SystemLook 30.07.11 by jpshortstuff
Log created at 12:18 on 07/03/2012 by Wiki
Administrator - Elevation successful

========== reg ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinDefend]
"DisplayName"="Windows Defender"
"ErrorControl"= 0x0000000001 (1)
"Group"="COM Infrastructure"
"ImagePath"="%SystemRoot%\System32\svchost.exe -k secsvcs"
"Start"= 0x0000000003 (3)
"Type"= 0x0000000020 (32)
"Description"="@%ProgramFiles(x86)%\Windows Defender\MsMpRes.dll,-3068"
"DependOnService"="RpcSs"
"ObjectName"="LocalSystem"
"ServiceSidType"= 0x0000000001 (1)
"RequiredPrivileges"="SeImpersonatePrivilege SeBackupPrivilege SeRestorePrivilege SeDebugPrivilege SeChangeNotifyPrivilege SeSecurityPrivilege"
"FailureActions"=80 51 01 00 00 00 00 00 00 00 00 00 03 00 00 00 14 00 00 00 01 00 00 00 60 ea 00 00 01 00 00 00 60 ea 00 00 00 00 00 00 00 00 00 00  (REG_BINARY)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinDefend\Parameters]
"ServiceDllUnloadOnStop"= 0x0000000001 (1)
"ServiceDll"="%ProgramFiles(x86)%\Windows Defender\mpsvc.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinDefend\Enum]
"0"="Root\LEGACY_WINDEFEND\0000"
"Count"= 0x0000000001 (1)
"NextInstance"= 0x0000000001 (1)


========== dir ==========

C:\Program Files\Windows Defender - Parameters: "/s"

---Files---
MpAsDesc.dll	--a---- 18536 bytes	[15:00 02/11/2006]	[15:00 02/11/2006]
MpClient.dll	--a---- 491576 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MpCmdRun.exe	--a---- 494136 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MpEvMsg.dll	--a---- 65640 bytes	[15:00 02/11/2006]	[15:00 02/11/2006]
MpOAV.dll	--a---- 114232 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MpRtMon.dll	--a---- 1099832 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MpRtPlug.dll	--a---- 63032 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MpSigDwn.dll	--a---- 185912 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MpSoftEx.dll	--a---- 805336 bytes	[15:54 01/05/2009]	[22:11 10/04/2009]
MpSvc.dll	--a---- 383544 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MSASCui.exe	--a---- 1584184 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MsMpCom.dll	--a---- 295480 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MsMpLics.dll	--a---- 11368 bytes	[15:00 02/11/2006]	[15:00 02/11/2006]
MsMpRes.dll	--a---- 654440 bytes	[15:00 02/11/2006]	[15:00 02/11/2006]

C:\Program Files\Windows Defender\pl-PL	d------	[09:58 21/01/2008]
MpAsDesc.dll.mui	--a---- 38912 bytes	[09:46 21/01/2008]	[09:46 21/01/2008]
MpEvMsg.dll.mui	--a---- 23040 bytes	[09:46 21/01/2008]	[09:46 21/01/2008]
MsMpRes.dll.mui	--a---- 60928 bytes	[09:46 21/01/2008]	[09:46 21/01/2008]

C:\Program Files (x86)\Windows Defender - Parameters: "/s"

---Files---
MpAsDesc.dll	--a---- 16488 bytes	[15:00 02/11/2006]	[15:00 02/11/2006]
MpClient.dll	--a---- 312888 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MpOAV.dll	--a---- 90680 bytes	[02:46 21/01/2008]	[02:46 21/01/2008]
MsMpLics.dll	--a---- 11368 bytes	[15:00 02/11/2006]	[15:00 02/11/2006]

C:\Program Files (x86)\Windows Defender\pl-PL	d------	[09:58 21/01/2008]
MpAsDesc.dll.mui	--a---- 49152 bytes	[09:47 21/01/2008]	[09:47 21/01/2008]
MpEvMsg.dll.mui	--a---- 23552 bytes	[09:46 21/01/2008]	[09:46 21/01/2008]

========== filefind ==========

Searching for "msscb.dll"
C:\Windows\System32\msscb.dll	--a---- 44544 bytes	[15:55 01/05/2009]	[22:11 10/04/2009] 71146D50BA3232D8B673B9811A763647
C:\Windows\SysWOW64\msscb.dll	--a---- 35328 bytes	[15:55 01/05/2009]	[21:28 10/04/2009] F85134BF76CB335A39F8D7BC4173D4FB
C:\Windows\winsxs\amd64_windowssearchengine_31bf3856ad364e35_6.0.6001.18000_none_a6370f3ae7b791be\msscb.dll	--a---- 28160 bytes	[02:47 21/01/2008]	[02:47 21/01/2008] 26F00B5FA8F355B1F4F8507912414F16
C:\Windows\winsxs\amd64_windowssearchengine_31bf3856ad364e35_7.0.6001.16503_none_97aac36c729b4513\msscb.dll	--a---- 44544 bytes	[19:03 31/03/2009]	[05:20 27/05/2008] EC378CC564664D7C2A4D0C06881C53BF
C:\Windows\winsxs\amd64_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_9993048c6fc005d9\msscb.dll	--a---- 44544 bytes	[15:55 01/05/2009]	[22:11 10/04/2009] 71146D50BA3232D8B673B9811A763647
C:\Windows\winsxs\wow64_windowssearchengine_31bf3856ad364e35_6.0.6001.18000_none_b08bb98d1c1853b9\msscb.dll	--a---- 23552 bytes	[02:46 21/01/2008]	[02:46 21/01/2008] 7EEA70876F475DDEED1D46954DE24BE3
C:\Windows\winsxs\wow64_windowssearchengine_31bf3856ad364e35_7.0.6001.16503_none_a1ff6dbea6fc070e\msscb.dll	--a---- 34816 bytes	[19:03 31/03/2009]	[05:17 27/05/2008] 8F580BCC5296ECC9DC8A649D75BE6BA5
C:\Windows\winsxs\wow64_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_a3e7aedea420c7d4\msscb.dll	--a---- 35328 bytes	[15:55 01/05/2009]	[21:28 10/04/2009] F85134BF76CB335A39F8D7BC4173D4FB

-= EOF =-