9ca9 C:\WINDOWS\system32\hkcmd.exe
      MD5: 0d701e54f0b9928720103573388f84da C:\WINDOWS\system32\hlink.dll
      MD5: ed424c815b96ecdb3167914e84189b1d C:\WINDOWS\system32\hnetcfg.dll
      MD5: 0ce4280fd8b88656c614b18c1be7a978 C:\WINDOWS\system32\hnetmon.dll
      MD5: 5a6fa254d7139f04870841f8fe7a258a C:\WINDOWS\system32\hnetwiz.dll
      MD5: 5c51235821536abaf0d319a147b3ba84 C:\WINDOWS\system32\hostname.exe
      MD5: b5e6db269199a39727ff2da0f87dd76d C:\WINDOWS\system32\hotplug.dll
      MD5: a6a1665e1b5a77cd543e696242c706c2 C:\WINDOWS\system32\hticons.dll
      MD5: 037fd9d588516750ecb70d628267198c C:\WINDOWS\system32\html.iec
      MD5: c85ecf1a1b1fc506c881d0bc4467e686 C:\WINDOWS\system32\httpapi.dll
      MD5: 7bb24b94b58725bd94bedb5ba876b524 C:\WINDOWS\system32\htui.dll
      MD5: ced377116935183acb40761ccc5c52c1 C:\WINDOWS\system32\hypertrm.dll
      MD5: 668900a80ff4d2c9eee06eef7f4bc3ee C:\WINDOWS\system32\iac25_32.ax
      MD5: 4bf308f9710c017d26ef43681d40c508 C:\WINDOWS\system32\iasacct.dll
      MD5: 9496ed3b543a1d8b1d3da49ff8e7d259 C:\WINDOWS\system32\iasads.dll
      MD5: c83a761e1b839262d4a8ea584ef9f88a C:\WINDOWS\system32\iashlpr.dll
      MD5: 0eccee26c9b6e082bcf1a1361524dae3 C:\WINDOWS\system32\iasnap.dll
      MD5: b240e6c9700d2acbfb0c9f1bd44bb992 C:\WINDOWS\system32\iaspolcy.dll
      MD5: f058b76fa153c0203a5ab4463165969c C:\WINDOWS\system32\iasrad.dll
      MD5: 0b0f27066512521b6d3b8909db45169c C:\WINDOWS\system32\iasrecst.dll
      MD5: 6609ae3a97972ab216dec111c6b4329e C:\WINDOWS\system32\iassam.dll
      MD5: 66517f174853f536d8540cec8076b6fc C:\WINDOWS\system32\iassdo.dll
      MD5: 44d565b3bffb49c282e911c173d5a8a9 C:\WINDOWS\system32\iassvcs.dll
      MD5: a106d9ebf3b7377babccf9a176796177 c:\windows\system32\ICAAPI.dll
      MD5: a4e3785380ff6bd46f56dbeecc28ebe2 C:\WINDOWS\system32\icardie.dll
      MD5: 14a661f03762f8872de2e36d2d199307 C:\WINDOWS\system32\iccvid.dll
      MD5: a507f5f89f9bd2a8800a85cd6b9c2b80 C:\WINDOWS\system32\icfgnt5.dll
      MD5: 59fdd64ad699da8e36b0e5b773f1cb41 C:\WINDOWS\system32\icm32.dll
      MD5: ab3f2ba73f2ce973d3cc4e2b8104bc9a C:\WINDOWS\system32\icmp.dll
      MD5: 254c09be01598a4f7c19b20de1b86328 C:\WINDOWS\system32\icmui.dll
      MD5: ca463d6ec173ce92246ada3ff44dd2fd C:\WINDOWS\system32\icwdial.dll
      MD5: 359b5e415d404c7eafdfd9b6cbdc33ce C:\WINDOWS\system32\icwphbk.dll
      MD5: 0f96e989817a14bca6ba896e85e52d8b C:\WINDOWS\system32\idq.dll
      MD5: e9d71a89082e4a90d42f148698529860 C:\WINDOWS\system32\ie4uinit.exe
      MD5: 958163ecf81604c17d1338d89481ea50 C:\WINDOWS\system32\ieakeng.dll
      MD5: 77394e2cec0bea146d58610708f49902 C:\WINDOWS\system32\ieaksie.dll
      MD5: 83aa22895167e0092f6608899a682bbd C:\WINDOWS\system32\ieakui.dll
      MD5: 143ab14326655d279657b6390976d808 C:\WINDOWS\system32\ieapfltr.dat
      MD5: 0df383d0c5b2b0f795bc6ad52924ea05 C:\WINDOWS\system32\ieapfltr.dll
      MD5: 6068c86de12b678724d9b9370ec3c496 C:\WINDOWS\system32\iedkcs32.dll
      MD5: 2e53b0c5a7516279fa684a77344c7f9e C:\WINDOWS\system32\ieencode.dll
      MD5: 39b6e852f8e82107e52809a7dd21ffe0 C:\WINDOWS\system32\ieframe.dll
      MD5: 20ddf9b486d924b21b6e99756a552fed C:\WINDOWS\system32\ieframe.dll.mui
      MD5: 14afcc6a059da5ad83139c4c52ccb2fe C:\WINDOWS\system32\iepeers.dll
      MD5: ea4890d525a9253edc8aac0bc9b7e5a7 C:\WINDOWS\system32\iernonce.dll
      MD5: c9f48c6a6963bab7d1b5d025212d8f36 C:\WINDOWS\system32\iertutil.dll
      MD5: 1c14949c02633a9f1ffb1aa4b4f55321 C:\WINDOWS\system32\iesetup.dll
      MD5: b26e2effb23909f79f30f4a23af3035b C:\WINDOWS\system32\ieudinit.exe
      MD5: 28f5b835472a62b13ad54663c645191d C:\WINDOWS\system32\ieui.dll
      MD5: 250ddb662abc6822e8538bc354b82f8a C:\WINDOWS\system32\iexpress.exe
      MD5: e9550171a4ab8174bedf785da7b8269b C:\WINDOWS\system32\ifmon.dll
      MD5: 325f230d8bf511d8c6a5c65e90de5c20 C:\WINDOWS\system32\ifsutil.dll
      MD5: 8f5360f719332ec117768afaaf7e0bd6 C:\WINDOWS\system32\ifxcardm.dll
      MD5: c99cc4bc7eb1d7eecdec2a47d0d9c656 C:\WINDOWS\system32\igfxcfg.exe
      MD5: 030c2d7a1562dbdc751995fa356dfc77 C:\WINDOWS\system32\igfxCoIn_v4885.dll
      MD5: d56307745c925ff23d735cf9aef9a33e C:\WINDOWS\system32\igfxcpl.cpl
      MD5: 7adb6b9b6ee267c845a925196d79ea00 C:\WINDOWS\system32\igfxdev.dll
      MD5: 93d07b4bc967022e3748c42e0dbe02fd C:\WINDOWS\system32\igfxdo.dll
      MD5: 4525fc85d4ea33f96329ff10d804ee49 C:\WINDOWS\system32\igfxexps.dll
      MD5: a8664e65b6f813753ed8457b55b6224f C:\WINDOWS\system32\igfxext.exe
      MD5: 601d21c2b66ab945c0a73c07a8e0c928 C:\WINDOWS\system32\igfxpers.exe
      MD5: ee4cd48eb6fafc5b9cbeaa891e221723 C:\WINDOWS\system32\igfxpph.dll
      MD5: 2a9c845fb8c063b2de749f568902d61b C:\WINDOWS\system32\igfxrara.lrc
      MD5: bf441b1cef5b140c60ff0459b1becae0 C:\WINDOWS\system32\igfxrchs.lrc
      MD5: a09efe363059fa65cdb0b9b500f409ef C:\WINDOWS\system32\igfxrcht.lrc
      MD5: 5ab15da570ef86f5c144c084dd328641 C:\WINDOWS\system32\igfxrcsy.lrc
      MD5: 0a448c5ab28dba7d9fee4e87b5e19802 C:\WINDOWS\system32\igfxrdan.lrc
      MD5: cc89fc23e9bf98eee267e3acb453ac50 C:\WINDOWS\system32\igfxrdeu.lrc
      MD5: dcdb03542031739bb2ecdac5d2af8dcd C:\WINDOWS\system32\igfxrell.lrc
      MD5: cce2dd63b3d8e5eebaa1034ddf40946d C:\WINDOWS\system32\igfxrenu.lrc
      MD5: 1f483d8f2a19e013368735e91457e9cd C:\WINDOWS\system32\igfxres.dll
      MD5: 1f483d8f2a19e013368735e91457e9cd C:\WINDOWS\system32\igfxresp.lrc
      MD5: 90910e2e1fa333cf03f92571daa5824b C:\WINDOWS\system32\igfxress.dll
      MD5: 1462dcb57a5df61eee5905c2fa794e7c C:\WINDOWS\system32\igfxrfin.lrc
      MD5: bd978661400820a4f10ba55f708b2ce4 C:\WINDOWS\system32\igfxrfra.lrc
      MD5: e051b154dff9c589d97f08f5555ce098 C:\WINDOWS\system32\igfxrheb.lrc
      MD5: 97f290fda35cffe384c30051edcfcf1f C:\WINDOWS\system32\igfxrhun.lrc
      MD5: 92defc2e3b876a4edc7c26e646ec13a2 C:\WINDOWS\system32\igfxrita.lrc
      MD5: 49db9f9d5d107efce242486431324d59 C:\WINDOWS\system32\igfxrjpn.lrc
      MD5: d8083e6e10600c46e9bf50d04af26361 C:\WINDOWS\system32\igfxrkor.lrc
      MD5: f033e143c1619f833a2232374e366dfc C:\WINDOWS\system32\igfxrnld.lrc
      MD5: 618225df83f92340606a903642efdfa5 C:\WINDOWS\system32\igfxrnor.lrc
      MD5: d64cbe768cbfdc870c2885b04c25bf2c C:\WINDOWS\system32\igfxrplk.lrc
      MD5: b0bd694facd1ec58e3e42e0b682749fb C:\WINDOWS\system32\igfxrptb.lrc
      MD5: 38a8369156120288d75b10d8b3580755 C:\WINDOWS\system32\igfxrptg.lrc
      MD5: 07d2251d51fc1270fef022f59cc993c2 C:\WINDOWS\system32\igfxrrus.lrc
      MD5: 1536ab8ac31064a311f3fa1045cf5cab C:\WINDOWS\system32\igfxrsky.lrc
      MD5: 5cb5cd6e8a76e42c660c4e0205dfae28 C:\WINDOWS\system32\igfxrslv.lrc
      MD5: 149452da8936c976b1f17486544a65ba C:\WINDOWS\system32\igfxrsve.lrc
      MD5: 5d14ee56e547aea27ab0256296be9b7f C:\WINDOWS\system32\igfxrtha.lrc
      MD5: 34dbd102af5cdb016a585ffa9a59b94a C:\WINDOWS\system32\igfxrtrk.lrc
      MD5: 532b2cc5ea8de07a46c18d01b7be4c35 C:\WINDOWS\system32\igfxsrvc.dll
      MD5: fab6e90b4229c2cac944021e9211594f C:\WINDOWS\system32\igfxsrvc.exe
      MD5: 407e99fd256daf061c4ffadc0ab0ddbb C:\WINDOWS\system32\igfxtray.exe
      MD5: e6320b74f07933516d3afd3f68813aa0 C:\WINDOWS\system32\igfxzoom.exe
      MD5: 965f504ed315449f6b0892a0b2c8373d C:\WINDOWS\system32\igldev32.dll
      MD5: cda24d74294dd11143d4072382ebb5ab C:\WINDOWS\system32\iglicd32.dll
      MD5: 2144ebe89578bb14577a0937630e5336 C:\WINDOWS\system32\igmpagnt.dll
      MD5: 1ab9ed2e5181d355bc6c929f4a1f4bdc C:\WINDOWS\system32\igxpdv32.dll
      MD5: ad1bbd352089b304a96ea8883d107d49 C:\WINDOWS\system32\igxpdx32.dll
      MD5: 8b220e5aa0438f657d4c54a9fce8d193 C:\WINDOWS\system32\igxpgd32.dll
      MD5: 6171c485b2e9e617dc0cc8465799a009 C:\WINDOWS\system32\igxprd32.dll
      MD5: e191cedcf5c3127ebf43af4631ad0309 C:\WINDOWS\system32\igxpun.exe
      MD5: 8951e4b47ad88e7ae286aa30a64ac7b4 C:\WINDOWS\system32\iissuba.dll
      MD5: 52e67c304fbdc5d828e08ad59af79eeb C:\WINDOWS\system32\ils.dll
      MD5: 187e6006e35760d4ba46085ce102a387 C:\WINDOWS\system32\imaadp32.acm
      MD5: 22b55c9610eb91c3600ee4b00309385a C:\WINDOWS\system32\IMAGEHLP.dll
      MD5: 903de5707d29a1e034ed40f54571f1b7 C:\WINDOWS\system32\imagX7.dll
      MD5: 8f03fd1c3bd8f6b575e6cf5e0e89ff13 C:\WINDOWS\system32\imagXpr7.dll
      MD5: 97915fbd07e749bcccf7ffe78e9a7c37 C:\WINDOWS\system32\imagXR7.dll
      MD5: ac225d792d1a214631be5fde7de9143a C:\WINDOWS\system32\imagXRA7.dll
      MD5: cee36882ea2298d0ad7e5c1ba750d49c C:\WINDOWS\system32\imapi.exe
      MD5: 0d964532086667b0072fa185c231c215 C:\WINDOWS\system32\imeshare.dll
      MD5: be2282fbeafbb76577d47b06071139bb C:\WINDOWS\system32\IMM32.DLL
      MD5: f79a8ff9ded1210597e5807067587e74 C:\WINDOWS\system32\inetcfg.dll
      MD5: 07fec58d885099a3abe782ce0ff8d9db C:\WINDOWS\system32\inetcomm.dll
      MD5: c4895c23e6358843d570fb7d787106a5 C:\WINDOWS\system32\inetcpl.cpl
      MD5: c87344b987c675a89764fc1997713d23 C:\WINDOWS\system32\inetcplc.dll
      MD5: e268a47c7b2f18da43c8c5cfc4ff9299 C:\WINDOWS\system32\inetmib1.dll
      MD5: 3aa25779fa9adebdabc0beddb5fb4795 C:\WINDOWS\system32\inetpp.dll
      MD5: d447ea3f2480eb590709a0d25b887fdd C:\WINDOWS\system32\inetppui.dll
      MD5: ee0d42af51e5a648e9b0605fca8fec10 C:\WINDOWS\system32\inetres.dll
      MD5: ec5fcdd6879e426dd0841f30d8ccf64f C:\WINDOWS\system32\infosoft.dll
      MD5: 5ea334f7f77cc10d0567f44b8916c4ea C:\WINDOWS\system32\initpki.dll
      MD5: 7e0a591c84447ae4410b2525591eecb6 C:\WINDOWS\system32\INKED.DLL
      MD5: f5ed825ffc7f429398c0bb0dd5a1a046 C:\WINDOWS\system32\input.dll
      MD5: a94af62112dad4fbb391087674f3f74d C:\WINDOWS\system32\inseng.dll
      MD5: c6d3225bbe4d2c234cd0eb6302c2094c C:\WINDOWS\system32\intl.cpl
      MD5: 0230546fa6da34357a8f2cb896f216aa C:\WINDOWS\system32\iologmsg.dll
      MD5: e0d71d736fe3594fd39585a3cb666666 C:\WINDOWS\System32\ipconf.tsp
      MD5: 3fca8365c8843da4b2401347f272006e C:\WINDOWS\system32\ipconfig.exe
      MD5: 1733b8d33f517626f0dc89c6a09cc773 C:\WINDOWS\system32\IPHLPAPI.DLL
      MD5: 63bcd24a22231645cc6784fc7d51eaba C:\WINDOWS\system32\ipmontr.dll
      MD5: 0dc5698be9bbfe9673eb80a0d65d17e5 c:\windows\system32\ipnathlp.dll
      MD5: 150522cfa7b8cfb8ebd7b03a0859f167 C:\WINDOWS\system32\ippromon.dll
      MD5: 5131e008ff5368977fa932f7415996b7 C:\WINDOWS\system32\iprop.dll
      MD5: 93e01a9694a51c74ea2d3134c9a4dd14 C:\WINDOWS\system32\iprtprio.dll
      MD5: de91f7c242de50cd533c943ab888d884 C:\WINDOWS\system32\iprtrmgr.dll
      MD5: 9240cc8e05ecd35027ce471acb99ee20 C:\WINDOWS\system32\ipsec6.exe
      MD5: c50ef895b855873e102b54e9aec16bd5 C:\WINDOWS\system32\ipsecsnp.dll
      MD5: 331896e02f6fa96238ed85f8c5fb1d9e C:\WINDOWS\system32\ipsecsvc.dll
      MD5: 6e1e1bbd1bb6926a0cc69ada60a0bf7a C:\WINDOWS\system32\ipsmsnap.dll
      MD5: fd954334046406f223827d5d18ea757c C:\WINDOWS\system32\ipv6.exe
      MD5: 5e6fac691fe038ce998ee7cb04e33808 C:\WINDOWS\system32\ipv6mon.dll
      MD5: 8f669f4431f2c9a044092daa91e0700e C:\WINDOWS\system32\ipxmontr.dll
      MD5: a6f91a56b88b750d52656b2ce3573992 C:\WINDOWS\system32\ipxpromn.dll
      MD5: 89f7e61ced307ace5e29425e166be485 C:\WINDOWS\system32\ipxrip.dll
      MD5: 2f27604683201fa4b74012b32074efd1 C:\WINDOWS\system32\ipxroute.exe
      MD5: cebd3dc27e0c6e636d189f03eea24c34 C:\WINDOWS\system32\ipxrtmgr.dll
      MD5: b9dcc823abf48ac7c2bed61785567688 C:\WINDOWS\system32\ipxsap.dll
      MD5: ecea253a6be78fd8257f6c229e9b1050 C:\WINDOWS\system32\ipxwan.dll
      MD5: 47350581b552f7d42ce6d00e4271d13c C:\WINDOWS\system32\ir32_32.dll
      MD5: a35db4b580f4e6e3c7d2b19ff56fc527 C:\WINDOWS\system32\ir41_32.ax
      MD5: 3a589b1d6692fa6b25f35afb53fc0d44 C:\WINDOWS\system32\ir41_qc.dll
      MD5: c1b4b182a6add8686872d1813badad4b C:\WINDOWS\system32\ir41_qcx.dll
      MD5: 941ff6c46781676bc0ae3e47e00b6369 C:\WINDOWS\system32\ir50_32.dll
      MD5: c00f98f3458d82fb6f987e56f8b2a79f C:\WINDOWS\system32\ir50_qc.dll
      MD5: c4d33c52faf0e22a46af72afe784a17e C:\WINDOWS\system32\ir50_qcx.dll
      MD5: 12bccb18edc97fa6bfb100c5df85312d C:\WINDOWS\system32\irclass.dll
      MD5: 26f7782ba7476191c503facddc99a8df C:\WINDOWS\system32\irftp.exe
      MD5: 185c3091b037cd0c8dfc141315973d83 c:\windows\system32\irmon.dll
      MD5: cb9d48352c0c5e51aede583b3bc41c52 C:\WINDOWS\system32\irprops.cpl
      MD5: a510cddfe92f878c77c0d42f9e80aa7d C:\WINDOWS\system32\isign32.dll
      MD5: aa866b16383ff9e7d2ad60b83c7aba52 C:\WINDOWS\system32\isrdbg32.dll
      MD5: 6d0c8f33ae3fedef0fc67daca4fefc05 C:\WINDOWS\system32\itircl.dll
      MD5: ca994a211be673bc8581a3014af0b920 C:\WINDOWS\system32\itss.dll
      MD5: 91fb86db960f8f627c9d7d14b7523b3a C:\WINDOWS\system32\iuengine.dll
      MD5: 2c4a493e26558a9578d51422b621a7d1 C:\WINDOWS\system32\ivfsrc.ax
      MD5: c87cff7eabcbbabb7192b10839f347f3 C:\WINDOWS\system32\ixsso.dll
      MD5: be79705fe15651599f1a59b183bf1fe2 C:\WINDOWS\system32\iyuv_32.dll
      MD5: 08996dd4135eedcb346bc4ad97b88a72 C:\WINDOWS\system32\java.exe
      MD5: 88e46e21782bfaa2a558e4fbd1b0d7a9 C:\WINDOWS\system32\javacpl.cpl
      MD5: 80d62c1f4c24794ff54cfe2f98bb307e C:\WINDOWS\system32\javaw.exe
      MD5: a84f2c13b9ff97e065e6a9e6c77fff6a C:\WINDOWS\system32\javaws.exe
      MD5: c3a8e2dccf6e13c6cf1efe788f5e956a C:\WINDOWS\system32\jet500.dll
      MD5: 8d6172eebf37cc78eb571f7a92bf5a66 C:\WINDOWS\system32\jgaw400.dll
      MD5: 85bed918a5e8039f99f07f788b57a3ae C:\WINDOWS\system32\jgdw400.dll
      MD5: 968c987e41310d44733ef2fb228b5adc C:\WINDOWS\system32\jgmd400.dll
      MD5: 14a51a03f2eb1695cdaa6d74072642ff C:\WINDOWS\system32\jgpl400.dll
      MD5: 27b3b2b347429adce9403bd2ab55eb3f C:\WINDOWS\system32\jgsd400.dll
      MD5: 3a0fb0cb92e7a15b8a005ea02e8ec7ac C:\WINDOWS\system32\jgsh400.dll
      MD5: 869eb2063b2c45387a0405c43da6d97b C:\WINDOWS\system32\jobexec.dll
      MD5: facb32cfdf213dcad137b2e68a31d646 C:\WINDOWS\system32\joy.cpl
      MD5: 194d61a029411cc83011181d6e818600 C:\WINDOWS\system32\jscript.dll
      MD5: bf949f389a31bc6e2bf24461029ed408 C:\WINDOWS\system32\jses.dll
      MD5: 5e12ab15a433a574c5f155080d5e61c4 C:\WINDOWS\system32\jsproxy.dll
      MD5: 615ddbb5cbbae8301c1e7fa95f1e66a3 C:\WINDOWS\system32\KBDAL.DLL
      MD5: 0304318f189e3cc4a99fcccb0a68147f C:\WINDOWS\system32\kbdaze.dll
      MD5: 712a218557f99d136735e0545e5ae223 C:\WINDOWS\system32\kbdazel.dll
      MD5: 90aa6d58947a68b5d35c3d3905a74bcb C:\WINDOWS\system32\kbdbe.dll
      MD5: d916e1b4df4a5dac0f3b37d5baf5fb18 C:\WINDOWS\system32\kbdbene.dll
      MD5: a1fa7a83f9d98d84419a8e64286284f4 C:\WINDOWS\system32\kbdblr.dll
      MD5: 7806d7cec1ffed2f6a7c569e38d8232e C:\WINDOWS\system32\kbdbr.dll
      MD5: 1df6e4758611e1328567bfe4d1b28e27 C:\WINDOWS\system32\kbdbu.dll
      MD5: c068f1ef8f08c4331ec176aac231ffe3 C:\WINDOWS\system32\kbdca.dll
      MD5: 6fc7c2503f3d43b8f493dda15aa1bc50 C:\WINDOWS\system32\kbdcan.dll
      MD5: 5b46568257ee49714564511d58e0de53 C:\WINDOWS\system32\kbdcr.dll
      MD5: 36e68e02af2206fc4a8c73caeabe1fb0 C:\WINDOWS\system32\kbdcz.dll
      MD5: afa30a44ed11a5f9a059a2767ab6a81a C:\WINDOWS\system32\kbdcz1.dll
      MD5: 90535c13eb54e1f2c95478f1b99dcceb C:\WINDOWS\system32\kbdcz2.dll
      MD5: b6ab131e6f77563a74465f5972ef900f C:\WINDOWS\system32\kbdda.dll
      MD5: 4b2b6eab5d350ab95cc56883e01b1de7 C:\WINDOWS\system32\kbddv.dll
      MD5: 4b808bac83b00f3f013da239e93a416a C:\WINDOWS\system32\kbdes.dll
      MD5: bbb6c3346064c6aecee6ad9f144b1aea C:\WINDOWS\system32\kbdest.dll
      MD5: de844f425c89edd0dc61c89d5b2ce15a C:\WINDOWS\system32\kbdfc.dll
      MD5: b0f5c8342b41ffd484725dfd7e0be041 C:\WINDOWS\system32\kbdfi.dll
      MD5: 17c508332132160d5cf3b1a05686e30f C:\WINDOWS\system32\kbdfi1.dll
      MD5: ae72ff8fe49f78838377417c22a92c79 C:\WINDOWS\system32\kbdfo.dll
      MD5: c39f03304e24beada6dcde68c1b1269b C:\WINDOWS\system32\kbdfr.dll
      MD5: 59a8a1f2ce28bde79bf9018f56b642cc C:\WINDOWS\system32\kbdgae.dll
      MD5: a93447c87ddb6b1945f1f5f87eab68dc C:\WINDOWS\system32\kbdgkl.dll
      MD5: 3c1708c5c05910fe495d832c6536ed78 C:\WINDOWS\system32\kbdgr.dll
      MD5: 38430c6c194870363ad0ca3b7a18ac7f C:\WINDOWS\system32\kbdgr1.dll
      MD5: 83c99b438b3d6dbe7b838da783e173ac C:\WINDOWS\system32\kbdhe.dll
      MD5: 1e81e1f3d5acb3371cf73c1de8f800bf C:\WINDOWS\system32\kbdhe220.dll
      MD5: ac81a176ba35d1d7a5cd53137f3160fe C:\WINDOWS\system32\kbdhe319.dll
      MD5: d26533fdf72381947f823882bba4a196 C:\WINDOWS\system32\kbdhela2.dll
      MD5: f2312b8a76fd584acd1d956688beb6f8 C:\WINDOWS\system32\kbdhela3.dll
      MD5: 90cc52e8b52f0ec3a41d14ffbe789324 C:\WINDOWS\system32\kbdhept.dll
      MD5: cf92d95b5cb6649cb9d7e8d7616487a7 C:\WINDOWS\system32\kbdhu.dll
      MD5: f3d1eec756847c70e65335e8ca1ae64b C:\WINDOWS\system32\kbdhu1.dll
      MD5: 2b83f3461f603d27c765c7bb87e8cd09 C:\WINDOWS\system32\kbdic.dll
      MD5: f351a2318d68c1b535478bc626bf0941 C:\WINDOWS\system32\kbdinbe1.dll
      MD5: 8e10361ae4a316e70b22252877979b27 C:\WINDOWS\system32\kbdinben.dll
      MD5: e10fc659d71cd507946df05a6a190890 C:\WINDOWS\system32\kbdinmal.dll
      MD5: 8396b49871ec9e8ed2dab4341f2b328b C:\WINDOWS\system32\kbdir.dll
      MD5: 1c62da8649d73b0dae915740fe8cf712 C:\WINDOWS\system32\kbdit.dll
      MD5: fbb785a6d701cf80da84c2defdbe2d13 C:\WINDOWS\system32\kbdit142.dll
      MD5: 95d9106d39ab410a7f7ee513f181f84c C:\WINDOWS\system32\kbdkaz.dll
      MD5: 50f131f7e0914db81fdb09bce8336ae0 C:\WINDOWS\system32\kbdkyr.dll
      MD5: a8470fe45ff308ce53828301976a13cb C:\WINDOWS\system32\kbdla.dll
      MD5: f5b3b152a1d2752bc88928eb1e031b7e C:\WINDOWS\system32\kbdlt.dll
      MD5: af05a41dbd1b0424b5cb47092152c7f6 C:\WINDOWS\system32\kbdlt1.dll
      MD5: c047165ed75ff85db5a89efee3da1133 C:\WINDOWS\system32\kbdlv.dll
      MD5: 27d72bcf2b495fcda073dba5f189d7a1 C:\WINDOWS\system32\kbdlv1.dll
      MD5: 885ca7ab8f34ec81493810c40a78dc83 C:\WINDOWS\system32\kbdmac.dll
      MD5: 47f7b027400cf70d3a78288e7ed7e26c C:\WINDOWS\system32\kbdmaori.dll
      MD5: a0a376f14604820e6272c29bc27d0683 C:\WINDOWS\system32\kbdmlt47.dll
      MD5: 2614016275a013e8372b170f5ecc43d0 C:\WINDOWS\system32\kbdmlt48.dll
      MD5: fd9866087d3690e00b92e2f1510069b9 C:\WINDOWS\system32\kbdmon.dll
      MD5: 140fe6cae764c9e8eccfcb21a19781c5 C:\WINDOWS\system32\kbdne.dll
      MD5: 6f5592cbe0bb2c672796d3cf78bea585 C:\WINDOWS\system32\kbdnec.dll
      MD5: 3cbce11b4b069939e091835694c0567b C:\WINDOWS\system32\kbdno.dll
      MD5: 2c50bbe3a6eb2a5b16a782933694e7d0 C:\WINDOWS\system32\kbdno1.dll
      MD5: d199b05901c2407fc0f87444a24a4f3c C:\WINDOWS\system32\kbdpl.dll
      MD5: 897663c8606357a8e86e57cdea8ee219 C:\WINDOWS\system32\kbdpl1.dll
      MD5: 5713a519619fc93c30bf9ab23b14885a C:\WINDOWS\system32\kbdpo.dll
      MD5: c2e62748c875a310a6d5b10498238a68 C:\WINDOWS\system32\kbdro.dll
      MD5: c6f23bc1411e91c179b0635893bb40a1 C:\WINDOWS\system32\kbdru.dll
      MD5: b6e962b7ac1cb4a78876953d369be6dd C:\WINDOWS\system32\kbdru1.dll
      MD5: 17733f6af237e17c2f78528e4068b577 C:\WINDOWS\system32\kbdsf.dll
      MD5: d157764b22473bb55635591df347074c C:\WINDOWS\system32\kbdsg.dll
      MD5: dcce231e5bdf1401ac0f770ee16902aa C:\WINDOWS\system32\kbdsl.dll
      MD5: 93033c3ea80fb24b198b24ddeca07d4a C:\WINDOWS\system32\kbdsl1.dll
      MD5: 9e734e6bc6d8c2ab304df000d6f67d55 C:\WINDOWS\system32\kbdsmsfi.dll
      MD5: e116b603f11a3e8e547c9bb736fa5e92 C:\WINDOWS\system32\kbdsmsno.dll
      MD5: 79d955c9bddfd01a7c8d442322222f46 C:\WINDOWS\system32\kbdsp.dll
      MD5: 28d0ae434f7a8e8b1185aa07dd71ac44 C:\WINDOWS\system32\kbdsw.dll
      MD5: f2d1eef5adcd5995c015ab3cb15c9415 C:\WINDOWS\system32\kbdtat.dll
      MD5: 188e56b70419d8353b8d4f3e381d9e52 C:\WINDOWS\system32\kbdtuf.dll
      MD5: 5d569f2951f878ef01d7723dc08682e9 C:\WINDOWS\system32\kbdtuq.dll
      MD5: dab9952e3626d84e74cbf4958b1b1f52 C:\WINDOWS\system32\kbduk.dll
      MD5: 0cbd87dd5d55dbbccd7e4a4e6c49a346 C:\WINDOWS\system32\kbdukx.dll
      MD5: 3dde3dc57c54452a313dc20f3019f8e3 C:\WINDOWS\system32\kbdur.dll
      MD5: 56c5b179fe3308b655eb6208c3256fec C:\WINDOWS\system32\kbdus.dll
      MD5: 003d2fbf4c99c63fb1a3739d6f867090 C:\WINDOWS\system32\kbdusl.dll
      MD5: 93ad90b3bc1f7fd5e333be61dc010369 C:\WINDOWS\system32\kbdusr.dll
      MD5: ecc911343337d8aee839a14f205aa12a C:\WINDOWS\system32\kbdusx.dll
      MD5: 4f9cffbf05831bb81833fc64a5329c36 C:\WINDOWS\system32\kbduzb.dll
      MD5: e5d4673c83271feee1ed73e1e281a42b C:\WINDOWS\system32\kbdycc.dll
      MD5: 552221e92d6bf55f8358b927f00696c3 C:\WINDOWS\system32\kbdycl.dll
      MD5: 08f20a96e54bb441b6674efb87bc4ef2 C:\WINDOWS\system32\kd1394.dll
      MD5: 945fbb881ae927a44dfd96440f2f4f44 C:\WINDOWS\system32\kdcom.dll
      MD5: c7551608b07d9b627e1a6f59150ad182 C:\WINDOWS\system32\kerberos.dll
      MD5: 104c9e03b077bf78ad2543827138e8ac C:\WINDOWS\system32\kernel32.dll
      MD5: 57d883deec8e6ff73cf81243bc847da8 C:\WINDOWS\system32\keymgr.dll
      MD5: 2f945ec7aba6bdfa2fa70c8f16aca666 C:\WINDOWS\System32\kmddsp.tsp
      MD5: 906f8aa8e852ec43907951de0c005222 C:\WINDOWS\system32\ksproxy.ax
      MD5: 13a247d9214bb41be25f2b491dcb7962 C:\WINDOWS\system32\ksuser.dll
      MD5: 1a7cab231d8409f75eeb3bf46637b81c C:\WINDOWS\system32\l3codeca.acm
      MD5: 23d4907d662e248e09872e5a32e71570 C:\WINDOWS\system32\l3codecp.acm
      MD5: 5f268920ab85bcfe774bd8ec8d80b43f C:\WINDOWS\system32\l3codecx.ax
      MD5: e9ecb2519fcd22c31614a9ea1276b67b C:\WINDOWS\system32\label.exe
      MD5: 5c7769b696513302c31253c7e3f001c4 C:\WINDOWS\system32\lameACM.acm
      MD5: 13b986bee332a77b7af0a0fb7cd1b96b C:\WINDOWS\system32\langwrbk.dll
      MD5: 20fa0d7e533aa4668a3585dc1ff91df1 C:\WINDOWS\system32\LAPRXY.dll
      MD5: e8fe68df336666cc4a4d9367aec79a92 C:\WINDOWS\system32\LegitCheckControl.dll
      MD5: 20fc48681aac1c02b3a7959022e3924f C:\WINDOWS\system32\licdll.dll
      MD5: d644bf219c69b4947683b655747c3257 C:\WINDOWS\system32\licmgr10.dll
      MD5: 51e3258c1edcb5d7180e4412f6c015d4 C:\WINDOWS\system32\licwmi.dll
      MD5: 1e2153fd571db2c2a58c88ae556dccb1 C:\WINDOWS\system32\lights.exe
      MD5: c4e7cefd3802415865e631be3ab6ac3b C:\WINDOWS\system32\LINKINFO.dll
      MD5: f9801c6f1682a9f3099d694320bffc27 c:\windows\system32\lmhsvc.dll
      MD5: 6c1fd7eff29d25b70233abaa57ac7a25 C:\WINDOWS\system32\lmrt.dll
      MD5: 8ef9fd3eb23db2b63d3f0bbebfe666bb C:\WINDOWS\system32\loadperf.dll
      MD5: ee87e0ad5a7d29984ff5e5ed2bc9e37e C:\WINDOWS\system32\localsec.dll
      MD5: 4117bd0779754486629d707709aa0ecb C:\WINDOWS\system32\localspl.dll
      MD5: a74f081b424d3c38ebfbc660da8252e5 C:\WINDOWS\system32\localui.dll
      MD5: 08377ebb699418269613903c5340311f C:\WINDOWS\system32\locator.exe
      MD5: fb000dc0818268e4025544d1998aa900 C:\WINDOWS\system32\lodctr.exe
      MD5: 74bd0c5ab2ef77e6b6f1749b22c3e4c6 C:\WINDOWS\system32\logagent.exe
      MD5: 43d2e79634c077e66816ef8aefc1aedc C:\WINDOWS\system32\loghours.dll
      MD5: 895731ed2ce413f3c20cdc71d27d0136 C:\WINDOWS\system32\logman.exe
      MD5: 526e22c9ff011135356294e69310799a C:\WINDOWS\system32\logoff.exe
      MD5: de3a63a0f7153a36c9156963d0de546b C:\WINDOWS\system32\logon.scr
      MD5: 3f5c8f98137df0da204597742f466c4e C:\WINDOWS\system32\logonui.exe
      MD5: 24b2a5d3ee366a3e9c1e0941363618c7 C:\WINDOWS\system32\LPK.DLL
      MD5: 6f4b5734e0116f1f55dfb70994fd2b6f C:\WINDOWS\system32\lpq.exe
      MD5: f6dba0c6f4ec49fd518f0d27c91ef740 C:\WINDOWS\system32\lpr.exe
      MD5: ba087a7fa75db2f2ec8aad02cb9a4ed4 C:\WINDOWS\system32\lprhelp.dll
      MD5: 1ecaae9d97aabe924baeb7f656253dad C:\WINDOWS\system32\lprmonui.dll
      MD5: 2e2960d3da3f200d5894a5788ef7eeb6 C:\WINDOWS\system32\LSASRV.dll
      MD5: 2b0b88652c9f6714fd4886839b3b0442 C:\WINDOWS\system32\lsass.exe
      MD5: 546ca6fd6dc836c3dcb8dd45153e2519 C:\WINDOWS\system32\lz32.dll
      MD5: 44c00a385ca9dbc1d5cf3781f8c26aea C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      MD5: e7bc792810ec02dd1f7ed25d830e9324 C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll
      MD5: a3c0204b8f19d289d489fdf67e62021b C:\WINDOWS\system32\mag_hook.dll
      MD5: aa6636fe62aa53ad105ddf609d6f3b26 C:\WINDOWS\system32\magnify.exe
      MD5: 74e301f98f138bf611c12d33eacda3ff C:\WINDOWS\system32\main.cpl
      MD5: 50461c950971ba958e7f1d2a1a6c6749 C:\WINDOWS\system32\makecab.exe
      MD5: fcd8ef99da44aa93d68cbd9fe9713bea C:\WINDOWS\system32\mapi32.dll
      MD5: fcd8ef99da44aa93d68cbd9fe9713bea C:\WINDOWS\system32\mapistub.dll
      MD5: f098a59ddfa65df57091965dde55c417 C:\WINDOWS\system32\mcastmib.dll
      MD5: d73864e3a8380f737af0181d65e36763 C:\WINDOWS\system32\mcd32.dll
      MD5: 9066fc4e2ead886ea9527232a840a67a C:\WINDOWS\system32\mcdsrv32.dll
      MD5: 8238ec3775f92b5ee1bac81c979dca71 C:\WINDOWS\system32\mchgrcoi.dll
      MD5: 6878b1c122179a03b754365e6ca5a0f9 C:\WINDOWS\system32\mciavi32.dll
      MD5: bb602ecc95686e9e930477959346e024 C:\WINDOWS\system32\mcicda.dll
      MD5: efbd8382a7e8de270e218bc3994bee03 C:\WINDOWS\system32\mciole32.dll
      MD5: d1a961a123198662454162fda637f85b C:\WINDOWS\system32\mciqtz32.dll
      MD5: 84bae77fe533ce1e2987321c92362ac5 C:\WINDOWS\system32\mciseq.dll
      MD5: 9ab8b2fefd5e93204a8c18897330c6be C:\WINDOWS\system32\mciwave.dll
      MD5: c2d571cf256409004487352908d33dd8 C:\WINDOWS\system32\mdhcp.dll
      MD5: f5abbd54eb0bc64a20cfa09494a242b1 C:\WINDOWS\system32\mdminst.dll
      MD5: 7862011c73b0efb64b5b71fd20b210c8 C:\WINDOWS\system32\mdwmdmsp.dll
      MD5: 4180802281edf35ad99697251f18e42b C:\WINDOWS\system32\mf3216.dll
      MD5: 5b915edc78983183e2b3aacbfdc62f13 C:\WINDOWS\system32\mfc40.dll
      MD5: 1bb86c8b1dac44b7138e021791c6e151 C:\WINDOWS\system32\mfc40loc.dll
      MD5: f1197f879af9ed702d3e6ebcd3b99107 C:\WINDOWS\system32\mfc40u.dll
      MD5: f3a4d42f9072a19cacfab8c47e7f6480 C:\WINDOWS\system32\MFC42.DLL
      MD5: c23391e9964d53a84ce646c65c6272ee C:\WINDOWS\system32\MFC42ESN.DLL
      MD5: f8101c80c197af4a530a929a15f57ce7 C:\WINDOWS\system32\mfc42u.dll
      MD5: 1fd3f9722119bdf7b8cff0ecd1e84ea6 C:\WINDOWS\system32\mfc71.dll
      MD5: 7522fed62753fe86739a3196a8b82a22 C:\WINDOWS\system32\mfcsubs.dll
      MD5: de703be75d37b2dd6ee020e6936407e0 C:\WINDOWS\system32\mgmtapi.dll
      MD5: 3d9cd39da8c8fc3c04bf11b89501c9fb C:\WINDOWS\system32\midimap.dll
      MD5: 66abf1b4a6b1fbffa6535ecd6e164187 C:\WINDOWS\system32\mimefilt.dll
      MD5: 1b09dd10c8f3b3e832bda82cdf3b2d49 C:\WINDOWS\system32\MLANG.dll
      MD5: 3e0808e8ff521e4cd01d390545181694 C:\WINDOWS\system32\mll_hp.dll
      MD5: b9e003a4ee01b602c087f309e41579b3 C:\WINDOWS\system32\mll_mtf.dll
      MD5: 273040cd916587d930d66ca78a2afa2f C:\WINDOWS\system32\mll_qic.dll
      MD5: 9eefe3e138e55db730f0a0ff44231c2c C:\WINDOWS\system32\mmc.exe
      MD5: 798a69b50d08b764671d30b30cf2c478 C:\WINDOWS\system32\mmcbase.dll
      MD5: f2000dd77415ee07628113053e6b18ff C:\WINDOWS\system32\mmcndmgr.dll
      MD5: c3b35137256cc49a00e77844cf19c9e2 C:\WINDOWS\system32\mmcshext.dll
      MD5: fe743a029a219ddfc3fb3a824c893714 C:\WINDOWS\system32\mmdrv.dll
      MD5: 1fe3c25e27493b47d5550c1967256731 C:\WINDOWS\system32\mmfutil.dll
      MD5: 5d411ffe5663d4ce94bdaac5987ead62 C:\WINDOWS\system32\mmsys.cpl
      MD5: 27d84b04f7d1b19cd61cf2ef8e2ec09d C:\WINDOWS\system32\mmutilse.dll
      MD5: bd0aa418bfa9b6953650c140414c17c6 C:\WINDOWS\system32\mnmdd.dll
      MD5: a0751c0af862e271fbb135b4b7d56c4d C:\WINDOWS\system32\mnmsrvc.exe
      MD5: 94723d604baa55c8ae1ae54e6a128d8e C:\WINDOWS\system32\mobsync.dll
      MD5: 40f0aa5e67517f480fc52b60330317ae C:\WINDOWS\system32\mobsync.exe
      MD5: 04124944eaa93c401d692d3816e8f13e C:\WINDOWS\system32\mode.com
      MD5: 0698dea8e564b73921223b0515f1d3c1 C:\WINDOWS\system32\modemui.dll
      MD5: a89c4b218465a78068a4af9e9e9b19d5 C:\WINDOWS\system32\modex.dll
      MD5: d1966d662ec4c10d130fbec454bb03fa C:\WINDOWS\system32\more.com
      MD5: 74868af0ac973bfa082a71da0186b5bf C:\WINDOWS\system32\moricons.dll
      MD5: 1ee2d0134d0baa9b9697c68e6a5e9188 C:\WINDOWS\system32\mountvol.exe
      MD5: 8d99a1fb63503149856bce17efcf0406 C:\WINDOWS\system32\MP43DECD.dll
      MD5: 679bd37e4b55a9b0e74243bb3a4ae22a C:\WINDOWS\system32\MP43DMOD.dll
      MD5: cfa7833e80c61fae814b12a8d1c19828 C:\WINDOWS\system32\MP4SDECD.dll
      MD5: 86dc3f9843c8f5e48b0c623ca9326733 C:\WINDOWS\system32\MP4SDMOD.dll
      MD5: 4e263f16a716af38e12d0c6b408f766e C:\WINDOWS\system32\mpeg2data.ax
      MD5: 76a432d2c6ddfa1a844f7039bfd5a791 C:\WINDOWS\system32\mpg2splt.ax
      MD5: e4a1e645dd0c74374bf1078cd09c0a88 C:\WINDOWS\system32\MPG4DECD.dll
      MD5: 41e722de0ecf327638aba5bccc048d2e C:\WINDOWS\system32\MPG4DMOD.dll
      MD5: 5ac446ed095453b28f093446db9aa392 C:\WINDOWS\system32\mpg4ds32.ax
      MD5: 9972297e611c64bdd6a879d98676259a C:\WINDOWS\system32\mpnotify.exe
      MD5: 17041dcdb19f1e5790ec34cd161c9fc4 C:\WINDOWS\system32\MPR.dll
      MD5: 8a90bc0413395467319045fbfa7c7f8d C:\WINDOWS\System32\MPRAPI.dll
      MD5: 2a63ee241e880dd3eb5bf08c66d0f9c2 C:\WINDOWS\system32\mprddm.dll
      MD5: ce85b0049c7f0ac32cb5576affeeec4d C:\WINDOWS\System32\mprdim.dll
      MD5: 9aae1eb777ff38fa529a9bb7c13cdf41 C:\WINDOWS\system32\mprmsg.dll
      MD5: 211a9104ebaa7c841d06426574174593 C:\WINDOWS\system32\mprui.dll
      MD5: 673b3ab956eb8780996220fd7ffcd5e2 C:\WINDOWS\system32\mqad.dll
      MD5: 7005db5932b958330777fce5dc29ad8b C:\WINDOWS\system32\mqbkup.exe
      MD5: b69dde74828ae558395436a454608d72 C:\WINDOWS\system32\mqcertui.dll
      MD5: 977dbe60c78a492d84b258a158043e12 C:\WINDOWS\system32\mqdscli.dll
      MD5: 542097a921b30c66442cd3caff9b85e5 C:\WINDOWS\system32\mqgentr.dll
      MD5: 114d5b8110632af3ee871f20c1909598 C:\WINDOWS\system32\mqise.dll
      MD5: 0a7ba7c9f033abe3f25be1df1934fb26 C:\WINDOWS\system32\mqlogmgr.dll
      MD5: 38c5c66eacb09c03b2ae157af4ed1e59 C:\WINDOWS\system32\mqoa.dll
      MD5: d66033f4b26b3d6b4506141c7e930075 C:\WINDOWS\system32\mqoa.tlb
      MD5: 3a99e3d7df5f1b0e185ded43d8e37877 C:\WINDOWS\system32\mqoa10.tlb
      MD5: d9561da579217635b90f500d4ac2ab1d C:\WINDOWS\system32\mqoa20.tlb
      MD5: e6ce5bd577f22f5b8c10caaf21cee77e C:\WINDOWS\system32\mqperf.dll
      MD5: 5bf19aea3cbeee9bf79c905c3d809832 C:\WINDOWS\system32\mqqm.dll
      MD5: c7ca9afe84dbe63057480940cd451fb2 C:\WINDOWS\system32\mqrt.dll
      MD5: 646bfecf7bdbf6036774f22b6f103011 C:\WINDOWS\system32\mqrtdep.dll
      MD5: b2003455f044c6d42ac38c0d5efe4f93 C:\WINDOWS\system32\mqsec.dll
      MD5: 59ced896a83fb4276dc0c11eb0cde419 C:\WINDOWS\system32\mqsnap.dll
      MD5: c08042947ff6d66b3870fc69a20d5166 C:\WINDOWS\system32\mqsvc.exe
      MD5: dec5a4c52863cad362b5b97f479aa6c7 C:\WINDOWS\system32\mqtgsvc.exe
      MD5: 680d74d17f036fef0098f48cc5083d5c C:\WINDOWS\system32\mqtrig.dll
      MD5: 96389971b7f502303c768f8303fd69fa C:\WINDOWS\system32\mqupgrd.dll
      MD5: f3e7bf5756309bc2f38e29b975778596 C:\WINDOWS\system32\mqutil.dll
      MD5: 48c80ce9323d2a710adb06d64fd35ce5 C:\WINDOWS\system32\mrinfo.exe
      MD5: a6c956b32899b4aa0a15b3cca18a7141 C:\WINDOWS\system32\MRT.exe
      MD5: bb7404a3c905b9a213d25f24c8ee56cb C:\WINDOWS\system32\msaatext.dll
      MD5: 8a80c96eb14903623650fdef2e71ea31 C:\WINDOWS\System32\MSACM32.dll
      MD5: a6f74bca968371963ff08c0acff3da48 C:\WINDOWS\system32\msacm32.drv
      MD5: c132951a66ad060aa0044e71aeabc11e C:\WINDOWS\system32\msadds32.ax
      MD5: 565a2b226fbf304a2fb8656ca5ff15a5 C:\WINDOWS\system32\msadp32.acm
      MD5: 67cb73452122d57b2bb425074134bfff C:\WINDOWS\system32\msafd.dll
      MD5: f86012ea8db1c43c6d429ae365f1dbf2 C:\WINDOWS\system32\msapsspc.dll
      MD5: 400b0953e93bacc1ee4543868704571f C:\WINDOWS\system32\MSASN1.dll
      MD5: 6bdb70d412620544157173eda2a11855 C:\WINDOWS\system32\msaudite.dll
      MD5: c4cd4dfdcd3b238ec574229244131052 C:\WINDOWS\system32\mscat32.dll
      MD5: 1a6b8f8d76a0f6cf7bdf29996e976dc2 c:\windows\system32\mscms.dll
      MD5: d268668751ee22997d7ef1417034cb04 C:\WINDOWS\system32\MSCOMCTL.OCX
      MD5: 5b54a9f5d2c68acf9cd60a4a38afbee5 C:\WINDOWS\system32\msconf.dll
      MD5: 665d23d8eb1d5edf183b7f23479fcffc C:\WINDOWS\system32\mscoree.dll
      MD5: fee294cf9e7659c3af6bc36ef1e955ad C:\WINDOWS\system32\mscorier.dll
      MD5: 46e55aea48bad9297df685c722619bd6 C:\WINDOWS\system32\mscories.dll
      MD5: 54c0eb9d0afd391ac76fafc1ca1711cf C:\WINDOWS\system32\mscpx32r.dLL
      MD5: e0ced775e8b152702953210a04ff5f5b C:\WINDOWS\system32\mscpxl32.dLL
      MD5: 83322a3613f9976e87e9d5fa811fe75b C:\WINDOWS\system32\MSCTF.dll
      MD5: bff509a62e57630555dad0b7e0209573 C:\WINDOWS\system32\msctfime.ime
      MD5: b897ad5e1b1f02355b734da6722b95af C:\WINDOWS\system32\MSCTFP.dll
      MD5: 678b7cd2acea266427c9737bd8b3f4cb C:\WINDOWS\system32\msdadiag.dll
      MD5: f1ec20c0e69d415c02dd3fd1c8068a08 C:\WINDOWS\system32\msdart.dll
      MD5: a03fed8821f7ed33a5000565fdaa3b15 C:\WINDOWS\system32\msdatsrc.tlb
      MD5: 9f30392c1f715fea026fc6bf3770aa05 C:\WINDOWS\system32\msdelta.dll
      MD5: 9f40f33d956989bf90718c98a015dc2a C:\WINDOWS\system32\msdmo.dll
      MD5: 64cf2b82b89b5dddf04b1c5cfed39518 C:\WINDOWS\system32\msdtc.exe
      MD5: f45db3f4099c91bab1df6369a0d55cde C:\WINDOWS\system32\msdtclog.dll
      MD5: 63b11ddc1195777af1d65f8fe21a6027 C:\WINDOWS\system32\msdtcprx.dll
      MD5: d106dbc46cb1caf78b7ca339cc681c17 C:\WINDOWS\system32\msdtctm.dll
      MD5: 1ef25346f9bc74cf4cfe499fcaed5cb1 C:\WINDOWS\system32\msdtcuiu.dll
      MD5: 9e5af490176a88c81c4e5051ec7448a1 C:\WINDOWS\system32\msdxm.ocx
      MD5: dea632aeaf94fcd77cf38390e81ca6e5 C:\WINDOWS\system32\msdxmlc.dll
      MD5: b35e69ff9da1670b50077fb7deeca22a C:\WINDOWS\system32\msencode.dll
      MD5: a7e8937f9d739564e9b236aa4ddf1a5b C:\WINDOWS\system32\msexch40.dll
      MD5: 6b94266e9eaa7e4fe438006356eb6c35 C:\WINDOWS\system32\msexcl40.dll
      MD5: 00585c9c3e28c0fdfcb0bf9ef9aa94b8 C:\WINDOWS\system32\msfeeds.dll
      MD5: 4f21cd6c0f790087f7e04c382bc00ff1 C:\WINDOWS\system32\msfeedsbs.dll
      MD5: 330e0015b751fafb53b6f73d30a4bbf1 C:\WINDOWS\system32\msfeedssync.exe
      MD5: daa113f6c892abccaa4745458a637190 C:\WINDOWS\system32\msftedit.dll
      MD5: 3a28f78f52135cd4ad173053cb1f7bd3 C:\WINDOWS\system32\msg.exe
      MD5: 4150d4f8cbea4b354242620d085a3fc0 C:\WINDOWS\system32\msg711.acm
      MD5: b447683f4c18ccdb2a7b5aadd830a911 C:\WINDOWS\system32\msg723.acm
      MD5: 7d3107ea054bd3c787f960987b24f233 C:\WINDOWS\system32\MSGINA.dll
      MD5: d8d65ec49a107048532ffa1d61f77173 C:\WINDOWS\system32\msgsm32.acm
      MD5: aba6e96ea801149ac4c42ba5d8388cc4 C:\WINDOWS\system32\msh261.drv
      MD5: fc1286fb0963fcbec7efb48a2c53167b C:\WINDOWS\system32\msh263.drv
      MD5: 82c751fd297d950738e89d28f480074f C:\WINDOWS\system32\mshearts.exe
      MD5: 08a8931db4d9302f9804c4dfa14596d1 C:\WINDOWS\system32\mshta.exe
      MD5: cbf04597f9cf7739e572276a2698fdd3 C:\WINDOWS\system32\mshtml.dll
      MD5: 2b155e788028a8201662275ea4e9d0bd C:\WINDOWS\system32\mshtml.tlb
      MD5: f37f1aa12082aed1498439c9902d2160 C:\WINDOWS\system32\mshtmled.dll
      MD5: 3bcd7f555362ee95c9e07a8619cf6b86 C:\WINDOWS\system32\mshtmler.dll
      MD5: 1cbc000ecd2de2e6fd2b19bc9aabcc52 C:\WINDOWS\system32\msi.dll
      MD5: 6e2a56f5ae4ee3e7e8e3cc85bceb2f95 C:\WINDOWS\system32\msident.dll
      MD5: 5025cba9d083bf7cee4acaf5aac0a8d3 C:\WINDOWS\System32\MSIDLE.DLL
      MD5: 714c6d86b7f1e26234ba576819ade06a C:\WINDOWS\system32\msidntld.dll
      MD5: 0280b2b238accca3b0f68ac1ee795118 C:\WINDOWS\system32\msieftp.dll
      MD5: 6cfef622e38de8ae74427f18bf57730b C:\WINDOWS\system32\msihnd.dll
      MD5: 954e6aac31883b151a936793406d7a90 C:\WINDOWS\system32\MSIMG32.dll
      MD5: 0d98f57bc63adba23ae659f3a3238405 C:\WINDOWS\system32\msimsg.dll
      MD5: dbf6f2074e2a99125f6d4475cc7a5b21 C:\WINDOWS\system32\MSIMTF.dll
      MD5: 40d81470a19269d88bf44e766be7f84a C:\WINDOWS\system32\MSINET.OCX
      MD5: da23a12845607133acf1db3502d4e575 C:\WINDOWS\system32\MSISIP.DLL
      MD5: dc0a3d94d6dfcb5fe44bd131a3bbeb3b C:\WINDOWS\system32\msjet40.dll
      MD5: 643b75cd0b2159566433a0b73b034014 C:\WINDOWS\system32\msjetoledb40.dll
      MD5: 3f3c58cbe3bb4346afd38a7cf60ce9ce C:\WINDOWS\system32\msjint40.dll
      MD5: 72952191ab980703874e8c8fa0c7ac3c C:\WINDOWS\system32\msjter40.dll
      MD5: 4cad0101ff9112737aa33dc35f1931bb C:\WINDOWS\system32\msjtes40.dll
      MD5: 4d13f158956d98cdafedefadd319d578 C:\WINDOWS\system32\mslbui.dll
      MD5: 85fc7c83f71ab336eecdf003a9e08400 C:\WINDOWS\system32\msltus40.dll
      MD5: 2f806282aac35d6dc7e053e89ef90cb4 C:\WINDOWS\system32\msnetobj.dll
      MD5: 3783c9a1b6c512a41d71896133d0f6ab C:\WINDOWS\system32\msnsspc.dll
      MD5: 297142f47c8a81e2f791c9ca7182f509 C:\WINDOWS\system32\msobjs.dll
      MD5: 55e032c6241a433142eda0797c29b91d C:\WINDOWS\system32\msoeacct.dll
      MD5: 457d242aa0404daa80b128cb65b682dc C:\WINDOWS\system32\msoert2.dll
      MD5: 1fd707b4e024eeb73cef2f26e011bd48 C:\WINDOWS\system32\msorc32r.dll
      MD5: 60a081e2e6e5ef0f2e11cd8257d30aa7 C:\WINDOWS\system32\msorcl32.dll
      MD5: 5bdd8780c24748fb5695ce62035f1e5e C:\WINDOWS\system32\mspaint.exe
      MD5: 39e0072654f205ccdcf282dffe58226e C:\WINDOWS\System32\mspatcha.dll
      MD5: 888004b8efdf1a50b8a5a67cd3c3035e C:\WINDOWS\system32\mspbde40.dll
      MD5: 499c090cefa6fda770d214ef67a18f5a C:\WINDOWS\system32\mspmsp.dll
      MD5: a54b4460ba42b9141c283a9d49011c4f C:\WINDOWS\system32\msports.dll
      MD5: ae15c53140b1ee18fd8fa909f9a2c5af C:\WINDOWS\system32\msprivs.dll
      MD5: 800b1482fda6af67683e4fb739a2ebb2 C:\WINDOWS\system32\MSPRPES.DLL
      MD5: 64479f3d2bd082cc74d10def316c8bf7 C:\WINDOWS\system32\msr2c.dll
      MD5: a7ad97c072071ad4f38028e66a606e97 C:\WINDOWS\system32\msr2cenu.dll
      MD5: c70c0a51d76039ac9a547e8dd4d4f9c9 C:\WINDOWS\system32\msratelc.dll
      MD5: 9f304db8afce702e60c421f52ff11a39 C:\WINDOWS\system32\msrating.dll
      MD5: d34d586251311494c7fbd257978de274 C:\WINDOWS\system32\msrclr40.dll
      MD5: 53933befec578d8f7620c99a37de432b C:\WINDOWS\system32\msrd2x40.dll
      MD5: b0d6d2aae9de3fcac15bcbbbffce603c C:\WINDOWS\system32\msrd3x40.dll
      MD5: 31564551d2bf423e350277778965373e C:\WINDOWS\system32\MSRDO20.DLL
      MD5: 2a3147ac68a3a8039aae4edf19b7470e C:\WINDOWS\system32\msrecr40.dll
      MD5: 98554344a80dd904514cd8bcdc176593 C:\WINDOWS\system32\msrepl40.dll
      MD5: 1ca4e6ddf23a145473b205b26b6e158d C:\WINDOWS\system32\msrle32.dll
      MD5: 3994bb52e38b2a11c6d385756a16325b C:\WINDOWS\system32\mssap.dll
      MD5: cf8eab40d95e952e8ce5813a54d9c879 C:\WINDOWS\system32\msscds32.ax
      MD5: 82b719845d6ec45f368599fa8ab4acc9 C:\WINDOWS\system32\msscp.dll
      MD5: 656524b4401f21e2929b78ef4c36db27 C:\WINDOWS\system32\msscript.ocx
      MD5: 611268b9ee1e99e1a547f7f656f42460 C:\WINDOWS\system32\mssign32.dll
      MD5: 99567d6a1f0f515072531ee3acde54cb C:\WINDOWS\system32\mssip32.dll
      MD5: 92b712df390367bfa4252a48d9d71d51 C:\WINDOWS\system32\MSSTDFMT.DLL
      MD5: d08a99c462298c041139789627168a0b C:\WINDOWS\system32\MSSTKPRP.DLL
      MD5: 0e3cbb584a39e7458699726f965ce17e C:\WINDOWS\system32\msswch.dll
      MD5: c728cfa9fe14d2240c5b9df8ad5e6dc2 C:\WINDOWS\system32\msswchx.exe
      MD5: 1c55098d8ae64626248bc13787b3fc98 C:\WINDOWS\system32\mstask.dll
      MD5: 622f5eb01b298aa8bc768c5698e17342 C:\WINDOWS\system32\mstext40.dll
      MD5: 2207836507825ea0421c33891db0ab33 C:\WINDOWS\system32\mstime.dll
      MD5: 10fd9462690dc6eff9d3ab9b3d2fd46c C:\WINDOWS\system32\mstinit.exe
      MD5: 2fd0dd8a85ae0a9714180423066aaa6e c:\windows\system32\mstlsapi.dll
      MD5: 25910e795cd9ee89486bf3d9b757af56 C:\WINDOWS\system32\mstsc.exe
      MD5: b202b160c128ccb5265082a94ee01a6c C:\WINDOWS\system32\mstscax.dll
      MD5: 1211a441eab19556403fd3446709ed15 C:\WINDOWS\system32\msutb.dll
      MD5: 5a500ec6cb24a193a641b5cb72551a9b C:\WINDOWS\system32\msv1_0.dll
      MD5: 4669d0b9452870b6e7354c0a2cc50dab C:\WINDOWS\system32\msvbvm50.dll
      MD5: 88ef14f379e050e8df3ba9a9462945e9 C:\WINDOWS\system32\msvbvm60.dll
      MD5: c8158a6e9f6dbfe3543c6b025465695c C:\WINDOWS\system32\msvcirt.dll
      MD5: aa0be9e99b2d2c479f63008244630e75 C:\WINDOWS\system32\msvcp50.dll
      MD5: 2e28d9f350f04bb2bc6a538fbeabc0c2 C:\WINDOWS\system32\MSVCP60.dll
      MD5: 3cdd949f8340f06fd99667b4f75409d0 C:\WINDOWS\system32\msvcrt.dll
      MD5: b51cbb8c5bc1dc2538f03e6a7cf73612 C:\WINDOWS\system32\msvcrt20.dll
      MD5: 146d198e3ad9d4b69c9eb0aea6ef333b C:\WINDOWS\system32\msvcrt40.dll
      MD5: b4f234fcf19dc89abefcad81cdd95509 C:\WINDOWS\system32\MSVFW32.dll
      MD5: 843b48a548f96fb95c5938bb51d728de C:\WINDOWS\system32\msvidc32.dll
      MD5: 6598f1de857e5c1c5c9241d21b0bb09a C:\WINDOWS\system32\msvidctl.dll
      MD5: 8b47f3d9ece0e8a56b0fd9fe14741dab C:\WINDOWS\system32\msw3prt.dll
      MD5: 71d886e468468fbea25661da956dd032 C:\WINDOWS\system32\mswdat10.dll
      MD5: b95b4a135b42abe824c707e8aeaa65b1 C:\WINDOWS\system32\mswebdvd.dll
      MD5: e8a2190a9e8ee5e5d2e0b599bbf9dda6 C:\WINDOWS\system32\MSWINSCK.OCX
      MD5: 8329bc62e7b741a7a44b600c7ae2e56c C:\WINDOWS\system32\mswmdm.dll
      MD5: 10558fed65aaa5dc95125e069ae65036 C:\WINDOWS\System32\mswsock.dll
      MD5: fe4c8ed09b3ff1f73becbe5bac37b466 C:\WINDOWS\system32\mswstr10.dll
      MD5: 120e675dcab06008a2322256223358d5 C:\WINDOWS\system32\msxbde40.dll
      MD5: 6182d8f9e3a4961749a69339e65ec47f C:\WINDOWS\system32\msxml.dll
      MD5: e6690f6567b64dac72eb413d8183b9a8 C:\WINDOWS\system32\msxml2.dll
      MD5: a9a43910e86326eb39ef1a6bf1d6552d C:\WINDOWS\system32\msxml2r.dll
      MD5: c11448b699a5f0640cd4494125eb7969 C:\WINDOWS\system32\msxml3.dll
      MD5: 5fefd614bbd3ffa3712b172f70b1fde2 C:\WINDOWS\system32\msxml3a.dll
      MD5: 363f1dd9c77a27859c20174d617c3a3f C:\WINDOWS\system32\msxml3r.dll
      MD5: 62050a17ec3707dfc8caab17d67439f0 C:\WINDOWS\system32\msxml4.dll
      MD5: 3caeef0ac3ada6c962e90f8b02eec4be C:\WINDOWS\system32\msxml4a.dll
      MD5: 75896428426014630afd404a8e626c18 C:\WINDOWS\system32\msxml4r.dll
      MD5: 00cb70236ef5ed3b822b0587b33e56ab C:\WINDOWS\system32\msxmlr.dll
      MD5: 0c149756b7ed07f59f38b81cefe96c3a C:\WINDOWS\system32\msyuv.dll
      MD5: c96461e1910657ff5ebf30299c4d5517 C:\WINDOWS\system32\MTXCLU.DLL
      MD5: 1b862b932a479cd35e58da90d179738a C:\WINDOWS\system32\mtxdm.dll
      MD5: bc90770283f83bd92d850c7824f91e75 C:\WINDOWS\system32\mtxex.dll
      MD5: f3f9833f5f3f763c7de18facc7c8c9d7 C:\WINDOWS\system32\mtxlegih.dll
      MD5: eacc4b908153b51c761d028522f45a88 C:\WINDOWS\system32\mtxoci.dll
      MD5: 3e89969d769964d4ccf0137497fb8c3b C:\WINDOWS\system32\mycomput.dll
      MD5: 960ac2fee043f729f87d148c8583f453 C:\WINDOWS\system32\mydocs.dll
      MD5: ee41b4e9e9246c7d933a664a7cb30f75 C:\WINDOWS\system32\narrator.exe
      MD5: afd709a00440ad0e0ff094df9c4e6623 C:\WINDOWS\system32\narrhook.dll
      MD5: 0e45545dbc2b672c7e74e76f7ba0efb9 C:\WINDOWS\system32\nbtstat.exe
      MD5: 4070f8dfd05113c18e4386cb3d2554ea C:\WINDOWS\system32\NCObjAPI.DLL
      MD5: 8b5c290f8ad99ec16f538887e63fa493 C:\WINDOWS\system32\ncpa.cpl
      MD5: bf67eddf2ef99c510dd811e68290b4fa C:\WINDOWS\system32\ncxpnt.dll
      MD5: a232deba8916f5d9277b718da66c28b7 C:\WINDOWS\system32\NDdeApi.dll
      MD5: efe9474284ee80bf5a1eccb45f941b69 C:\WINDOWS\system32\nddeapir.exe
      MD5: 3519711eed52b9374140a34436ab2c11 C:\WINDOWS\system32\nddenb32.dll
      MD5: b8051d2a270f2f5a151e5f9fce169d1e C:\WINDOWS\System32\ndptsp.tsp
      MD5: 9e0d04f29cfd94f8470ee4bc4cef6e1f C:\WINDOWS\system32\net.exe
      MD5: d5f3b890dbe277e85d2e466f3d0edb97 C:\WINDOWS\system32\net1.exe
      MD5: a4aa15e32cd30ead20a208930b155f31 C:\WINDOWS\system32\NETAPI32.dll
      MD5: bbb620087299ec167f563fe66f86ea21 c:\windows\system32\netcfgx.dll
      MD5: bcfa51e14e310586a3d199bb8ec0aa4e C:\WINDOWS\system32\netdde.exe
      MD5: 91c623d3cf2143bb1b4c9ec6d75b6d13 C:\WINDOWS\system32\netevent.dll
      MD5: 6087ac20931da2c93b3961067466dc88 C:\WINDOWS\system32\neth.dll
      MD5: e1d1433482f73c1d3334e23b9690ce92 C:\WINDOWS\system32\netid.dll
      MD5: 7fd182b1b80117c353983565d60b1caf C:\WINDOWS\system32\netlogon.dll
      MD5: 157b6fcb58270e3df3ed67d316dcece0 c:\windows\system32\netman.dll
      MD5: 2f0ffb8902d6ea3921505cbaf30adf3b C:\WINDOWS\system32\netmsg.dll
      MD5: aaf64f4f823c3eea88317a22bbc8d332 C:\WINDOWS\system32\netplwiz.dll
      MD5: 21259050f7e091c54f682c65f1d0b056 C:\WINDOWS\system32\NETRAP.dll
      MD5: f8fed6cb7a7a21ff68e98db53a894539 C:\WINDOWS\system32\netsetup.cpl
      MD5: 15f6339fa30ec26860141108e6b8802e C:\WINDOWS\system32\netsetup.exe
      MD5: 79da15566541c8fb2dac0600f263e310 C:\WINDOWS\system32\netsh.exe
      MD5: 55f5433a764f2aced4f4dc347ac83d79 c:\windows\system32\netshell.dll
      MD5: 9bbdecbb71bfe3676ab369bc08cfdc75 C:\WINDOWS\system32\netstat.exe
      MD5: 0903d14de318025af381b2f68a255cb5 C:\WINDOWS\System32\NETUI0.dll
      MD5: 36fb7d6194271df320111018173f76c0 C:\WINDOWS\System32\NETUI1.dll
      MD5: 34facddb10ac7b219a2ce3180d14524b C:\WINDOWS\system32\netui2.dll
      MD5: c320eecc1f4fa00db870fa5cc0feca84 C:\WINDOWS\system32\newdev.dll
      MD5: 6ff3ed6c0d98e0c3ab4bbb7438411a15 C:\WINDOWS\system32\nlhtml.dll
      MD5: e5244a5462fa1f0267d8923538530af4 C:\WINDOWS\system32\nlsdl.dll
      MD5: 7edc9ecb2f3ef94d3e51739dd9ca30b8 C:\WINDOWS\system32\nmevtmsg.dll
      MD5: 28f2370ee88cfdaae795a32f4733ca9d C:\WINDOWS\system32\nmmkcert.dll
      MD5: be3993395c19bcbd46277639806d56dc C:\WINDOWS\system32\nmwcdcls.dll
      MD5: 44b04bb3542abc9c282d0b704e8c3e00 C:\WINDOWS\system32\nmwcdcocls.dll
      MD5: 37296927afa765c58a7b36b548f29520 C:\WINDOWS\system32\notepad.exe
      MD5: cba5a7f14c7ec709cff67114a4d0fd2e C:\WINDOWS\system32\npptools.dll
      MD5: ab0257991882b48783fb54f0a946f4bb C:\WINDOWS\system32\nslookup.exe
      MD5: 690385face9e2697f87044fc21be8c39 C:\WINDOWS\system32\ntbackup.exe
      MD5: 306b64dd1822bb33a7b54d203b8db4c4 C:\WINDOWS\system32\ntdll.dll
      MD5: 8373cb0b53569961a03ea245e377f48c C:\WINDOWS\system32\NTDSAPI.dll
      MD5: 377ea821bc9d85212ac33ee3776ec311 C:\WINDOWS\system32\ntdsbcli.dll
      MD5: 73fed94deb17add278fc76d176cabe04 C:\WINDOWS\system32\ntkrnlpa.exe
      MD5: 1b400abf886216bf6a9653909fd27b22 C:\WINDOWS\System32\ntlanman.dll
      MD5: ed2b558a6858bb576583012184acb72e C:\WINDOWS\system32\ntlanui.dll
      MD5: 92e89a182e7c83a4510d393d07f197b7 C:\WINDOWS\system32\ntlanui2.dll
      MD5: 4eadeeb4736d79ca4ec8678536b53cfe C:\WINDOWS\System32\ntlsapi.dll
      MD5: 82e5bdfe9cda9112d0148faa56619a96 C:\WINDOWS\system32\NTMARTA.DLL
      MD5: e3cab986ae3ca8dc82d5c78e7aeae52a C:\WINDOWS\system32\ntmsapi.dll
      MD5: 023107e7f8cd9ee89b67d3b0c84d8567 C:\WINDOWS\system32\ntmsdba.dll
      MD5: 3f5789cade028f2781855cd4fc459bda C:\WINDOWS\system32\ntmsevt.dll
      MD5: 6078d4d75fb105d44f14b99c701cf803 C:\WINDOWS\system32\ntmsmgr.dll
      MD5: 395948dee2b0f534a8c70687cc6dd7ca C:\WINDOWS\system32\ntmssvc.dll
      MD5: 71eee72176907d81e5d434b0fdebfb12 C:\WINDOWS\system32\ntoskrnl.exe
      MD5: 76b93e58c2105e20f839c811b2736e6a C:\WINDOWS\system32\ntprint.dll
      MD5: 61d45c941a4ae42682b6052afb7fe678 C:\WINDOWS\system32\ntsd.exe
      MD5: 499d35147845b7360e3337d1510b66c3 C:\WINDOWS\system32\ntsdexts.dll
      MD5: 3f8d5d232f0711ad58b58d404aa0c002 C:\WINDOWS\system32\ntshrui.dll
      MD5: c989fca835cefbfa659c8c2dc81cb5b4 C:\WINDOWS\system32\ntvdm.exe
      MD5: 5b57e4388488a168fecaadf78a20f101 C:\WINDOWS\system32\ntvdmd.dll
      MD5: 61f45e3d6679b5c3dbd8a76c92d35484 C:\WINDOWS\system32\nusrmgr.cpl
      MD5: 0f91311a1b14dcef524cea45668d7210 C:\WINDOWS\system32\nwapi16.dll
      MD5: 04fc59f4a033772e80a177040b237ad7 C:\WINDOWS\system32\nwapi32.dll
      MD5: 060f709e9c626552565966523a5c4504 C:\WINDOWS\system32\nwc.cpl
      MD5: d0e6bb0c88d2d7e747d753d1ef17fa17 C:\WINDOWS\system32\nwcfg.dll
      MD5: 0df8a6008c3e76612102b877a943a059 C:\WINDOWS\system32\nwevent.dll
      MD5: 5414a0184ac013b4145949340d0697d8 C:\WINDOWS\system32\nwprovau.dll
      MD5: 5daa4e273c99695d53ac25b805ad21a5 C:\WINDOWS\system32\nwscript.exe
      MD5: 8ca76a0df4eceea9a4330a7735898bbc C:\WINDOWS\system32\nwwks.dll
      MD5: c1c41598b288482395c110bc709acad1 C:\WINDOWS\system32\oakley.DLL
      MD5: f59cde65de1c2bd80ce484b2ee90a35c C:\WINDOWS\system32\objsel.dll
      MD5: cfa30908e2a151e47a3b5854e181e88f C:\WINDOWS\system32\occache.dll
      MD5: 35e547c5310a5be1869c99936ec1a4f3 C:\WINDOWS\system32\ocmanage.dll
      MD5: bde7f5bf21bf8f3cb1342e1bec9c2a96 C:\WINDOWS\System32\ODBC32.dll
      MD5: a8802f0c42edf409310d9f1f3ebb4fed C:\WINDOWS\system32\odbc32gt.dll
      MD5: b34530c8e65b4ede662a4be02e0c84be C:\WINDOWS\system32\odbcad32.exe
      MD5: 7dab05bcefb0b1ca9a76498ba6048966 C:\WINDOWS\System32\odbcbcp.dll
      MD5: 7e437e01804bb96a45f8db7af562a698 C:\WINDOWS\system32\odbcconf.dll
      MD5: 0d970c58f30e22e0c7516300db15884c C:\WINDOWS\system32\odbcconf.exe
      MD5: 3160bd871a2bac3e713ec838b9fc8828 C:\WINDOWS\system32\odbccp32.cpl
      MD5: d6c1f7623bf6851091a8e9a2f6f0cc60 C:\WINDOWS\system32\odbccp32.dll
      MD5: 97b317df3997f4e650aa3c2f5d9ce974 C:\WINDOWS\system32\odbccr32.dll
      MD5: b959df92272b81df9571a1d8d6f4a46c C:\WINDOWS\system32\odbccu32.dll
      MD5: c455f51881d89f46365c2bc8f46e186d C:\WINDOWS\System32\odbcint.dll
      MD5: 458ebabb6663b9bf6f3425147127398d C:\WINDOWS\system32\odbcji32.dll
      MD5: a621312efcdd15cdfbced3200f72f728 C:\WINDOWS\system32\odbcjt32.dll
      MD5: 94ab65a29a3b7bb34641879524a2524a C:\WINDOWS\system32\odbcp32r.dll
      MD5: 8ea2816f878582aa0879eedea27facf9 C:\WINDOWS\system32\odbctrac.dll
      MD5: f558f971d527b7b98dcac4650a410994 C:\WINDOWS\system32\oddbse32.dll
      MD5: c3b7bd11ac3262ad6a870fd0eb22a9fc C:\WINDOWS\system32\odexl32.dll
      MD5: c70f3c3c2898737b6f1900a44d463ec6 C:\WINDOWS\system32\odfox32.dll
      MD5: 33c44581bc5697df48c50f890567dfe2 C:\WINDOWS\system32\odpdx32.dll
      MD5: c55d787ff031f79a8547e17ca7476cc5 C:\WINDOWS\system32\odtext32.dll
      MD5: f8279db088cc1fa9f77fdf4d6f8e9e1d C:\WINDOWS\system32\offfilt.dll
      MD5: 1ccd86af8968519ae6bf9729fc566f1a C:\WINDOWS\system32\ole32.dll
      MD5: b61f5bbfcf211b9374cf3169014b5d9e C:\WINDOWS\system32\oleaccrc.dll
      MD5: d2b0be2a1c231c4abf381c3b1ac6e055 C:\WINDOWS\system32\OLEAUT32.dll
      MD5: b6aa7e3bd9cd55ee5448d306a9d60fd4 C:\WINDOWS\system32\olecli32.dll
      MD5: f35aa7fd7bcdb696d8f23dc2f1d3711f C:\WINDOWS\system32\olecnv32.dll
      MD5: 15c3a454f2ff6bc5819be0e395b674de C:\WINDOWS\system32\oledlg.dll
      MD5: 59b839505a2275b09d6c8959fbeb4d7f C:\WINDOWS\system32\oleprn.dll
      MD5: 74a98b98fb63049b6fecc472ad09a577 C:\WINDOWS\system32\OLEPRO32.DLL
      MD5: 963159f43349e008a4212ab92babb320 C:\WINDOWS\system32\olesvr32.dll
      MD5: 888977d1703af808474793ea91628356 C:\WINDOWS\system32\olethk32.dll
      MD5: 89bad19f03948f370e2b001663e775c6 C:\WINDOWS\system32\openfiles.exe
      MD5: fef5b5dc74d1458421693c0c9d97f126 C:\WINDOWS\system32\opengl32.dll
      MD5: 2c4c670add856e5e9364ef033ffb2c73 C:\WINDOWS\system32\osk.exe
      MD5: dcd205482863e2ae2bf0cb520a265c9a C:\WINDOWS\system32\osuninst.dll
      MD5: c72d391d6052547654b0ce5b4e6cbacc C:\WINDOWS\system32\osuninst.exe
      MD5: f26a69487488c222742fc5426c4b7b00 C:\WINDOWS\system32\packager.exe
      MD5: 3923db35e4dbf1fb44f7aa7958451d40 C:\WINDOWS\system32\panmap.dll
      MD5: 989a24f317df23853938848560411c62 C:\WINDOWS\system32\paqsp.dll
      MD5: cc42ca598f7a1a8b9bf8eb848f67579f C:\WINDOWS\system32\pathping.exe
      MD5: c8e3db5f30a8afdbc86e20665cfb87fd C:\WINDOWS\system32\pautoenr.dll
      MD5: 56f8f66e116451bc2ff58f2c3df395ff C:\WINDOWS\System32\pdh.dll
      MD5: 668b28931bce5f5013c0f0ce5fde4638 C:\WINDOWS\system32\pentnt.exe
      MD5: ac18c8a4d842211748aaacf89efebf07 C:\WINDOWS\system32\perfctrs.dll
      MD5: 63aa36f4a127ba9226175f9f626fa0ef C:\WINDOWS\system32\perfdisk.dll
      MD5: 5b061a1c9c87f34b529e66554e727fbc C:\WINDOWS\system32\perfmon.exe
      MD5: a5e85d37bf4eef2f704a985a61bd6172 C:\WINDOWS\system32\perfnet.dll
      MD5: 8e62817acd8b4c21622cd299768d847f C:\WINDOWS\system32\perfnw.dll
      MD5: 43264f23752604f0eb5b0740f9e2a367 C:\WINDOWS\System32\perfos.dll
      MD5: 2dfdc8d1d6982155a537e8460ceb2a26 C:\WINDOWS\system32\perfproc.dll
      MD5: d46a02577ece74c82d54584bec0150a8 C:\WINDOWS\system32\perfts.dll
      MD5: d58d6fe515497a3f9c1fe258bb323017 C:\WINDOWS\system32\photometadatahandler.dll
      MD5: 49ab9d108da47fec312be5e6d3476e45 C:\WINDOWS\system32\photowiz.dll
      MD5: fc71ab8384a3e7808600bbbba985fd7f C:\WINDOWS\system32\pid.dll
      MD5: db06a73d12cb5211745b9d94b0157e1b C:\WINDOWS\system32\pidgen.dll
      MD5: e7bee5d7c1b64c29566c6952c1f4aed1 C:\WINDOWS\system32\pifmgr.dll
      MD5: 8838953fe974188c63c56fb317d81e7c C:\WINDOWS\system32\ping.exe
      MD5: 132027a058bd8f3aa795d0c8ea3e4d47 C:\WINDOWS\system32\ping6.exe
      MD5: 4e3680efef31a78846d39b90f1b82613 C:\WINDOWS\system32\pintool.exe
      MD5: 74227be565f77c4b5a5fcd9212cd74fb C:\WINDOWS\system32\pjlmon.dll
      MD5: 1856222de0b700745346ab0b11f9e137 C:\WINDOWS\system32\plustab.dll
      MD5: 13001eb0a58b4de96126b16ab15fd8cc C:\WINDOWS\system32\pncrt.dll
      MD5: b74e422bc81236042529dc8a42a18423 C:\WINDOWS\system32\pndx5032.dll
      MD5: eba6e877b64fdf40f65256f29a103a69 C:\WINDOWS\system32\pngfilt.dll
      MD5: 19fd2afc137411f241c6cf8089d1607d C:\WINDOWS\system32\polstore.dll
      MD5: f5721d7d711bf05a757662532a2ef6da C:\WINDOWS\system32\PortableDeviceClassExtension.dll
      MD5: f71b78fa5459a7cae3ec080d39097ea4 C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
      MD5: 41149b20cf65775212c805588d6c7350 C:\WINDOWS\system32\PortableDeviceWMDRM.dll
      MD5: ce93399933d8c6aedf8b9eebab56c591 C:\WINDOWS\system32\powercfg.cpl
      MD5: 3f1e51cb652fe6f4631bd9851199d580 C:\WINDOWS\system32\powercfg.exe
      MD5: 75eff6383c2f9bc1198c5351754d27ac c:\windows\system32\POWRPROF.dll
      MD5: e9ea2c2eaf1d21bb890e98d3ebe39567 C:\WINDOWS\system32\prflbmsg.dll
      MD5: 02f1e04c7a51ca03e75febf43fef3438 C:\WINDOWS\system32\print.exe
      MD5: e5484670d854a54a92a4302459e31751 C:\WINDOWS\system32\printui.dll
      MD5: daf4d5399f78812d3d79f0c9eab1ac6b C:\WINDOWS\system32\proctexe.ocx
      MD5: 6d17d9b9dbcf96fc5eed8801eed90ab5 C:\WINDOWS\system32\PROFMAP.dll
      MD5: 2333037e47d8f1d5ff808fb00eef06e2 C:\WINDOWS\system32\progman.exe
      MD5: 33240d9378e6f9ae2abac1e6dce6ebf5 C:\WINDOWS\system32\proquota.exe
      MD5: fedc74a6d9c480d1bc01b590d38e2ea3 C:\WINDOWS\system32\proxycfg.exe
      MD5: 05bfffea126f68b206bdb31e6ac5a8d9 C:\WINDOWS\System32\PSAPI.DLL
      MD5: 0b6199ff42267ebf2d1ea80c19a9c462 C:\WINDOWS\system32\psbase.dll
      MD5: a1fc5b9a0e9d2328531903963812ec69 C:\WINDOWS\system32\pschdprf.dll
      MD5: caa87e58cf120c087c95313b8abc5857 C:\WINDOWS\system32\psnppagn.dll
      MD5: c0194591b9808b2ba5d9e3594d4c0b41 C:\WINDOWS\system32\pstorec.dll
      MD5: cbeb0729541b1ef48a731a5aad334c25 C:\WINDOWS\system32\pstorsvc.dll
      MD5: a8fda604ab3a33ce7c0360391838e71e C:\WINDOWS\system32\qappsrv.exe
      MD5: 4e48ea036f83bd5286578f44ddb4a6b2 C:\WINDOWS\system32\qasf.dll
      MD5: e9ba4230976194df849da5ce0bade80a C:\WINDOWS\system32\qcap.dll
      MD5: 63aaede40169fc120e156198b796f601 C:\WINDOWS\system32\qdv.dll
      MD5: c1a959c8aa1643644de1b1518a22014c C:\WINDOWS\system32\qdvd.dll
      MD5: 6afac47d155509451b1efe627f39ef8e C:\WINDOWS\system32\qedit.dll
      MD5: 2c4b61733645bf2e64dcfba0f049f45f C:\WINDOWS\system32\qedwipes.dll
      MD5: 02451268dc47e4dc228210da0e3c3274 c:\windows\system32\qmgr.dll
      MD5: 3fbe0c6c7f694bec495fc1fed5756948 C:\WINDOWS\system32\qmgrprxy.dll
      MD5: 3ff7907d84190f31609389f2c251737f C:\WINDOWS\system32\qosname.dll
      MD5: 78eaf4dd2a095762958c7fcf53484399 C:\WINDOWS\system32\qprocess.exe
      MD5: 02ce4df5c0ed4024775f8c908b271638 C:\WINDOWS\system32\qt-dx331.dll
      MD5: f58844fb3045f055e3edcc0919552bfe C:\WINDOWS\system32\quartz.dll
      MD5: bce7cd907bf26bc4e6af8b9ed1444c74 C:\WINDOWS\system32\query.dll
      MD5: c1a67c80b3fe528e1ac61d323900246f C:\WINDOWS\system32\QuickTime.qts
      MD5: 705538be3b1f35020163629263c1c136 C:\WINDOWS\system32\QuickTimeVR.qtx
      MD5: 5c5b833ba022364947c572db42d5c57e C:\WINDOWS\system32\qwinsta.exe
      MD5: a9c83761b8fb4552d079e1239aa89d42 C:\WINDOWS\system32\racpldlg.dll
      MD5: 93d6aea2b292424863412eebcc0834cf C:\WINDOWS\system32\rasadhlp.dll
      MD5: 9e67eb202916b1672ab1ddcec4c09dbb C:\WINDOWS\system32\RASAPI32.dll
      MD5: c6133601f8d4b3c995b51307ee7be086 C:\WINDOWS\System32\rasauto.dll
      MD5: 26cb60ee6e7c93c862a60f436bc905cb C:\WINDOWS\system32\rasautou.exe

    6. #6
      Usuario Avatar de ks gregn
      Registrado
      may 2012
      Ubicación
      rojas
      Mensajes
      16

      Re: Varios Virus

      MD5: ce11ab145cb19663009cea8b60e7f56f C:\WINDOWS\System32\raschap.dll
      MD5: 8b20ce8f71297e4813ac5fca7d37f6f1 C:\WINDOWS\system32\rasctrs.dll
      MD5: 80f10aa52e3dcab1985c3e2db5a6ff6a C:\WINDOWS\system32\rasdial.exe
      MD5: e45b3b2488d70928b31a80750010755b C:\WINDOWS\System32\RASDLG.dll
      MD5: 8987ee09edd93dc2def75d175b896492 C:\WINDOWS\system32\rasman.dll
      MD5: 98f078aa2bc19a8d7a7662c67081918b c:\windows\system32\rasmans.dll
      MD5: da9789cdef19b0522c3a812a6fad7c1f C:\WINDOWS\system32\rasmontr.dll
      MD5: c1fb5926288984bc3be6e1f092fffb1d C:\WINDOWS\system32\rasmxs.dll
      MD5: 097cbcc51cb0879abb9b89d6b5b12f94 C:\WINDOWS\system32\rasphone.exe
      MD5: 01d3b6e89c526c83c9634e44eba70673 C:\WINDOWS\System32\rasppp.dll
      MD5: 92da846038bbe93ad6fb5e89ef3bea8c C:\WINDOWS\system32\rasrad.dll
      MD5: ca227f4d56ac4b46f54a5d1c95d1a5a1 C:\WINDOWS\system32\rassapi.dll
      MD5: 80ba5747eddaa9b59e3db5c161c278e6 C:\WINDOWS\system32\rasser.dll
      MD5: 20958f4c3af4e5708ee6854bb64dd6b9 C:\WINDOWS\System32\rastapi.dll
      MD5: bd43dcbb46905525c79b20a1f4d55fdb C:\WINDOWS\System32\rastls.dll
      MD5: a2b28a0bdbb3b66c8d089eaad470b252 C:\WINDOWS\system32\rcbdyctl.dll
      MD5: bc5af2e4c6b1d511fc22ca9e76d8c02a C:\WINDOWS\system32\rcimlby.exe
      MD5: fdbacc6508991a354975c1aa77691512 C:\WINDOWS\system32\rcp.exe
      MD5: e93023550469ad647a840d9e2b222712 C:\WINDOWS\system32\rdchost.dll
      MD5: 225e83468ac37b57e46e3bfcf2a17c9c C:\WINDOWS\system32\RDOCURS.DLL
      MD5: ad3433a34a118d33460e4146df68c85a C:\WINDOWS\system32\rdpcfgex.dll
      MD5: 36bb396fd1c409a06442c221155348b8 C:\WINDOWS\system32\rdpclip.exe
      MD5: f25bffc612a5444e7bc6193d16d3e0eb C:\WINDOWS\system32\rdpdd.dll
      MD5: 43a7aeb4d1a529ba8da1de276c5b4af9 C:\WINDOWS\system32\rdpsnd.dll
      MD5: 23e7dde9a9ffd18a46820bf976321309 C:\WINDOWS\system32\rdpwsx.dll
      MD5: dbb56ab9d4b7a1dd678c83aa12fbd3ef C:\WINDOWS\system32\rdsaddin.exe
      MD5: 984e3d21210772ccfb70cb17c3e398f2 C:\WINDOWS\system32\rdshost.exe
      MD5: fb8a44fbc77f406752af8753d329450b C:\WINDOWS\system32\recover.exe
      MD5: 848ad5ae53822bca87d13960e9f56223 C:\WINDOWS\system32\reg.exe
      MD5: ecd2b8ec879b1e6d2c7677285c1ad5b4 C:\WINDOWS\system32\REGAPI.dll
      MD5: 57c12aae169bad2a04f39f84d9195d51 C:\WINDOWS\system32\regedt32.exe
      MD5: 56ae90c136a98dfe681217a8bab80189 C:\WINDOWS\system32\regini.exe
      MD5: d025e953864ebebab5933086d15c4fc6 c:\windows\system32\regsvc.dll
      MD5: 888b5b457062d91f50c3c4f465f0b85a C:\WINDOWS\system32\regsvr32.exe
      MD5: 77279ed6e752cc2e06bea41413b26c3e C:\WINDOWS\system32\regwiz.exe
      MD5: 548cf0d5fafb6c7e4cf237f135abc89d C:\WINDOWS\system32\regwizc.dll
      MD5: 49ec10ff37d7286a6f3de80fefb30610 C:\WINDOWS\system32\reico.exe
      MD5: 79635d7dbe75129a62a30457504d4e98 C:\WINDOWS\system32\relog.exe
      MD5: c4c0c73a1f738bd7484500b53e8cb8ad C:\WINDOWS\system32\remotepg.dll
      MD5: 9cf4ad31ae3e2ca24d1e5d62304ecfea C:\WINDOWS\system32\remotesp.tsp
      MD5: 1b0b9c02356fe7bb204423cbc0cfd8c1 C:\WINDOWS\system32\rend.dll
      MD5: b2f019ddef8412f9b25bc5ba17083cf3 C:\WINDOWS\system32\replace.exe
      MD5: 33acdcceb2bb04283111741fab571126 C:\WINDOWS\system32\reset.exe
      MD5: 8c3566de9b6437b9689373affe6086a3 C:\WINDOWS\System32\RESUTILS.DLL
      MD5: c5fd092eb83cbebd074efac516e7c9b5 C:\WINDOWS\system32\rexec.exe
      MD5: f0a1ddecb8ae5486ccf2be5d57f3b753 C:\WINDOWS\system32\RICHED20.dll
      MD5: 4fc3bbe11ab3cde3783ac9889505470b C:\WINDOWS\system32\riched32.dll
      MD5: e4ca4ae71a12198ca9a13835b1ff8a27 C:\WINDOWS\system32\rmoc3260.dll
      MD5: bbe61799401cdfa393a30dd12f276fb0 C:\WINDOWS\system32\rnr20.dll
      MD5: 1e6f1518a1c9dbb5adc3066edb434f2b C:\WINDOWS\system32\route.exe
      MD5: 12421f2e6b8222655c5e296804cb1abb C:\WINDOWS\system32\routemon.exe
      MD5: a7b58d046bc8795461f1521136586983 C:\WINDOWS\system32\routetab.dll
      MD5: 61ce08652b5b5767eebda3c61c94332f C:\WINDOWS\system32\rpcns4.dll
      MD5: 8935a785f7f62b513064a896f3e5f730 C:\WINDOWS\system32\RPCRT4.dll
      MD5: 78793aae30e77a07d6c5a378d163b909 c:\windows\system32\rpcss.dll
      MD5: 26acbd865f8cff730f1791c4d0854352 C:\WINDOWS\system32\rsaenh.dll
      MD5: 525c0901e60a09ba7f911b59968aad70 C:\WINDOWS\system32\rsfsaps.dll
      MD5: e541cbef174f651fb3aed88e4f0eb197 C:\WINDOWS\system32\rsh.exe
      MD5: 1b74208ccd416818c4b60e0a5b139902 C:\WINDOWS\system32\rshx32.dll
      MD5: ab41a45f470c88254af60d1fa8dce613 C:\WINDOWS\system32\rsm.exe
      MD5: 481d02bf222960faf4b5e40cf09a1797 C:\WINDOWS\system32\rsmps.dll
      MD5: 7308ce7aa98ef9941ef64be547a6528a C:\WINDOWS\system32\rsmsink.exe
      MD5: 694b3beede3d5d7aab05154b0cab6c75 C:\WINDOWS\system32\rsmui.exe
      MD5: 2343e6e8ed4e76e7c9af55a3253b7b07 C:\WINDOWS\system32\rsnotify.exe
      MD5: 8fadc6fec76324aac87d2eb122425d1c C:\WINDOWS\system32\rsopprov.exe
      MD5: 968bc20f4666128e75422e0d15918440 C:\WINDOWS\system32\rsvpmsg.dll
      MD5: 67ab96ea3938508987c579c49c9e8d1e C:\WINDOWS\system32\rsvpperf.dll
      MD5: 371a207667176a2531669953bf8ee187 C:\WINDOWS\system32\rsvpsp.dll
      MD5: 31425e024f7e29240d51789d263e6560 C:\WINDOWS\system32\rtipxmib.dll
      MD5: c4a61a3b08a29c797756df941c6c55d1 C:\WINDOWS\system32\rtm.dll
      MD5: f64d1364b1332e8e5b9b96affc9ee118 C:\WINDOWS\system32\RTSndMgr.CPL
      MD5: cf4a6b5366b4f7c25f585d73a538070f C:\WINDOWS\system32\rtutils.dll
      MD5: f4ec01525139a86b1523742d666ee0b9 C:\WINDOWS\system32\runas.exe
      MD5: 3175eb8ef1c6c38f440fcb2d1403b823 C:\WINDOWS\system32\rundll32.exe
      MD5: 4c96e2ae6da056199cc530b7966d7c89 C:\WINDOWS\system32\runonce.exe
      MD5: 2bbd4a8a7807f1890b2926b0069a5f11 C:\WINDOWS\system32\rwinsta.exe
      MD5: be8368d4e9361c7be4896abe52957251 C:\WINDOWS\system32\safrcdlg.dll
      MD5: 54dc5e7beb5e3dcebe272cc009123d1e C:\WINDOWS\system32\safrdm.dll
      MD5: 4afef479b733a8821b17eb2ea59fce25 C:\WINDOWS\system32\safrslv.dll
      MD5: a47090958c287d1b61174e44c6e102f1 C:\WINDOWS\system32\SAMLIB.dll
      MD5: 2790d02e0e273809c33ff1f0da165ada C:\WINDOWS\system32\SAMSRV.dll
      MD5: 10999adbed4202acf2f0ede33605dba4 C:\WINDOWS\system32\savedump.exe
      MD5: 56326e3aaf5f8dd89f17dfbe64532c13 C:\WINDOWS\system32\sbe.dll
      MD5: e6ca2bde984027fb4658abdd7b59947b C:\WINDOWS\system32\sbeio.dll
      MD5: 68ec98bfb7474715a0eea8a05854bd81 C:\WINDOWS\system32\sc.exe
      MD5: 47b1f4014c288529f0f5f43baf9311a8 C:\WINDOWS\system32\scarddlg.dll
      MD5: 6ca38f7c622a24d678248225aa05d59a C:\WINDOWS\system32\scardssp.dll
      MD5: 71cab99ad55f1daae201e990aa0ebdbf C:\WINDOWS\System32\SCardSvr.exe
      MD5: 11e41821248e9704d5f392eda5f01572 C:\WINDOWS\system32\sccbase.dll
      MD5: 138affb25ea1b219936b52c79c7966c0 C:\WINDOWS\system32\sccsccp.dll
      MD5: c6347748f2e9f310ea1e1915482abfef C:\WINDOWS\system32\scecli.dll
      MD5: e7bf821fea45a553a3593eb3c9c828e8 C:\WINDOWS\system32\SCESRV.dll
      MD5: 28282865dc03d5f3acf17b25f88710e9 C:\WINDOWS\system32\schannel.dll
      MD5: 0125649b3c00d037e07fd7bcef7b653b c:\windows\system32\schedsvc.dll
      MD5: 8a39303951b20e9cdb1833942493a7b9 C:\WINDOWS\system32\schtasks.exe
      MD5: c232ad694dc68fe2dd2586b791eb3f20 C:\WINDOWS\system32\sclgntfy.dll
      MD5: df462690de16e6de26b88f68169f02d8 C:\WINDOWS\system32\scoes.dll
      MD5: 781bb5095e39817469ab034138c07ebe C:\WINDOWS\system32\SCP32.DLL
      MD5: 58c39dbe0878e3e4df2e1f1583f806ae C:\WINDOWS\system32\scredir.dll
      MD5: 5b0c33e4da4f15e5f256a46f90b7da51 C:\WINDOWS\system32\scriptpw.dll
      MD5: 2053254d1c03be856d1e4f6186f058e1 C:\WINDOWS\system32\scrnsave.scr
      MD5: eb87f3899438d03517f5c506c2f16cce C:\WINDOWS\system32\scrobj.dll
      MD5: 59a42b22de7c791cdcea4befa6fa6034 C:\WINDOWS\system32\scrrnes.dll
      MD5: bd478fbc40c3b6ab04e0782986ce0961 C:\WINDOWS\system32\scrrun.dll
      MD5: e4eaa9164ecdd9f27bfcc655f5fb558e C:\WINDOWS\system32\sdbinst.exe
      MD5: 582f7720dc663514a58fe0c943d03ae8 C:\WINDOWS\system32\sdhcinst.dll
      MD5: 57e160742c81d142541616519c581934 C:\WINDOWS\system32\sdpblb.dll
      MD5: 57fe4f8ff70fd5145766732d8ab0ac12 C:\WINDOWS\system32\secedit.exe
      MD5: 881e212e7d5dbc3a09732a9996c0cfd4 c:\windows\system32\seclogon.dll
      MD5: ec8d9c541bbf2e88b3d33393e5b439cf C:\WINDOWS\system32\Secur32.dll
      MD5: 966aea93daef591349a442a593b4a259 C:\WINDOWS\System32\security.dll
      MD5: 0504c685288a082dc1514147b8e82389 C:\WINDOWS\system32\sendcmsg.dll
      MD5: 5a0b37a054257fb72ba2b5b8cca8b325 C:\WINDOWS\system32\sendmail.dll
      MD5: 00b0a54474e8f99fd43d108446f0d5be c:\windows\system32\sens.dll
      MD5: 08b30b0df3f6089348fa91b27dd3c727 C:\WINDOWS\system32\SensApi.dll
      MD5: 367bfcb0c385b99466cf72517777c45a C:\WINDOWS\system32\senscfg.dll
      MD5: 401829db4c2329d8bef399d911548ab1 C:\WINDOWS\system32\serialui.dll
      MD5: c82bd41d872da424a81ba67639c3ba94 C:\WINDOWS\system32\servdeps.dll
      MD5: f9852f505e0699bb83d5c6321917040b C:\WINDOWS\system32\services.exe
      MD5: 6667b29043f01994b66cc0eb040aabb3 C:\WINDOWS\system32\serwvdrv.dll
      MD5: 8c88612f0e863b4f8069fc59c74259d4 C:\WINDOWS\system32\sessmgr.exe
      MD5: d983413b2e13834770b763ee4765d3f3 C:\WINDOWS\system32\sethc.ex
      MD5: 175530916470edbe41700f926eed4bb7 C:\WINDOWS\system32\sethc.exe
      MD5: c2472f50c7fd651cef5f74f7ee7d41ed C:\WINDOWS\system32\setup.exe
      MD5: 5fbbafccf9a172e2d76f868d12c90601 c:\windows\system32\setupapi.DLL
      MD5: 81be3f3937ebd8a60c7fbe8e1d98f375 C:\WINDOWS\system32\setupdll.dll
      MD5: 958011325b4bd0fb2e17609f17f17084 C:\WINDOWS\system32\setupold.exe
      MD5: ca557e5e31c7bcfc2cb61ccfe9f6c945 C:\WINDOWS\system32\sfc.dll
      MD5: 452b32267b418f04e333a4a87dcb3b61 C:\WINDOWS\system32\sfc.exe
      MD5: d73d983fff01b37a0753fcf8e3e5acde C:\WINDOWS\system32\sfc_os.dll
      MD5: aafd7382d64710ae3a6f1dee5020cf19 C:\WINDOWS\system32\sfcfiles.dll
      MD5: ce5e5258350ab55a640772993b2e355c C:\WINDOWS\system32\sfmapi.dll
      MD5: e464db34829b42f60c69c5c66144eaf9 C:\WINDOWS\system32\shadow.exe
      MD5: 9ebb2e0487e96271db6fd28302b343bf C:\WINDOWS\system32\shdoclc.dll
      MD5: f70ca6b87b92c3d9d80ae0b0d361dffc C:\WINDOWS\system32\SHDOCVW.dll
      MD5: b601ac6313c9872dfc4896e2fb82ae79 C:\WINDOWS\system32\SHELL32.dll
      MD5: 6c19e8a332f3513baab72d30a79b10ec C:\WINDOWS\system32\shellstyle.dll
      MD5: ae55e8e354d480f845048f41685e1b19 c:\windows\system32\SHFOLDER.dll
      MD5: d5e0d40d59e8e164f9f44e3736f2ff44 C:\WINDOWS\system32\shgina.dll
      MD5: fe0e489a08759b95ba6d44530abecd40 C:\WINDOWS\System32\ShimEng.dll
      MD5: e420896c5739331b0c9babd1d1d66433 C:\WINDOWS\system32\shimgvw.dll
      MD5: b2cb22ad6ccc35ac7672fc737aa6507f C:\WINDOWS\system32\SHLWAPI.dll
      MD5: 1c7b1f3d098a7c46bba97f70525d1d90 C:\WINDOWS\system32\shmedia.dll
      MD5: 7cdc492758fb1f64a9ee114ae213e4bd C:\WINDOWS\system32\shmgrate.exe
      MD5: afd40b1154057694a59f41d12ca78bd3 C:\WINDOWS\system32\shrpubw.exe
      MD5: ed7d6c4d183e7d1cfe39a8a2643a101c C:\WINDOWS\system32\shscrap.dll
      MD5: dbcf824ba771a1f27e6f5124d0516358 C:\WINDOWS\system32\SHSVCS.dll
      MD5: b4fecfced58bd6b014826e7f7bd169d5 C:\WINDOWS\system32\shutdown.exe
      MD5: 147797b2adbfe70843c51401566bfa55 C:\WINDOWS\system32\sigtab.dll
      MD5: c7497f35a649c8dc691aaad999221190 C:\WINDOWS\system32\sigverif.exe
      MD5: 76d002571a5c14d30369d992e7889888 C:\WINDOWS\system32\simpdata.tlb
      MD5: 6dd9e432a83bd2c1c5738fb50dead8b8 C:\WINDOWS\system32\sisbkup.dll
      MD5: 9059db131f2f4810b10861ae685e7139 C:\WINDOWS\system32\skdll.dll
      MD5: bf34b58a55c8f9e548eff17c860400ce C:\WINDOWS\system32\skeys.exe
      MD5: 1c5ba004fe5ac0dd66526737b7afcac5 C:\WINDOWS\system32\slayerxp.dll
      MD5: 200c3f8e80b72b63558b3bc47a6807a0 C:\WINDOWS\system32\slbcsp.dll
      MD5: 353cfdbea971e7b7aaa0bae78959b146 C:\WINDOWS\system32\slbiop.dll
      MD5: cb562897aacfb5e8ff0315a31c1d41c3 C:\WINDOWS\system32\slbrccsp.dll
      MD5: 2f48a875cf6b7a14104798f02883ecb8 C:\WINDOWS\system32\smbinst.exe
      MD5: e52a62dd35d9ab98a5637b8af3a06515 C:\WINDOWS\system32\smlogcfg.dll
      MD5: 69c20e092a03e619108accdb62fedd18 C:\WINDOWS\system32\smlogsvc.exe
      MD5: d9ab90b6547481c93e40af206d10f90f C:\WINDOWS\system32\smss.exe
      MD5: 9a0504cf4c4130d97d642fb4d3706e38 C:\WINDOWS\system32\sndvol32.exe
      MD5: c693c5190a765b4083b7f4067485ea32 C:\WINDOWS\system32\snmpapi.dll
      MD5: 00e5f0d165264d4681fcef32b15e9cf9 C:\WINDOWS\system32\snmpsnap.dll
      MD5: a2976a07ea227348b3eb10cecfa387e4 C:\WINDOWS\system32\softpub.dll
      MD5: 4394c9d74a4c90f261836fd5f92e607b C:\WINDOWS\system32\sol.exe
      MD5: 99be60fb9fd1bd1018b0b99f7536ecea C:\WINDOWS\system32\sort.exe
      MD5: 6ec3e893f9e3a1294d50009bce8b6459 C:\WINDOWS\system32\spider.exe
      MD5: b8a44c04ba6ede4b759eb1b2bf51a10b C:\WINDOWS\system32\spiisupd.exe
      MD5: d799749b1e53c239edac9664efd08bf9 C:\WINDOWS\system32\spmsg.dll
      MD5: 814baeeb0d1f0ba488b5e2561b8c1c37 C:\WINDOWS\system32\spnike.dll
      MD5: fbc9676f186958591a9be610cfc34612 C:\WINDOWS\system32\SPOOLSS.DLL
      MD5: ad3d9d191aea7b5445fe1d82ffbb4788 C:\WINDOWS\system32\spoolsv.exe
      MD5: 20733c8925f088033f41b8278ee94f5c C:\WINDOWS\system32\sprestrt.exe
      MD5: e1c5d669c95b582f18d558fa93bab405 C:\WINDOWS\system32\sprio600.dll
      MD5: f990c34f83a23be6f6171eeff0669d47 C:\WINDOWS\system32\sprio800.dll
      MD5: 757d76b67819ccc54d7799f05c9fa8f7 C:\WINDOWS\system32\spupdsvc.exe
      MD5: d2e9475495d8958d23995dc1fe647257 C:\WINDOWS\system32\spxcoins.dll
      MD5: d0cbd049982fc9013810e15b8d4ecdf9 C:\WINDOWS\system32\sqlsrv32.dll
      MD5: aefc991b77b13465c48b4514fc9f294f C:\WINDOWS\system32\sqlsrv32.rll
      MD5: 7d7c1d20dee3841f0364d71de92086fc C:\WINDOWS\system32\sqlunirl.dll
      MD5: 99245da31ec7da50a6941db5b2ad5114 C:\WINDOWS\system32\sqlwid.dll
      MD5: 350427e625989abb1cc40a664fbf2fe7 C:\WINDOWS\system32\sqlwoa.dll
      MD5: 777ee1290bf3a9758c21286870c14a9b C:\WINDOWS\system32\srclient.dll
      MD5: 3d0a0d394d2a878356c6ff4d46ef492e C:\WINDOWS\system32\srrstr.dll
      MD5: c791d16bf25264738b14873436293bd0 c:\windows\system32\srsvc.dll
      MD5: 3d7a334fd52dd48a60ad8ed61d77a2e2 c:\windows\system32\srvsvc.dll
      MD5: 67da457932e18d7f780cc61376d600af C:\WINDOWS\system32\ss3dfo.scr
      MD5: 110b8f94d25b0ef5abde3260744d565c C:\WINDOWS\system32\ssbezier.scr
      MD5: e4b64f7a174402b17651e607b520ea18 C:\WINDOWS\system32\SSDPAPI.dll
      MD5: 4aff5ea8bf2362c3d5001295fdeb3abd c:\windows\system32\ssdpsrv.dll
      MD5: 809592f51cf2623eaa1ee48489df3e75 C:\WINDOWS\system32\ssflwbox.scr
      MD5: 77aa5ce2484a6bf20f56b19c8a5685f7 C:\WINDOWS\system32\ssmarque.scr
      MD5: e2dda1796f06d792525633c2010635e0 C:\WINDOWS\system32\ssmypics.scr
      MD5: 1d926e47dcb0b60bfa8a1ef09465bdd7 C:\WINDOWS\system32\ssmyst.scr
      MD5: cf9403cfbb98d461cc316460045e2714 C:\WINDOWS\system32\sspipes.scr
      MD5: 2620141cfee0bc3db67f5c51bbb87382 C:\WINDOWS\system32\ssstars.scr
      MD5: c7cec5657d2ce84c7be763da8344a242 C:\WINDOWS\system32\sstext3d.scr
      MD5: 8e6569c734f94dd3f4494e0ce20aef7c C:\WINDOWS\system32\stclient.dll
      MD5: 0857394e30de11ca0cd9497e310d6469 C:\WINDOWS\system32\stdole2.tlb
      MD5: 7430a0ec3ef934ae7c4d6807d36eceba C:\WINDOWS\system32\stdole32.tlb
      MD5: 81ef34ef8800e448b9a085545ca9bcbb C:\WINDOWS\system32\sti.dll
      MD5: 150167a170feb12c9f7586092b2e4a11 C:\WINDOWS\system32\sti_ci.dll
      MD5: 8996872bcaea639841e269c9126a4ec7 C:\WINDOWS\system32\stimon.exe
      MD5: bdafa85e19fd428726b1cc2eae1cb375 C:\WINDOWS\system32\stobject.dll
      MD5: 2c5adcfe4817a1cfd6aebabc22143e37 C:\WINDOWS\system32\storprop.dll
      MD5: 35e5264ccac0898868aee5c8ac86de86 C:\WINDOWS\system32\streamci.dll
      MD5: e5e2c89593c8cc27de07b611ceed3816 C:\WINDOWS\system32\strmdll.dll
      MD5: 5f5fa31ad49b191d511d0db300eb2841 C:\WINDOWS\system32\strmfilt.dll
      MD5: e0e220be665d3997888257fb1cdefd4f C:\WINDOWS\system32\subst.exe
      MD5: fa03e1fc17f38fbdba81470d08b3e416 C:\WINDOWS\system32\svchost.exe
      MD5: 399e2d4106b5861b21685ec0d31c8adf C:\WINDOWS\system32\svcpack.dll
      MD5: 2717394e7015cbb17cfef7fd1466dd2e C:\WINDOWS\system32\swprv.dll
      MD5: 46566f4b59e0656bb7a8ff4594112176 C:\WINDOWS\system32\sxs.dll
      MD5: d09dfca2dd166f7abda48926bd549092 C:\WINDOWS\system32\syncapp.exe
      MD5: 5e2d5127eaa1aeb0e7eb601cb3a10093 C:\WINDOWS\system32\synceng.dll
      MD5: dea1be74354a57c077ba4f1edafb6110 C:\WINDOWS\system32\syncui.dll
      MD5: 1860e4a3668662c00e91fdac8a51ae70 C:\WINDOWS\system32\sysdm.cpl
      MD5: bf25922348a6664e42397a20e6b586d6 C:\WINDOWS\system32\sysinv.dll
      MD5: a32efd7c7c5cd4c9b5fed365619b8631 C:\WINDOWS\system32\syskey.exe
      MD5: bcd5b00ef8ea6178c00cda2ceae3baae C:\WINDOWS\system32\sysmon.ocx
      MD5: fb01168183ca0d90693284a489cd86fb C:\WINDOWS\system32\sysocmgr.exe
      MD5: 27d31bc9f139e01e21ff00dee7a2de4f C:\WINDOWS\system32\syssetup.dll
      MD5: 94cdf5775129636957526d0d961688cf C:\WINDOWS\system32\systeminfo.exe
      MD5: 67e5816dd4a9947bbcfd4795c78fa001 C:\WINDOWS\system32\systray.exe
      MD5: afc04f184f98074eef9ae878ed493554 C:\WINDOWS\system32\t2embed.dll
      MD5: 50edc3addaacbfc36a977183aad00350 C:\WINDOWS\system32\tapi3.dll
      MD5: 7fa28d4a89b247c94f673f2c26ba01a6 C:\WINDOWS\system32\TAPI32.dll
      MD5: b23bcc58e578d13bfae5a59dd007fac3 C:\WINDOWS\system32\tapiperf.dll
      MD5: 861e25215ba370d4ca9337c2bc0e647f c:\windows\system32\tapisrv.dll
      MD5: 74d58e02293b71a340ecdba9de758085 C:\WINDOWS\system32\tapiui.dll
      MD5: 7771d7687b85e67b7f5b5f84f41e42d3 C:\WINDOWS\system32\taskkill.exe
      MD5: 6e37f9a6cb63ae0f31c2bffa31a45735 C:\WINDOWS\system32\tasklist.exe
      MD5: b0f69fecd1e260d13ead729703ab8caf C:\WINDOWS\system32\taskman.exe
      MD5: 5700774bc70661eed3c395d1d5013789 C:\WINDOWS\system32\taskmgr.exe
      MD5: b727b520b92a55239100b43545e98dd8 C:\WINDOWS\system32\tcmsetup.exe
      MD5: 512e843110051127334c55dbf8f3a662 C:\WINDOWS\system32\tcpmib.dll
      MD5: 2c52b161c94f6d6b14fb963245e140b4 C:\WINDOWS\system32\tcpmon.dll
      MD5: c538028ae9ecdbabf38b2b25bcb03283 C:\WINDOWS\system32\tcpmonui.dll
      MD5: e1a41509b149d32e7eb8722a576e1ce8 C:\WINDOWS\system32\tcpsvcs.exe
      MD5: 23e48c80d566c5b557f8189d3e1e6639 C:\WINDOWS\system32\tdc.ocx
      MD5: 27b9255a854e9da1e064f81240b82211 C:\WINDOWS\system32\telephon.cpl
      MD5: c8146572a9f35ef87b95d03f9187177e C:\WINDOWS\system32\telnet.exe
      MD5: a4048a082282eba2728b670fc14ed0bf C:\WINDOWS\system32\termmgr.dll
      MD5: c2038466be5a6a76efd592fa0b459e17 c:\windows\system32\termsrv.dll
      MD5: ebb27d52e99303d8d9b1331c57bb61f9 C:\WINDOWS\system32\tftp.exe
      MD5: 7ee8a1e090ebee20294cd47bec4bbcd5 C:\WINDOWS\system32\themeui.dll
      MD5: d90fa8196e722e3683ad8758898bcfe4 C:\WINDOWS\system32\timedate.cpl
      MD5: a4f27c2eed0184e4f811d8342bcb117e C:\WINDOWS\system32\tlntadmn.exe
      MD5: dbb1ab74ad1f151fae7dfc2b3cfd4b07 C:\WINDOWS\system32\tlntsess.exe
      MD5: 2b7f532a887e4b942415fcd8ad40af5f C:\WINDOWS\system32\tlntsvr.exe
      MD5: c568fdbb9c4845cb6f1a282a7911cb8c C:\WINDOWS\system32\tlntsvrp.dll
      MD5: f4eefc237e61642c359655d85e476cd7 C:\WINDOWS\system32\tracerpt.exe
      MD5: 2eda48d8abb6431c52cf964719f07bf7 C:\WINDOWS\system32\tracert.exe
      MD5: ce4d06cf2a9cfbc49d4fe43649a79af3 C:\WINDOWS\system32\tracert6.exe
      MD5: a3a5bd3d39daaa3e7fd77b66c829049f C:\WINDOWS\system32\traffic.dll
      MD5: 4ff455b8efbd3d0d9b7ce0fec8f396a6 C:\WINDOWS\system32\tree.com
      MD5: bf0b2a43c17c4bbd38b8d8e10be980c1 c:\windows\system32\trkwks.dll
      MD5: 1d164c7fafe2597582c4bf2993975048 C:\WINDOWS\system32\tsappcmp.dll
      MD5: efba55436bc71d03295a365dd2e08519 C:\WINDOWS\system32\tsbyuv.dll
      MD5: f11b95c0a980adf15ed9b0a80004767f C:\WINDOWS\system32\tscfgwmi.dll
      MD5: 152175c15ea28a2b2c7445d27cc98504 C:\WINDOWS\system32\tscon.exe
      MD5: 0fdc2094fd70d807c3a7b7c630cf96ce C:\WINDOWS\system32\tscupgrd.exe
      MD5: 055d50aae9bd70158c2e807d525d4d6a C:\WINDOWS\system32\tsd32.dll
      MD5: 2cadddb504c215ba7568c35176bb6eb4 C:\WINDOWS\system32\tsddd.dll
      MD5: 5a9b28d26cf8f913f10362af39569c45 C:\WINDOWS\system32\tsdiscon.exe
      MD5: 50d900e9092034acb1db9772216f2308 C:\WINDOWS\system32\tskill.exe
      MD5: 86aaa8d59b71be2f6d41955dedf419d6 C:\WINDOWS\system32\tsshutdn.exe
      MD5: e30a7249e5b8212da57c15280e0580eb C:\WINDOWS\system32\tssoft32.acm
      MD5: 6f181724358e8806f3cf016467d1c846 C:\WINDOWS\system32\twext.dll
      MD5: 9121702322cbee1957d1617a6a38cd55 C:\WINDOWS\system32\TwnLib4.dll
      MD5: 9389654a4735c07723daaa337187d050 C:\WINDOWS\system32\txflog.dll
      MD5: f13bcafec0442c24f6bbe9c118f7e7e2 C:\WINDOWS\system32\typeperf.exe
      MD5: 3f12e1d94ead09c623ce2f4b6074c149 C:\WINDOWS\system32\udhisapi.dll
      MD5: cf27575c62a70204ddef256f5be8bb90 C:\WINDOWS\system32\ufat.dll
      MD5: 26417fd1147cb9f567d0e4d230f0cef5 C:\WINDOWS\system32\uharc.exe
      MD5: 59bb71300d2f0433dab357ebb6328c16 C:\WINDOWS\system32\ulib.dll
      MD5: 8322811132e9d09a057b8a2c6d41931b C:\WINDOWS\system32\umandlg.dll
      MD5: e384b2697f736a9705b9dfd7bf744d0d C:\WINDOWS\system32\umdmxfrm.dll
      MD5: 2ee72611246321f040850c33a72cc034 C:\WINDOWS\system32\umpnpmgr.dll
      MD5: 8101c93e2ae4499f8273e609f33debf4 C:\WINDOWS\System32\unimdm.tsp
      MD5: 412cd300eb8bc505ffe14e75a66d572f C:\WINDOWS\system32\unimdmat.dll
      MD5: 8f6d2835892524608b270927dddc8934 C:\WINDOWS\System32\uniplat.dll
      MD5: 78be5a87ac6538809a2697b57dfe81ca C:\WINDOWS\system32\unlodctr.exe
      MD5: bc8123e9966e126fdeb3064eb2fa3302 C:\WINDOWS\system32\unrar.dll
      MD5: 03f537af38d62d876f5dc1c6399b2d6e C:\WINDOWS\system32\untfs.dll
      MD5: 04afe77b13447a0df6a63da3ced6d9e9 C:\WINDOWS\system32\upnp.dll
      MD5: 85ff88417247f579eef386f2724959e0 C:\WINDOWS\system32\upnpcont.exe
      MD5: 4b48358383940f6e559da2f64753029f C:\WINDOWS\System32\upnphost.dll
      MD5: 7685078dd9c3313c939c5e3bb1028fb0 C:\WINDOWS\system32\upnpui.dll
      MD5: fcd517bf3db339f5d18ede1a95d72f71 C:\WINDOWS\System32\ups.exe
      MD5: 614bb5fd554e1d13edf2a1a3a38ce629 C:\WINDOWS\system32\ureg.dll
      MD5: 88dfbf82784df250881d4888d18e0de0 C:\WINDOWS\system32\url.dll
      MD5: 119f9fd3a45100ca9fa9ecb47bf9edea C:\WINDOWS\system32\urlmon.dll
      MD5: 45cda01a019e16954b0f48b5f28dbe04 C:\WINDOWS\system32\usbmon.dll
      MD5: 4c6c5389e736fe8e6cb450907d4c32b1 C:\WINDOWS\system32\usbui.dll
      MD5: 37ce819e8ecb3517b9981a886876ef72 C:\WINDOWS\system32\USER32.dll
      MD5: b78476bb2ed86da839eba1c244610c8d C:\WINDOWS\system32\USERENV.dll
      MD5: 7b30b4d55b4562c733a5ddf6d6f72b3f c:\windows\system32\userinit.exe
      MD5: 0405987ee320ab0572e463c1e69c0121 C:\WINDOWS\system32\USP10.dll
      MD5: fe53213fb045a44b3c04fe9b60b771ea C:\WINDOWS\system32\usrcntra.dll
      MD5: 642e7626d3976954105ae5628e66b4f9 C:\WINDOWS\system32\usrcoina.dll
      MD5: 5695c470d434acaed614129271a5bb18 C:\WINDOWS\system32\usrdpa.dll
      MD5: 9f006ff38aa5124f141eaf7c75040d91 C:\WINDOWS\system32\usrdtea.dll
      MD5: cc8115e08932885680941fc37290883b C:\WINDOWS\system32\usrfaxa.dll
      MD5: 2969ce28a29aa29ccfdba4477521374c C:\WINDOWS\system32\usrlbva.dll
      MD5: 1cc879efcb63281e574ce5a42e4cc19f C:\WINDOWS\system32\usrmlnka.exe
      MD5: 151474b046ed63346408c7c72bc74ba9 C:\WINDOWS\system32\usrprbda.exe
      MD5: c3cb07cbccff6344dc76de067d7d6b2b C:\WINDOWS\system32\usrrtosa.dll
      MD5: 05362fb50aa0dd7f6bf05440b4ed182c C:\WINDOWS\system32\usrsdpia.dll
      MD5: 09f4b766651ed718608b06f1da2a20ca C:\WINDOWS\system32\usrshuta.exe
      MD5: ece0f42f41b98b7303bacac796f41264 C:\WINDOWS\system32\usrsvpia.dll
      MD5: 092a9d238395ce8bda0c4ae1aaa21150 C:\WINDOWS\system32\usrv42a.dll
      MD5: bc783d0112e47c063184089158870948 C:\WINDOWS\system32\usrv80a.dll
      MD5: 3d9b99cdeac6e6739b47a9b5321602c4 C:\WINDOWS\system32\usrvoica.dll
      MD5: 42aa3bdc3645b2a2db3d0f4515590b11 C:\WINDOWS\system32\usrvpa.dll
      MD5: a1435513eb5909a60ee7a9370df77dd9 C:\WINDOWS\system32\utildll.dll
      MD5: 64ca9ef31917023b2a4a810637cdac1a C:\WINDOWS\system32\utilman.exe
      MD5: 2c1d59933077ba0d8a64cb1fb9ef8638 C:\WINDOWS\system32\uwdf.exe
      MD5: d56227e628537269df9d0ff04aa67768 C:\WINDOWS\system32\uxtheme.dll
      MD5: 151d7b0bc41479743e401157b533148d C:\WINDOWS\system32\VBAEN32.OLB
      MD5: ee98d46b1aa7f935b264ab6901fd1ce6 C:\WINDOWS\system32\VBAEND32.OLB
      MD5: 666c9655b9184a232295d6f169ff330f C:\WINDOWS\system32\VBAES32.OLB
      MD5: 80bbe38cecd0cf0ee3e21dca3c39caaf C:\WINDOWS\system32\vbajet32.dll
      MD5: ed7b718d63d2ca397ac2ff12ce78df7b C:\WINDOWS\system32\VBAME.DLL
      MD5: 2ca5c7ed8ad1b5666346c415b3bdb965 C:\WINDOWS\system32\vbicodec.ax
      MD5: c3cdb6e041b33d906360ca8592b27885 C:\WINDOWS\system32\vbisurf.ax
      MD5: 767d22c6e47a4d73ae0253b83bc7be64 C:\WINDOWS\system32\vbscript.dll
      MD5: a725a880a743b47f130755fd0a991ef0 C:\WINDOWS\system32\vbses.dll
      MD5: 82d58fc961ddf0ec5c61cdc0c3f14fe6 C:\WINDOWS\system32\vbzlib1.dll
      MD5: 23d0e6f77530053a7c7409fd09f454ac C:\WINDOWS\system32\vcdex.dll
      MD5: aa5704ee4285d973b8800a6615abf9bc C:\WINDOWS\system32\vdmdbg.dll
      MD5: f7248a556d4c66d3a84a714dada492ba C:\WINDOWS\system32\vdmredir.dll
      MD5: e33c17f0d4c580a6874b8adf802c1058 C:\WINDOWS\system32\VEN2232.OLB
      MD5: 31b020255b1d66225af2cf82f53ee659 C:\WINDOWS\system32\verclsid.exe
      MD5: bb6a35ff532e094d35390586f638ae8b C:\WINDOWS\system32\verifier.dll
      MD5: 6063b598279f8a13e1cfe12983fc54b5 C:\WINDOWS\system32\verifier.exe
      MD5: 63782f8342bb8f04e0afcaaba2b60c09 C:\WINDOWS\system32\VERSION.dll
      MD5: 3239ff835d44d69e11ff16748b82bf78 C:\WINDOWS\system32\vfpodbc.dll
      MD5: 8e4cac1148652cd1d03d4e778b8a9769 C:\WINDOWS\system32\vga.dll
      MD5: 7dc14e9f305843ba092780430ca8dfb8 C:\WINDOWS\system32\vga256.dll
      MD5: 6e52452d11767947ae343d31f0c1bfde C:\WINDOWS\system32\vga64k.dll
      MD5: 783612616e4222503de7f3babb981992 C:\WINDOWS\system32\vimc.exe
      MD5: 654d29eac9106f844e44d83c7abdbd6d C:\WINDOWS\system32\vistaui.exe
      MD5: e8c15188f44859f100d7b8b094cd923a C:\WINDOWS\system32\vjoy.dll
      MD5: 55ca1bff59bded14d855aaa5c5c0a6c1 C:\WINDOWS\system32\vp6dec.ax
      MD5: fa68149c2013c4a3354b6fc1a5346263 C:\WINDOWS\system32\vp6vfw.dll
      MD5: c758ebc719c0d07b1b0e251c77f11bfd C:\WINDOWS\system32\VSFLEX3.OCX
      MD5: 56973c5f8d43291c377d4e00da689a70 C:\WINDOWS\system32\vss_ps.dll
      MD5: e800ec8e587ccc339afddc350c2ea1f2 C:\WINDOWS\system32\vssadmin.exe
      MD5: 64b1c933a9a34b2ce9e9e2e03cb02bb2 C:\WINDOWS\system32\VSSAPI.DLL
      MD5: e8649ec7621b5ae45a29164cae41a6df C:\WINDOWS\System32\vssvc.exe
      MD5: 435b61548f2b1469e495aa3b9a0afdc2 C:\WINDOWS\system32\vwipxspx.dll
      MD5: 13835c57c973519f82b27ea506239369 C:\WINDOWS\system32\w32time.dll
      MD5: 1ab8bb679006147d3a9053d70a340ba2 C:\WINDOWS\system32\w32tm.exe
      MD5: dcee78593dd5af6550e7161690de032a C:\WINDOWS\system32\w32topl.dll
      MD5: ef167770bd4358b395608f61ba11c6d4 C:\WINDOWS\System32\w3ssl.dll
      MD5: c9bf2f12c4e6c12f8a85fba4b6bc6208 C:\WINDOWS\system32\watchdog.sys
      MD5: 919f7f5016ad8febebd9197e53c00c56 C:\WINDOWS\system32\wavemsp.dll
      MD5: dc466375cbbad9eaeda7947795696a17 C:\WINDOWS\System32\Wbem\esscli.dll
      MD5: da08a3dd1c6a7232fb7c490fa86d5539 C:\WINDOWS\System32\Wbem\FastProx.dll
      MD5: 510f0192b90b83e05470cd5b901cbb35 C:\WINDOWS\system32\wbem\ncprov.dll
      MD5: 5740365a9cc5dca241a43985e4805711 C:\WINDOWS\system32\wbem\repdrvfs.dll
      MD5: 4ae6d629eee0f66957e3395934a9feef C:\WINDOWS\system32\wbem\wbemcomn.dll
      MD5: 6eaf189685b3cd2d9736fd0a44b2917a C:\WINDOWS\system32\wbem\wbemcons.dll
      MD5: 33d721db9a9ecbd0d659a452a95d36f5 C:\WINDOWS\System32\Wbem\wbemcore.dll
      MD5: f3941acbf900b232785b545dbddc551d C:\WINDOWS\system32\wbem\wbemess.dll
      MD5: af4d955bbd1dea03b3b00fcedf329867 C:\WINDOWS\system32\wbem\wbemprox.dll
      MD5: 0c7274c870364ec6ae52fec5b20a711c C:\WINDOWS\system32\wbem\wbemsvc.dll
      MD5: 2710bf9b02bc92d352cfcabac64918fa C:\WINDOWS\system32\wbem\wmiapsrv.exe
      MD5: 2da99fc4853e880e785b28fb6f1a7048 C:\WINDOWS\system32\wbem\wmiprvsd.dll
      MD5: 3e8df5e4f0e6419801ff5f568cc8c531 c:\windows\system32\wbem\wmisvc.dll
      MD5: 23f8286ab53f240ba3e512077a4ee9f2 C:\WINDOWS\system32\wbem\wmiutils.dll
      MD5: 7ba616720bc8efaf17a633d3f8cd5b6e C:\WINDOWS\system32\wdfapi.dll
      MD5: 2c1d59933077ba0d8a64cb1fb9ef8638 C:\WINDOWS\system32\wdfmgr.exe
      MD5: 729ab5989ef684d1e81b0ad847b99538 C:\WINDOWS\system32\wdigest.dll
      MD5: a5c9aa158765d2fee94ffce39e07d5bc C:\WINDOWS\system32\wdmaud.drv
      MD5: b26b2f14112371eca3e0377c28192ed6 C:\WINDOWS\system32\webcheck.dll
      MD5: fe510db5cad5403dded6ebc7a9ab7eb8 c:\windows\system32\webclnt.dll
      MD5: 6892962df396788959886aea64321861 C:\WINDOWS\system32\webhits.dll
      MD5: 6933a802b0d10d92f9fd1323504beb13 C:\WINDOWS\system32\wextract.exe
      MD5: 1da80e9358469ab8fbd8a02acf3b0caf C:\WINDOWS\system32\WgaLogon.dll
      MD5: bfb7e29151fba0df4a899cda4a87353c C:\WINDOWS\system32\WgaTray.exe
      MD5: 0fbdc971fdf7c1b925591fc37db7d62a C:\WINDOWS\system32\wiaacmgr.exe
      MD5: 75a2df4aa4c137b45bf27d7753072dfe C:\WINDOWS\system32\wiadefui.dll
      MD5: d1fcf8458a2ac188569e12eef19bb580 C:\WINDOWS\system32\wiadss.dll
      MD5: ba3d945c6a25aecf3975d57bef260bd9 C:\WINDOWS\system32\wiascr.dll
      MD5: fffa385feadc60175c653afb215f539a c:\windows\system32\wiaservc.dll
      MD5: 494b67056fba36edbb156ee86823d816 C:\WINDOWS\system32\wiasf.ax
      MD5: e82ebb7142a8ec94f4ca8a953e94c9f7 C:\WINDOWS\system32\wiashext.dll
      MD5: 8b646d499815f05177857db5f40e2920 C:\WINDOWS\system32\wiavideo.dll
      MD5: 2cabf4e48093b7e2bd94525066c75faf C:\WINDOWS\system32\win.com
      MD5: f321e986a0ca193fb8290799ce8a6b44 C:\WINDOWS\system32\win32k.sys
      MD5: a2be1bc9805bb1871ca736eac3286674 C:\WINDOWS\system32\win32spl.dll
      MD5: 52221760086c1846d00cc8d350c84671 C:\WINDOWS\system32\winbrand.dll
      MD5: 5bb6c083891958be85bf628ba4594cad C:\WINDOWS\system32\winchat.exe
      MD5: f3f38ac8d5c1c35cfa48a597ecbb1290 C:\WINDOWS\system32\WindowsCodecs.dll
      MD5: 6eb28d7c107ebcdc41edd7bc31f9943e C:\WINDOWS\system32\WindowsCodecsExt.dll
      MD5: 5e0a5d6ad40c1099539c66f71c955b04 C:\WINDOWS\system32\winfax.dll
      MD5: 660336ad0305c852122c5eebbace9baf C:\WINDOWS\system32\WinFXDocObj.exe
      MD5: f4e32b09918eb681b47775e5cc73f4b0 C:\WINDOWS\system32\winhlp32.exe
      MD5: 7e6b7e00f99c75dd512d713d5e34db35 C:\WINDOWS\system32\WINHTTP.dll
      MD5: 92995334f993e6e49c25c6d02ec04401 C:\WINDOWS\system32\WININET.dll
      MD5: df3653cabbabb250990fe7751bbe144b C:\WINDOWS\system32\WINIPSEC.DLL
      MD5: fcb59d25d628b4d3181dc816d14679dd C:\WINDOWS\system32\winlogon.exe
      MD5: 68c4c372746d9ede77cdaea71f0a471e C:\WINDOWS\system32\winmine.exe
      MD5: 4daca52cd97684361e9ef286bc14cdd7 C:\WINDOWS\system32\WINMM.dll
      MD5: c2268e544445b51801dbdc6318174759 C:\WINDOWS\system32\winmsd.exe
      MD5: 4ee647924bccd63c2bf3fd4082412c72 C:\WINDOWS\system32\winntbbu.dll
      MD5: f8964f6a531617996a19a1e1578fbf0e C:\WINDOWS\System32\winrnr.dll
      MD5: 60d566af806921e2cd35ab5209972806 C:\WINDOWS\system32\WINSCARD.DLL
      MD5: 029667903bcd793194e498c507cfd05b C:\WINDOWS\system32\winshfhc.dll
      MD5: c768c98273e921070e41a1e2a716cb86 c:\windows\system32\WINSPOOL.DRV
      MD5: 30b2f21fd65baeb3b23a3124140d2c0c C:\WINDOWS\system32\winsrv.dll
      MD5: 33120dd98212091749e82c8f9e1463d6 C:\WINDOWS\system32\WINSTA.dll
      MD5: da13eb76a04ee6fd93f9502307a22b20 C:\WINDOWS\system32\winstrm.dll
      MD5: 5fb923b2ebbe7153528ab477878a2fe0 C:\WINDOWS\system32\WINTRUST.dll
      MD5: 052fe13dcb813aedce67d98d14d19068 C:\WINDOWS\system32\winver.exe
      MD5: 99783fa6bfeb23a5f97b4a8db36c8a39 C:\WINDOWS\system32\WISPTIS.EXE
      MD5: 7190bf2cb19eff489c06dc6ee1760afb c:\windows\system32\wkssvc.dll
      MD5: 178b645e4d2357666f63e53f6f0b47cd C:\WINDOWS\system32\WLDAP32.dll
      MD5: 389718d97e8a89be0121eaf254e5c3d9 C:\WINDOWS\system32\WlNotify.dll
      MD5: 8255fceef3566c44e6f2bcfe15eb198f C:\WINDOWS\system32\WMADMOD.dll
      MD5: 033f4c2023ddfc096c0877caaeab9872 C:\WINDOWS\system32\WMADMOE.dll
      MD5: 808058051c6848fa80622903c12ac950 C:\WINDOWS\system32\WMASF.dll
      MD5: 1229eecd590b0f77a1738bb542cd5080 C:\WINDOWS\system32\wmdmlog.dll
      MD5: ef84ed40b288c4576a32d76e60317d6b C:\WINDOWS\system32\wmdmps.dll
      MD5: 4f372c68f7d7546171473870f307ca17 C:\WINDOWS\system32\wmdrmdev.dll
      MD5: 01446aca514121e876126c13b1332102 C:\WINDOWS\system32\wmdrmnet.dll
      MD5: 84b68c6ec17c99943f0ea68215bb2238 C:\WINDOWS\system32\wmdrmsdk.dll
      MD5: 2dc1fee6c759ac3a71c6ea57c6f8b87b C:\WINDOWS\system32\wmerrESP.dll
      MD5: 6a2e7fa5e65a6c9350da5d69217b5f55 C:\WINDOWS\system32\wmerror.dll
      MD5: b5d731f4476d645a4b0aa18ecb346baa c:\windows\system32\WMI.dll
      MD5: c4c2be99f6cca8022cf0126381fe5390 C:\WINDOWS\system32\wmidx.dll
      MD5: 50368828e45de764c1e96493ca41724e C:\WINDOWS\system32\wmiprop.dll
      MD5: 2572b908f06caba257f577d3dae54aee C:\WINDOWS\system32\wmiscmgr.dll
      MD5: 0da7a99ac35ec469c366c9ad73926f0e C:\WINDOWS\system32\WMNetMgr.dll
      MD5: 8d9e208cebe64d61333f294fa0eb31b2 C:\WINDOWS\system32\wmp.dll
      MD5: c57781d79e56bc5d07615e90ef1f8d5c C:\WINDOWS\system32\wmpasf.dll
      MD5: 0f77334b0d70610e2a5b7c27f3308690 C:\WINDOWS\system32\wmpdxm.dll
      MD5: 2c975e335bfebcd465f505462ebc6751 C:\WINDOWS\system32\wmpeffects.dll
      MD5: 38557384f3a16c412a24ac815a106701 C:\WINDOWS\system32\wmpencen.dll
      MD5: f9e1010aa77690b89d4b9906f48c7f2e C:\WINDOWS\system32\WMPhoto.dll
      MD5: 0456586c1d12a21dd969825efe499739 C:\WINDOWS\system32\wmploc.dll
      MD5: 3b8cfda90efaa65901ecc2edcad4d1ef C:\WINDOWS\system32\wmpmde.dll
      MD5: 5ccb54a9cf8fc5e3251374e0dc9c45bb C:\WINDOWS\system32\wmpps.dll
      MD5: 1ba85806183fb19e22970d6ba4a9c0d1 C:\WINDOWS\system32\wmpshell.dll
      MD5: 69c1cbc16f8ff598674fc5f5ba413f1a C:\WINDOWS\system32\wmpsrcwp.dll
      MD5: 0708af46f793ae68c90c216e5785938d C:\WINDOWS\system32\wmsdmod.dll
      MD5: 6554c7a597d8da6a90f8c2a4f751f836 C:\WINDOWS\system32\wmsdmoe2.dll
      MD5: bd114f1aa614451e99c6806307375a9a C:\WINDOWS\system32\WMSPDMOD.dll
      MD5: d6e858f9496f7869d18b559ac5565c08 C:\WINDOWS\system32\WMSPDMOE.dll
      MD5: ff9ecf4e586964083c075b6608246b49 C:\WINDOWS\system32\wmv8ds32.ax
      MD5: 99110846f91b2301ca6d6e7bf7561576 C:\WINDOWS\system32\WMVADVD.dll
      MD5: 0571d54f53ce5a70cc188656856df285 C:\WINDOWS\system32\WMVADVE.DLL
      MD5: 711ce861c22e64ab180ba9887ef8dda9 C:\WINDOWS\system32\wmvcore.dll
      MD5: ba26ddbb7c725c2914d125377777e24f C:\WINDOWS\system32\WMVDECOD.dll
      MD5: 51eefb2214781f029341e39cb9b0b8eb C:\WINDOWS\system32\wmvdmod.dll
      MD5: 71b08dbf75f414e82b1907e3b49aa52e C:\WINDOWS\system32\wmvdmoe2.dll
      MD5: a4eac1922b0aebd51fc0741b092b62fb C:\WINDOWS\system32\wmvds32.ax
      MD5: c8fdd26cbf4426f0b4528ff53e6c15b3 C:\WINDOWS\system32\WMVENCOD.dll
      MD5: c5f32426280148122fb87851d3da5faf C:\WINDOWS\system32\WMVSDECD.dll
      MD5: 5045edafcc71d0c4b23b3b498888f7d2 C:\WINDOWS\system32\WMVSENCD.dll
      MD5: da00b148e85819771d47a357708c0b1e C:\WINDOWS\system32\WMVXENCD.dll
      MD5: 6beafcb3de9010a7eaa9c42dead8e1a7 C:\WINDOWS\system32\wnaspi32.dll
      MD5: f5f333ce7f275061e73222e8c1115e52 C:\WINDOWS\system32\wow32.dll
      MD5: 38ab260c414bed30a0313f91679023eb C:\WINDOWS\system32\wowfax.dll
      MD5: 81e984fc6e26de937eb2f5ebe7a7c3c3 C:\WINDOWS\system32\wowfaxui.dll
      MD5: 0f093ac547e46dcbbd2912eeb0b25833 C:\WINDOWS\system32\wpabaln.exe
      MD5: 6d8e102c09778a654fa500d5bdf11236 C:\WINDOWS\system32\wpd_ci.dll
      MD5: 1b56359f8d0cfcda883ad5b189c956a5 C:\WINDOWS\system32\wpdconns.dll
      MD5: abf7188176c4666bb9e66e2c80c4e7f6 C:\WINDOWS\system32\wpdmtp.dll
      MD5: c230e6b5322382f56c8193448e4754d5 C:\WINDOWS\system32\wpdmtpus.dll
      MD5: 81d2a27c916c7830743e4afa454099f7 C:\WINDOWS\system32\WpdShext.dll
      MD5: f585fd5a80adca994b7edf274c39c931 C:\WINDOWS\system32\wpdshextautoplay.exe
      MD5: b1787f61469b564fb03ccc54c36f1cda C:\WINDOWS\system32\wpdshextres.dll
      MD5: d8ecf824c0285eed6e52e4249a56853f C:\WINDOWS\system32\wpdsp.dll
      MD5: 4b01d78f51e570829efa32c3159ad4ac C:\WINDOWS\system32\wpnpinst.exe
      MD5: dfe0d66b60bead95520c92825d558e15 C:\WINDOWS\system32\write.exe
      MD5: b4a90738ba4355f187bd26d6c112082b C:\WINDOWS\system32\WS2_32.dll
      MD5: 0edf3501370a14befb27526cd06facee C:\WINDOWS\system32\WS2HELP.dll
      MD5: ae9c26fa9e7f1f144955a1e008043f63 C:\WINDOWS\system32\wscript.exe
      MD5: 72757eae18714da757eb11e633772328 C:\WINDOWS\system32\wsecedit.dll
      MD5: e6bd9615af5cd402068135891a3d9b98 C:\WINDOWS\system32\wshatm.dll
      MD5: 7ae3ef18cedb83982ec4e4b5c19b7104 C:\WINDOWS\system32\wshbth.dll
      MD5: 0de257986cfa7236c7f5b03913567c79 C:\WINDOWS\system32\wshcon.dll
      MD5: 73f2afa4a0d1802c79cfe82ef5a3e493 C:\WINDOWS\system32\wshES.DLL
      MD5: d2794cc11b47303943de6c7cb3cbcdf9 C:\WINDOWS\system32\wshext.dll
      MD5: 2e0cf84b0022fa2b791f66fbb7edbdb9 C:\WINDOWS\system32\wship6.dll
      MD5: 13dc3d07069255f07907ecab9559c873 C:\WINDOWS\System32\wshirda.dll
      MD5: 3ef9bc698eeafc5eef3ff8e35a1b9835 C:\WINDOWS\system32\wshisn.dll
      MD5: 9a338c5f7325a8d8aec37dcb89b5fdd6 C:\WINDOWS\system32\wshnetbs.dll
      MD5: 45a87dbbfb14ff12b81e166147799c81 C:\WINDOWS\system32\wshom.ocx
      MD5: 9165118881fdfa880d317063cd2206e4 C:\WINDOWS\system32\WshRm.dll
      MD5: de1a0e546351e4d33bb7e1fb8480e9e1 C:\WINDOWS\System32\wshtcpip.dll
      MD5: 44ed9d2679b2e353f841306cf83dd5c7 C:\WINDOWS\system32\wsnmp32.dll
      MD5: 00462be00fb1f23e628c80ad659b9258 C:\WINDOWS\system32\WSOCK32.dll
      MD5: c0aef178c0741ec754dc6d9c41003074 C:\WINDOWS\system32\wstdecod.dll
      MD5: f15473f1f30c13ddbd346f848029fe58 C:\WINDOWS\system32\wstpager.ax
      MD5: ac3ae63edd6910b8df761c602f30e5eb C:\WINDOWS\system32\wstrenderer.ax
      MD5: a1f248da1e3a510940aa3e1a74c35057 C:\WINDOWS\system32\WTSAPI32.dll
      MD5: 6a9198c1916ce4fd1dc4ac06832a955b C:\WINDOWS\system32\wuapi.dll.mui
      MD5: 4e3b31688eadd88b2eeacbf492d7d02c C:\WINDOWS\system32\wuauclt1.exe
      MD5: 23e8fdb06ca263a15c2fb18908305e98 C:\WINDOWS\system32\wuaucpl.cpl.mui
      MD5: 3ce09d1ad0dcefb3ae22a1afe117156f C:\WINDOWS\system32\wuaueng.dll.mui
      MD5: c02193d8297d670641d11a28641a98b4 C:\WINDOWS\system32\wuaueng1.dll
      MD5: eeda22e0c570c7204724c3a30a0b1a40 c:\windows\system32\wuauserv.dll
      MD5: a0af00ad1991381d62dc5f1a53097ed0 C:\WINDOWS\system32\wucltui.dll.mui
      MD5: c7b9486f3b620b4b02828ed42eca2f59 C:\WINDOWS\system32\WUDFCoinstaller.dll
      MD5: 96f4266c594d6c880949e98d8f6a2b91 C:\WINDOWS\system32\WudfHost.exe
      MD5: 904120aab6ef27b6af73c19d09eb2695 c:\windows\system32\WUDFPlatform.dll
      MD5: ae93084d2d236887ba56467ae42b4955 c:\windows\system32\wudfsvc.dll
      MD5: caa051a6e8adb76ada73c27f713eff4d C:\WINDOWS\system32\WudfUpdate_01005.dll
      MD5: a37eca9d41690c98cb398ebc99a28fae C:\WINDOWS\system32\WUDFx.dll
      MD5: 2192c44862300180275126e89d2eadec C:\WINDOWS\system32\wupdmgr.exe
      MD5: 033af4ce25b6d871f0de2c982658e049 C:\WINDOWS\system32\wuweb.dll
      MD5: 5a7309168c7cdac34048bd1af33c6ed5 C:\WINDOWS\system32\wzcdlg.dll
      MD5: 9b7152134cd7fd013436f87d1822236e c:\windows\system32\WZCSAPI.DLL
      MD5: e28bb7bb83250346eb4e71134acd5627 c:\windows\system32\wzcsvc.dll
      MD5: 4e961525cc7ff0e5d7da19e170b7c14c C:\WINDOWS\system32\x3daudio1_0.dll
      MD5: 121b131eaa369d8f58dacc5c39a77d80 C:\WINDOWS\system32\x3daudio1_1.dll
      MD5: f6a9fc2ad2f9111372b5ab3bba3707ec C:\WINDOWS\system32\X3DAudio1_2.dll
      MD5: 2112fe0c46662d429347a7d7b49e3ece C:\WINDOWS\system32\xactengine2_0.dll
      MD5: 7c9952111f4c743b9f0d8b68b6ed93c9 C:\WINDOWS\system32\xactengine2_1.dll
      MD5: 73e055af78a64f9b2779d44407ca2ab6 C:\WINDOWS\system32\xactengine2_10.dll
      MD5: 5c4d3843b491c047b7a619901fbd2ec1 C:\WINDOWS\system32\xactengine2_2.dll
      MD5: 69d841744b2bae38fbb2d40a230a549c C:\WINDOWS\system32\xactengine2_3.dll
      MD5: 6550e1a0a7be611592c31222fcb981fb C:\WINDOWS\system32\xactengine2_4.dll
      MD5: 86c93789e9006f1ac47ed9dd47d4c8a1 C:\WINDOWS\system32\xactengine2_5.dll
      MD5: 39000e033d39d19ccce21aeafcce2476 C:\WINDOWS\system32\xactengine2_6.dll
      MD5: 7febb8ce2233cbae738b16d42ed29674 C:\WINDOWS\system32\xactengine2_7.dll
      MD5: 499210c45afeaadee8cf4dcf7d5e570b C:\WINDOWS\system32\xactengine2_8.dll
      MD5: 46ee68f04a75a1ccf40235ea6f1cba05 C:\WINDOWS\system32\xactengine2_9.dll
      MD5: dcd17c2da8171f8daf64e2d72ca48fc0 C:\WINDOWS\system32\xactsrv.dll
      MD5: 62b37884a8bb1375d69d04b9e12b3a1d C:\WINDOWS\system32\xcopy.exe
      MD5: d2f4be37d2d716a2e7c702b451cfed6a C:\WINDOWS\system32\xenroll.dll
      MD5: f1726346e583442541fe73429f8e9c10 C:\WINDOWS\system32\xinput1_1.dll
      MD5: 33b62be226934e1b01f5043870c70427 C:\WINDOWS\system32\xinput1_2.dll
      MD5: 77f595dee5ffacea72b135b1fce1312e C:\WINDOWS\system32\xinput1_3.dll
      MD5: adfb6d7b61e301761c700652b6fe7ccd C:\WINDOWS\system32\xinput9_1_0.dll
      MD5: 215422272bbadd7dda57d0372062d293 C:\WINDOWS\system32\xmllite.dll
      MD5: 843e0db8042a8c0d749eb2b9efa54f24 C:\WINDOWS\System32\xmlprov.dll
      MD5: 2c64cf5f0cc6eb4a4e40180e3eaa3067 C:\WINDOWS\system32\xmlprovi.dll
      MD5: 26a9c6a0856d7b5f28e783ba000819bb C:\WINDOWS\system32\xolehlp.dll
      MD5: d0189526437e7369bf8b6e5d4e276614 C:\WINDOWS\system32\xpob2res.dll
      MD5: 854424474f89e166aad390070cc28025 C:\WINDOWS\system32\xpsp1res.dll
      MD5: 35b9f42fe4d25f05313a799350db89e9 C:\WINDOWS\system32\xpsp2res.dll
      MD5: 932bc45a5a55dd32b2395a6dcc2a320f C:\WINDOWS\system32\xpsp3res.dll
      MD5: f3b02c70170ca8c27db8e77c7c8f871e C:\WINDOWS\system32\xvidcore.dll
      MD5: a91f3321579565eaf97f52fa2177e341 C:\WINDOWS\system32\xvidvfw.dll
      MD5: dd602c1fba3a3e962627569c9e10af7c C:\WINDOWS\system32\yv12vfw.dll
      MD5: b0f69fecd1e260d13ead729703ab8caf C:\WINDOWS\TASKMAN.EXE
      MD5: 4a4465361a5f105b01d13a628c0bf41b C:\WINDOWS\twain_32.dll
      MD5: 932a34e94d1901c61173061e9bb276b0 C:\WINDOWS\twunk_32.exe
      MD5: 0fd28af2363165807d1eb02fc2fd77d9 C:\WINDOWS\vmmreg32.dll
      MD5: d2ec6524b24765b7281e0b03c33ce08a C:\WINDOWS\winhlp32.exe
      MD5: 27cdcd592cccbc1a5a62a0de169b5bbb C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
      MD5: 4c39ac4f586d1973b823fdbc06040d2a C:\WINDOWS\WLXPGSS.SCR

      Archivo no enviado
      Scan finished - communication took 14 sec
      Total traffic - 0.06 MB enviado, 8.81 KB recibido
      Scanned 2323 files and modules - 135 seconds

      Perdon por postearlo asi es que no me daban los chars y no supe como ponerlos de otra forma
      Desde ya muchas graciias por su tiempo

    7. #7
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Varios Virus

      Buenas

      Asi como los pegaste esta correcto

      Bueno observo varias cosas, asi que si te parece realizemos lo siguiente que seran varios pasos y si gustas puedes imprimir y/o copiar las intruciones para tenerlas a la mano:
      Descarga la ultima version de este programa:
      Desisntala los siguientes programas, despues ve a Mozill, y en el menu, en Herramientas>Complementos elimina los que se parescan:
      AppBar Alot
      Conduit Toolbar (Tambien la toolbar de Isobuster, isobuster_es)
      MyFunCards Search Assistant
      RadioWMPCore
      Daemon Tools toolbar
      Descarga TDSSKiller:
      Ejecuta TDSSKiller segun su manual y siguiendo estas especificaciones:
      Desconecta tu ordenador de Internet (Desconecta el cable).
      • Descomprime el archivo tdsskiller.zip y ejecutalo
      • Presiona clic sobre
      • Marca también las casillas:

      • Presiona clic sobre el botón

        .
      • TDSSKiller comenzara a analizar el equipo. Cuando termine procede como indica el manual sin olvidar omitir los archivos que marque como sospechosos y curar o eliminar los que marque como infeccion.


      Ejecuta A-T Destroyer siguiendo estas indicaciones:
      • Desactiva temporalmente el Antivirus y/o Antispyware.
      • Ejecuta AT-Destroyer como administrador.
      • Aparecerá el Disclaimer, si estas de acuerdo, presiona SI para continuar.
      • Presiona sobre la opción 1 (Buscar y Destruir) para comenzar es escaneo.
      • AT-Destroyer desconectará el escritorio momentáneamente.
      • En caso de estar infectado, AT-Destroyer lo indicará con lineas rojas donde se haya encontrado la infección, sino, serán lineas verdes.
      • Una vez terminado el escaneo, podrás volver a ver el escritorio y se te abrirá un reporte, que deberás copiar en tu próxima respuesta comentando cómo funciona el sistema.
      • Si algún programa no inicia, reiniciar la PC.


      Descarga OTM y colocalo en el esritorio:

      Precaución: OTMoveIt es un programa muy potente, diseñado para remover archivos y carpetas rebeldes en el proceso de detección y eliminación de las infecciones causada por diversos tipos de malware. Se recomienda que sea "utilizado bajo la dirección y supervisión de un experto", no para uso privado. El uso de esta herramienta incorrecta y sin un control adecuado puede llevar a desastrosos problemas con su sistema operativo.
      • Despues ejecutalo segun su manual y desactivando temporalmente cualquier programa de seguridad.
      • Pegaras el siguiente texto en el marco izquierdo que pone Paste instruccions for items to be moved - (Se excluye la palabra "codigo").
        Código:
        :processes
        cdswitch.exe
        
        :files
        C:\WINDOWS\system32\cdswitch.exe 
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\AlotXpcom.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]
        c:\archivos de programa\conduitengine\prxconduitengine.dll
        c:\archivos de programa\conduitengine\
        c:\archivos de programa\isobuster_es\prxtbisob.dll
        c:\archivos de programa\isobuster_es
        c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8bar.dll
        c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8srcas.dll
        c:\archivos de programa\myfuncardsbarie
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}\components\RadioWMPCore.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\RadioWMPCore.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{9c905b42-976e-43c1-bc30-fc5937017909}\components\FFExternalAlert.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{9c905b42-976e-43c1-bc30-fc5937017909}\components\RadioWMPCore.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\RadioWMPCoreGecko19.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}\components\RadioWMPCoreGecko19.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]
        c:\archivos de programa\daemon tools toolbar\dttoolbar.dll
        c:\archivos de programa\daemon tools toolbar
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\DTToolbarFF.dll
        C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]
        
        :commands
        [purity]
        [emptytemp]
        [emptyflash]
      • Presionas el boton MoveIt!.
      • El programa comenzara a hacer su trabajo, espera pacientemente a que termine.
      • Cuando termine te preguntara si quieres reiniciar para eliminr algunos archivos.
      • Le damos "Yes" para reiniciar de inmediato, Permite que se reinicie el equipo, esto es importante.. De no hacerlo reinicia manualmente

      Nota: Es posible que note archivos u carpetas visibles en el escritorio y/o en otro apartado del sistema, esto es normal, al finalizar los procedimientos, todo volverá a la normalidad.
      Descarga Eset Smart Installer:
      Ejecuta Eset como se indica en el manual y te aseguras de Activar las siguientes casillas antes de iniciar el escaneo:
      • Eliminar las amenazas detectadas
      • Analizar archivos
      • Analizar en busca de aplicaciones potencialmente indeseables
      • Analizar en busca de aplicaciones potencialmente peligrosas
      • Activar la tecnología Anti-Stealth
      Nos traerias el reporte de OTM de C: \ _ OTM\MovedFiles\***_***.log (Donde sale "***_***" es la fecha y hora), de TDSSKiller (C:\TDSSKiller.x.xx.x_xx.xx.xxxx_xx.xx.xx_log.txt donde "x.xx.x_xx.xx.xxxx_xx.xx.xx" son versión, fecha y hora), AT destroyer (c:\atdestroyer.txt) y eset (%programfiles%\Eset\Eset Online Scanner\log.txt), comentandonos el estado del problema.

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de ks gregn
      Registrado
      may 2012
      Ubicación
      rojas
      Mensajes
      16

      Re: Varios Virus

      aca dejo los logs....

      13:50:17.0156 3300 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
      13:50:19.0171 3300 ============================================================
      13:50:19.0171 3300 Current date / time: 2012/10/27 13:50:19.0171
      13:50:19.0171 3300 SystemInfo:
      13:50:19.0171 3300
      13:50:19.0171 3300 OS Version: 5.1.2600 ServicePack: 2.0
      13:50:19.0171 3300 Product type: Workstation
      13:50:19.0171 3300 ComputerName: MOYANOLAPC
      13:50:19.0171 3300 UserName: Administrador
      13:50:19.0171 3300 Windows directory: C:\WINDOWS
      13:50:19.0171 3300 System windows directory: C:\WINDOWS
      13:50:19.0171 3300 Processor architecture: Intel x86
      13:50:19.0171 3300 Number of processors: 2
      13:50:19.0171 3300 Page size: 0x1000
      13:50:19.0171 3300 Boot type: Normal boot
      13:50:19.0171 3300 ============================================================
      13:50:26.0843 3300 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
      13:50:26.0859 3300 ============================================================
      13:50:26.0859 3300 \Device\Harddisk0\DR0:
      13:50:26.0859 3300 MBR partitions:
      13:50:26.0859 3300 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1177B483
      13:50:26.0875 3300 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0x1177B501, BlocksNum 0x129D5C0
      13:50:26.0875 3300 ============================================================
      13:50:26.0921 3300 C: <-> \Device\Harddisk0\DR0\Partition1
      13:50:26.0937 3300 D: <-> \Device\Harddisk0\DR0\Partition2
      13:50:26.0937 3300 ============================================================
      13:50:26.0937 3300 Initialize success
      13:50:26.0937 3300 ============================================================
      13:51:01.0093 3540 ============================================================
      13:51:01.0093 3540 Scan started
      13:51:01.0093 3540 Mode: Manual; SigCheck; TDLFS;
      13:51:01.0093 3540 ============================================================
      13:51:01.0515 3540 ================ Scan system memory ========================
      13:51:01.0515 3540 System memory - ok
      13:51:01.0515 3540 ================ Scan services =============================
      13:51:01.0625 3540 Abiosdsk - ok
      13:51:01.0640 3540 abp480n5 - ok
      13:51:01.0656 3540 [ 33D1373EE875CE8B063777F7E77815B7 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
      13:51:01.0828 3540 ACPI - ok
      13:51:01.0859 3540 [ 1C905333C0B9F3D7C68DDF25E54B00F9 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
      13:51:01.0968 3540 ACPIEC - ok
      13:51:02.0046 3540 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
      13:51:02.0046 3540 AdobeFlashPlayerUpdateSvc - ok
      13:51:02.0062 3540 adpu160m - ok
      13:51:02.0093 3540 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
      13:51:02.0156 3540 aec - ok
      13:51:02.0187 3540 [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD C:\WINDOWS\System32\drivers\afd.sys
      13:51:02.0281 3540 AFD - ok
      13:51:02.0296 3540 Aha154x - ok
      13:51:02.0296 3540 aic78u2 - ok
      13:51:02.0296 3540 aic78xx - ok
      13:51:02.0468 3540 [ 0923671CF87CD511E46D4668B53F5E76 ] Akamai C:/Archivos de programa/Archivos comunes/Akamai/netsession_win_5891ae0.dll
      13:51:02.0703 3540 Akamai - ok
      13:51:02.0734 3540 [ FFD14EA04A74CE3AA34E9511C994C590 ] Alerter C:\WINDOWS\system32\alrsvc.dll
      13:51:02.0859 3540 Alerter - ok
      13:51:02.0875 3540 [ 906D6932D533F1591CAA84E846B9BA06 ] ALG C:\WINDOWS\System32\alg.exe
      13:51:02.0937 3540 ALG - ok
      13:51:02.0937 3540 AliIde - ok
      13:51:02.0953 3540 amsint - ok
      13:51:02.0968 3540 [ 0CF68B185221E5B162EF1B0559428B40 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
      13:51:03.0031 3540 AppMgmt - ok
      13:51:03.0031 3540 asc - ok
      13:51:03.0046 3540 asc3350p - ok
      13:51:03.0046 3540 asc3550 - ok
      13:51:03.0140 3540 [ D33C507942299753868204CC7642FA27 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
      13:51:03.0156 3540 aspnet_state - ok
      13:51:03.0187 3540 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
      13:51:03.0312 3540 AsyncMac - ok
      13:51:03.0343 3540 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
      13:51:03.0453 3540 atapi - ok
      13:51:03.0453 3540 Atdisk - ok
      13:51:03.0484 3540 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
      13:51:03.0593 3540 Atmarpc - ok
      13:51:03.0609 3540 [ F72DF7512D92C2ABEDFAE488411C9FE4 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
      13:51:03.0718 3540 AudioSrv - ok
      13:51:03.0765 3540 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
      13:51:03.0890 3540 audstub - ok
      13:51:04.0125 3540 [ F6A528DE535396C2FB1A4E3C6F00CEC4 ] AVGIDSAgent C:\Archivos de programa\AVG\AVG2012\AVGIDSAgent.exe
      13:51:04.0296 3540 AVGIDSAgent - ok
      13:51:04.0328 3540 [ 1074F787080068C71303B61FAE7E7CA4 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
      13:51:04.0343 3540 AVGIDSDriver - ok
      13:51:04.0359 3540 [ 61A7E0B02F82CFF3DB2445BBE50B3589 ] AVGIDSFilter C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
      13:51:04.0359 3540 AVGIDSFilter - ok
      13:51:04.0375 3540 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
      13:51:04.0390 3540 AVGIDSHX - ok
      13:51:04.0406 3540 [ BAF975B72062F53D327788E99D64197E ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
      13:51:04.0406 3540 AVGIDSShim - ok
      13:51:04.0437 3540 [ DCB09125C8B4766A88C86914B65487C1 ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
      13:51:04.0453 3540 Avgldx86 - ok
      13:51:04.0468 3540 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
      13:51:04.0484 3540 Avgmfx86 - ok
      13:51:04.0500 3540 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
      13:51:04.0500 3540 Avgrkx86 - ok
      13:51:04.0531 3540 [ C0BC3B2E3FD625E7F55E1FF863E94592 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
      13:51:04.0546 3540 Avgtdix - ok
      13:51:04.0578 3540 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Archivos de programa\AVG\AVG2012\avgwdsvc.exe
      13:51:04.0578 3540 avgwd - ok
      13:51:04.0609 3540 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
      13:51:04.0718 3540 Beep - ok
      13:51:04.0781 3540 [ 02451268DC47E4DC228210DA0E3C3274 ] BITS C:\WINDOWS\system32\qmgr.dll
      13:51:04.0937 3540 BITS - ok
      13:51:04.0968 3540 [ D01CFCC753B09E70F5B7622501FF5383 ] Browser C:\WINDOWS\System32\browser.dll
      13:51:05.0078 3540 Browser - ok
      13:51:05.0109 3540 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
      13:51:05.0203 3540 cbidf2k - ok
      13:51:05.0218 3540 cd20xrnt - ok
      13:51:05.0234 3540 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
      13:51:05.0343 3540 Cdaudio - ok
      13:51:05.0359 3540 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
      13:51:05.0484 3540 Cdfs - ok
      13:51:05.0500 3540 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
      13:51:05.0593 3540 Cdrom - ok
      13:51:05.0609 3540 Changer - ok
      13:51:05.0625 3540 [ C2991BBEF6836C9B3ABCE7F87B19B0E8 ] CiSvc C:\WINDOWS\system32\cisvc.exe
      13:51:05.0718 3540 CiSvc - ok
      13:51:05.0750 3540 [ 7931F88DB9B42B3F7B5D9978BBACB22A ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
      13:51:05.0859 3540 ClipSrv - ok
      13:51:05.0890 3540 [ 3C4D595E7F9B747325AEF28B4ADCAAE5 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
      13:51:05.0953 3540 clr_optimization_v2.0.50727_32 - ok
      13:51:05.0953 3540 CmdIde - ok
      13:51:05.0953 3540 COMSysApp - ok
      13:51:05.0968 3540 Cpqarray - ok
      13:51:06.0000 3540 [ 149CFFBF77CC1306FC535557CF513B91 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
      13:51:06.0093 3540 CryptSvc - ok
      13:51:06.0109 3540 dac2w2k - ok
      13:51:06.0109 3540 dac960nt - ok
      13:51:06.0140 3540 [ 78793AAE30E77A07D6C5A378D163B909 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
      13:51:06.0234 3540 DcomLaunch - ok
      13:51:06.0265 3540 [ 563803FA2CCFCF663D6DA0C46B87AA9D ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
      13:51:06.0328 3540 Dhcp - ok
      13:51:06.0343 3540 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
      13:51:06.0453 3540 Disk - ok
      13:51:06.0453 3540 dmadmin - ok
      13:51:06.0484 3540 [ 9FB634A0ED429AA64DE57C53DD10CCF9 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
      13:51:06.0640 3540 dmboot - ok
      13:51:06.0656 3540 [ 67DECFAF3B6CDB34B3FA77D965281BB5 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
      13:51:06.0765 3540 dmio - ok
      13:51:06.0781 3540 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
      13:51:06.0890 3540 dmload - ok
      13:51:06.0906 3540 [ 9108AFA79D60EBFB2D6AF87B9515BA1A ] dmserver C:\WINDOWS\System32\dmserver.dll
      13:51:07.0000 3540 dmserver - ok
      13:51:07.0015 3540 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
      13:51:07.0140 3540 DMusic - ok
      13:51:07.0156 3540 [ 8739D42144E3687F5D107D1A1B10B9C1 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
      13:51:07.0265 3540 Dnscache - ok
      13:51:07.0265 3540 dpti2o - ok
      13:51:07.0281 3540 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
      13:51:07.0390 3540 drmkaud - ok
      13:51:07.0421 3540 [ 90C85A6F2E6529526B897BE25343663A ] ERSvc C:\WINDOWS\System32\ersvc.dll
      13:51:07.0515 3540 ERSvc - ok
      13:51:07.0546 3540 [ F9852F505E0699BB83D5C6321917040B ] Eventlog C:\WINDOWS\system32\services.exe
      13:51:07.0671 3540 Eventlog - ok
      13:51:07.0703 3540 [ 0D0F85237E32538F58278D673032676A ] EventSystem C:\WINDOWS\system32\es.dll
      13:51:07.0765 3540 EventSystem - ok
      13:51:07.0796 3540 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
      13:51:07.0906 3540 Fastfat - ok
      13:51:07.0937 3540 [ DBCF824BA771A1F27E6F5124D0516358 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
      13:51:08.0046 3540 FastUserSwitchingCompatibility - ok
      13:51:08.0062 3540 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
      13:51:08.0171 3540 Fdc - ok
      13:51:08.0203 3540 [ 6E9D149CFAE2AF4783F85DBD6CEDF7A1 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
      13:51:08.0312 3540 Fips - ok
      13:51:08.0328 3540 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
      13:51:08.0437 3540 Flpydisk - ok
      13:51:08.0468 3540 [ 5A85CD3D07273E3F6FE72EE9C6431632 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
      13:51:08.0531 3540 FltMgr - ok
      13:51:08.0546 3540 [ C6EE3A87FE609D3E1DB9DBD072A248DE ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
      13:51:08.0562 3540 fssfltr - ok
      13:51:08.0640 3540 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Archivos de programa\Windows Live\Family Safety\fsssvc.exe
      13:51:08.0687 3540 fsssvc - ok
      13:51:08.0718 3540 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
      13:51:08.0828 3540 Fs_Rec - ok
      13:51:08.0843 3540 [ CC5F3AF5711A1C7C8FA1D43BB16B401A ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
      13:51:08.0953 3540 Ftdisk - ok
      13:51:08.0968 3540 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
      13:51:09.0062 3540 Gpc - ok
      13:51:09.0125 3540 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Archivos de programa\Google\Update\GoogleUpdate.exe
      13:51:09.0140 3540 gupdate - ok
      13:51:09.0140 3540 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Archivos de programa\Google\Update\GoogleUpdate.exe
      13:51:09.0156 3540 gupdatem - ok
      13:51:09.0187 3540 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Archivos de programa\Google\Common\Google Updater\GoogleUpdaterService.exe
      13:51:09.0203 3540 gusvc - ok
      13:51:09.0234 3540 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
      13:51:09.0281 3540 HDAudBus - ok
      13:51:09.0328 3540 [ E9982061A16EC28239EFEDE6BD6DE846 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
      13:51:09.0437 3540 helpsvc - ok
      13:51:09.0453 3540 [ 157B84B72B1918B9B8018346F7186F9B ] HidServ C:\WINDOWS\System32\hidserv.dll
      13:51:09.0546 3540 HidServ - ok
      13:51:09.0578 3540 [ 1DE6783B918F540149AA69943BDFEBA8 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
      13:51:09.0671 3540 hidusb - ok
      13:51:09.0687 3540 hpn - ok
      13:51:09.0734 3540 [ 909D110C9634B0F1487EAAEA837317D9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
      13:51:09.0796 3540 HTTP - ok
      13:51:09.0828 3540 [ EF167770BD4358B395608F61BA11C6D4 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
      13:51:09.0921 3540 HTTPFilter - ok
      13:51:09.0937 3540 i2omgmt - ok
      13:51:09.0937 3540 i2omp - ok
      13:51:09.0953 3540 [ 0CAB3EE361CFEAB260B3906C8B6FB2BE ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
      13:51:10.0046 3540 i8042prt - ok
      13:51:10.0203 3540 [ C4018896856A1A1F1F3A0A6EE7206551 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
      13:51:10.0500 3540 ialm - ok
      13:51:10.0531 3540 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
      13:51:10.0640 3540 Imapi - ok
      13:51:10.0671 3540 [ CEE36882EA2298D0AD7E5C1BA750D49C ] ImapiService C:\WINDOWS\system32\imapi.exe
      13:51:10.0781 3540 ImapiService - ok
      13:51:10.0781 3540 ini910u - ok
      13:51:10.0906 3540 [ 60D7460B07012D364CED11DD9FD83E1F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
      13:51:11.0171 3540 IntcAzAudAddService - ok
      13:51:11.0187 3540 [ 161B54C8200663ADA2C145D87E8D4340 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
      13:51:11.0296 3540 IntelIde - ok
      13:51:11.0328 3540 [ 98BBC0E8EFA90FFF1EC9456EE7B0B1F1 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
      13:51:11.0421 3540 intelppm - ok
      13:51:11.0437 3540 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
      13:51:11.0531 3540 Ip6Fw - ok
      13:51:11.0578 3540 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
      13:51:11.0671 3540 IpFilterDriver - ok
      13:51:11.0687 3540 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
      13:51:11.0796 3540 IpInIp - ok
      13:51:11.0812 3540 [ 5191673215C91FF13CEAA83EF8E9653F ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
      13:51:11.0843 3540 IpNat - ok
      13:51:11.0859 3540 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
      13:51:11.0968 3540 IPSec - ok
      13:51:12.0000 3540 [ 86C204836FEEC22510D434982D4221B8 ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
      13:51:12.0046 3540 irda - ok
      13:51:12.0078 3540 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
      13:51:12.0140 3540 IRENUM - ok
      13:51:12.0156 3540 [ 185C3091B037CD0C8DFC141315973D83 ] Irmon C:\WINDOWS\System32\irmon.dll
      13:51:12.0218 3540 Irmon - ok
      13:51:12.0234 3540 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
      13:51:12.0281 3540 irsir - ok
      13:51:12.0312 3540 [ 90BC6118193B4E8A76F0FC0D4A3572DE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
      13:51:12.0421 3540 isapnp - ok
      13:51:12.0437 3540 [ 71BFDDA7B3006B45B18D8BAC92BC9993 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
      13:51:12.0546 3540 Kbdclass - ok
      13:51:12.0578 3540 [ 24334EB02603262309F648EF9E06496E ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
      13:51:12.0671 3540 kbdhid - ok
      13:51:12.0703 3540 [ 8531438246CE9474E41EE1599904C0C7 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
      13:51:12.0750 3540 kmixer - ok
      13:51:12.0796 3540 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
      13:51:12.0890 3540 KSecDD - ok
      13:51:12.0921 3540 [ 3D7A334FD52DD48A60AD8ED61D77A2E2 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
      13:51:12.0937 3540 lanmanserver - ok
      13:51:12.0968 3540 [ 7190BF2CB19EFF489C06DC6EE1760AFB ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
      13:51:13.0015 3540 lanmanworkstation - ok
      13:51:13.0015 3540 lbrtfdc - ok
      13:51:13.0046 3540 [ F9801C6F1682A9F3099D694320BFFC27 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
      13:51:13.0187 3540 LmHosts - ok
      13:51:13.0218 3540 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
      13:51:13.0234 3540 MBAMProtector - ok
      13:51:13.0281 3540 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamscheduler.exe
      13:51:13.0296 3540 MBAMScheduler - ok
      13:51:13.0343 3540 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Archivos de programa\Malwarebytes' Anti-Malware\mbamservice.exe
      13:51:13.0390 3540 MBAMService - ok
      13:51:13.0406 3540 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
      13:51:13.0531 3540 mnmdd - ok
      13:51:13.0562 3540 [ A0751C0AF862E271FBB135B4B7D56C4D ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
      13:51:13.0687 3540 mnmsrvc - ok
      13:51:13.0718 3540 [ B65F57D37E8D43089B701ED16E22D0E9 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
      13:51:13.0875 3540 Modem - ok
      13:51:13.0906 3540 [ 05E9C75C6797145A4983E9D0A4778BC3 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
      13:51:14.0015 3540 Mouclass - ok
      13:51:14.0031 3540 [ 8EE532E516B2D23D686CFC1CC0A15C25 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
      13:51:14.0156 3540 mouhid - ok
      13:51:14.0187 3540 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
      13:51:14.0328 3540 MountMgr - ok
      13:51:14.0328 3540 mraid35x - ok
      13:51:14.0359 3540 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
      13:51:14.0468 3540 MRxDAV - ok
      13:51:14.0484 3540 [ 7412CE77C6FD823F8889B4DF420C680B ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
      13:51:14.0578 3540 MRxSmb - ok
      13:51:14.0609 3540 [ 64CF2B82B89B5DDDF04B1C5CFED39518 ] MSDTC C:\WINDOWS\system32\msdtc.exe
      13:51:14.0703 3540 MSDTC - ok
      13:51:14.0718 3540 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
      13:51:14.0843 3540 Msfs - ok
      13:51:14.0859 3540 MSIServer - ok
      13:51:14.0859 3540 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
      13:51:14.0953 3540 MSKSSRV - ok
      13:51:14.0968 3540 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
      13:51:15.0062 3540 MSPCLOCK - ok
      13:51:15.0078 3540 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
      13:51:15.0171 3540 MSPQM - ok
      13:51:15.0203 3540 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
      13:51:15.0281 3540 mssmbios - ok
      13:51:15.0296 3540 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
      13:51:15.0390 3540 Mup - ok
      13:51:15.0421 3540 [ E5886C8A1D319DFCA76DAE1DABC41A25 ] MyFunCardsbarIEService C:\ARCHIV~1\MYFUNC~2\bar\1.bin\c8barsvc.exe
      13:51:15.0437 3540 MyFunCardsbarIEService ( UnsignedFile.Multi.Generic ) - warning
      13:51:15.0437 3540 MyFunCardsbarIEService - detected UnsignedFile.Multi.Generic (1)
      13:51:15.0453 3540 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
      13:51:15.0562 3540 NDIS - ok
      13:51:15.0578 3540 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
      13:51:15.0671 3540 NdisTapi - ok
      13:51:15.0703 3540 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
      13:51:15.0796 3540 Ndisuio - ok
      13:51:15.0828 3540 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
      13:51:15.0921 3540 NdisWan - ok
      13:51:15.0937 3540 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
      13:51:16.0031 3540 NDProxy - ok
      13:51:16.0062 3540 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
      13:51:16.0156 3540 NetBIOS - ok
      13:51:16.0171 3540 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
      13:51:16.0281 3540 NetBT - ok
      13:51:16.0296 3540 [ BCFA51E14E310586A3D199BB8EC0AA4E ] NetDDE C:\WINDOWS\system32\netdde.exe
      13:51:16.0390 3540 NetDDE - ok
      13:51:16.0406 3540 [ BCFA51E14E310586A3D199BB8EC0AA4E ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
      13:51:16.0484 3540 NetDDEdsdm - ok
      13:51:16.0515 3540 [ 2B0B88652C9F6714FD4886839B3B0442 ] Netlogon C:\WINDOWS\system32\lsass.exe
      13:51:16.0609 3540 Netlogon - ok
      13:51:16.0625 3540 [ 157B6FCB58270E3DF3ED67D316DCECE0 ] Netman C:\WINDOWS\System32\netman.dll
      13:51:16.0640 3540 Netman - ok
      13:51:16.0671 3540 [ 10558FED65AAA5DC95125E069AE65036 ] Nla C:\WINDOWS\System32\mswsock.dll
      13:51:16.0781 3540 Nla - ok
      13:51:16.0812 3540 [ 696B37EA78F9D9767A2F18BA0304A51A ] nmwcd C:\WINDOWS\system32\drivers\nmwcd.sys
      13:51:16.0890 3540 nmwcd - ok
      13:51:16.0921 3540 [ BBB6010FC01D9239D88FCDF133E03FF0 ] nmwcdc C:\WINDOWS\system32\drivers\nmwcdc.sys
      13:51:16.0953 3540 nmwcdc - ok
      13:51:16.0968 3540 [ 4C3726467D67483F054C88F058E9C153 ] nmwcdcj C:\WINDOWS\system32\drivers\nmwcdcj.sys
      13:51:17.0000 3540 nmwcdcj - ok
      13:51:17.0000 3540 [ 4C3726467D67483F054C88F058E9C153 ] nmwcdcm C:\WINDOWS\system32\drivers\nmwcdcm.sys
      13:51:17.0031 3540 nmwcdcm - ok
      13:51:17.0046 3540 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
      13:51:17.0140 3540 Npfs - ok
      13:51:17.0156 3540 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
      13:51:17.0265 3540 Ntfs - ok
      13:51:17.0281 3540 [ 2B0B88652C9F6714FD4886839B3B0442 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
      13:51:17.0359 3540 NtLmSsp - ok
      13:51:17.0390 3540 [ 395948DEE2B0F534A8C70687CC6DD7CA ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
      13:51:17.0500 3540 NtmsSvc - ok
      13:51:17.0515 3540 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
      13:51:17.0609 3540 Null - ok
      13:51:17.0640 3540 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
      13:51:17.0734 3540 NwlnkFlt - ok
      13:51:17.0750 3540 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
      13:51:17.0843 3540 NwlnkFwd - ok
      13:51:17.0890 3540 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE
      13:51:17.0890 3540 ose - ok
      13:51:17.0921 3540 [ 0DF0B83C90473CCFDC3DC882CBB6E4A9 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
      13:51:18.0015 3540 Parport - ok
      13:51:18.0046 3540 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
      13:51:18.0140 3540 PartMgr - ok
      13:51:18.0156 3540 [ FAD44D704ECD7D39AD01415B8BB34204 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
      13:51:18.0250 3540 ParVdm - ok
      13:51:18.0265 3540 [ A566B8DA5E70B3237274D418853A87E0 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
      13:51:18.0359 3540 PCI - ok
      13:51:18.0359 3540 PCIDump - ok
      13:51:18.0359 3540 [ 33D63F0A9021ACB4D75D83B646B93A30 ] PCIIde C:\WINDOWS\system32\drivers\PCIIde.sys
      13:51:18.0453 3540 PCIIde - ok
      13:51:18.0484 3540 [ 6374A34B03AEA7971C976982A391AD07 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
      13:51:18.0578 3540 Pcmcia - ok
      13:51:18.0625 3540 [ 82EC1531BC74ADC34E0342C12958C55A ] PCToolsSSDMonitorSvc C:\Archivos de programa\Archivos comunes\PC Tools\sMonitor\StartManSvc.exe
      13:51:18.0671 3540 PCToolsSSDMonitorSvc - ok
      13:51:18.0687 3540 PDCOMP - ok
      13:51:18.0687 3540 PDFRAME - ok
      13:51:18.0687 3540 PDRELI - ok
      13:51:18.0687 3540 PDRFRAME - ok
      13:51:18.0703 3540 perc2 - ok
      13:51:18.0703 3540 perc2hib - ok
      13:51:18.0718 3540 [ F9852F505E0699BB83D5C6321917040B ] PlugPlay C:\WINDOWS\system32\services.exe
      13:51:18.0843 3540 PlugPlay - ok
      13:51:18.0859 3540 [ 2B0B88652C9F6714FD4886839B3B0442 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
      13:51:18.0953 3540 PolicyAgent - ok
      13:51:18.0968 3540 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
      13:51:19.0062 3540 PptpMiniport - ok
      13:51:19.0062 3540 [ 2B0B88652C9F6714FD4886839B3B0442 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
      13:51:19.0140 3540 ProtectedStorage - ok
      13:51:19.0171 3540 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
      13:51:19.0265 3540 PSched - ok
      13:51:19.0265 3540 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
      13:51:19.0359 3540 Ptilink - ok
      13:51:19.0359 3540 ql1080 - ok
      13:51:19.0359 3540 Ql10wnt - ok
      13:51:19.0375 3540 ql12160 - ok
      13:51:19.0375 3540 ql1240 - ok
      13:51:19.0375 3540 ql1280 - ok
      13:51:19.0390 3540 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
      13:51:19.0484 3540 RasAcd - ok
      13:51:19.0500 3540 [ C6133601F8D4B3C995B51307EE7BE086 ] RasAuto C:\WINDOWS\System32\rasauto.dll
      13:51:19.0593 3540 RasAuto - ok
      13:51:19.0625 3540 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
      13:51:19.0671 3540 Rasirda - ok
      13:51:19.0671 3540 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
      13:51:19.0781 3540 Rasl2tp - ok
      13:51:19.0796 3540 [ 98F078AA2BC19A8D7A7662C67081918B ] RasMan C:\WINDOWS\System32\rasmans.dll
      13:51:19.0843 3540 RasMan - ok
      13:51:19.0859 3540 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
      13:51:19.0968 3540 RasPppoe - ok
      13:51:20.0000 3540 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
      13:51:20.0093 3540 Raspti - ok
      13:51:20.0109 3540 [ ED375CE745C42A14F10753F7022ECD6A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
      13:51:20.0171 3540 Rdbss - ok
      13:51:20.0187 3540 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
      13:51:20.0281 3540 RDPCDD - ok
      13:51:20.0328 3540 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
      13:51:20.0421 3540 rdpdr - ok
      13:51:20.0453 3540 [ 047BEA21274C8A4A233674A76C958C2C ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
      13:51:20.0484 3540 RDPWD - ok
      13:51:20.0515 3540 [ 8C88612F0E863B4F8069FC59C74259D4 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
      13:51:20.0609 3540 RDSessMgr - ok
      13:51:20.0625 3540 [ 28531A950381DA67FC6412DFEBCC8C5C ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
      13:51:20.0718 3540 redbook - ok
      13:51:20.0781 3540 [ CE85B0049C7F0AC32CB5576AFFEEEC4D ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
      13:51:20.0875 3540 RemoteAccess - ok
      13:51:20.0906 3540 [ D025E953864EBEBAB5933086D15C4FC6 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
      13:51:21.0000 3540 RemoteRegistry - ok
      13:51:21.0031 3540 [ 08377EBB699418269613903C5340311F ] RpcLocator C:\WINDOWS\system32\locator.exe
      13:51:21.0125 3540 RpcLocator - ok
      13:51:21.0140 3540 [ 78793AAE30E77A07D6C5A378D163B909 ] RpcSs C:\WINDOWS\system32\rpcss.dll
      13:51:21.0203 3540 RpcSs - ok
      13:51:21.0234 3540 [ 5E38212C2C00DC342E2281D2F6BFB746 ] RSVP C:\WINDOWS\system32\rsvp.exe
      13:51:21.0312 3540 RSVP - ok
      13:51:21.0343 3540 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
      13:51:21.0421 3540 rtl8139 - ok
      13:51:21.0453 3540 [ 25BE98C05808C57E4D8D26477DC12D39 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
      13:51:21.0500 3540 RTLE8023xp - ok
      13:51:21.0515 3540 [ 2B0B88652C9F6714FD4886839B3B0442 ] SamSs C:\WINDOWS\system32\lsass.exe
      13:51:21.0593 3540 SamSs - ok
      13:51:21.0640 3540 [ 71CAB99AD55F1DAAE201E990AA0EBDBF ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
      13:51:21.0734 3540 SCardSvr - ok
      13:51:21.0812 3540 [ 0125649B3C00D037E07FD7BCEF7B653B ] Schedule C:\WINDOWS\system32\schedsvc.dll
      13:51:21.0921 3540 Schedule - ok
      13:51:21.0968 3540 [ D358E077A0A05D9B12DA22D137EE8464 ] SeaPort C:\Archivos de programa\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
      13:51:21.0984 3540 SeaPort - ok
      13:51:22.0015 3540 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
      13:51:22.0062 3540 Secdrv - ok
      13:51:22.0078 3540 [ 881E212E7D5DBC3A09732A9996C0CFD4 ] seclogon C:\WINDOWS\System32\seclogon.dll
      13:51:22.0171 3540 seclogon - ok
      13:51:22.0187 3540 [ 00B0A54474E8F99FD43D108446F0D5BE ] SENS C:\WINDOWS\system32\sens.dll
      13:51:22.0281 3540 SENS - ok
      13:51:22.0296 3540 [ A2D868AEEFF612E70E213C451A70CAFB ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
      13:51:22.0390 3540 serenum - ok
      13:51:22.0390 3540 [ FA9C4C4AC544301FA13C5C00A270399F ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
      13:51:22.0500 3540 Serial - ok
      13:51:22.0546 3540 [ 019AB047B932AD277A4DA2673E5CC19C ] ServiceLayer C:\Archivos de programa\PC Connectivity Solution\ServiceLayer.exe
      13:51:22.0578 3540 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
      13:51:22.0578 3540 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
      13:51:22.0609 3540 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
      13:51:22.0687 3540 Sfloppy - ok
      13:51:22.0781 3540 [ 0DC5698BE9BBFE9673EB80A0D65D17E5 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
      13:51:22.0906 3540 SharedAccess - ok
      13:51:22.0921 3540 [ DBCF824BA771A1F27E6F5124D0516358 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
      13:51:23.0015 3540 ShellHWDetection - ok
      13:51:23.0015 3540 Simbad - ok
      13:51:23.0031 3540 Sparrow - ok
      13:51:23.0046 3540 [ 9BB1DD670CB7505A90FC4E61D4AA8227 ] splitter C:\WINDOWS\system32\drivers\splitter.sys
      13:51:23.0093 3540 splitter - ok
      13:51:23.0109 3540 [ AD3D9D191AEA7B5445FE1D82FFBB4788 ] Spooler C:\WINDOWS\system32\spoolsv.exe
      13:51:23.0125 3540 Spooler - ok
      13:51:23.0171 3540 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
      13:51:23.0171 3540 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505
      13:51:23.0171 3540 sptd ( LockedFile.Multi.Generic ) - warning
      13:51:23.0171 3540 sptd - detected LockedFile.Multi.Generic (1)
      13:51:23.0203 3540 [ 3C151D50CF3AE1683C6E3EC201B2AD3D ] Sr C:\WINDOWS\system32\DRIVERS\sr.sys
      13:51:23.0250 3540 Sr - ok
      13:51:23.0281 3540 [ C791D16BF25264738B14873436293BD0 ] srservice C:\WINDOWS\system32\srsvc.dll
      13:51:23.0328 3540 srservice - ok
      13:51:23.0359 3540 [ 5230953C21C811B5FC1FF31AE2B48097 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
      13:51:23.0437 3540 Srv - ok
      13:51:23.0468 3540 [ 4AFF5EA8BF2362C3D5001295FDEB3ABD ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
      13:51:23.0531 3540 SSDPSRV - ok
      13:51:23.0562 3540 [ FFFA385FEADC60175C653AFB215F539A ] stisvc C:\WINDOWS\system32\wiaservc.dll
      13:51:23.0703 3540 stisvc - ok
      13:51:23.0734 3540 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
      13:51:23.0828 3540 swenum - ok
      13:51:23.0843 3540 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
      13:51:23.0937 3540 swmidi - ok
      13:51:23.0937 3540 SwPrv - ok
      13:51:23.0953 3540 symc810 - ok
      13:51:23.0953 3540 symc8xx - ok
      13:51:23.0953 3540 sym_hi - ok
      13:51:23.0968 3540 sym_u3 - ok
      13:51:23.0984 3540 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
      13:51:24.0078 3540 sysaudio - ok
      13:51:24.0109 3540 [ 69C20E092A03E619108ACCDB62FEDD18 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
      13:51:24.0203 3540 SysmonLog - ok
      13:51:24.0218 3540 [ 861E25215BA370D4CA9337C2BC0E647F ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
      13:51:24.0250 3540 TapiSrv - ok
      13:51:24.0265 3540 [ C7BE59B07C6EB74BEA6FD67C1B164015 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
      13:51:24.0312 3540 Tcpip ( UnsignedFile.Multi.Generic ) - warning
      13:51:24.0312 3540 Tcpip - detected UnsignedFile.Multi.Generic (1)
      13:51:24.0328 3540 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
      13:51:24.0437 3540 TDPIPE - ok
      13:51:24.0453 3540 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
      13:51:24.0546 3540 TDTCP - ok
      13:51:24.0562 3540 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
      13:51:24.0640 3540 TermDD - ok
      13:51:24.0671 3540 [ C2038466BE5A6A76EFD592FA0B459E17 ] TermService C:\WINDOWS\System32\termsrv.dll
      13:51:24.0796 3540 TermService - ok
      13:51:24.0812 3540 [ DBCF824BA771A1F27E6F5124D0516358 ] Themes C:\WINDOWS\System32\shsvcs.dll
      13:51:24.0906 3540 Themes - ok
      13:51:24.0921 3540 [ 2B7F532A887E4B942415FCD8AD40AF5F ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
      13:51:24.0984 3540 TlntSvr - ok
      13:51:24.0984 3540 TosIde - ok
      13:51:25.0015 3540 [ BF0B2A43C17C4BBD38B8D8E10BE980C1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
      13:51:25.0109 3540 TrkWks - ok
      13:51:25.0125 3540 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
      13:51:25.0218 3540 Udfs - ok
      13:51:25.0218 3540 ultra - ok
      13:51:25.0250 3540 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
      13:51:25.0281 3540 Update - ok
      13:51:25.0312 3540 [ 4B48358383940F6E559DA2F64753029F ] upnphost C:\WINDOWS\System32\upnphost.dll
      13:51:25.0375 3540 upnphost - ok
      13:51:25.0390 3540 [ FCD517BF3DB339F5D18EDE1A95D72F71 ] UPS C:\WINDOWS\System32\ups.exe
      13:51:25.0468 3540 UPS - ok
      13:51:25.0500 3540 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
      13:51:25.0593 3540 usbccgp - ok
      13:51:25.0625 3540 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
      13:51:25.0703 3540 usbehci - ok
      13:51:25.0734 3540 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
      13:51:25.0812 3540 usbhub - ok
      13:51:25.0843 3540 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
      13:51:25.0937 3540 usbprint - ok
      13:51:25.0968 3540 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
      13:51:26.0062 3540 usbstor - ok
      13:51:26.0078 3540 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
      13:51:26.0156 3540 usbuhci - ok
      13:51:26.0187 3540 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
      13:51:26.0265 3540 VgaSave - ok
      13:51:26.0281 3540 ViaIde - ok
      13:51:26.0296 3540 [ D6EC4AFF061665A10F0B1A9517D338E3 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
      13:51:26.0390 3540 VolSnap - ok
      13:51:26.0406 3540 [ E8649EC7621B5AE45A29164CAE41A6DF ] VSS C:\WINDOWS\System32\vssvc.exe
      13:51:26.0484 3540 VSS - ok
      13:51:26.0515 3540 [ 13835C57C973519F82B27EA506239369 ] W32Time C:\WINDOWS\system32\w32time.dll
      13:51:26.0593 3540 W32Time - ok
      13:51:26.0609 3540 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
      13:51:26.0703 3540 Wanarp - ok
      13:51:26.0703 3540 WDICA - ok
      13:51:26.0734 3540 [ 0BFA8203B8148FB4E54BC212C41CE497 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
      13:51:26.0781 3540 wdmaud - ok
      13:51:26.0812 3540 [ FE510DB5CAD5403DDED6EBC7A9AB7EB8 ] WebClient C:\WINDOWS\System32\webclnt.dll
      13:51:26.0859 3540 WebClient - ok
      13:51:26.0921 3540 [ 3E8DF5E4F0E6419801FF5F568CC8C531 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
      13:51:27.0015 3540 winmgmt - ok
      13:51:27.0046 3540 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
      13:51:27.0109 3540 WmdmPmSN - ok
      13:51:27.0140 3540 [ D8F738E92EA2122F5767ACD5378C732B ] Wmi C:\WINDOWS\System32\advapi32.dll
      13:51:27.0250 3540 Wmi - ok
      13:51:27.0281 3540 [ 2710BF9B02BC92D352CFCABAC64918FA ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
      13:51:27.0375 3540 WmiApSrv - ok
      13:51:27.0437 3540 [ 6782482A8CA4B5B5DAB4EF0AD78DB08F ] WMPNetworkSvc C:\Archivos de programa\Windows Media Player\WMPNetwk.exe
      13:51:27.0500 3540 WMPNetworkSvc - ok
      13:51:27.0531 3540 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
      13:51:27.0546 3540 WpdUsb - ok
      13:51:27.0578 3540 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
      13:51:27.0671 3540 WS2IFSL - ok
      13:51:27.0687 3540 [ EEDA22E0C570C7204724C3A30A0B1A40 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
      13:51:27.0796 3540 wuauserv - ok
      13:51:27.0828 3540 [ 50EB9E21963B4F06FD010D007D54351B ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
      13:51:27.0875 3540 WudfPf - ok
      13:51:27.0890 3540 [ 6E209664BDEA8A15B5E8E480D6C607C2 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
      13:51:27.0921 3540 WudfRd - ok
      13:51:27.0953 3540 [ AE93084D2D236887BA56467AE42B4955 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
      13:51:28.0000 3540 WudfSvc - ok
      13:51:28.0062 3540 [ E28BB7BB83250346EB4E71134ACD5627 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
      13:51:28.0187 3540 WZCSVC - ok
      13:51:28.0218 3540 [ 843E0DB8042A8C0D749EB2B9EFA54F24 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
      13:51:28.0312 3540 xmlprov - ok
      13:51:28.0312 3540 ZTEusbmdm6k - ok
      13:51:28.0312 3540 ZTEusbnmea - ok
      13:51:28.0328 3540 ZTEusbser6k - ok
      13:51:28.0328 3540 ZTEusbvoice - ok
      13:51:28.0343 3540 ================ Scan global ===============================
      13:51:28.0375 3540 [ B594A2F6778B6B05CBF5022A645427F8 ] C:\WINDOWS\system32\basesrv.dll
      13:51:28.0406 3540 [ 30B2F21FD65BAEB3B23A3124140D2C0C ] C:\WINDOWS\system32\winsrv.dll
      13:51:28.0421 3540 [ 30B2F21FD65BAEB3B23A3124140D2C0C ] C:\WINDOWS\system32\winsrv.dll
      13:51:28.0437 3540 [ F9852F505E0699BB83D5C6321917040B ] C:\WINDOWS\system32\services.exe
      13:51:28.0437 3540 [Global] - ok
      13:51:28.0437 3540 ================ Scan MBR ==================================
      13:51:28.0453 3540 [ 792F61657FECE3D17A9122B4EE282847 ] \Device\Harddisk0\DR0
      13:51:28.0734 3540 \Device\Harddisk0\DR0 - ok
      13:51:28.0734 3540 ================ Scan VBR ==================================
      13:51:28.0750 3540 [ D266DDF4543F30D942C9211AE4E0FAF2 ] \Device\Harddisk0\DR0\Partition1
      13:51:28.0750 3540 \Device\Harddisk0\DR0\Partition1 - ok
      13:51:28.0781 3540 [ 71DC46F51F4A9CCDA7B344581BD414C4 ] \Device\Harddisk0\DR0\Partition2
      13:51:28.0781 3540 \Device\Harddisk0\DR0\Partition2 - ok
      13:51:28.0781 3540 ============================================================
      13:51:28.0781 3540 Scan finished
      13:51:28.0781 3540 ============================================================
      13:51:28.0890 3776 Detected object count: 4
      13:51:28.0890 3776 Actual detected object count: 4
      13:58:03.0500 3776 MyFunCardsbarIEService ( UnsignedFile.Multi.Generic ) - skipped by user
      13:58:03.0500 3776 MyFunCardsbarIEService ( UnsignedFile.Multi.Generic ) - User select action: Skip
      13:58:03.0500 3776 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
      13:58:03.0500 3776 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
      13:58:03.0500 3776 sptd ( LockedFile.Multi.Generic ) - skipped by user
      13:58:03.0500 3776 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
      13:58:03.0500 3776 Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
      13:58:03.0500 3776 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip
      ----------------------------------------------------------------------------------------

      #################################################### A/T-Destroyer by InfoSpyware ############

      A/T-Destroyer 1.0.7 By Infospyware
      www.infospyware.com
      Fecha iniciada en el analisis 27/10/2012
      Hora iniciada en el analisis 14:01:20,68
      Usuario Actual : [C:\Documents and Settings\Administrador]
      Sistema Operativo: Windows XP
      Service pack: 2
      Arquitectura: Sistema operativo de 32 bits
      Versión Internet Explorer: 7.0.5730.11
      Modo Actual: Modo Normal.
      Privilegios: [Administrador-Administrador]
      Versión Google Chrome:
      Versión Mozilla Firefox: 7.0.1

      ====== Servicios Eliminados By A/T-Destroyer ======

      ====== Claves Eliminadas By A/T-Destroyer ======

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar | ( {30F9B915-B755-4826-820B-08FBA6BD249D} )
      HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
      HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}\instl
      HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}\instl\data
      HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
      HKEY_CURRENT_USER\Software\Conduit
      HKEY_CURRENT_USER\Software\Conduit\AppPaths
      HKEY_CURRENT_USER\Software\Conduit\AppPaths\IsoBuster.exe
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Channels
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Channels\130890
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Channels\130890\Feeds
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Channels\26679
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Channels\26679\Feeds
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Channels\909619
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Channels\909619\Feeds
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Feeds
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Feeds\130100
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Feeds\26161
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Feeds\905414
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Sources
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Sources\FF_TB_CT1854633
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Sources\IE_CE
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Data\Sources\IE_TB_CT1703532
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\RegisteredSources
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Locales
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Locales\en
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Services
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Services\ChannelsSettings
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Services\DynamicDialogs
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Services\Login
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Services\Translation
      HKEY_CURRENT_USER\Software\Conduit\Community Alerts\Settings\Services\Usage
      HKEY_CURRENT_USER\Software\Conduit\Settings
      HKEY_CURRENT_USER\Software\Conduit\Toolbar
      HKEY_CURRENT_USER\Software\Conduit\Toolbar\EmailNotifier
      HKEY_CURRENT_USER\Software\Conduit\Toolbar\EmailNotifier\SourcesLastCheckTimes
      HKEY_CURRENT_USER\Software\Conduit\Toolbar\Facebook
      HKEY_CURRENT_USER\Software\Conduit\Toolbar\Facebook\InfoService
      HKEY_CURRENT_USER\Software\Conduit\Toolbar\Facebook\InfoService\http://facebook.conduit-services.com/Settings.ashx?locale=es&browserType=IE&toolbarVersion=5.3.4.2
      HKEY_CURRENT_USER\Software\Conduit\Toolbar\Facebook\InfoService\http://facebook.conduit-services.com/Settings.ashx?locale=es&browserType=IE&toolbarVersion=6.3.3.3
      HKEY_CURRENT_USER\Software\Conduit
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\AppPaths
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\AppPaths\IsoBuster.exe
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Community Alerts
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\HomePage
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Platforms
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Platforms\{30F9B915-B755-4826-820B-08FBA6BD249D}
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Platforms\{46735C7A-75C3-4CF2-A80F-E235BF6258C0}
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Platforms\{54655AF1-5AC1-4126-A731-7A633E9E32BC}
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Platforms\{6C0A497C-08A1-400E-9738-5DB90C5077F8}
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Platforms\{B1E8B159-6C9F-4273-9DCA-20091D38C4CD}
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Platforms\{c7791e3a-dd94-43aa-b6fa-7860c271108c}
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit\Toolbars
      HKEY_LOCAL_MACHINE\SOFTWARE\Conduit
      HKEY_LOCAL_MACHINE\SOFTWARE\Iminent
      HKEY_LOCAL_MACHINE\SOFTWARE\Iminent


      ====== Archivos/Carpetas Eliminados By A/T-Destroyer ======


      C:\Documents and Settings\Administrador\Datos de programa\PriceGong\Data\mru.xml
      "C:\Documents and Settings\Administrador\Datos de programa\PriceGong"
      "C:\Archivos de programa\ConduitEngine"
      "C:\Archivos de programa\Conduit"

      ====== Información Extra ======

      -_-_-_-_-_-_-_-_ Configuraciones de internet Explorer -_-_-_-_-_-_-_-_
      "HKCU\Software\Microsoft\Internet Explorer\Main"
      -
      Start Page == http://www.google.com
      -
      Search Page == http://find.localstrike.net/
      -
      -
      -

      "HKLM\Software\Microsoft\Internet Explorer\Main"
      -
      Start Page == http://www.google.com
      -
      Search Page == http://find.localstrike.net/
      -
      Local Page == %SystemRoot%\system32\blank.htm
      -
      Default_Search_URL == http://find.localstrike.net/
      -
      Default_Page_URL == http://find.localstrike.net/


      "HKEY_USERS\S-1-5-21-436374069-1788223648-725345543-500\Software\Microsoft\Internet Explorer\Main"
      -
      Start Page == http://www.google.com
      -
      Search Page == http://find.localstrike.net/
      -
      -
      -

      -_-_-_-_-_-_-_-_ Configuraciones de Google Chrome-_-_-_-_-_-_-_-_
      "homepage": "http://www.google.com/",
      "homepage_changed": true,
      "homepage_is_newtabpage": false,

      -_-_-_-_-_-_-_-_ Configuraciones de mozilla Firefox -_-_-_-_-_-_-_-_
      user_pref("pref.browser.homepage.disable_button.current_page", false);
      user_pref("browser.startup.homepage", "http://google.com");

      ======= EOF =======

    9. #9
      Usuario Avatar de ks gregn
      Registrado
      may 2012
      Ubicación
      rojas
      Mensajes
      16

      Re: Varios Virus

      All processes killed
      Error: Unable to interpret <Código:> in the current context!
      ========== PROCESSES ==========
      No active process named cdswitch.exe was found!
      ========== FILES ==========
      C:\WINDOWS\system32\cdswitch.exe moved successfully.
      LoadLibrary failed for C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\AlotXpcom.dll
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\AlotXpcom.dll moved successfully.
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\META-INF folder moved successfully.
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\gen folder moved successfully.
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\defaults\preferences folder moved successfully.
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\defaults folder moved successfully.
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components folder moved successfully.
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\chrome folder moved successfully.
      C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected] folder moved successfully.
      File/Folder c:\archivos de programa\conduitengine\prxconduitengine.dll not found.
      Folder c:\archivos de programa\conduitengine not found.
      c:\archivos de programa\isobuster_es\prxtbIsoB.dll moved successfully.
      c:\archivos de programa\IsoBuster_ES folder moved successfully.
      c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8bar.dll moved successfully.
      c:\archivos de programa\myfuncardsbarie\bar\1.bin\c8SrcAs.dll moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\Shared\Cache folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\Shared folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar\setups folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar\Settings folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar\Message folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar\History folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar\Cache folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar\1.bin\chrome folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar\1.bin folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE\bar folder moved successfully.
      c:\archivos de programa\MyFunCardsbarIE folder moved successfully.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}\components\RadioWMPCore.dll not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\RadioWMPCore.dll not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{9c905b42-976e-43c1-bc30-fc5937017909}\components\FFExternalAlert.dll not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{9c905b42-976e-43c1-bc30-fc5937017909}\components\RadioWMPCore.dll not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\RadioWMPCoreGecko19.dll not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c}\components\RadioWMPCoreGecko19.dll not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\{c7791e3a-dd94-43aa-b6fa-7860c271108c} not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected] not found.
      File/Folder c:\archivos de programa\daemon tools toolbar\dttoolbar.dll not found.
      File/Folder c:\archivos de programa\daemon tools toolbar not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected]\components\DTToolbarFF.dll not found.
      File/Folder C:\Documents and Settings\Administrador\Datos de programa\Mozilla\Firefox\Profiles\s5swqfcn.default\extensions\[email protected] not found.
      ========== COMMANDS ==========

      [EMPTYTEMP]

      User: Administrador
      ->Temp folder emptied: 21319095 bytes
      ->Temporary Internet Files folder emptied: 11450129 bytes
      ->Java cache emptied: 1389991 bytes
      ->FireFox cache emptied: 234500671 bytes
      ->Google Chrome cache emptied: 284779186 bytes
      ->Flash cache emptied: 3385 bytes

      User: All Users

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes
      ->Flash cache emptied: 41620 bytes

      User: LocalService
      ->Temp folder emptied: 66016 bytes
      ->Temporary Internet Files folder emptied: 11843392 bytes

      User: NetworkService
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 82322 bytes

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 2114656 bytes
      %systemroot%\System32 .tmp files removed: 2909 bytes
      %systemroot%\System32\dllcache .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 16596 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 541,00 mb


      [EMPTYFLASH]

      User: Administrador
      ->Flash cache emptied: 0 bytes

      User: All Users

      User: Default User
      ->Flash cache emptied: 0 bytes

      User: LocalService

      User: NetworkService

      Total Flash Files Cleaned = 0,00 mb


      OTM by OldTimer - Version 3.1.21.0 log created on 10282012_004243

      Files moved on Reboot...
      File C:\WINDOWS\temp\Perflib_Perfdata_48c.dat not found!

      Registry entries deleted on Reboot...
      ---------------------------------------------------------------------------------------------------------

      bueno lo del eset te lo debo no me aparecio por ningun ladoo pero al finalizaar me puso que no habia infeccion y que habia 0 archivos infectedos encontrados que estaba todo limpio....

    10. #10
      Moderador
      Avatar de @DavidG_EB
      Registrado
      jul 2009
      Ubicación
      Mexico
      Mensajes
      10.633

      Re: Varios Virus

      Buenas

      Ejecuta AT destroyer y presiona Desisntalar

      ¿Como sigue el sistema y el problema?

      Saludos
      ErdrickBass
      No importa lo fuerte que sea tu oponente. Lo importante es que estés de pie ante él

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo