Sponsored By

intocomputing2

Need Help Removing A Virus[RESOLVED]

Recommended Posts

The computer got infected with a virus, and it's a strange one, this is what happens:

I can't launch avast or hijackthis at all (I'm guessing) it's work of the virus, every time I click any of the two it says there is an error and won't let me run them.

I can't access any of my 2 drives (whether C or D) I get a virus message and no access at all.

How can a virus be removed without the help of Avast or Hijackthis? Does anyone know how to?

Edited by intocomputing2

Share this post


Link to post
Share on other sites

ok I tried using the program Malwarebytes' Anti-Malware, which was the first thing sarahw suggested me to do the time she helped me, after doing a full scan it removed some malware entries, and it seems that I can access hijackthis now, here's the log:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:06:12 AM, on 12/25/2004

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\explorer.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\PROGRAM FILES\A-SQUARED FREE\a2service.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe

C:\WINDOWS\System32\ezSP_Px.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sony.com/vaiopeople

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.sony.com/vaiopeople

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MI1933~1\Office12\GRA8E1~1.DLL

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe

O4 - HKLM\..\Run: [CreateCD_Reminder] C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe

O4 - HKLM\..\Run: [ZTgServerSwitch] "c:\program files\support.com\client\bin\tgcmd.exe" /server

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [VAIO Recovery] C:\Windows\Sonysys\VAIO Recovery\PartSeal.exe

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [dvd43] C:\Program Files\dvd43\dvd43_tray.exe

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKLM\..\Policies\Explorer\Run: [explorer] C:\WINDOWS\system32\wuauclt.exe

O4 - HKLM\..\Policies\Explorer\Run: [internetnet] C:\WINDOWS\system32\spoolsv.exe

O4 - Startup: Dropbox.lnk = C:\Program Files\Dropbox\Dropbox.exe

O4 - Startup: Product Registration.lnk = C:\Program Files\Common Files\LogiShared\eReg\SetPoint\eReg.exe

O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe

O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MI1933~1\Office12\GR99D3~1.DLL

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\PROGRAM FILES\A-SQUARED FREE\a2service.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\WINDOWS\system32\spoolsv.exe

O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe

O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Music\SSSvr.exe

O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Photo\appsrv\PhotoAppSrv.exe

O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe

O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

--

End of file - 8829 bytes

Unfortunately, I still can't access my drive C or D

Thanks in advance to anyone who can help

Edited by intocomputing2

Share this post


Link to post
Share on other sites

Hello and Welcome to the forums. :)

I am MoNsTeReNeRgY22 and I will be assisting you with your computer problem today.

Can you please post the log from MBAM.

Share this post


Link to post
Share on other sites
I am MoNsTeReNeRgY22 and I will be assisting you with your computer problem today.

Can you please post the log from MBAM.

thx for helping, here's the MBAM log:

Malwarebytes' Anti-Malware 1.26

Database version: 1113

Windows 5.1.2600 Service Pack 3

12/25/2004 12:00:23 AM

mbam-log-2004-12-25 (00-00-13).txt

Scan type: Full Scan (C:\|D:\|)

Objects scanned: 110663

Time elapsed: 32 minute(s), 25 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 74

Registry Values Infected: 0

Registry Data Items Infected: 2

Folders Infected: 1

Files Infected: 10

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\newadpopup.toolbardetector (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{de2267bd-b163-407f-9e8d-6adec771e7ab} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{0ad3ab16-6d0e-4f04-8660-fb1f36bc2dc0} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{2f685b36-c53a-4653-9231-1dae5736de45} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{50c4cdd9-22d7-49ff-ac6d-7d4d528a3ab2} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{11f09afd-75ad-4e51-ab43-e09e9351ce16} (Trojan.Clicker) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11f09afd-75ad-4e51-ab43-e09e9351ce16} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{34a12a06-48c0-420d-8f11-73552ee9631a} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{cde9eb54-a08e-4570-b748-13f5ddb5781c} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newadpopup.toolbardetector.1 (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newszadzpopup.bqlogc (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newszadzpopup.bqlogc.1 (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newzbobomediapop.popboco (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newzbobomediapop.popboco.1 (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{385ab8c4-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_CLASSES_ROOT\Typelib\{385ab8c5-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\newpush (Adware.CPush) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\cpush (Adware.CPush) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\MicroPlugins (Malware.Trace) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\IDSCNP (Malware.Trace) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ContentMatch (Adware.CPush) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AutoRun.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwProxy.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32kui.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360rpt.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360Safe.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360tray.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Iparmor.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAV32.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPFW.EXE (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVMonXP.kxp (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVSrvXP.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVwsc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapsvc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PFW.EXE (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rav.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AntiArp.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvMonitor.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.com (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCenter.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HijackThis.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVStart.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KMailMon.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFWSvc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KRegEx.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KWatch.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mmsk.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32krn.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavStub.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RfwMain.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwsrv.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rsaupd.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\runiep.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojanDetector.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Trojanwall.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojDie.kxp (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360safebox.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\QQDoctor.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\safeboxTray.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\kissvc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwstub.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\icesword.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ArSwp.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VPTray.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AST.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavService.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFUpd.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GuardField.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\acpidisk (Trojan.Agent) -> No action taken.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: c:\windows\system32\userinit.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: system32\userinit.exe -> No action taken.

Folders Infected:

C:\Program Files\Common Files\PushWare (Adware.CPush) -> No action taken.

Files Infected:

C:\Program Files\Common Files\PushWare\cpush.dll (Trojan.Clicker) -> No action taken.

C:\WINDOWS\Rose\pctools_20041224_7866.dll (Adware.Cinmus) -> No action taken.

C:\WINDOWS\system32\conime.exe (Spyware.OnlineGames) -> No action taken.

C:\WINDOWS\Fonts\svchost.exe (Spyware.OnlineGames) -> No action taken.

C:\WINDOWS\Downloaded Program Files\explorer.exe (Spyware.OnlineGames) -> No action taken.

C:\Program Files\Common Files\PushWare\Uninst.exe (Adware.CPush) -> No action taken.

C:\WINDOWS\system32\d3d1caps.SRG (Stolen.Data) -> No action taken.

C:\WINDOWS\system32\drivers\beep.sys (Fake.Beep.Sys) -> No action taken.

C:\WINDOWS\system32\mprmsgse.axz (Adware.Cinmus) -> No action taken.

C:\WINDOWS\system32\drivers\acpidisk.sys (Trojan.Agent) -> No action taken.

Share this post


Link to post
Share on other sites

As an additional detail there's a virus message at the right bottom of my screen that says:

C:\ZGWZ.PIF\[uPX] contains sample of 'Win32:Warezov-MF [Wrm]'!

D:\ZGWZ.PIF\[uPX] contains sample of 'Win32:Warezov-MF [Wrm]'!

Share this post


Link to post
Share on other sites

Hey,

Please update MBAM to the latest virus definitions, then do a full scan again.

  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • Please post the new MBAM log and a new HJT log after you have done the above.

Share this post


Link to post
Share on other sites

Actually I made sure I updated MBAM before running it and posting that log, same as with Hijackthis log, but since you ask I will do it again.

Edit:

Thx for the heads up, there was actually a new update which I downloaded and now I'm proceeding with the full scan

Edited by intocomputing2

Share this post


Link to post
Share on other sites

Here's the MBAM log:

Malwarebytes' Anti-Malware 1.31

Database version: 1542

Windows 5.1.2600 Service Pack 3

12/25/2004 6:51:04 PM

mbam-log-2004-12-25 (18-51-04).txt

Scan type: Full Scan (C:\|D:\|)

Objects scanned: 118520

Time elapsed: 31 minute(s), 51 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 59

Registry Values Infected: 0

Registry Data Items Infected: 2

Folders Infected: 0

Files Infected: 3

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\Interface\{385ab8c4-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Typelib\{385ab8c5-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{285ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Trojan.BHO) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11f09afd-75ad-4e51-ab43-e09e9351ce16} (Trojan.Clicker) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\IDSCNP (Malware.Trace) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AutoRun.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwProxy.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32kui.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360rpt.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360Safe.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360tray.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Iparmor.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAV32.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPFW.EXE (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVMonXP.kxp (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVSrvXP.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVwsc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapsvc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PFW.EXE (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rav.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AntiArp.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvMonitor.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.com (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCenter.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HijackThis.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVStart.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KMailMon.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFWSvc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KRegEx.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KWatch.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mmsk.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32krn.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavStub.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RfwMain.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwsrv.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rsaupd.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\runiep.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojanDetector.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Trojanwall.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojDie.kxp (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360safebox.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\QQDoctor.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\safeboxTray.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\kissvc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwstub.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\icesword.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ArSwp.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VPTray.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AST.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavService.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFUpd.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GuardField.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VPC32.exe (Security.Hijack) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: c:\windows\system32\userinit.exe -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: system32\userinit.exe -> Quarantined and deleted successfully.

Folders Infected:

(No malicious items detected)

Files Infected:

C:\WINDOWS\Rose\pctools_20041225_7866.dll (Adware.Cinmus) -> Delete on reboot.

C:\WINDOWS\system32\d3d1caps.SRG (Stolen.Data) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\mprmsgse.axz (Adware.Cinmus) -> Quarantined and deleted successfully.

and here's the Hijacklogthis log:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 6:59:54 PM, on 12/25/2004

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\explorer.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\PROGRAM FILES\A-SQUARED FREE\a2service.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe

C:\WINDOWS\System32\ezSP_Px.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sony.com/vaiopeople

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.sony.com/vaiopeople

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MI1933~1\Office12\GRA8E1~1.DLL

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe

O4 - HKLM\..\Run: [CreateCD_Reminder] C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe

O4 - HKLM\..\Run: [ZTgServerSwitch] "c:\program files\support.com\client\bin\tgcmd.exe" /server

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [VAIO Recovery] C:\Windows\Sonysys\VAIO Recovery\PartSeal.exe

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [dvd43] C:\Program Files\dvd43\dvd43_tray.exe

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKLM\..\Policies\Explorer\Run: [explorer] C:\WINDOWS\system32\wuauclt.exe

O4 - HKLM\..\Policies\Explorer\Run: [internetnet] C:\WINDOWS\system32\spoolsv.exe

O4 - Startup: Dropbox.lnk = C:\Program Files\Dropbox\Dropbox.exe

O4 - Startup: Product Registration.lnk = C:\Program Files\Common Files\LogiShared\eReg\SetPoint\eReg.exe

O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe

O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MI1933~1\Office12\GR99D3~1.DLL

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\PROGRAM FILES\A-SQUARED FREE\a2service.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe

O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Music\SSSvr.exe

O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Photo\appsrv\PhotoAppSrv.exe

O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe

O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

--

End of file - 8738 bytes

Edited by intocomputing2

Share this post


Link to post
Share on other sites

Hello again,

Download OTViewIt to your desktop.

  • Close all windows and open it
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up called OTViewIt.txt, the other will be saved on your desktop and called Extras. Post both those logs here.
  • You may need to use two posts to get it all on the forum

Share this post


Link to post
Share on other sites

Here are the logs:

OTViewIt.Txt log:

OTViewIt logfile created on: 12/26/2004 11:20:04 AM - Run

OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Documents and Settings\Max\Desktop

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.5512)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

759.52 Mb Total Physical Memory | 507.52 Mb Available Physical Memory | 66.82% Memory free

1.81 Gb Paging File | 1.56 Gb Available in Paging File | 86.21% Paging File free

Paging file location(s): C:\pagefile.sys 1140 2280;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 105.78 Gb Total Space | 40.26 Gb Free Space | 38.06% Space Free | Partition Type: NTFS

Drive D: | 68.52 Gb Total Space | 46.86 Gb Free Space | 68.38% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: VALUED-3253602F

Current User Name: Max

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Whitelist: On

File Age = 30 Days

========== Processes ==========

[2008/07/19 06:25:06 | 00,016,056 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

[2008/07/19 06:38:28 | 00,147,640 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe

[2008/12/17 08:32:06 | 00,419,448 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe

[2007/04/19 11:26:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe

[2008/07/19 06:38:04 | 00,250,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

[2008/07/23 06:25:45 | 00,348,344 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

[2003/04/17 16:51:36 | 00,053,248 | ---- | M] (Sony Electronics, Inc) -- C:\WINDOWS\SONYSYS\VAIO Recovery\Reminder.exe

[2002/08/20 09:29:26 | 00,040,960 | ---- | M] (Easy Systems Japan Ltd.) -- C:\WINDOWS\system32\ezSP_Px.exe

[2003/02/14 11:59:00 | 00,088,107 | ---- | M] (Agere Systems) -- C:\WINDOWS\AGRSMMSG.exe

[2008/04/13 16:12:33 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe

[2008/06/10 03:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

[2008/07/19 06:38:34 | 00,078,008 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe

[2006/10/26 23:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

[2008/09/02 16:04:37 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

[2008/05/02 01:44:08 | 00,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe

[2008/05/02 01:40:56 | 00,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe

[2008/06/10 03:27:03 | 00,329,104 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe

[2004/12/26 11:19:19 | 00,423,424 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Max\Desktop\OTViewIt.exe

========== (O23) Win32 Services ==========

[2008/12/17 08:32:06 | 00,419,448 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe -- (a2free [Auto | Running])

[2008/07/19 06:25:06 | 00,016,056 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])

[2008/07/19 06:38:28 | 00,147,640 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])

[2008/07/19 06:38:04 | 00,250,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])

[2008/07/23 06:25:45 | 00,348,344 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])

[2004/10/22 02:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])

[2008/05/02 01:42:06 | 00,121,360 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ [On_Demand | Stopped])

[2006/10/26 23:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])

[2007/04/19 11:26:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc [Auto | Running])

[2006/10/26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])

[2006/10/26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])

[2002/12/24 10:01:22 | 00,065,536 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV [On_Demand | Stopped])

[2003/07/01 17:53:48 | 00,495,705 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Music\SSSvr.exe -- (VAIOMediaPlatform-MusicServer-AppServer [On_Demand | Stopped])

[2003/06/23 19:16:38 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-MusicServer-HTTP [On_Demand | Stopped])

[2003/06/24 13:49:54 | 00,720,896 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-MusicServer-UPnP [On_Demand | Stopped])

[2003/06/30 16:35:22 | 00,925,696 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Photo\appsrv\PhotoAppSrv.exe -- (VAIOMediaPlatform-PhotoServer-AppServer [On_Demand | Stopped])

[2003/06/23 19:16:38 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-PhotoServer-HTTP [On_Demand | Stopped])

[2003/06/24 13:49:54 | 00,720,896 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-PhotoServer-UPnP [On_Demand | Stopped])

[2003/06/30 16:38:40 | 01,196,032 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe -- (VAIOMediaPlatform-VideoServer-AppServer [On_Demand | Stopped])

[2003/06/23 19:16:38 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-VideoServer-HTTP [On_Demand | Stopped])

[2003/06/24 13:49:54 | 00,720,896 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-VideoServer-UPnP [On_Demand | Stopped])

========== Driver Services ==========

[2008/07/19 06:32:15 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [system | Running])

[2002/04/01 14:15:00 | 00,004,816 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (aeaudio [On_Demand | Stopped])

[2003/02/14 11:59:00 | 01,169,792 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem [On_Demand | Running])

[2002/12/04 13:28:10 | 00,730,956 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Running])

[2008/07/19 06:37:42 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk [Auto | Running])

[2008/07/19 06:37:21 | 00,094,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])

[2008/07/19 06:33:42 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running])

[2008/07/19 06:35:18 | 00,078,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [system | Running])

[2008/07/19 06:32:36 | 00,042,912 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [system | Running])

[2003/07/06 12:23:18 | 00,587,264 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag [On_Demand | Stopped])

[2000/12/05 15:18:02 | 00,003,952 | R--- | M] (Sony Corporation) -- C:\WINDOWS\system32\drivers\DMICall.sys -- (DMICall [system | Running])

[2008/09/28 16:41:27 | 00,018,816 | ---- | M] (RIF) -- C:\WINDOWS\system32\drivers\dvd43llh.sys -- (dvd43llh [On_Demand | Running])

[2003/03/11 05:21:38 | 00,121,344 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\e1000325.sys -- (E1000 [On_Demand | Stopped])

[2003/03/04 11:56:26 | 00,145,408 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\e100b325.sys -- (E100B [On_Demand | Stopped])

[2001/08/17 04:11:02 | 00,153,631 | ---- | M] (3Com Corporation) -- C:\WINDOWS\system32\drivers\el90xnd5.sys -- (EL90X [On_Demand | Stopped])

[2008/09/16 21:26:41 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi [On_Demand | Running])

[2003/04/15 09:39:46 | 00,090,907 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmnt5.sys -- (ialm [On_Demand | Stopped])

[2008/02/29 02:12:48 | 00,020,240 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd [On_Demand | Running])

[2008/02/29 02:13:16 | 00,035,344 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt [On_Demand | Running])

[2008/02/29 02:13:24 | 00,036,880 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt [On_Demand | Running])

[2004/12/25 06:39:11 | 00,042,000 | ---- | M] (CACE Technologies) -- C:\WINDOWS\system32\drivers\npf.sys -- (npf [On_Demand | Stopped])

[2007/04/19 11:26:00 | 03,988,384 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv [On_Demand | Running])

[2002/08/29 04:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink [On_Demand | Running])

[2003/06/03 01:02:00 | 00,017,136 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\pxhelp20.sys -- (PxHelp20 [boot | Running])

[2002/06/13 11:37:16 | 00,045,568 | ---- | M] (Realtek Semiconductor Corporation) -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139 [On_Demand | Running])

[2008/04/13 10:40:48 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\sbp2port.sys -- (sbp2port [boot | Running])

[2008/04/13 08:39:15 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv [On_Demand | Stopped])

[2003/07/12 17:46:14 | 00,761,472 | ---- | M] (Sony Corporation) -- C:\WINDOWS\system32\drivers\smrt.sys -- (smrt [On_Demand | Stopped])

[2003/07/17 16:32:34 | 00,578,752 | ---- | M] (Analog Devices, Inc.) -- C:\WINDOWS\system32\drivers\smwdm.sys -- (smwdm [On_Demand | Stopped])

[2008/04/13 10:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio [On_Demand | Stopped])

[2008/04/13 10:46:20 | 00,121,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\usbvideo.sys -- (usbvideo [On_Demand | Stopped])

[2006/11/02 06:22:54 | 00,492,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\wdf01000.sys -- (Wdf01000 [On_Demand | Running])

[2003/04/15 09:40:54 | 00,113,504 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmsbw.sys -- ({6080A529-897E-4629-A488-ABA0C29B635E} [On_Demand | Stopped])

[2003/04/15 09:40:46 | 00,078,752 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmkchw.sys -- ({D31A0762-0CEB-444e-ACFF-B049A1F6FE91} [On_Demand | Stopped])

========== (R ) Internet Explorer ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]

"Default_Page_URL"=http://www.sony.com/vaiopeople

"Default_Search_URL"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

"Local Page"=%SystemRoot%\system32\blank.htm

"Search Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

"Start Page"=http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]

"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]

"Local Page"=C:\WINDOWS\system32\blank.htm

"Search Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

"Start Page"=about:blank

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]

"provider"=

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]

"ProxyEnable" = 0

========== (O1) Hosts File ==========

HOSTS File = (734 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

First 25 entries...

127.0.0.1 localhost

========== (O2) BHO's ==========

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]

{18DF081C-E8AD-4283-A596-FA578C2EBDC3} (HKLM) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

{72853161-30C5-4D22-B7F9-0BBC1D38A37E} (HKLM) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) -- C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)

{FDD3B846-8D59-4ffb-8758-209B6AD74ACC} (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

========== (O3) Toolbars ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]

"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

========== (O4) Run Keys ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)

"AGRSMMSG"=AGRSMMSG.exe (Agere Systems)

"ATIModeChange"=Ati2mdxx.exe (ATI Technologies, Inc.)

"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.)

"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)

"CreateCD_Reminder"=C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe (Sony Electronics, Inc)

"dvd43"=C:\Program Files\dvd43\dvd43_tray.exe ()

"ezShieldProtector for Px"=C:\WINDOWS\System32\ezSP_Px.exe (Easy Systems Japan Ltd.)

"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" (Microsoft Corporation)

"HotKeysCmds"=C:\WINDOWS\System32\hkcmd.exe (Intel Corporation)

"IgfxTray"=C:\WINDOWS\System32\igfxtray.exe (Intel Corporation)

"Kernel and Hardware Abstraction Layer"=KHALMNPR.EXE (Logitech, Inc.)

"KernelFaultCheck"=%systemroot%\system32\dumprep 0 -k File not found

"NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)

"NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)

"nwiz"=nwiz.exe /install ()

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime (Apple Computer, Inc.)

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" (Sun Microsystems, Inc.)

"VAIO Recovery"=C:\Windows\Sonysys\VAIO Recovery\PartSeal.exe (Sony Electronics Inc)

"ZTgServerSwitch"="c:\program files\support.com\client\bin\tgcmd.exe" /server (Support.com, Inc.)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c (Google Inc.)

========== (O4) Startup Folders ==========

[2002/09/20 11:19:46 | 00,036,864 | ---- | M] (Intuit) -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Billminder.lnk = C:\Program Files\Quicken\billmind.exe

[2008/05/02 01:44:08 | 00,805,392 | ---- | M] (Logitech, Inc.) -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

[2002/09/20 11:20:06 | 00,036,864 | ---- | M] (Intuit) -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE

[2008/09/25 23:18:12 | 24,096,981 | ---- | M] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Dropbox.lnk = C:\Program Files\Dropbox\Dropbox.exe

[2007/04/09 10:23:34 | 03,036,688 | ---- | M] (Logitech / Leader Technologies) -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Product Registration.lnk = C:\Program Files\Common Files\LogiShared\eReg\SetPoint\eReg.exe

========== (O6 & O7) Current Version Policies ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run]

"explorer"=C:\WINDOWS\system32\wuauclt.exe -- [2002/08/26 19:38:10 | 00,014,376 | -HS- | M] ()

"internetnet"=C:\WINDOWS\system32\spoolsv.exe -- [2004/12/25 00:04:17 | 00,020,680 | -HS- | M] ()

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]

"NoDriveTypeAutoRun"=145

========== (O8) IE Context Menu Extensions ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]

E&xportar a Microsoft Excel: C:\Program Files\Microsoft Office\Office12\EXCEL.EXE [2006/10/27 14:07:36 | 17,891,112 | ---- | M] (Microsoft Corporation)

========== (O9) IE Extensions ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]

{08B0E5C0-4FCB-11CF-AAA5-00401C608501}: Menu: Sun Java Console -- %ProgramFiles%\Java\jre1.6.0_07\bin\npjpi160_07.dll [2008/06/10 03:27:02 | 00,132,496 | ---- | M] (Sun Microsystems, Inc.)

{2670000A-7350-4f3c-8081-5663EE0C6C49}: Button: Enviar a OneNote -- %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [2006/10/26 19:32:42 | 00,604,000 | ---- | M] (Microsoft Corporation)

{2670000A-7350-4f3c-8081-5663EE0C6C49}: Menu: &Enviar a OneNote -- %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [2006/10/26 19:32:42 | 00,604,000 | ---- | M] (Microsoft Corporation)

{92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Research -- %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [2006/10/26 19:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)

{e2e2dd38-d088-4134-82b7-f2ba38496583}: Menu: @xpsp3res.dll,-20001 -- %SystemRoot%\network diagnostic\xpnetdiag.exe [2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)

{FB5F1910-F110-11d2-BB9E-00C04F795683}: Button: Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2008/04/13 16:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)

{FB5F1910-F110-11d2-BB9E-00C04F795683}: Menu: Windows Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2008/04/13 16:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\]

CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %SystemRoot%\system32\msjava.dll [Web Browser Applet Control] -> [2003/02/28 17:26:26 | 00,947,472 | ---- | M] (Microsoft Corporation)

CmdMapping\\{2670000A-7350-4f3c-8081-5663EE0C6C49} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [Enviar a OneNote] -> [2006/10/26 19:32:42 | 00,604,000 | ---- | M] (Microsoft Corporation)

CmdMapping\\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [Research] -> [2006/10/26 19:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)

CmdMapping\\{e2e2dd38-d088-4134-82b7-f2ba38496583} [HKLM] -> %SystemRoot%\network diagnostic\xpnetdiag.exe [@xpsp3res.dll,-20001] -> [2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)

CmdMapping\\{FB5F1910-F110-11d2-BB9E-00C04F795683} [HKLM] -> %ProgramFiles%\Messenger\msmsgs.exe [Messenger] -> [2008/04/13 16:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)

========== (O12) Internet Explorer Plugins ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]

PluginsPage: "" = http://activex.microsoft.com/controls/find...=%s&mime=%s

PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery

========== (O13) Default Prefixes ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]

""=http://

========== (O15) Trusted Sites ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]

1 domain(s) and sub-domain(s) not assigned to a zone.

========== (O16) DPF ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]

{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab -- Java Plug-in 1.6.0_07

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}: http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab -- Reg Error: Key does not exist or could not be opened.

{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab -- Java Plug-in 1.6.0_07

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab -- Java Plug-in 1.6.0_07

DirectAnimation Java Classes: file://C:\WINDOWS\Java\classes\dajava.cab -- Reg Error: Key does not exist or could not be opened.

Microsoft XML Parser for Java: file://C:\WINDOWS\Java\classes\xmldso.cab -- Reg Error: Key does not exist or could not be opened.

========== (O17) DNS Name Servers ==========

{4DB5B532-84D7-4A97-B0E4-CE488206EBF9} (Servers: | Description: 1394 Net Adapter)

{6BDFFCC5-B5E0-45B6-9987-8AB8047530E1} (Servers: | Description: Realtek RTL8139/810x Family Fast Ethernet NIC)

{703DFCA0-31FB-4FD7-859E-94D79E9DECB3} (Servers: | Description: )

{7DC122E3-FB03-4F71-BC6D-15EE27DB6307} (Servers: | Description: 3Com 3C900TPO-based Ethernet Adapter (Generic))

{B821443B-D772-4392-A6BF-28E93BD36F8D} (Servers: | Description: )

========== (O20) HKLM Winlogon Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]

"UserInit"=C:\WINDOWS\system32\userinit.exe,

>[2008/04/13 16:12:38 | 00,026,112 | ---- | M] () -- C:\WINDOWS\system32\userinit.exe

========== (O20) Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]

igfxcui: "DllName" = igfxsrvc.dll -- C:\WINDOWS\system32\igfxsrvc.dll (Intel Corporation)

LBTWlgn: "DllName" = c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll -- c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)

========== IFEO "Debugger" Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\]

AutoRunKiller.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

Frameworkservice.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

KASARP.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

RAVTRAY.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

RsMain.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

rsnetsvr.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

RSTray.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

ScanFrm.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

SREngLdr.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

WOPTILITIES.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

========== Shell Execute Hooks ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" (HKLM) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

========== Safeboot Options ==========

"AlternateShell"=cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]

"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []

[2003/08/13 19:08:11 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]

AUTORUN.INF [[AutoRun] | | shell\open=´ò¿ª(&O) | | shell\open\Command=GLXB.PIF | | shell\open\Default=1 | | shell\explore=×ÊÔ´¹ÜÀíÆ÷(&X) | | shell\explore\command=GLXB.PIF | | ]

[2004/12/24 15:28:25 | 00,000,151 | -HS- | M] () -- C:\AUTORUN.INF -- [ NTFS ]

AUTORUN.INF [[AutoRun] | | shell\open=´ò¿ª(&O) | | shell\open\Command=GLXB.PIF | | shell\open\Default=1 | | shell\explore=×ÊÔ´¹ÜÀíÆ÷(&X) | | shell\explore\command=GLXB.PIF | | ]

[2004/12/24 15:28:25 | 00,000,151 | -HS- | M] () -- D:\AUTORUN.INF -- [ NTFS ]

========== MountPoints2 ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bbe7c6de-7d20-11dd-9897-000c6efd7100}\Shell\Shell00\Command]

""=G:\Start.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\Shell]

""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\Shell\AutoRun]

""=Auto&Play

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\Shell\AutoRun\command]

""=G:\LaunchU3.exe -- File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\*.tmp files]

[1 C:\WINDOWS\System32\*.tmp files]

[2 C:\WINDOWS\*.tmp files]

[2008/12/24 01:07:32 | 00,059,043 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\chetu1.PNG

[2008/12/22 16:43:24 | 00,000,678 | ---- | C] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Dropbox.lnk

[2008/12/22 16:43:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Dropbox

[2008/12/22 16:43:12 | 00,000,000 | ---D | C] -- C:\Program Files\Dropbox

[2008/12/22 13:50:24 | 14,888,263 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\Dropbox 0.6.402.exe

[2008/12/21 16:17:40 | 00,022,016 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\laspostonpermbanopinion.doc

[2008/12/19 21:52:27 | 00,062,464 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\AA LISTADO DE ITEMS DICIEMBRE 2008.doc

[2008/12/14 21:13:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Desktop\thingstothrow

[2008/12/06 01:05:10 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump

[2008/11/14 14:14:41 | 00,000,000 | -H-- | C] () -- C:\Documents and Settings\Max\My Documents\Default.rdp

[2008/11/13 22:16:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Nova Development

[2008/11/12 19:05:17 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys

[2008/11/12 19:05:03 | 01,106,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll

[2008/10/24 22:41:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\WinRAR

[2008/10/24 22:39:49 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2008/10/24 21:04:06 | 00,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys

[2008/10/24 21:04:06 | 00,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys

[2008/10/24 21:03:54 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax

[2008/10/24 21:03:54 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax

[2008/10/23 17:03:39 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll

[2008/10/23 04:36:14 | 00,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll

[2008/10/15 23:28:08 | 02,189,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe

[2008/10/15 23:28:08 | 02,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe

[2008/10/15 23:28:07 | 02,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe

[2008/10/15 23:28:07 | 02,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe

[2008/10/15 20:28:46 | 00,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys

[2008/10/15 20:28:41 | 01,846,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys

[2008/10/13 16:14:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Talkback

[2008/10/04 08:36:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DVD Shrink

[2008/10/04 08:36:15 | 00,000,000 | ---D | C] -- C:\Program Files\DVD Shrink

[2008/09/29 17:09:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\uTorrent

[2008/09/29 17:08:45 | 00,270,128 | ---- | C] (BitTorrent, Inc.) -- C:\Documents and Settings\Max\Desktop\utorrent.exe

[2008/09/29 00:06:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\dvdcss

[2008/09/28 16:41:27 | 00,018,816 | ---- | C] (RIF) -- C:\WINDOWS\System32\drivers\dvd43llh.sys

[2008/09/28 16:41:27 | 00,000,000 | ---D | C] -- C:\Program Files\dvd43

[2008/09/28 16:38:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\School Zone Preferences

[2008/09/27 13:08:59 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip

[2008/09/23 22:28:41 | 00,000,000 | ---D | C] -- C:\Program Files\DVD Decrypter

[2008/09/21 14:09:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Desktop\codeoflife's prog for admins

[2008/09/20 15:11:51 | 00,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat

[2008/09/20 15:11:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\skypePM

[2008/09/20 15:10:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Skype

[2008/09/20 15:10:11 | 00,002,257 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk

[2008/09/20 15:10:09 | 00,000,000 | ---D | C] -- C:\Program Files\Skype

[2008/09/20 15:10:09 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype

[2008/09/20 15:10:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype

[2008/09/17 08:57:32 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF

[2008/09/17 08:46:09 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR

[2008/09/17 08:45:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe

[2008/09/17 08:32:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Local Settings\Application Data\CutePDF Writer

[2008/09/17 08:29:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\My Documents\Blocs de notas de OneNote

[2008/09/17 08:26:40 | 00,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll

[2008/09/17 08:26:31 | 00,000,000 | ---D | C] -- C:\Program Files\Acro Software

[2008/09/17 08:25:47 | 00,000,000 | ---D | C] -- C:\Program Files\GPLGS

[2008/09/16 21:27:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Hamachi

[2008/09/16 21:26:41 | 00,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys

[2008/09/16 21:26:40 | 00,000,632 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk

[2008/09/16 21:26:40 | 00,000,000 | ---D | C] -- C:\Program Files\Hamachi

[2008/09/12 21:58:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Xfire

[2008/09/12 21:58:19 | 00,000,638 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Xfire.lnk

[2008/09/12 21:58:17 | 00,000,000 | ---D | C] -- C:\Program Files\Xfire

[2008/09/10 18:44:33 | 00,032,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll

[2008/09/10 18:43:10 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild

[2008/09/10 18:42:34 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio

[2008/09/10 18:42:33 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER

[2008/09/10 18:37:29 | 00,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW

[2008/09/10 18:37:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Local Settings\Application Data\Microsoft Help

[2008/09/10 18:37:07 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office

[2008/09/10 18:37:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help

[2008/09/10 18:36:46 | 00,000,000 | RH-D | C] -- C:\MSOCache

[2008/09/08 00:09:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\vlc

[2008/09/08 00:09:12 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN

[2008/09/08 00:05:05 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2008/09/08 00:05:05 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk

[2008/09/08 00:05:04 | 00,042,912 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2008/09/08 00:05:03 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys

[2008/09/08 00:05:02 | 00,094,392 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr

[2008/09/08 00:05:01 | 00,094,416 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys

[2008/09/08 00:05:01 | 00,093,264 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys

[2008/09/08 00:05:01 | 00,078,416 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2008/09/08 00:05:01 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2008/09/08 00:04:45 | 01,163,960 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe

[2008/09/08 00:04:45 | 00,499,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVCP71.dll

[2008/09/08 00:04:45 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx

[2008/09/08 00:04:45 | 00,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVCR71.dll

[2008/09/08 00:04:43 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software

[2008/09/07 13:03:32 | 00,000,000 | ---D | C] -- C:\_OTMoveIt

[2008/09/06 01:07:45 | 00,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sbp2port.sys

[2008/09/06 01:07:45 | 00,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys

[2008/09/06 00:54:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2008/09/06 00:49:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us

[2008/09/06 00:49:15 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting

[2008/09/06 00:49:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en

[2008/09/06 00:49:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\bits

[2008/09/06 00:49:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\l2schemas

[2008/09/06 00:45:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic

[2008/09/05 21:02:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Ventrilo

[2008/09/05 20:51:46 | 00,000,000 | ---D | C] -- C:\Program Files\Ventrilo

[2008/09/05 20:51:14 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard

[2008/09/04 13:46:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Malwarebytes

[2008/09/04 13:46:09 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2008/09/04 13:46:08 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2008/09/04 13:46:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2008/09/04 13:46:06 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2008/09/04 13:41:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun

[2008/09/04 13:41:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Sun

[2008/09/04 12:16:15 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll

[2008/09/04 12:16:13 | 02,174,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMVCore.dll

[2008/09/04 12:16:13 | 01,119,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe2.dll

[2008/09/04 12:16:13 | 01,001,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmoe2.dll

[2008/09/04 12:16:13 | 00,897,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmoe.dll

[2008/09/04 12:16:13 | 00,809,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmod.dll

[2008/09/04 12:16:13 | 00,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmod.dll

[2008/09/04 12:16:13 | 00,485,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmod.dll

[2008/09/04 12:16:13 | 00,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmstream.dll

[2008/09/04 12:16:13 | 00,278,559 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmv8ds32.ax

[2008/09/04 12:16:13 | 00,258,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvds32.ax

[2008/09/04 12:16:13 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe.dll

[2008/09/04 12:16:13 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpshell.dll

[2008/09/04 12:16:13 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpui.dll

[2008/09/04 12:16:13 | 00,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta

[2008/09/04 12:16:13 | 00,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css

[2008/09/04 12:16:13 | 00,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf

[2008/09/04 12:16:12 | 02,940,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmploc.dll

[2008/09/04 12:16:12 | 00,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm

[2008/09/04 12:16:12 | 00,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll

[2008/09/04 12:16:12 | 00,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpdxm.dll

[2008/09/04 12:16:12 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll

[2008/09/04 12:16:12 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav

[2008/09/04 12:16:12 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav

[2008/09/04 12:16:12 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll

[2008/09/04 12:16:12 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe

[2008/09/04 12:16:12 | 00,067,374 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm

[2008/09/04 12:16:12 | 00,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm

[2008/09/04 12:16:12 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcore.dll

[2008/09/04 12:16:12 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcd.dll

[2008/09/04 12:16:12 | 00,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js

[2008/09/04 12:16:11 | 04,874,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.dll

[2008/09/04 12:16:11 | 01,053,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMNetmgr.dll

[2008/09/04 12:16:11 | 00,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav

[2008/09/04 12:16:11 | 00,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav

[2008/09/04 12:16:11 | 00,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav

[2008/09/04 12:16:11 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav

[2008/09/04 12:16:11 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpasf.dll

[2008/09/04 12:16:11 | 00,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav

[2008/09/04 12:16:11 | 00,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav

[2008/09/04 12:16:11 | 00,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav

[2008/09/04 12:16:11 | 00,029,070 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf

[2008/09/04 12:16:11 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.ocx

[2008/09/04 12:16:10 | 00,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmoe.dll

[2008/09/04 12:16:10 | 00,408,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmod.dll

[2008/09/04 12:16:10 | 00,230,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmasf.dll

[2008/09/04 12:16:10 | 00,168,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmerror.dll

[2008/09/04 12:16:10 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidx.dll

[2008/09/04 12:16:10 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmlog.dll

[2008/09/04 12:16:10 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmps.dll

[2008/09/04 12:16:10 | 00,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf

[2008/09/04 12:16:10 | 00,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif

[2008/09/04 12:16:10 | 00,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif

[2008/09/04 12:16:10 | 00,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif

[2008/09/04 12:16:10 | 00,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif

[2008/09/04 12:16:10 | 00,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf

[2008/09/04 12:16:10 | 00,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif

[2008/09/04 12:16:10 | 00,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif

[2008/09/04 12:16:10 | 00,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif

[2008/09/04 12:16:10 | 00,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif

[2008/09/04 12:16:10 | 00,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif

[2008/09/04 12:16:09 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll

[2008/09/04 12:16:08 | 00,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll

[2008/09/04 12:16:08 | 00,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll

[2008/09/04 12:16:06 | 00,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv

[2008/09/04 12:16:06 | 00,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif

[2008/09/04 12:16:06 | 00,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif

[2008/09/04 12:16:05 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe

[2008/09/04 12:16:02 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unregmp2.exe

[2008/09/04 12:16:01 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll

[2008/09/04 12:16:01 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tspkg.dll

[2008/09/04 12:16:01 | 00,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif

[2008/09/04 12:16:01 | 00,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js

[2008/09/04 12:16:01 | 00,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif

[2008/09/04 12:16:01 | 00,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif

[2008/09/04 12:16:01 | 00,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif

[2008/09/04 12:16:01 | 00,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif

[2008/09/04 12:16:00 | 00,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif

[2008/09/04 12:16:00 | 00,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif

[2008/09/04 12:16:00 | 00,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif

[2008/09/04 12:16:00 | 00,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif

[2008/09/04 12:15:59 | 00,247,326 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\strmdll.dll

[2008/09/04 12:15:55 | 00,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm

[2008/09/04 12:15:55 | 00,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm

[2008/09/04 12:15:55 | 00,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf

[2008/09/04 12:15:54 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shmedia.dll

[2008/09/04 12:15:53 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe

[2008/09/04 12:15:53 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe

[2008/09/04 12:15:53 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_mmc.sys

[2008/09/04 12:15:51 | 00,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv

[2008/09/04 12:15:50 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll

[2008/09/04 12:15:50 | 00,066,725 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz

[2008/09/04 12:15:49 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll

[2008/09/04 12:15:48 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll

[2008/09/04 12:15:47 | 00,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagentrt.dll

[2008/09/04 12:15:47 | 00,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll

[2008/09/04 12:15:47 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll

[2008/09/04 12:15:46 | 00,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll

[2008/09/04 12:15:46 | 00,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm

[2008/09/04 12:15:46 | 00,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl

[2008/09/04 12:15:46 | 00,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl

[2008/09/04 12:15:45 | 00,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl

[2008/09/04 12:15:45 | 00,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl

[2008/09/04 12:15:45 | 00,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl

[2008/09/04 12:15:45 | 00,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl

[2008/09/04 12:15:45 | 00,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl

[2008/09/04 12:15:45 | 00,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl

[2008/09/04 12:15:45 | 00,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl

[2008/09/04 12:15:45 | 00,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl

[2008/09/04 12:15:45 | 00,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl

[2008/09/04 12:15:45 | 00,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl

[2008/09/04 12:15:45 | 00,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl

[2008/09/04 12:15:45 | 00,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl

[2008/09/04 12:15:45 | 00,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl

[2008/09/04 12:15:44 | 00,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll

[2008/09/04 12:15:41 | 00,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv

[2008/09/04 12:15:39 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll

[2008/09/04 12:15:39 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll

[2008/09/04 12:15:39 | 00,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip

[2008/09/04 12:15:39 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll

[2008/09/04 12:15:39 | 00,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip

[2008/09/04 12:15:37 | 00,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe

[2008/09/04 12:15:36 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll

[2008/09/04 12:15:36 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll

[2008/09/04 12:15:35 | 01,307,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6.dll

[2008/09/04 12:15:35 | 01,307,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll

[2008/09/04 12:15:35 | 00,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswmdm.dll

[2008/09/04 12:15:35 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll

[2008/09/04 12:15:35 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll

[2008/09/04 12:15:34 | 00,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscp.dll

[2008/09/04 12:15:34 | 00,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll

[2008/09/04 12:15:34 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll

[2008/09/04 12:15:34 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscds32.ax

[2008/09/04 12:15:33 | 00,201,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsp.dll

[2008/09/04 12:15:33 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsnsv.dll

[2008/09/04 12:15:31 | 00,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msnetobj.dll

[2008/09/04 12:15:29 | 00,004,126 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxmlc.dll

[2008/09/04 12:15:28 | 00,844,314 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxm.ocx

[2008/09/04 12:15:27 | 00,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll

[2008/09/04 12:15:27 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm

[2008/09/04 12:15:27 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds32.ax

[2008/09/04 12:15:27 | 00,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf

[2008/09/04 12:15:27 | 00,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif

[2008/09/04 12:15:27 | 00,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif

[2008/09/04 12:15:26 | 00,384,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp4sdmod.dll

[2008/09/04 12:15:26 | 00,310,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp43dmod.dll

[2008/09/04 12:15:26 | 00,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4ds32.ax

[2008/09/04 12:15:26 | 00,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4dmod.dll

[2008/09/04 12:15:26 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe

[2008/09/04 12:15:26 | 00,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2008/09/04 12:15:25 | 00,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe

[2008/09/04 12:15:25 | 00,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll

[2008/09/04 12:15:25 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll

[2008/09/04 12:15:25 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll

[2008/09/04 12:15:25 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe

[2008/09/04 12:15:24 | 00,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv

[2008/09/04 12:15:23 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logagent.exe

[2008/09/04 12:15:23 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\laprxy.dll

[2008/09/04 12:15:20 | 00,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm

[2008/09/04 12:15:20 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kmsvc.dll

[2008/09/04 12:15:20 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll

[2008/09/04 12:15:15 | 00,001,261 | ---- | C] () -- C:\WINDOWS\System32\pid.inf

[2008/09/04 12:15:11 | 00,498,742 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll

[2008/09/04 12:15:11 | 00,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll

[2008/09/04 12:15:11 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll

[2008/09/04 12:15:11 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll

[2008/09/04 12:15:11 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll

[2008/09/04 12:15:11 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll

[2008/09/04 12:15:11 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll

[2008/09/04 12:15:11 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapsvc.dll

[2008/09/04 12:15:11 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll

[2008/09/04 12:15:11 | 00,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js

[2008/09/04 12:15:10 | 00,695,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmv2clt.dll

[2008/09/04 12:15:10 | 00,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll

[2008/09/04 12:15:10 | 00,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmclien.dll

[2008/09/04 12:15:10 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3svc.dll

[2008/09/04 12:15:10 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmstor.dll

[2008/09/04 12:15:10 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll

[2008/09/04 12:15:10 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll

[2008/09/04 12:15:10 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll

[2008/09/04 12:15:10 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll

[2008/09/04 12:15:10 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll

[2008/09/04 12:15:09 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe

[2008/09/04 12:15:09 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll

[2008/09/04 12:15:09 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsntfy.dll

[2008/09/04 12:15:08 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll

[2008/09/04 12:15:07 | 00,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv

[2008/09/04 12:15:07 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll

[2008/09/04 12:15:07 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credssp.dll

[2008/09/04 12:15:07 | 00,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css

[2008/09/04 12:15:07 | 00,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm

[2008/09/04 12:15:07 | 00,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js

[2008/09/04 12:15:06 | 00,184,959 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz

[2008/09/04 12:15:06 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cewmdm.dll

[2008/09/04 12:15:06 | 00,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif

[2008/09/04 12:15:06 | 00,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif

[2008/09/04 12:15:06 | 00,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif

[2008/09/04 12:15:06 | 00,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif

[2008/09/04 12:15:06 | 00,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif

[2008/09/04 12:15:05 | 00,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\blackbox.dll

[2008/09/04 12:15:05 | 00,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll

[2008/09/04 12:15:05 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll

[2008/09/04 12:15:05 | 00,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif

[2008/09/04 12:15:03 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asferror.dll

[2008/09/04 12:15:01 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll

[2008/09/03 20:43:53 | 00,001,017 | ---- | C] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Product Registration.lnk

[2008/09/03 20:43:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Leadertech

[2008/09/03 20:43:52 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShared

[2008/09/02 16:06:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\My Documents\Downloads

[2008/08/31 21:36:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles

[2008/08/31 14:14:36 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\HijackThis.lnk

[2008/08/31 14:05:05 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll

[2008/08/31 14:02:24 | 00,137,728 | ---- | C] () -- C:\Documents and Settings\Max\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2008/08/31 11:48:38 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Max\My Documents\HJTInstall.exe

[2008/08/31 11:44:51 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro

[2008/08/30 16:22:51 | 00,000,000 | ---D | C] -- C:\Program Files\Java

[2008/08/30 16:20:21 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Java

[2008/08/30 02:21:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Template

[2008/08/29 23:13:00 | 17,593,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

[2008/08/29 08:43:42 | 00,000,000 | ---D | C] -- C:\cg2

[2008/08/28 01:38:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Local Settings\Application Data\Identities

[2008/08/28 00:23:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Macromedia

[2008/08/27 23:01:22 | 00,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys

[2008/08/27 22:59:36 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2008/08/27 22:59:30 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll

[2008/08/27 22:58:48 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall

[2008/08/27 22:58:46 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$

[2008/08/27 13:02:20 | 00,042,320 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll

[2008/07/14 03:09:18 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tzchange.exe

[2008/07/07 12:26:58 | 00,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\es.dll

[2008/07/03 01:14:02 | 00,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll

[2008/06/26 00:15:30 | 00,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll

[2008/06/26 00:15:29 | 01,499,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll

[2008/06/24 08:43:16 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mscms.dll

[2008/06/23 07:09:27 | 03,067,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll

[2008/06/20 09:46:57 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsapi.dll

[2008/06/20 03:51:12 | 00,361,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys

[2008/06/20 03:40:08 | 00,138,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys

[2008/06/20 03:08:27 | 00,225,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip6.sys

[2008/05/09 15:23:42 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshom.ocx

[2008/05/09 02:53:40 | 00,430,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll

[2008/05/09 02:53:40 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrrun.dll

[2008/05/09 02:53:40 | 00,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshext.dll

[2008/05/09 02:53:39 | 00,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll

[2008/05/09 02:53:39 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrobj.dll

[2008/05/08 03:24:44 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscript.exe

[2008/05/07 01:07:23 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cscript.exe

[2008/05/06 21:12:40 | 01,288,192 | ---- | C] () -- C:\WINDOWS\System32\dllcache\quartz.dll

[2008/03/24 20:50:58 | 00,621,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswstr10.dll

[2008/03/24 20:50:58 | 00,355,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxbde40.dll

[2008/03/24 20:50:57 | 00,838,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswdat10.dll

[2008/03/24 20:50:55 | 00,264,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstext40.dll

[2008/03/24 20:50:52 | 00,559,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrepl40.dll

[2008/03/24 20:50:49 | 00,322,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd3x40.dll

[2008/03/24 20:50:47 | 00,432,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd2x40.dll

[2008/03/24 20:50:45 | 00,355,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspbde40.dll

[2008/03/24 20:50:44 | 00,219,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msltus40.dll

[2008/03/24 20:50:42 | 00,248,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjtes40.dll

[2008/03/24 20:50:42 | 00,060,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjter40.dll

[2008/03/24 20:50:40 | 00,355,112 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msjetol1.dll

[2008/03/24 20:50:34 | 01,516,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjet40.dll

[2008/03/24 20:50:30 | 00,326,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexcl40.dll

[2008/03/24 20:50:28 | 00,518,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexch40.dll

[2008/03/24 20:50:25 | 00,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll

[2008/02/29 02:13:24 | 00,036,880 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LMouFilt.Sys

[2008/02/29 02:13:16 | 00,035,344 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LHidFilt.Sys

[2008/02/29 02:12:48 | 00,020,240 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\L8042Kbd.sys

[2008/02/29 02:12:38 | 00,076,304 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\KHALMNPR.Exe

[2007/07/30 18:19:32 | 00,023,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl.mui

[2007/07/30 18:19:12 | 00,043,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll

[2007/07/30 18:19:02 | 00,023,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui

[2007/07/30 18:18:44 | 00,031,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui

[2007/07/30 18:18:14 | 00,018,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll.mui

[2007/06/22 11:34:02 | 01,419,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01005.dll

[2006/11/02 06:22:54 | 00,492,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdf01000.sys

[2006/11/02 06:22:52 | 00,032,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys

[2006/10/26 13:42:36 | 00,035,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ESN.DLL

[2006/10/26 13:10:08 | 01,190,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL

[2006/10/26 13:10:06 | 00,033,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL

[2006/10/26 12:45:04 | 00,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WISPTIS.EXE

[2006/10/26 12:45:04 | 00,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\INKED.DLL

[2006/07/24 09:50:40 | 00,047,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VBAME.DLL

[2006/07/24 09:50:40 | 00,039,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SCP32.DLL

[2006/07/24 09:50:38 | 00,125,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSSTDFMT.DLL

[2004/12/26 11:19:30 | 00,423,424 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Max\Desktop\OTViewIt.exe

[2004/12/25 17:00:10 | 00,925,696 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\votado co[2]...pps

[2004/12/25 16:47:57 | 02,079,744 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\Navidad2008.pps

[2004/12/25 16:47:03 | 00,398,336 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\Cumplea_osNavidad.pps

[2004/12/25 06:38:54 | 00,020,680 | -HS- | C] () -- C:\ZGWZ.PIF

[2004/12/24 21:39:21 | 29,775,112 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\setupeng.exe

[2004/12/24 19:27:08 | 00,020,680 | -HS- | C] () -- C:\sytseem

[2004/12/24 19:03:57 | 00,000,000 | ---D | C] -- C:\Program Files\a-squared Free

[2004/12/24 19:03:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\My Documents\a-squared Free

[2004/12/24 18:54:49 | 12,861,144 | ---- | C] (Emsi Software GmbH ) -- C:\Documents and Settings\Max\Desktop\a2FreeSetup.exe

[2004/12/24 16:16:00 | 00,149,764 | ---- | C] () -- C:\WINDOWS\System32\drivers\pnpmem.sys

[2004/12/24 16:16:00 | 00,000,032 | ---- | C] () -- C:\WINDOWS\System32\ormsgse.axz

[2004/12/24 16:01:08 | 00,000,098 | ---- | C] () -- C:\WINDOWS\System32\B4eocaps.SRG

[2004/12/24 15:59:43 | 00,002,560 | ---- | C] () -- C:\WINDOWS\System32\gscpx32r.det

[2004/12/24 15:59:35 | 00,000,032 | ---- | C] () -- C:\WINDOWS\System32\gprmsgse.axz

[2004/12/24 15:31:52 | 00,020,680 | -HS- | C] () -- C:\ZGVZ.PIF

[2004/12/24 15:31:47 | 00,016,512 | ---- | C] () -- C:\Program Files\ccdd.pif

[2004/12/24 15:31:43 | 00,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ttmsjkm.dll

[2004/12/24 15:31:09 | 00,013,531 | ---- | C] () -- C:\WINDOWS\System32\wacbult.exe

[2004/12/24 15:31:08 | 00,240,496 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\wpcap.dll

[2004/12/24 15:31:08 | 00,088,952 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\Packet.dll

[2004/12/24 15:31:08 | 00,068,480 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\WanPacket.dll

[2004/12/24 15:31:08 | 00,042,000 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\drivers\npf.sys

[2004/12/24 15:30:37 | 00,020,680 | -HS- | C] () -- C:\WINDOWS\System32\dllcache\spoolsv.exe

[2004/12/24 15:30:19 | 00,013,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\Atieccx.sys

[2004/12/24 15:30:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\Rose

[2004/12/24 15:29:42 | 00,012,800 | ---- | C] () -- C:\WINDOWS\System32\dbwqsuio.dll

[2004/12/24 15:29:31 | 00,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wintst.dll

[2004/12/24 15:28:25 | 00,014,376 | -HS- | C] () -- C:\GLXB.PIF

[2004/12/24 15:28:25 | 00,000,151 | -HS- | C] () -- C:\AUTORUN.INF

========== Files - Modified Within 30 Days ==========

[1 C:\*.tmp files]

[1 C:\WINDOWS\System32\*.tmp files]

[2 C:\WINDOWS\*.tmp files]

[2009/01/04 21:52:08 | 00,149,764 | ---- | M] () -- C:\WINDOWS\System32\drivers\pnpmem.sys

[2008/12/24 01:07:32 | 00,059,043 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\chetu1.PNG

[2008/12/22 16:43:24 | 00,000,678 | ---- | M] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Dropbox.lnk

[2008/12/22 13:52:13 | 14,888,263 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\Dropbox 0.6.402.exe

[2008/12/21 16:17:41 | 00,022,016 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\laspostonpermbanopinion.doc

[2008/12/16 09:14:25 | 00,001,017 | ---- | M] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Product Registration.lnk

[2008/12/12 12:41:28 | 00,062,464 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\AA LISTADO DE ITEMS DICIEMBRE 2008.doc

[2008/12/12 09:01:00 | 03,067,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll

[2008/12/12 09:01:00 | 03,067,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll

[2008/12/11 17:52:46 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2008/12/09 15:24:37 | 17,593,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

[2008/12/03 19:52:38 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2008/12/03 19:52:34 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2008/11/14 14:14:41 | 00,000,000 | -H-- | M] () -- C:\Documents and Settings\Max\My Documents\Default.rdp

[2008/11/07 16:45:32 | 02,174,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WMVCore.dll

[2008/11/07 16:45:32 | 02,174,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMVCore.dll

[2008/11/02 12:35:36 | 00,359,948 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2008/11/02 12:35:36 | 00,314,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2008/11/02 12:35:36 | 00,041,040 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2008/10/24 03:21:09 | 00,455,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mrxsmb.sys

[2008/10/24 03:21:09 | 00,455,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys

[2008/10/23 04:36:14 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\gdi32.dll

[2008/10/23 04:36:14 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll

[2008/10/23 02:06:59 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tzchange.exe

[2008/10/16 14:13:40 | 01,809,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll

[2008/10/16 14:13:40 | 01,809,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll

[2008/10/16 14:13:40 | 00,202,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuweb.dll

[2008/10/16 14:13:40 | 00,202,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll

[2008/10/16 14:12:22 | 00,323,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll

[2008/10/16 14:12:22 | 00,323,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll

[2008/10/16 14:12:20 | 00,561,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll

[2008/10/16 14:12:20 | 00,561,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll

[2008/10/16 14:12:20 | 00,213,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl

[2008/10/16 14:12:20 | 00,213,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl

[2008/10/16 14:09:44 | 00,092,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdm.dll

[2008/10/16 14:09:44 | 00,092,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdm.dll

[2008/10/16 14:09:44 | 00,043,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll

[2008/10/16 14:09:40 | 00,031,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui

[2008/10/16 14:08:58 | 00,034,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll

[2008/10/16 14:08:58 | 00,034,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll

[2008/10/16 14:07:46 | 00,023,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl.mui

[2008/10/16 14:07:44 | 00,023,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui

[2008/10/16 14:07:14 | 00,018,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll.mui

[2008/10/15 23:47:10 | 00,279,744 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2008/10/15 17:00:11 | 00,666,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wininet.dll

[2008/10/15 17:00:11 | 00,666,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wintst.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\urlmon.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ttmsjkm.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll

[2008/10/15 17:00:10 | 01,499,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shdocvw.dll

[2008/10/15 17:00:10 | 01,499,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll

[2008/10/15 08:34:24 | 00,337,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netapi32.dll

[2008/10/15 08:34:24 | 00,337,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll

[2008/10/10 10:14:24 | 00,270,128 | ---- | M] (BitTorrent, Inc.) -- C:\Documents and Settings\Max\Desktop\utorrent.exe

[2008/10/03 02:02:42 | 00,247,326 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\strmdll.dll

[2008/10/03 02:02:42 | 00,247,326 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\strmdll.dll

[2008/09/28 16:41:27 | 00,018,816 | ---- | M] (RIF) -- C:\WINDOWS\System32\drivers\dvd43llh.sys

[2008/09/20 15:11:51 | 00,000,048 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat

[2008/09/16 21:26:41 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys

[2008/09/16 21:26:40 | 00,000,632 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk

[2008/09/15 04:12:56 | 01,846,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys

[2008/09/15 04:12:56 | 01,846,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys

[2008/09/12 21:58:19 | 00,000,638 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Xfire.lnk

[2008/09/11 01:31:04 | 00,072,992 | ---- | M] () -- C:\Documents and Settings\Max\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

[2008/09/10 18:37:59 | 00,000,562 | ---- | M] () -- C:\WINDOWS\win.ini

[2008/09/09 17:14:56 | 01,307,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6.dll

[2008/09/09 17:14:56 | 01,307,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll

[2008/09/08 02:41:42 | 00,333,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\srv.sys

[2008/09/08 02:41:42 | 00,333,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys

[2008/09/08 00:05:05 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk

[2008/09/08 00:05:03 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2008/09/06 00:56:02 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2008/09/06 00:55:32 | 00,000,074 | -HS- | M] () -- C:\Documents and Settings\Max\My Documents\desktop.ini

[2008/09/06 00:45:37 | 00,250,048 | RHS- | M] () -- C:\ntldr

[2008/09/04 09:15:04 | 01,106,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3.dll

[2008/09/04 09:15:04 | 01,106,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll

[2008/08/31 14:14:36 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\HijackThis.lnk

[2008/08/31 11:48:38 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Max\My Documents\HJTInstall.exe

[2008/08/30 21:34:09 | 00,000,138 | -HS- | M] () -- C:\Documents and Settings\All Users\Documents\desktop.ini

[2008/08/27 13:02:20 | 00,042,320 | ---- | M] () -- C:\WINDOWS\System32\xfcodec.dll

[2008/08/14 02:11:02 | 02,189,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe

[2008/08/14 02:09:26 | 02,145,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe

[2008/08/14 02:09:26 | 02,145,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe

[2008/08/14 02:04:36 | 00,138,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\afd.sys

[2008/08/14 02:04:36 | 00,138,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys

[2008/08/14 01:33:16 | 02,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe

[2008/08/14 01:33:16 | 02,023,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntkrnlpa.exe

[2008/08/14 01:33:16 | 02,023,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe

[2008/07/19 06:43:08 | 01,163,960 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe

[2008/07/19 06:37:42 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2008/07/19 06:37:21 | 00,094,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys

[2008/07/19 06:35:18 | 00,078,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2008/07/19 06:33:42 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2008/07/19 06:32:36 | 00,042,912 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2008/07/19 06:32:15 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys

[2008/07/19 06:30:53 | 00,094,392 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr

[2008/07/07 12:26:58 | 00,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\es.dll

[2008/07/07 12:26:58 | 00,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\es.dll

[2008/06/24 08:43:16 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscms.dll

[2008/06/24 08:43:16 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mscms.dll

[2008/06/20 09:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswsock.dll

[2008/06/20 09:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswsock.dll

[2008/06/20 09:46:57 | 00,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dnsapi.dll

[2008/06/20 09:46:57 | 00,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsapi.dll

[2008/06/20 03:51:12 | 00,361,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip.sys

[2008/06/20 03:51:12 | 00,361,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys

[2008/06/20 03:08:27 | 00,225,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip6.sys

[2008/06/20 03:08:27 | 00,225,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip6.sys

[2008/06/10 06:11:46 | 01,053,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WMNetmgr.dll

[2008/06/10 06:11:46 | 01,053,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMNetmgr.dll

[2008/06/10 03:11:20 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logagent.exe

[2008/06/10 03:11:20 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logagent.exe

[2008/05/09 15:23:42 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshom.ocx

[2008/05/09 15:23:42 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshom.ocx

[2008/05/09 02:53:40 | 00,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbscript.dll

[2008/05/09 02:53:40 | 00,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll

[2008/05/09 02:53:40 | 00,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scrrun.dll

[2008/05/09 02:53:40 | 00,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrrun.dll

[2008/05/09 02:53:40 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshext.dll

[2008/05/09 02:53:40 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshext.dll

[2008/05/09 02:53:39 | 00,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript.dll

[2008/05/09 02:53:39 | 00,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll

[2008/05/09 02:53:39 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scrobj.dll

[2008/05/09 02:53:39 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrobj.dll

[2008/05/08 06:02:52 | 00,203,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rmcast.sys

[2008/05/08 06:02:52 | 00,203,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys

[2008/05/08 03:24:44 | 00,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscript.exe

[2008/05/08 03:24:44 | 00,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscript.exe

[2008/05/07 01:07:23 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cscript.exe

[2008/05/07 01:07:23 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cscript.exe

[2008/05/06 21:12:40 | 01,288,192 | ---- | M] () -- C:\WINDOWS\System32\quartz.dll

[2008/05/06 21:12:40 | 01,288,192 | ---- | M] () -- C:\WINDOWS\System32\dllcache\quartz.dll

[2008/05/02 01:40:08 | 00,084,496 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\KemXML.dll

[2008/05/02 01:40:02 | 00,117,264 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\KemWnd.dll

[2008/05/02 01:39:54 | 00,145,936 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\KemUtil.dll

[2008/05/02 01:39:50 | 00,170,512 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\kemutb.dll

[2008/05/01 06:33:02 | 00,331,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2008/04/14 04:42:38 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spnpinst.exe

[2008/04/14 04:42:06 | 00,985,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupapi.dll

[2008/04/14 04:41:58 | 00,423,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licdll.dll

[2008/04/13 16:25:26 | 00,001,804 | ---- | M] () -- C:\WINDOWS\System32\dcache.bin

[2008/04/13 16:16:51 | 00,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.exe

[2008/04/13 16:13:22 | 00,139,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpwd.sys

[2008/04/13 16:13:22 | 00,092,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpdd.dll

[2008/04/13 16:13:22 | 00,087,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll

[2008/04/13 16:13:21 | 00,021,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdtcp.sys

[2008/04/13 16:13:21 | 00,012,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsddd.dll

[2008/04/13 16:13:20 | 00,040,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\termdd.sys

[2008/04/13 16:13:20 | 00,012,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdpipe.sys

[2008/04/13 16:13:00 | 00,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drmclien.dll

[2008/04/13 16:13:00 | 00,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmclien.dll

[2008/04/13 16:12:57 | 00,695,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drmv2clt.dll

[2008/04/13 16:12:57 | 00,695,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmv2clt.dll

[2008/04/13 16:12:56 | 00,356,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscp.dll

[2008/04/13 16:12:56 | 00,356,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscp.dll

[2008/04/13 16:12:56 | 00,226,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll

[2008/04/13 16:12:55 | 00,259,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msnetobj.dll

[2008/04/13 16:12:55 | 00,259,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msnetobj.dll

[2008/04/13 16:12:45 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msh263.drv

[2008/04/13 16:12:45 | 00,265,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\h323.tsp

[2008/04/13 16:12:45 | 00,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\unimdm.tsp

[2008/04/13 16:12:45 | 00,188,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msh261.drv

[2008/04/13 16:12:45 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winspool.drv

[2008/04/13 16:12:45 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winspool.drv

[2008/04/13 16:12:45 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv

[2008/04/13 16:12:45 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\remotesp.tsp

[2008/04/13 16:12:45 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ndptsp.tsp

[2008/04/13 16:12:45 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kmddsp.tsp

[2008/04/13 16:12:45 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hidphone.tsp

[2008/04/13 16:12:45 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdmaud.drv

[2008/04/13 16:12:45 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipconf.tsp

[2008/04/13 16:12:44 | 00,679,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sstext3d.scr

[2008/04/13 16:12:44 | 00,610,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sspipes.scr

[2008/04/13 16:12:44 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmypics.scr

[2008/04/13 16:12:44 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmarque.scr

[2008/04/13 16:12:44 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmyst.scr

[2008/04/13 16:12:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssstars.scr

[2008/04/13 16:12:43 | 00,704,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ss3dfo.scr

[2008/04/13 16:12:43 | 00,393,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssflwbox.scr

[2008/04/13 16:12:43 | 00,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logon.scr

[2008/04/13 16:12:43 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssbezier.scr

[2008/04/13 16:12:43 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scrnsave.scr

[2008/04/13 16:12:42 | 00,278,559 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmv8ds32.ax

[2008/04/13 16:12:42 | 00,278,559 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmv8ds32.ax

[2008/04/13 16:12:42 | 00,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpg4ds32.ax

[2008/04/13 16:12:42 | 00,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4ds32.ax

[2008/04/13 16:12:42 | 00,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvds32.ax

[2008/04/13 16:12:42 | 00,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvds32.ax

[2008/04/13 16:12:42 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msadds32.ax

[2008/04/13 16:12:42 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds32.ax

[2008/04/13 16:12:42 | 00,148,992 | ---- | M] () -- C:\WINDOWS\System32\mpg2splt.ax

[2008/04/13 16:12:42 | 00,129,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax

[2008/04/13 16:12:42 | 00,118,272 | ---- | M] () -- C:\WINDOWS\System32\mpeg2data.ax

[2008/04/13 16:12:42 | 00,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax

[2008/04/13 16:12:42 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscds32.ax

[2008/04/13 16:12:42 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscds32.ax

[2008/04/13 16:12:42 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax

[2008/04/13 16:12:42 | 00,056,832 | ---- | M] () -- C:\WINDOWS\System32\msdvbnp.ax

[2008/04/13 16:12:42 | 00,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax

[2008/04/13 16:12:42 | 00,033,280 | ---- | M] () -- C:\WINDOWS\System32\psisrndr.ax

[2008/04/13 16:12:42 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbisurf.ax

[2008/04/13 16:12:42 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\format.com

[2008/04/13 16:12:42 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax

[2008/04/13 16:12:42 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax

[2008/04/13 16:12:42 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax

[2008/04/13 16:12:42 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bdaplgin.ax

[2008/04/13 16:12:42 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\more.com

[2008/04/13 16:12:42 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax

[2008/04/13 16:12:42 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tree.com

[2008/04/13 16:12:41 | 00,618,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmsys.cpl

[2008/04/13 16:12:41 | 00,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\appwiz.cpl

[2008/04/13 16:12:41 | 00,380,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\irprops.cpl

[2008/04/13 16:12:41 | 00,360,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl

[2008/04/13 16:12:41 | 00,300,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sysdm.cpl

[2008/04/13 16:12:41 | 00,257,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nusrmgr.cpl

[2008/04/13 16:12:41 | 00,165,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe

[2008/04/13 16:12:41 | 00,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hdwwiz.cpl

[2008/04/13 16:12:41 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscui.cpl

[2008/04/13 16:12:41 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\desk.cpl

[2008/04/13 16:12:41 | 00,129,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\intl.cpl

[2008/04/13 16:12:41 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.cpl

[2008/04/13 16:12:41 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\timedate.cpl

[2008/04/13 16:12:41 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\firewall.cpl

[2008/04/13 16:12:41 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\joy.cpl

[2008/04/13 16:12:41 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl

[2008/04/13 16:12:41 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccp32.cpl

[2008/04/13 16:12:41 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xcopy.exe

[2008/04/13 16:12:41 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.cpl

[2008/04/13 16:12:41 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscntfy.exe

[2008/04/13 16:12:41 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnpinst.exe

[2008/04/13 16:12:40 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe

[2008/04/13 16:12:40 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpabaln.exe

[2008/04/13 16:12:40 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winver.exe

[2008/04/13 16:12:39 | 00,507,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winlogon.exe

[2008/04/13 16:12:39 | 00,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiaacmgr.exe

[2008/04/13 16:12:39 | 00,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\winhlp32.exe

[2008/04/13 16:12:39 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wextract.exe

[2008/04/13 16:12:38 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tourstart.exe

[2008/04/13 16:12:38 | 00,289,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vssvc.exe

[2008/04/13 16:12:38 | 00,208,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unregmp2.exe

[2008/04/13 16:12:38 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\utilman.exe

[2008/04/13 16:12:38 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe

[2008/04/13 16:12:38 | 00,026,112 | ---- | M] () -- C:\WINDOWS\System32\userinit.exe

[2008/04/13 16:12:38 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ups.exe

[2008/04/13 16:12:38 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnpcont.exe

[2008/04/13 16:12:38 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tracert.exe

[2008/04/13 16:12:37 | 00,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\taskmgr.exe

[2008/04/13 16:12:37 | 00,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sysocmgr.exe

[2008/04/13 16:12:37 | 00,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\telnet.exe

[2008/04/13 16:12:36 | 00,538,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe

[2008/04/13 16:12:36 | 00,131,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe

[2008/04/13 16:12:36 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smss.exe

[2008/04/13 16:12:36 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sort.exe

[2008/04/13 16:12:36 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdwxp.exe

[2008/04/13 16:12:36 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stimon.exe

[2008/04/13 16:12:36 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\svchost.exe

[2008/04/13 16:12:36 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spdwnwxp.exe

[2008/04/13 16:12:35 | 00,774,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe

[2008/04/13 16:12:35 | 00,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smlogsvc.exe

[2008/04/13 16:12:35 | 00,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shrpubw.exe

[2008/04/13 16:12:35 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sigverif.exe

[2008/04/13 16:12:35 | 00,045,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shmgrate.exe

[2008/04/13 16:12:35 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe

[2008/04/13 16:12:35 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\skeys.exe

[2008/04/13 16:12:35 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdown.exe

[2008/04/13 16:12:35 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smbinst.exe

[2008/04/13 16:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sessmgr.exe

[2008/04/13 16:12:34 | 00,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\services.exe

[2008/04/13 16:12:34 | 00,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sdbinst.exe

[2008/04/13 16:12:34 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sethc.exe

[2008/04/13 16:12:34 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setup.exe

[2008/04/13 16:12:33 | 00,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scardsvr.exe

[2008/04/13 16:12:33 | 00,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtcshare.exe

[2008/04/13 16:12:33 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rundll32.exe

[2008/04/13 16:12:33 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsh.exe

[2008/04/13 16:12:33 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\runonce.exe

[2008/04/13 16:12:33 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rexec.exe

[2008/04/13 16:12:33 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\savedump.exe

[2008/04/13 16:12:32 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\regedit.exe

[2008/04/13 16:12:32 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe

[2008/04/13 16:12:32 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe

[2008/04/13 16:12:32 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasphone.exe

[2008/04/13 16:12:32 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\reg.exe

[2008/04/13 16:12:32 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\proquota.exe

[2008/04/13 16:12:32 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcimlby.exe

[2008/04/13 16:12:32 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcp.exe

[2008/04/13 16:12:32 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe

[2008/04/13 16:12:32 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe

[2008/04/13 16:12:32 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regsvr32.exe

[2008/04/13 16:12:32 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\proxycfg.exe

[2008/04/13 16:12:31 | 00,215,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\osk.exe

[2008/04/13 16:12:31 | 00,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\progman.exe

[2008/04/13 16:12:31 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\packager.exe

[2008/04/13 16:12:31 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe

[2008/04/13 16:12:31 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ping.exe

[2008/04/13 16:12:31 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfmon.exe

[2008/04/13 16:12:30 | 00,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdm.exe

[2008/04/13 16:12:30 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.exe

[2008/04/13 16:12:30 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcad32.exe

[2008/04/13 16:12:29 | 00,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe

[2008/04/13 16:12:29 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\net1.exe

[2008/04/13 16:12:29 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netdde.exe

[2008/04/13 16:12:29 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsh.exe

[2008/04/13 16:12:29 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nslookup.exe

[2008/04/13 16:12:29 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\notepad.exe

[2008/04/13 16:12:29 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe

[2008/04/13 16:12:29 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\narrator.exe

[2008/04/13 16:12:29 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\net.exe

[2008/04/13 16:12:29 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netstat.exe

[2008/04/13 16:12:29 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe

[2008/04/13 16:12:29 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nddeapir.exe

[2008/04/13 16:12:28 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe

[2008/04/13 16:12:28 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msiexec.exe

[2008/04/13 16:12:27 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe

[2008/04/13 16:12:27 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe

[2008/04/13 16:12:27 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshta.exe

[2008/04/13 16:12:27 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtc.exe

[2008/04/13 16:12:27 | 00,004,639 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2008/04/13 16:12:26 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mobsync.exe

[2008/04/13 16:12:25 | 01,414,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmc.exe

[2008/04/13 16:12:25 | 00,786,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe

[2008/04/13 16:12:25 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\makecab.exe

[2008/04/13 16:12:25 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe

[2008/04/13 16:12:25 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmsrvc.exe

[2008/04/13 16:12:24 | 00,514,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logonui.exe

[2008/04/13 16:12:24 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\locator.exe

[2008/04/13 16:12:24 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\magnify.exe

[2008/04/13 16:12:24 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logman.exe

[2008/04/13 16:12:24 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lsass.exe

[2008/04/13 16:12:23 | 00,677,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe

[2008/04/13 16:12:23 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipv6.exe

[2008/04/13 16:12:23 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipxroute.exe

[2008/04/13 16:12:22 | 00,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi.exe

[2008/04/13 16:12:22 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iexpress.exe

[2008/04/13 16:12:22 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipconfig.exe

[2008/04/13 16:12:22 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe

[2008/04/13 16:12:21 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\grpconv.exe

[2008/04/13 16:12:21 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\help.exe

[2008/04/13 16:12:21 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\hh.exe

[2008/04/13 16:12:20 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fsquirt.exe

[2008/04/13 16:12:20 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ftp.exe

[2008/04/13 16:12:20 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\findstr.exe

[2008/04/13 16:12:20 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe

[2008/04/13 16:12:20 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontview.exe

[2008/04/13 16:12:20 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\faxpatch.exe

[2008/04/13 16:12:20 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\forcedos.exe

[2008/04/13 16:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

[2008/04/13 16:12:19 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eudcedit.exe

[2008/04/13 16:12:19 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\extrac32.exe

[2008/04/13 16:12:18 | 01,298,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiag.exe

[2008/04/13 16:12:18 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dwwin.exe

[2008/04/13 16:12:18 | 00,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvsetup.exe

[2008/04/13 16:12:18 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dvdupgrd.exe

[2008/04/13 16:12:18 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dumprep.exe

[2008/04/13 16:12:17 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe

[2008/04/13 16:12:17 | 00,224,768 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\dmadmin.exe

[2008/04/13 16:12:17 | 00,163,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diskpart.exe

[2008/04/13 16:12:17 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diantz.exe

[2008/04/13 16:12:17 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dplaysvr.exe

[2008/04/13 16:12:17 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnsvr.exe

[2008/04/13 16:12:17 | 00,015,872 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmremote.exe

[2008/04/13 16:12:17 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllhost.exe

[2008/04/13 16:12:16 | 00,105,472 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgntfs.exe

[2008/04/13 16:12:16 | 00,082,944 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgfat.exe

[2008/04/13 16:12:16 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ddeshare.exe

[2008/04/13 16:12:16 | 00,025,088 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\defrag.exe

[2008/04/13 16:12:16 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ctfmon.exe

[2008/04/13 16:12:16 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe

[2008/04/13 16:12:15 | 00,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmstp.exe

[2008/04/13 16:12:15 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmmon32.exe

[2008/04/13 16:12:15 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conime.exe

[2008/04/13 16:12:15 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\csrss.exe

[2008/04/13 16:12:14 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.exe

[2008/04/13 16:12:14 | 00,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe

[2008/04/13 16:12:14 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cleanmgr.exe

[2008/04/13 16:12:14 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clipsrv.exe

[2008/04/13 16:12:14 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmdl32.exe

[2008/04/13 16:12:14 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.exe

[2008/04/13 16:12:14 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cisvc.exe

[2008/04/13 16:12:13 | 00,580,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autofmt.exe

[2008/04/13 16:12:13 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\blastcln.exe

[2008/04/13 16:12:13 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cacls.exe

[2008/04/13 16:12:13 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autolfn.exe

[2008/04/13 16:12:12 | 00,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autoconv.exe

[2008/04/13 16:12:12 | 00,588,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autochk.exe

[2008/04/13 16:12:12 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ahui.exe

[2008/04/13 16:12:12 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\alg.exe

[2008/04/13 16:12:12 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\at.exe

[2008/04/13 16:12:12 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\auditusr.exe

[2008/04/13 16:12:12 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\attrib.exe

[2008/04/13 16:12:12 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\atmadm.exe

[2008/04/13 16:12:12 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\actmovie.exe

[2008/04/13 16:12:11 | 00,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcsvc.dll

[2008/04/13 16:12:11 | 00,383,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcdlg.dll

[2008/04/13 16:12:11 | 00,338,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\zipfldr.dll

[2008/04/13 16:12:11 | 00,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe

[2008/04/13 16:12:11 | 00,183,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll

[2008/04/13 16:12:11 | 00,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprov.dll

[2008/04/13 16:12:11 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll

[2008/04/13 16:12:11 | 00,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactsrv.dll

[2008/04/13 16:12:11 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcsapi.dll

[2008/04/13 16:12:11 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprovi.dll

[2008/04/13 16:12:11 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll

[2008/04/13 16:12:11 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauserv.dll

[2008/04/13 16:12:10 | 01,001,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvdmoe2.dll

[2008/04/13 16:12:10 | 01,001,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmoe2.dll

[2008/04/13 16:12:10 | 00,897,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmspdmoe.dll

[2008/04/13 16:12:10 | 00,897,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmoe.dll

[2008/04/13 16:12:10 | 00,809,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvdmod.dll

[2008/04/13 16:12:10 | 00,809,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmod.dll

[2008/04/13 16:12:10 | 00,303,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmstream.dll

[2008/04/13 16:12:10 | 00,303,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmstream.dll

[2008/04/13 16:12:10 | 00,264,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wow32.dll

[2008/04/13 16:12:10 | 00,108,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshbth.dll

[2008/04/13 16:12:10 | 00,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ws2_32.dll

[2008/04/13 16:12:10 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscsvc.dll

[2008/04/13 16:12:10 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wstdecod.dll

[2008/04/13 16:12:10 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsnmp32.dll

[2008/04/13 16:12:10 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshcon.dll

[2008/04/13 16:12:10 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsock32.dll

[2008/04/13 16:12:10 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ws2help.dll

[2008/04/13 16:12:10 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshtcpip.dll

[2008/04/13 16:12:10 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wtsapi32.dll

[2008/04/13 16:12:10 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wship6.dll

[2008/04/13 16:12:10 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshrm.dll

[2008/04/13 16:12:09 | 04,874,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmp.dll

[2008/04/13 16:12:09 | 04,874,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.dll

[2008/04/13 16:12:09 | 01,119,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmoe2.dll

[2008/04/13 16:12:09 | 01,119,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe2.dll

[2008/04/13 16:12:09 | 00,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmod.dll

[2008/04/13 16:12:09 | 00,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmod.dll

[2008/04/13 16:12:09 | 00,670,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmadmoe.dll

[2008/04/13 16:12:09 | 00,670,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmoe.dll

[2008/04/13 16:12:09 | 00,485,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmspdmod.dll

[2008/04/13 16:12:09 | 00,485,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmod.dll

[2008/04/13 16:12:09 | 00,408,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmadmod.dll

[2008/04/13 16:12:09 | 00,408,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmod.dll

[2008/04/13 16:12:09 | 00,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsrv.dll

[2008/04/13 16:12:09 | 00,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll

[2008/04/13 16:12:09 | 00,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpdxm.dll

[2008/04/13 16:12:09 | 00,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpdxm.dll

[2008/04/13 16:12:09 | 00,230,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmasf.dll

[2008/04/13 16:12:09 | 00,230,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmasf.dll

[2008/04/13 16:12:09 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll

[2008/04/13 16:12:09 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll

[2008/04/13 16:12:09 | 00,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wintrust.dll

[2008/04/13 16:12:09 | 00,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winmm.dll

[2008/04/13 16:12:09 | 00,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wldap32.dll

[2008/04/13 16:12:09 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmidx.dll

[2008/04/13 16:12:09 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidx.dll

[2008/04/13 16:12:09 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wkssvc.dll

[2008/04/13 16:12:09 | 00,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmoe.dll

[2008/04/13 16:12:09 | 00,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe.dll

[2008/04/13 16:12:09 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpasf.dll

[2008/04/13 16:12:09 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpasf.dll

[2008/04/13 16:12:09 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpshell.dll

[2008/04/13 16:12:09 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpshell.dll

[2008/04/13 16:12:09 | 00,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winscard.dll

[2008/04/13 16:12:09 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll

[2008/04/13 16:12:09 | 00,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlnotify.dll

[2008/04/13 16:12:09 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll

[2008/04/13 16:12:09 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsta.dll

[2008/04/13 16:12:09 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsta.dll

[2008/04/13 16:12:09 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winipsec.dll

[2008/04/13 16:12:09 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmdmlog.dll

[2008/04/13 16:12:09 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmlog.dll

[2008/04/13 16:12:09 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmdmps.dll

[2008/04/13 16:12:09 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmps.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpui.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpcore.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpcd.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpui.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcore.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcd.dll

[2008/04/13 16:12:09 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winshfhc.dll

[2008/04/13 16:12:09 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winrnr.dll

[2008/04/13 16:12:08 | 00,727,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\userenv.dll

[2008/04/13 16:12:08 | 00,712,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll

[2008/04/13 16:12:08 | 00,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiashext.dll

[2008/04/13 16:12:08 | 00,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\user32.dll

[2008/04/13 16:12:08 | 00,463,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiadefui.dll

[2008/04/13 16:12:08 | 00,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vssapi.dll

[2008/04/13 16:12:08 | 00,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usp10.dll

[2008/04/13 16:12:08 | 00,354,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winhttp.dll

[2008/04/13 16:12:08 | 00,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll

[2008/04/13 16:12:08 | 00,333,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiaservc.dll

[2008/04/13 16:12:08 | 00,276,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\webcheck.dll

[2008/04/13 16:12:08 | 00,239,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnpui.dll

[2008/04/13 16:12:08 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uxtheme.dll

[2008/04/13 16:12:08 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uxtheme.dll

[2008/04/13 16:12:08 | 00,215,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wavemsp.dll

[2008/04/13 16:12:08 | 00,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnphost.dll

[2008/04/13 16:12:08 | 00,175,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w32time.dll

[2008/04/13 16:12:08 | 00,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\webvw.dll

[2008/04/13 16:12:08 | 00,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnp.dll

[2008/04/13 16:12:08 | 00,124,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiadss.dll

[2008/04/13 16:12:08 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiavideo.dll

[2008/04/13 16:12:08 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32spl.dll

[2008/04/13 16:12:08 | 00,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiascr.dll

[2008/04/13 16:12:08 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll

[2008/04/13 16:12:08 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\webclnt.dll

[2008/04/13 16:12:08 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll

[2008/04/13 16:12:08 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vdmredir.dll

[2008/04/13 16:12:08 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdigest.dll

[2008/04/13 16:12:08 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll

[2008/04/13 16:12:08 | 00,030,749 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbajet32.dll

[2008/04/13 16:12:08 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verifier.dll

[2008/04/13 16:12:08 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vdmdbg.dll

[2008/04/13 16:12:08 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\version.dll

[2008/04/13 16:12:08 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usbmon.dll

[2008/04/13 16:12:08 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w3ssl.dll

[2008/04/13 16:12:07 | 00,990,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\syssetup.dll

[2008/04/13 16:12:07 | 00,858,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tapi3.dll

[2008/04/13 16:12:07 | 00,713,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sxs.dll

[2008/04/13 16:12:07 | 00,385,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\themeui.dll

[2008/04/13 16:12:07 | 00,358,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\termmgr.dll

[2008/04/13 16:12:07 | 00,316,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\untfs.dll

[2008/04/13 16:12:07 | 00,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\termsrv.dll

[2008/04/13 16:12:07 | 00,275,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ulib.dll

[2008/04/13 16:12:07 | 00,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tapisrv.dll

[2008/04/13 16:12:07 | 00,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll

[2008/04/13 16:12:07 | 00,191,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\syncui.dll

[2008/04/13 16:12:07 | 00,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tapi32.dll

[2008/04/13 16:12:07 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srsvc.dll

[2008/04/13 16:12:07 | 00,136,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sti_ci.dll

[2008/04/13 16:12:07 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\umpnpmgr.dll

[2008/04/13 16:12:07 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stobject.dll

[2008/04/13 16:12:07 | 00,117,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\t2embed.dll

[2008/04/13 16:12:07 | 00,101,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\txflog.dll

[2008/04/13 16:12:07 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srvsvc.dll

[2008/04/13 16:12:07 | 00,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll

[2008/04/13 16:12:07 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\trkwks.dll

[2008/04/13 16:12:07 | 00,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\strmfilt.dll

[2008/04/13 16:12:07 | 00,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll

[2008/04/13 16:12:07 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\unimdmat.dll

[2008/04/13 16:12:07 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssdpsrv.dll

[2008/04/13 16:12:07 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sti.dll

[2008/04/13 16:12:07 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srclient.dll

[2008/04/13 16:12:07 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll

[2008/04/13 16:12:07 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\twext.dll

[2008/04/13 16:12:07 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\synceng.dll

[2008/04/13 16:12:07 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll

[2008/04/13 16:12:07 | 00,050,688 | ---- | M] (Twain Working Group) -- C:\WINDOWS\twain_32.dll

[2008/04/13 16:12:07 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tspkg.dll

[2008/04/13 16:12:07 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmonui.dll

[2008/04/13 16:12:07 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmon.dll

[2008/04/13 16:12:07 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\umandlg.dll

[2008/04/13 16:12:07 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssdpapi.dll

[2008/04/13 16:12:07 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\udhisapi.dll

[2008/04/13 16:12:07 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmib.dll

[2008/04/13 16:12:07 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uniplat.dll

[2008/04/13 16:12:06 | 00,442,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlsrv32.dll

[2008/04/13 16:12:06 | 00,362,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smlogcfg.dll

[2008/04/13 16:12:06 | 00,182,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\snmpsnap.dll

[2008/04/13 16:12:06 | 00,180,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlunirl.dll

[2008/04/13 16:12:06 | 00,098,304 | ---- | M] (Schlumberger Technology Corporation) -- C:\WINDOWS\System32\slbiop.dll

[2008/04/13 16:12:06 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spoolss.dll

[2008/04/13 16:12:06 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\slayerxp.dll

[2008/04/13 16:12:06 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\snmpapi.dll

[2008/04/13 16:12:05 | 08,461,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shell32.dll

[2008/04/13 16:12:05 | 08,461,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll

[2008/04/13 16:12:05 | 01,614,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sfcfiles.dll

[2008/04/13 16:12:05 | 00,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shlwapi.dll

[2008/04/13 16:12:05 | 00,438,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shimgvw.dll

[2008/04/13 16:12:05 | 00,314,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scesrv.dll

[2008/04/13 16:12:05 | 00,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\schedsvc.dll

[2008/04/13 16:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scecli.dll

[2008/04/13 16:12:05 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sccsccp.dll

[2008/04/13 16:12:05 | 00,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shmedia.dll

[2008/04/13 16:12:05 | 00,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shmedia.dll

[2008/04/13 16:12:05 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\schannel.dll

[2008/04/13 16:12:05 | 00,140,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sfc_os.dll

[2008/04/13 16:12:05 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shsvcs.dll

[2008/04/13 16:12:05 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shgina.dll

[2008/04/13 16:12:05 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shimeng.dll

[2008/04/13 16:12:05 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll

[2008/04/13 16:12:05 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\secur32.dll

[2008/04/13 16:12:05 | 00,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sendmail.dll

[2008/04/13 16:12:05 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sens.dll

[2008/04/13 16:12:05 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sendcmsg.dll

[2008/04/13 16:12:05 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sdhcinst.dll

[2008/04/13 16:12:05 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shscrap.dll

[2008/04/13 16:12:05 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shfolder.dll

[2008/04/13 16:12:05 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sclgntfy.dll

[2008/04/13 16:12:05 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\seclogon.dll

[2008/04/13 16:12:05 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sigtab.dll

[2008/04/13 16:12:05 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sensapi.dll

[2008/04/13 16:12:05 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\security.dll

[2008/04/13 16:12:05 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sfc.dll

[2008/04/13 16:12:04 | 00,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rpcrt4.dll

[2008/04/13 16:12:04 | 00,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\riched20.dll

[2008/04/13 16:12:04 | 00,415,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\samsrv.dll

[2008/04/13 16:12:04 | 00,399,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rpcss.dll

[2008/04/13 16:12:04 | 00,399,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll

[2008/04/13 16:12:04 | 00,397,824 | ---- | M] (Microsoft) -- C:\WINDOWS\System32\regwizc.dll

[2008/04/13 16:12:04 | 00,290,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll

[2008/04/13 16:12:04 | 00,270,848 | ---- | M] () -- C:\WINDOWS\System32\sbe.dll

[2008/04/13 16:12:04 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sbeio.dll

[2008/04/13 16:12:04 | 00,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsvpsp.dll

[2008/04/13 16:12:04 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scarddlg.dll

[2008/04/13 16:12:04 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\samlib.dll

[2008/04/13 16:12:04 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\samlib.dll

[2008/04/13 16:12:04 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\remotepg.dll

[2008/04/13 16:12:04 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regsvc.dll

[2008/04/13 16:12:04 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\resutils.dll

[2008/04/13 16:12:04 | 00,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regapi.dll

[2008/04/13 16:12:04 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll

[2008/04/13 16:12:04 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtutils.dll

[2008/04/13 16:12:04 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll

[2008/04/13 16:12:04 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rshx32.dll

[2008/04/13 16:12:04 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtipxmib.dll

[2008/04/13 16:12:04 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll

[2008/04/13 16:12:04 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll

[2008/04/13 16:12:04 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsmps.dll

[2008/04/13 16:12:03 | 01,435,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\query.dll

[2008/04/13 16:12:03 | 00,658,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasdlg.dll

[2008/04/13 16:12:03 | 00,562,176 | ---- | M] () -- C:\WINDOWS\System32\qedit.dll

[2008/04/13 16:12:03 | 00,560,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\printui.dll

[2008/04/13 16:12:03 | 00,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgr.dll

[2008/04/13 16:12:03 | 00,386,048 | ---- | M] () -- C:\WINDOWS\System32\qdvd.dll

[2008/04/13 16:12:03 | 00,363,520 | ---- | M] () -- C:\WINDOWS\System32\psisdecd.dll

[2008/04/13 16:12:03 | 00,291,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qagentrt.dll

[2008/04/13 16:12:03 | 00,279,040 | ---- | M] () -- C:\WINDOWS\System32\qdv.dll

[2008/04/13 16:12:03 | 00,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qasf.dll

[2008/04/13 16:12:03 | 00,237,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasapi32.dll

[2008/04/13 16:12:03 | 00,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasppp.dll

[2008/04/13 16:12:03 | 00,192,512 | ---- | M] () -- C:\WINDOWS\System32\qcap.dll

[2008/04/13 16:12:03 | 00,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasmans.dll

[2008/04/13 16:12:03 | 00,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll

[2008/04/13 16:12:03 | 00,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rastls.dll

[2008/04/13 16:12:03 | 00,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll

[2008/04/13 16:12:03 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcbdyctl.dll

[2008/04/13 16:12:03 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\psbase.dll

[2008/04/13 16:12:03 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasauto.dll

[2008/04/13 16:12:03 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\raschap.dll

[2008/04/13 16:12:03 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll

[2008/04/13 16:12:03 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll

[2008/04/13 16:12:03 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll

[2008/04/13 16:12:03 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasman.dll

[2008/04/13 16:12:03 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rastapi.dll

[2008/04/13 16:12:03 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll

[2008/04/13 16:12:03 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pstorec.dll

[2008/04/13 16:12:03 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pstorsvc.dll

[2008/04/13 16:12:03 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\profmap.dll

[2008/04/13 16:12:03 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\psapi.dll

[2008/04/13 16:12:03 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll

[2008/04/13 16:12:03 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\powrprof.dll

[2008/04/13 16:12:03 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rassapi.dll

[2008/04/13 16:12:03 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasadhlp.dll

[2008/04/13 16:12:02 | 01,703,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netshell.dll

[2008/04/13 16:12:02 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ole32.dll

[2008/04/13 16:12:02 | 00,713,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\opengl32.dll

[2008/04/13 16:12:02 | 00,554,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2psvc.dll

[2008/04/13 16:12:02 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oleaut32.dll

[2008/04/13 16:12:02 | 00,488,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsmgr.dll

[2008/04/13 16:12:02 | 00,435,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmssvc.dll

[2008/04/13 16:12:02 | 00,412,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll

[2008/04/13 16:12:02 | 00,364,544 | ---- | M] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll

[2008/04/13 16:12:02 | 00,313,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgraph.dll

[2008/04/13 16:12:02 | 00,286,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\objsel.dll

[2008/04/13 16:12:02 | 00,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pdh.dll

[2008/04/13 16:12:02 | 00,278,559 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcjt32.dll

[2008/04/13 16:12:02 | 00,270,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oakley.dll

[2008/04/13 16:12:02 | 00,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbc32.dll

[2008/04/13 16:12:02 | 00,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\newdev.dll

[2008/04/13 16:12:02 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netui1.dll

[2008/04/13 16:12:02 | 00,192,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\offfilt.dll

[2008/04/13 16:12:02 | 00,179,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsdba.dll

[2008/04/13 16:12:02 | 00,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\photowiz.dll

[2008/04/13 16:12:02 | 00,153,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2p.dll

[2008/04/13 16:12:02 | 00,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbctrac.dll

[2008/04/13 16:12:02 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll

[2008/04/13 16:12:02 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntshrui.dll

[2008/04/13 16:12:02 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nwprovau.dll

[2008/04/13 16:12:02 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.dll

[2008/04/13 16:12:02 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oledlg.dll

[2008/04/13 16:12:02 | 00,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmarta.dll

[2008/04/13 16:12:02 | 00,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntmarta.dll

[2008/04/13 16:12:02 | 00,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pnetsh.dll

[2008/04/13 16:12:02 | 00,107,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oleprn.dll

[2008/04/13 16:12:02 | 00,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccp32.dll

[2008/04/13 16:12:02 | 00,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\polstore.dll

[2008/04/13 16:12:02 | 00,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgasvc.dll

[2008/04/13 16:12:02 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nlhtml.dll

[2008/04/13 16:12:02 | 00,096,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\occache.dll

[2008/04/13 16:12:02 | 00,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntprint.dll

[2008/04/13 16:12:02 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\olepro32.dll

[2008/04/13 16:12:02 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netui0.dll

[2008/04/13 16:12:02 | 00,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\olecli32.dll

[2008/04/13 16:12:02 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pautoenr.dll

[2008/04/13 16:12:02 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\osuninst.dll

[2008/04/13 16:12:02 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ocmanage.dll

[2008/04/13 16:12:02 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntdsapi.dll

[2008/04/13 16:12:02 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccu32.dll

[2008/04/13 16:12:02 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccr32.dll

[2008/04/13 16:12:02 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pnrpnsp.dll

[2008/04/13 16:12:02 | 00,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\npptools.dll

[2008/04/13 16:12:02 | 00,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npptools.dll

[2008/04/13 16:12:02 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntlanman.dll

[2008/04/13 16:12:02 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsapi.dll

[2008/04/13 16:12:02 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfctrs.dll

[2008/04/13 16:12:02 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll

[2008/04/13 16:12:02 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\olecnv32.dll

[2008/04/13 16:12:02 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pid.dll

[2008/04/13 16:12:02 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfproc.dll

[2008/04/13 16:12:02 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll

[2008/04/13 16:12:02 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfdisk.dll

[2008/04/13 16:12:02 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfos.dll

[2008/04/13 16:12:02 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcbcp.dll

[2008/04/13 16:12:02 | 00,020,511 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odtext32.dll

[2008/04/13 16:12:02 | 00,020,511 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oddbse32.dll

[2008/04/13 16:12:02 | 00,020,510 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odpdx32.dll

[2008/04/13 16:12:02 | 00,020,510 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odfox32.dll

[2008/04/13 16:12:02 | 00,020,510 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odexl32.dll

[2008/04/13 16:12:02 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfnet.dll

[2008/04/13 16:12:02 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbc32gt.dll

[2008/04/13 16:12:02 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pjlmon.dll

[2008/04/13 16:12:02 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdmd.dll

[2008/04/13 16:12:02 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll

[2008/04/13 16:12:02 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntlsapi.dll

[2008/04/13 16:12:01 | 01,428,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvidctl.dll

[2008/04/13 16:12:01 | 00,875,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netplwiz.dll

[2008/04/13 16:12:01 | 00,701,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml2.dll

[2008/04/13 16:12:01 | 00,622,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netcfgx.dll

[2008/04/13 16:12:01 | 00,506,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml.dll

[2008/04/13 16:12:01 | 00,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp60.dll

[2008/04/13 16:12:01 | 00,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msvcp60.dll

[2008/04/13 16:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netlogon.dll

[2008/04/13 16:12:01 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcrt.dll

[2008/04/13 16:12:01 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswmdm.dll

[2008/04/13 16:12:01 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswmdm.dll

[2008/04/13 16:12:01 | 00,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswebdvd.dll

[2008/04/13 16:12:01 | 00,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netman.dll

[2008/04/13 16:12:01 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll

[2008/04/13 16:12:01 | 00,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netid.dll

[2008/04/13 16:12:01 | 00,121,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvfw32.dll

[2008/04/13 16:12:01 | 00,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll

[2008/04/13 16:12:01 | 00,090,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mydocs.dll

[2008/04/13 16:12:01 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msw3prt.dll

[2008/04/13 16:12:01 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxclu.dll

[2008/04/13 16:12:01 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcirt.dll

[2008/04/13 16:12:01 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ncobjapi.dll

[2008/04/13 16:12:01 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll

[2008/04/13 16:12:01 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll

[2008/04/13 16:12:01 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll

[2008/04/13 16:12:01 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nddenb32.dll

[2008/04/13 16:12:01 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nddeapi.dll

[2008/04/13 16:12:01 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msyuv.dll

[2008/04/13 16:12:01 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netrap.dll

[2008/04/13 16:12:01 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll

[2008/04/13 16:12:00 | 01,384,479 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvbvm60.dll

[2008/04/13 16:12:00 | 00,532,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll

[2008/04/13 16:12:00 | 00,290,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msnsspc.dll

[2008/04/13 16:12:00 | 00,274,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstask.dll

[2008/04/13 16:12:00 | 00,252,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll

[2008/04/13 16:12:00 | 00,201,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspmsp.dll

[2008/04/13 16:12:00 | 00,201,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsp.dll

[2008/04/13 16:12:00 | 00,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msutb.dll

[2008/04/13 16:12:00 | 00,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll

[2008/04/13 16:12:00 | 00,151,583 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjint40.dll

[2008/04/13 16:12:00 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll

[2008/04/13 16:12:00 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msorcl32.dll

[2008/04/13 16:12:00 | 00,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssap.dll

[2008/04/13 16:12:00 | 00,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msv1_0.dll

[2008/04/13 16:12:00 | 00,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstlsapi.dll

[2008/04/13 16:12:00 | 00,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll

[2008/04/13 16:12:00 | 00,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspmsnsv.dll

[2008/04/13 16:12:00 | 00,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsnsv.dll

[2008/04/13 16:12:00 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspatcha.dll

[2008/04/13 16:12:00 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mslbui.dll

[2008/04/13 16:12:00 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrle32.dll

[2008/04/13 16:11:59 | 02,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msi.dll

[2008/04/13 16:11:59 | 00,997,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msgina.dll

[2008/04/13 16:11:59 | 00,956,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll

[2008/04/13 16:11:59 | 00,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msftedit.dll

[2008/04/13 16:11:59 | 00,449,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtmled.dll

[2008/04/13 16:11:59 | 00,427,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll

[2008/04/13 16:11:59 | 00,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msihnd.dll

[2008/04/13 16:11:59 | 00,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msieftp.dll

[2008/04/13 16:11:59 | 00,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll

[2008/04/13 16:11:59 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msimtf.dll

[2008/04/13 16:11:59 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdart.dll

[2008/04/13 16:11:59 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll

[2008/04/13 16:11:59 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msident.dll

[2008/04/13 16:11:59 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msgsvc.dll

[2008/04/13 16:11:59 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msisip.dll

[2008/04/13 16:11:59 | 00,014,336 | ---- | M] () -- C:\WINDOWS\System32\msdmo.dll

[2008/04/13 16:11:59 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msidle.dll

[2008/04/13 16:11:59 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msimg32.dll

[2008/04/13 16:11:58 | 00,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msctf.dll

[2008/04/13 16:11:58 | 00,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdadiag.dll

[2008/04/13 16:11:58 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msapsspc.dll

[2008/04/13 16:11:58 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msacm32.dll

[2008/04/13 16:11:58 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll

[2008/04/13 16:11:58 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfp.dll

[2008/04/13 16:11:58 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msasn1.dll

[2008/04/13 16:11:58 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscpxl32.dll

[2008/04/13 16:11:57 | 01,872,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcndmgr.dll

[2008/04/13 16:11:57 | 00,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mlang.dll

[2008/04/13 16:11:57 | 00,397,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll

[2008/04/13 16:11:57 | 00,384,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mp4sdmod.dll

[2008/04/13 16:11:57 | 00,384,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp4sdmod.dll

[2008/04/13 16:11:57 | 00,368,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll

[2008/04/13 16:11:57 | 00,310,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mp43dmod.dll

[2008/04/13 16:11:57 | 00,310,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp43dmod.dll

[2008/04/13 16:11:57 | 00,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpg4dmod.dll

[2008/04/13 16:11:57 | 00,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4dmod.dll

[2008/04/13 16:11:57 | 00,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mobsync.dll

[2008/04/13 16:11:57 | 00,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll

[2008/04/13 16:11:57 | 00,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcbase.dll

[2008/04/13 16:11:57 | 00,153,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\modemui.dll

[2008/04/13 16:11:57 | 00,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll

[2008/04/13 16:11:57 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mprapi.dll

[2008/04/13 16:11:57 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcshext.dll

[2008/04/13 16:11:57 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\miglibnt.dll

[2008/04/13 16:11:57 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpr.dll

[2008/04/13 16:11:57 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mprdim.dll

[2008/04/13 16:11:57 | 00,034,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll

[2008/04/13 16:11:57 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mimefilt.dll

[2008/04/13 16:11:57 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\midimap.dll

[2008/04/13 16:11:57 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll

[2008/04/13 16:11:56 | 02,061,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstscax.dll

[2008/04/13 16:11:56 | 01,028,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42.dll

[2008/04/13 16:11:56 | 00,989,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kernel32.dll

[2008/04/13 16:11:56 | 00,927,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc40u.dll

[2008/04/13 16:11:56 | 00,728,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lsasrv.dll

[2008/04/13 16:11:56 | 00,399,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lmrt.dll

[2008/04/13 16:11:56 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\localspl.dll

[2008/04/13 16:11:56 | 00,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kerberos.dll

[2008/04/13 16:11:56 | 00,221,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\localsec.dll

[2008/04/13 16:11:56 | 00,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\keymgr.dll

[2008/04/13 16:11:56 | 00,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mdminst.dll

[2008/04/13 16:11:56 | 00,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\loadperf.dll

[2008/04/13 16:11:56 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mciavi32.dll

[2008/04/13 16:11:56 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kmsvc.dll

[2008/04/13 16:11:56 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll

[2008/04/13 16:11:56 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mf3216.dll

[2008/04/13 16:11:56 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll

[2008/04/13 16:11:56 | 00,035,328 | ---- | M] () -- C:\WINDOWS\System32\mciqtz32.dll

[2008/04/13 16:11:56 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mciwave.dll

[2008/04/13 16:11:56 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mciseq.dll

[2008/04/13 16:11:56 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcsubs.dll

[2008/04/13 16:11:56 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lpk.dll

[2008/04/13 16:11:56 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll

[2008/04/13 16:11:56 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\linkinfo.dll

[2008/04/13 16:11:56 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll

[2008/04/13 16:11:56 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mgmtapi.dll

[2008/04/13 16:11:56 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mcastmib.dll

[2008/04/13 16:11:56 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lmhsvc.dll

[2008/04/13 16:11:56 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\localui.dll

[2008/04/13 16:11:56 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lprhelp.dll

[2008/04/13 16:11:56 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\laprxy.dll

[2008/04/13 16:11:56 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\laprxy.dll

[2008/04/13 16:11:56 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll

[2008/04/13 16:11:55 | 00,384,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsmsnap.dll

[2008/04/13 16:11:55 | 00,349,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsecsnp.dll

[2008/04/13 16:11:55 | 00,331,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipnathlp.dll

[2008/04/13 16:11:55 | 00,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ippromon.dll

[2008/04/13 16:11:55 | 00,191,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iuengine.dll

[2008/04/13 16:11:55 | 00,183,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsecsvc.dll

[2008/04/13 16:11:55 | 00,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iprtrmgr.dll

[2008/04/13 16:11:55 | 00,163,840 | ---- | M] (America Online) -- C:\WINDOWS\System32\jgdw400.dll

[2008/04/13 16:11:55 | 00,161,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipmontr.dll

[2008/04/13 16:11:55 | 00,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\itircl.dll

[2008/04/13 16:11:55 | 00,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\initpki.dll

[2008/04/13 16:11:55 | 00,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\itss.dll

[2008/04/13 16:11:55 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\input.dll

[2008/04/13 16:11:55 | 00,096,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inseng.dll

[2008/04/13 16:11:55 | 00,094,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iphlpapi.dll

[2008/04/13 16:11:55 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll

[2008/04/13 16:11:55 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetpp.dll

[2008/04/13 16:11:55 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipv6mon.dll

[2008/04/13 16:11:55 | 00,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ixsso.dll

[2008/04/13 16:11:55 | 00,047,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iyuv_32.dll

[2008/04/13 16:11:55 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetmib1.dll

[2008/04/13 16:11:55 | 00,027,648 | ---- | M] (Johnson-Grace Company) -- C:\WINDOWS\System32\jgpl400.dll

[2008/04/13 16:11:55 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipxwan.dll

[2008/04/13 16:11:55 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetppui.dll

[2008/04/13 16:11:54 | 00,614,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\h323msp.dll

[2008/04/13 16:11:54 | 00,344,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hnetcfg.dll

[2008/04/13 16:11:54 | 00,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hnetwiz.dll

[2008/04/13 16:11:54 | 00,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll

[2008/04/13 16:11:54 | 00,274,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll

[2008/04/13 16:11:54 | 00,254,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icm32.dll

[2008/04/13 16:11:54 | 00,251,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll

[2008/04/13 16:11:54 | 00,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieaksie.dll

[2008/04/13 16:11:54 | 00,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hotplug.dll

[2008/04/13 16:11:54 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imagehlp.dll

[2008/04/13 16:11:54 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakeng.dll

[2008/04/13 16:11:54 | 00,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ifmon.dll

[2008/04/13 16:11:54 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\glu32.dll

[2008/04/13 16:11:54 | 00,120,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\idq.dll

[2008/04/13 16:11:54 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iasrad.dll

[2008/04/13 16:11:54 | 00,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imm32.dll

[2008/04/13 16:11:54 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll

[2008/04/13 16:11:54 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll

[2008/04/13 16:11:54 | 00,080,384 | ---- | M] (Radius Inc.) -- C:\WINDOWS\System32\iccvid.dll

[2008/04/13 16:11:54 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll

[2008/04/13 16:11:54 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hlink.dll

[2008/04/13 16:11:54 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll

[2008/04/13 16:11:54 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iesetup.dll

[2008/04/13 16:11:54 | 00,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll

[2008/04/13 16:11:54 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\htui.dll

[2008/04/13 16:11:54 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hhsetup.dll

[2008/04/13 16:11:54 | 00,036,921 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imeshare.dll

[2008/04/13 16:11:54 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imgutil.dll

[2008/04/13 16:11:54 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\httpapi.dll

[2008/04/13 16:11:54 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hid.dll

[2008/04/13 16:11:54 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll

[2008/04/13 16:11:54 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\igmpagnt.dll

[2008/04/13 16:11:54 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hccoin.dll

[2008/04/13 16:11:53 | 01,082,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\esent.dll

[2008/04/13 16:11:53 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontext.dll

[2008/04/13 16:11:53 | 00,380,445 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\expsrv.dll

[2008/04/13 16:11:53 | 00,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\filemgmt.dll

[2008/04/13 16:11:53 | 00,186,880 | ---- | M] () -- C:\WINDOWS\System32\encdec.dll

[2008/04/13 16:11:53 | 00,183,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\els.dll

[2008/04/13 16:11:53 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\exts.dll

[2008/04/13 16:11:53 | 00,087,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fldrclnr.dll

[2008/04/13 16:11:53 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontsub.dll

[2008/04/13 16:11:53 | 00,080,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\faultrep.dll

[2008/04/13 16:11:53 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fwcfg.dll

[2008/04/13 16:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eventlog.dll

[2008/04/13 16:11:53 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\extmgr.dll

[2008/04/13 16:11:53 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ersvc.dll

[2008/04/13 16:11:53 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\feclient.dll

[2008/04/13 16:11:53 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\encapi.dll

[2008/04/13 16:11:53 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fltlib.dll

[2008/04/13 16:11:52 | 02,113,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiagn.dll

[2008/04/13 16:11:52 | 01,504,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diskcopy.dll

[2008/04/13 16:11:52 | 01,293,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsound3d.dll

[2008/04/13 16:11:52 | 01,227,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dx8vb.dll

[2008/04/13 16:11:52 | 00,650,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll

[2008/04/13 16:11:52 | 00,619,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dx7vb.dll

[2008/04/13 16:11:52 | 00,498,742 | ---- | M] () -- C:\WINDOWS\System32\dxmasf.dll

[2008/04/13 16:11:52 | 00,498,742 | ---- | M] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll

[2008/04/13 16:11:52 | 00,379,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpmon.dll

[2008/04/13 16:11:52 | 00,375,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnet.dll

[2008/04/13 16:11:52 | 00,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsound.dll

[2008/04/13 16:11:52 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll

[2008/04/13 16:11:52 | 00,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\duser.dll

[2008/04/13 16:11:52 | 00,285,184 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmdlgs.dll

[2008/04/13 16:11:52 | 00,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsquery.dll

[2008/04/13 16:11:52 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dplayx.dll

[2008/04/13 16:11:52 | 00,212,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvoice.dll

[2008/04/13 16:11:52 | 00,205,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll

[2008/04/13 16:11:52 | 00,200,704 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmdskmgr.dll

[2008/04/13 16:11:52 | 00,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll

[2008/04/13 16:11:52 | 00,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dinput8.dll

[2008/04/13 16:11:52 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsdmo.dll

[2008/04/13 16:11:52 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmime.dll

[2008/04/13 16:11:52 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll

[2008/04/13 16:11:52 | 00,158,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dinput.dll

[2008/04/13 16:11:52 | 00,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dskquoui.dll

[2008/04/13 16:11:52 | 00,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsprop.dll

[2008/04/13 16:11:52 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3svc.dll

[2008/04/13 16:11:52 | 00,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll

[2008/04/13 16:11:52 | 00,116,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvvox.dll

[2008/04/13 16:11:52 | 00,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsuiext.dll

[2008/04/13 16:11:52 | 00,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmstyle.dll

[2008/04/13 16:11:52 | 00,104,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmusic.dll

[2008/04/13 16:11:52 | 00,103,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmsynth.dll

[2008/04/13 16:11:52 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll

[2008/04/13 16:11:52 | 00,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dskquota.dll

[2008/04/13 16:11:52 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drmstor.dll

[2008/04/13 16:11:52 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmstor.dll

[2008/04/13 16:11:52 | 00,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmscript.dll

[2008/04/13 16:11:52 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsdmoprp.dll

[2008/04/13 16:11:52 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\digest.dll

[2008/04/13 16:11:52 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmcompos.dll

[2008/04/13 16:11:52 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnhupnp.dll

[2008/04/13 16:11:52 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll

[2008/04/13 16:11:52 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll

[2008/04/13 16:11:52 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpwsockx.dll

[2008/04/13 16:11:52 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll

[2008/04/13 16:11:52 | 00,052,224 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmutil.dll

[2008/04/13 16:11:52 | 00,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dssec.dll

[2008/04/13 16:11:52 | 00,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll

[2008/04/13 16:11:52 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\docprop2.dll

[2008/04/13 16:11:52 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dnsrslvr.dll

[2008/04/13 16:11:52 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll

[2008/04/13 16:11:52 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll

[2008/04/13 16:11:52 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll

[2008/04/13 16:11:52 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmloader.dll

[2008/04/13 16:11:52 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapsvc.dll

[2008/04/13 16:11:52 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dispex.dll

[2008/04/13 16:11:52 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll

[2008/04/13 16:11:52 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmband.dll

[2008/04/13 16:11:52 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll

[2008/04/13 16:11:52 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpmodemx.dll

[2008/04/13 16:11:52 | 00,023,552 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmserver.dll

[2008/04/13 16:11:52 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvacm.dll

[2008/04/13 16:11:52 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dswave.dll

[2008/04/13 16:11:52 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsntfy.dll

[2008/04/13 16:11:52 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ds32gt.dll

[2008/04/13 16:11:52 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drprov.dll

[2008/04/13 16:11:52 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll

[2008/04/13 16:11:51 | 01,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d9.dll

[2008/04/13 16:11:51 | 01,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll

[2008/04/13 16:11:51 | 01,179,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8.dll

[2008/04/13 16:11:51 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\danim.dll

[2008/04/13 16:11:51 | 00,824,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dim700.dll

[2008/04/13 16:11:51 | 00,792,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comres.dll

[2008/04/13 16:11:51 | 00,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbghelp.dll

[2008/04/13 16:11:51 | 00,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll

[2008/04/13 16:11:51 | 00,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comctl32.dll

[2008/04/13 16:11:51 | 00,599,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\crypt32.dll

[2008/04/13 16:11:51 | 00,539,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll

[2008/04/13 16:11:51 | 00,512,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptui.dll

[2008/04/13 16:11:51 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\confmsp.dll

[2008/04/13 16:11:51 | 00,326,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cscui.dll

[2008/04/13 16:11:51 | 00,282,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\devmgr.dll

[2008/04/13 16:11:51 | 00,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ddraw.dll

[2008/04/13 16:11:51 | 00,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comdlg32.dll

[2008/04/13 16:11:51 | 00,252,928 | ---- | M] () -- C:\WINDOWS\System32\compatui.dll

[2008/04/13 16:11:51 | 00,229,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\compstui.dll

[2008/04/13 16:11:51 | 00,167,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll

[2008/04/13 16:11:51 | 00,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\datime.dll

[2008/04/13 16:11:51 | 00,163,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\credui.dll

[2008/04/13 16:11:51 | 00,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpcsvc.dll

[2008/04/13 16:11:51 | 00,124,416 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgui.dll

[2008/04/13 16:11:51 | 00,111,104 | ---- | M] (Microsoft) -- C:\WINDOWS\System32\dgnet.dll

[2008/04/13 16:11:51 | 00,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbnetlib.dll

[2008/04/13 16:11:51 | 00,101,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cscdll.dll

[2008/04/13 16:11:51 | 00,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll

[2008/04/13 16:11:51 | 00,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptdlg.dll

[2008/04/13 16:11:51 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptnet.dll

[2008/04/13 16:11:51 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptsvc.dll

[2008/04/13 16:11:51 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll

[2008/04/13 16:11:51 | 00,059,904 | ---- | M] () -- C:\WINDOWS\System32\devenum.dll

[2008/04/13 16:11:51 | 00,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dataclen.dll

[2008/04/13 16:11:51 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptext.dll

[2008/04/13 16:11:51 | 00,039,424 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgsnap.dll

[2008/04/13 16:11:51 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll

[2008/04/13 16:11:51 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll

[2008/04/13 16:11:51 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptdll.dll

[2008/04/13 16:11:51 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\csrsrv.dll

[2008/04/13 16:11:51 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dfsshlex.dll

[2008/04/13 16:11:51 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbnmpntw.dll

[2008/04/13 16:11:51 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll

[2008/04/13 16:11:51 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ddrawex.dll

[2008/04/13 16:11:51 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\davclnt.dll

[2008/04/13 16:11:51 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsrpcn.dll

[2008/04/13 16:11:51 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\credssp.dll

[2008/04/13 16:11:51 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dciman32.dll

[2008/04/13 16:11:51 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8thk.dll

[2008/04/13 16:11:50 | 02,091,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdosys.dll

[2008/04/13 16:11:50 | 01,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browseui.dll

[2008/04/13 16:11:50 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll

[2008/04/13 16:11:50 | 00,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatq.dll

[2008/04/13 16:11:50 | 00,457,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\certmgr.dll

[2008/04/13 16:11:50 | 00,344,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmdial32.dll

[2008/04/13 16:11:50 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\blackbox.dll

[2008/04/13 16:11:50 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\blackbox.dll

[2008/04/13 16:11:50 | 00,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll

[2008/04/13 16:11:50 | 00,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll

[2008/04/13 16:11:50 | 00,194,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\certcli.dll

[2008/04/13 16:11:50 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll

[2008/04/13 16:11:50 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cewmdm.dll

[2008/04/13 16:11:50 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cewmdm.dll

[2008/04/13 16:11:50 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdfview.dll

[2008/04/13 16:11:50 | 00,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\capesnpn.dll

[2008/04/13 16:11:50 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cic.dll

[2008/04/13 16:11:50 | 00,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll

[2008/04/13 16:11:50 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll

[2008/04/13 16:11:50 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\avifil32.dll

[2008/04/13 16:11:50 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cabview.dll

[2008/04/13 16:11:50 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browsewm.dll

[2008/04/13 16:11:50 | 00,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.dll

[2008/04/13 16:11:50 | 00,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browser.dll

[2008/04/13 16:11:50 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ciodm.dll

[2008/04/13 16:11:50 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\authz.dll

[2008/04/13 16:11:50 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cabinet.dll

[2008/04/13 16:11:50 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\atl.dll

[2008/04/13 16:11:50 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clusapi.dll

[2008/04/13 16:11:50 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\basesrv.dll

[2008/04/13 16:11:50 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\camocx.dll

[2008/04/13 16:11:50 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\btpanui.dll

[2008/04/13 16:11:50 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cnbjmon.dll

[2008/04/13 16:11:50 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\audiosrv.dll

[2008/04/13 16:11:50 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmutil.dll

[2008/04/13 16:11:50 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll

[2008/04/13 16:11:50 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bthserv.dll

[2008/04/13 16:11:50 | 00,030,208 | ---- | M] (Adobe Systems) -- C:\WINDOWS\System32\atmlib.dll

[2008/04/13 16:11:50 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\batmeter.dll

[2008/04/13 16:11:50 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bthci.dll

[2008/04/13 16:11:50 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bidispl.dll

[2008/04/13 16:11:50 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmcfg32.dll

[2008/04/13 16:11:50 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmsetacl.dll

[2008/04/13 16:11:50 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll

[2008/04/13 16:11:50 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll

[2008/04/13 16:11:50 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll

[2008/04/13 16:11:50 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll

[2008/04/13 16:11:49 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\apphelp.dll

[2008/04/13 16:11:49 | 00,070,656 | ---- | M] () -- C:\WINDOWS\System32\amstream.dll

[2008/04/13 16:11:49 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\asycfilt.dll

[2008/04/13 16:11:49 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\alrsvc.dll

[2008/04/13 16:11:48 | 00,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\advapi32.dll

[2008/04/13 16:11:48 | 00,263,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnt.dll

[2008/04/13 16:11:48 | 00,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\activeds.dll

[2008/04/13 16:11:48 | 00,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsldp.dll

[2008/04/13 16:11:48 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsldpc.dll

[2008/04/13 16:11:48 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll

[2008/04/13 16:11:48 | 00,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aclui.dll

[2008/04/13 16:11:48 | 00,100,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\6to4svc.dll

[2008/04/13 16:11:48 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\advpack.dll

[2008/04/13 16:11:48 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\actxprxy.dll

[2008/04/13 16:11:48 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsmsext.dll

[2008/04/13 16:11:48 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\admparse.dll

[2008/04/13 16:11:24 | 00,706,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntdll.dll

[2008/04/13 16:11:19 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmp.ocx

[2008/04/13 16:11:19 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.ocx

[2008/04/13 16:11:15 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmi.dll

[2008/04/13 16:11:11 | 00,756,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winntbbu.dll

[2008/04/13 16:10:58 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tdc.ocx

[2008/04/13 16:10:56 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sysmon.ocx

[2008/04/13 16:10:50 | 00,086,016 | ---- | M] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\sl_anet.acm

[2008/04/13 16:10:50 | 00,086,016 | ---- | M] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm

[2008/04/13 16:10:31 | 00,053,279 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcji32.dll

[2008/04/13 16:10:20 | 00,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscript.ocx

[2008/04/13 16:10:08 | 00,844,314 | ---- | M] () -- C:\WINDOWS\System32\msdxm.ocx

[2008/04/13 16:10:08 | 00,844,314 | ---- | M] () -- C:\WINDOWS\System32\dllcache\msdxm.ocx

[2008/04/13 16:10:08 | 00,004,126 | ---- | M] () -- C:\WINDOWS\System32\msdxmlc.dll

[2008/04/13 16:10:08 | 00,004,126 | ---- | M] () -- C:\WINDOWS\System32\dllcache\msdxmlc.dll

[2008/04/13 16:10:06 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msaud32.acm

[2008/04/13 16:10:06 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm

[2008/04/13 16:10:06 | 00,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfime.ime

[2008/04/13 16:10:06 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msadp32.acm

[2008/04/13 16:10:06 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msafd.dll

[2008/04/13 16:09:57 | 00,290,816 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\l3codeca.acm

[2008/04/13 16:09:57 | 00,290,816 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm

[2008/04/13 16:09:55 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsno.dll

[2008/04/13 16:09:55 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsfi.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdukx.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdno1.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnec.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdfi1.dll

[2008/04/13 16:09:55 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinmal.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt48.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt47.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinben.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinbe1.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll

[2008/04/13 16:09:55 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmaori.dll

[2008/04/13 16:09:43 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imaadp32.acm

[2008/04/13 16:09:40 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icmp.dll

[2008/04/13 16:09:36 | 00,545,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hhctrl.ocx

[2008/04/13 16:09:33 | 00,009,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\framebuf.dll

[2008/04/13 16:09:20 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnlobby.dll

[2008/04/13 16:09:19 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnaddr.dll

[2008/04/13 16:09:14 | 00,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\daxctle.ocx

[2008/04/13 16:09:05 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgmgr32.dll

[2008/04/13 16:08:58 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\asctrls.ocx

[2008/04/13 13:00:49 | 00,103,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpcdll.dll

[2008/04/13 11:28:39 | 00,175,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdbss.sys

[2008/04/13 11:21:00 | 00,162,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\netbt.sys

[2008/04/13 11:20:42 | 00,091,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndiswan.sys

[2008/04/13 11:20:37 | 00,182,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndis.sys

[2008/04/13 11:19:48 | 00,048,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\raspptp.sys

[2008/04/13 11:19:43 | 00,051,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rasl2tp.sys

[2008/04/13 11:19:42 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipsec.sys

[2008/04/13 11:19:41 | 00,146,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys

[2008/04/13 11:18:00 | 00,052,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\i8042prt.sys

[2008/04/13 11:17:18 | 00,083,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdmaud.sys

[2008/04/13 11:17:05 | 00,105,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mup.sys

[2008/04/13 11:16:36 | 00,141,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ks.sys

[2008/04/13 11:16:22 | 00,049,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\classpnp.sys

[2008/04/13 11:15:55 | 00,060,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sysaudio.sys

[2008/04/13 11:15:53 | 00,574,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ntfs.sys

[2008/04/13 11:15:45 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\serial.sys

[2008/04/13 11:14:29 | 00,143,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fastfat.sys

[2008/04/13 11:14:21 | 00,063,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cdfs.sys

[2008/04/13 11:00:19 | 00,030,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\modem.sys

[2008/04/13 11:00:05 | 00,019,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdi.sys

[2008/04/13 10:57:32 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\raspppoe.sys

[2008/04/13 10:57:29 | 00,040,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndproxy.sys

[2008/04/13 10:57:27 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\asyncmac.sys

[2008/04/13 10:57:27 | 00,010,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndistapi.sys

[2008/04/13 10:57:21 | 00,034,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wanarp.sys

[2008/04/13 10:57:15 | 00,152,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipnat.sys

[2008/04/13 10:57:07 | 00,020,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipinip.sys

[2008/04/13 10:56:49 | 00,030,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys

[2008/04/13 10:56:49 | 00,030,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismp.sys

[2008/04/13 10:56:49 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023x.sys

[2008/04/13 10:56:49 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023.sys

[2008/04/13 10:56:38 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\psched.sys

[2008/04/13 10:56:32 | 00,035,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msgpc.sys

[2008/04/13 10:56:06 | 00,088,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nwlnkipx.sys

[2008/04/13 10:56:02 | 00,034,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\netbios.sys

[2008/04/13 10:56:01 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tunmp.sys

[2008/04/13 10:55:58 | 00,014,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndisuio.sys

[2008/04/13 10:54:28 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irenum.sys

[2008/04/13 10:53:53 | 00,264,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\http.sys

[2008/04/13 10:53:34 | 00,036,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ip6fw.sys

[2008/04/13 10:53:23 | 00,071,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bridge.sys

[2008/04/13 10:53:09 | 00,040,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nmnt.sys

[2008/04/13 10:51:30 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atmlane.sys

[2008/04/13 10:51:25 | 00,061,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nic1394.sys

[2008/04/13 10:51:25 | 00,060,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\arp1394.sys

[2008/04/13 10:51:25 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atmarpc.sys

[2008/04/13 10:46:33 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthmodem.sys

[2008/04/13 10:46:33 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthenum.sys

[2008/04/13 10:46:32 | 00,059,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rfcomm.sys

[2008/04/13 10:46:30 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidbth.sys

[2008/04/13 10:46:29 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthusb.sys

[2008/04/13 10:46:25 | 00,085,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nabtsfec.sys

[2008/04/13 10:46:24 | 00,019,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wstcodec.sys

[2008/04/13 10:46:23 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ccdecode.sys

[2008/04/13 10:46:23 | 00,011,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\slip.sys

[2008/04/13 10:46:22 | 00,015,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mpe.sys

[2008/04/13 10:46:22 | 00,010,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndisip.sys

[2008/04/13 10:46:21 | 00,015,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\streamip.sys

[2008/04/13 10:46:21 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bdasup.sys

[2008/04/13 10:46:20 | 00,121,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbvideo.sys

[2008/04/13 10:46:18 | 00,061,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ohci1394.sys

[2008/04/13 10:46:18 | 00,053,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\1394bus.sys

[2008/04/13 10:46:09 | 00,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msdv.sys

[2008/04/13 10:46:07 | 00,025,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sonydcam.sys

[2008/04/13 10:45:43 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbintel.sys

[2008/04/13 10:45:41 | 00,025,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd2.sys

[2008/04/13 10:45:40 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd.sys

[2008/04/13 10:45:39 | 00,032,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys

[2008/04/13 10:45:38 | 00,026,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbstor.sys

[2008/04/13 10:45:37 | 00,059,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbhub.sys

[2008/04/13 10:45:36 | 00,143,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbport.sys

[2008/04/13 10:45:35 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbehci.sys

[2008/04/13 10:45:35 | 00,020,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbuhci.sys

[2008/04/13 10:45:27 | 00,010,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidusb.sys

[2008/04/13 10:45:26 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidclass.sys

[2008/04/13 10:45:26 | 00,019,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidir.sys

[2008/04/13 10:45:22 | 00,024,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidparse.sys

[2008/04/13 10:45:15 | 00,049,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\stream.sys

[2008/04/13 10:45:14 | 00,060,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys

[2008/04/13 10:45:13 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmkaud.sys

[2008/04/13 10:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys

[2008/04/13 10:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys

[2008/04/13 10:45:09 | 00,172,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kmixer.sys

[2008/04/13 10:45:09 | 00,056,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swmidi.sys

[2008/04/13 10:45:07 | 00,006,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\splitter.sys

[2008/04/13 10:45:01 | 00,052,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dmusic.sys

[2008/04/13 10:44:59 | 00,017,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\watchdog.sys

[2008/04/13 10:44:48 | 00,799,744 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\drivers\dmboot.sys

[2008/04/13 10:44:46 | 00,153,344 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\drivers\dmio.sys

[2008/04/13 10:44:40 | 00,081,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\videoprt.sys

[2008/04/13 10:44:40 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vga.sys

[2008/04/13 10:43:55 | 00,014,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wacompen.sys

[2008/04/13 10:41:01 | 00,052,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\volsnap.sys

[2008/04/13 10:40:58 | 00,042,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\imapi.sys

[2008/04/13 10:40:50 | 00,014,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tape.sys

[2008/04/13 10:40:49 | 00,019,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\partmgr.sys

[2008/04/13 10:40:48 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sbp2port.sys

[2008/04/13 10:40:48 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys

[2008/04/13 10:40:48 | 00,011,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sfloppy.sys

[2008/04/13 10:40:48 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_mmc.sys

[2008/04/13 10:40:47 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\disk.sys

[2008/04/13 10:40:47 | 00,011,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffdisk.sys

[2008/04/13 10:40:47 | 00,011,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_sd.sys

[2008/04/13 10:40:46 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cdrom.sys

[2008/04/13 10:40:44 | 00,014,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\diskdump.sys

[2008/04/13 10:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atapi.sys

[2008/04/13 10:40:30 | 00,096,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\scsiport.sys

[2008/04/13 10:40:29 | 00,024,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pciidex.sys

[2008/04/13 10:40:29 | 00,005,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\intelide.sys

[2008/04/13 10:40:27 | 00,057,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\redbook.sys

[2008/04/13 10:40:25 | 00,027,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fdc.sys

[2008/04/13 10:40:25 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\flpydisk.sys

[2008/04/13 10:40:12 | 00,015,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\serenum.sys

[2008/04/13 10:40:10 | 00,080,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\parport.sys

[2008/04/13 10:39:53 | 00,004,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swenum.sys

[2008/04/13 10:39:52 | 00,007,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mskssrv.sys

[2008/04/13 10:39:51 | 00,004,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspqm.sys

[2008/04/13 10:39:50 | 00,005,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mstee.sys

[2008/04/13 10:39:50 | 00,005,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspclock.sys

[2008/04/13 10:39:47 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kbdclass.sys

[2008/04/13 10:39:47 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mouclass.sys

[2008/04/13 10:39:46 | 00,384,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\update.sys

[2008/04/13 10:39:46 | 00,042,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mountmgr.sys

[2008/04/13 10:38:29 | 00,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxg.sys

[2008/04/13 10:37:09 | 00,369,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec

[2008/04/13 10:36:52 | 00,073,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sr.sys

[2008/04/13 10:36:46 | 00,015,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mssmbios.sys

[2008/04/13 10:36:44 | 00,079,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sdbus.sys

[2008/04/13 10:36:44 | 00,068,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pci.sys

[2008/04/13 10:36:43 | 00,120,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pcmcia.sys

[2008/04/13 10:36:41 | 00,063,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mf.sys

[2008/04/13 10:36:41 | 00,037,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\isapnp.sys

[2008/04/13 10:36:40 | 00,046,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gagp30kx.sys

[2008/04/13 10:36:40 | 00,044,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\uagp35.sys

[2008/04/13 10:36:40 | 00,042,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\viaagp.sys

[2008/04/13 10:36:39 | 00,044,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agpcpq.sys

[2008/04/13 10:36:38 | 00,042,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\alim1541.sys

[2008/04/13 10:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agp440.sys

[2008/04/13 10:36:35 | 00,187,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\acpi.sys

[2008/04/13 10:36:34 | 00,005,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys

[2008/04/13 10:35:22 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgen.dll

[2008/04/13 10:33:28 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fips.sys

[2008/04/13 10:32:59 | 00,129,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fltmgr.sys

[2008/04/13 10:32:51 | 00,196,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpdr.sys

[2008/04/13 10:32:44 | 00,180,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mrxdav.sys

[2008/04/13 10:32:39 | 00,030,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\npfs.sys

[2008/04/13 10:32:39 | 00,019,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msfs.sys

[2008/04/13 10:32:36 | 00,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\udfs.sys

[2008/04/13 10:31:43 | 00,092,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ksecdd.sys

[2008/04/13 10:31:35 | 00,007,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kd1394.dll

[2008/04/13 10:31:33 | 00,037,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\amdk7.sys

[2008/04/13 10:31:32 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\amdk6.sys

[2008/04/13 10:31:32 | 00,036,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\crusoe.sys

[2008/04/13 10:31:32 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\intelppm.sys

[2008/04/13 10:31:31 | 00,042,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\p3.sys

[2008/04/13 10:31:30 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\processr.sys

[2008/04/13 10:31:28 | 00,134,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\HAL.DLL

[2008/04/13 10:30:46 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcrt40.dll

[2008/04/13 10:14:58 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll

[2008/04/13 09:39:29 | 00,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpob2res.dll

[2008/04/13 09:39:26 | 00,689,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll

[2008/04/13 09:39:24 | 02,897,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp2res.dll

[2008/04/13 09:39:24 | 02,897,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsp2res.dll

[2008/04/13 09:39:22 | 00,187,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp1res.dll

[2008/04/13 09:37:57 | 00,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsaenh.dll

[2008/04/13 09:37:57 | 00,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsaenh.dll

[2008/04/13 09:37:57 | 00,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dssenh.dll

[2008/04/13 09:28:53 | 00,066,725 | ---- | M] () -- C:\WINDOWS\System32\dllcache\revert.wmz

[2008/04/13 09:28:21 | 02,940,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmploc.dll

[2008/04/13 09:28:21 | 02,940,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmploc.dll

[2008/04/13 09:28:15 | 00,184,959 | ---- | M] () -- C:\WINDOWS\System32\dllcache\compact.wmz

[2008/04/13 09:27:18 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll

[2008/04/13 09:27:18 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll

[2008/04/13 09:26:27 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.rll

[2008/04/13 09:26:18 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlsrv32.rll

[2008/04/13 09:26:09 | 00,004,310 | ---- | M] () -- C:\WINDOWS\System32\odbcconf.rsp

[2008/04/13 09:26:07 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscpx32r.dll

[2008/04/13 09:26:05 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcint.dll

[2008/04/13 09:26:05 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcp32r.dll

[2008/04/13 09:24:16 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\simpdata.tlb

[2008/04/13 09:24:14 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msorc32r.dll

[2008/04/13 09:24:00 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdatsrc.tlb

[2008/04/13 09:23:38 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asferror.dll

[2008/04/13 09:23:38 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\asferror.dll

[2008/04/13 09:23:24 | 00,168,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmerror.dll

[2008/04/13 09:23:24 | 00,168,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmerror.dll

[2008/04/13 09:23:23 | 00,029,070 | ---- | M] () -- C:\WINDOWS\System32\dllcache\wmp.inf

[2008/04/13 09:21:32 | 00,733,696 | ---- | M] () -- C:\WINDOWS\System32\qedwipes.dll

[2008/04/13 09:09:30 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsprpres.dll

[2008/04/13 09:03:24 | 00,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browselc.dll

[2008/04/13 09:03:19 | 00,549,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shdoclc.dll

[2008/04/13 08:48:53 | 01,647,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winbrand.dll

[2008/04/13 08:45:30 | 00,216,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\moricons.dll

[2008/04/13 08:39:23 | 00,142,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\aec.sys

[2008/04/13 08:26:26 | 01,351,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.tlb

[2008/04/13 08:26:26 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtmler.dll

[2008/04/13 08:23:31 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msprivs.dll

[2008/04/13 08:22:12 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll

[2008/04/13 07:42:06 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stdole2.tlb

[2008/04/13 07:39:43 | 00,884,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msimsg.dll

[2008/04/11 11:04:26 | 00,691,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcomm.dll

[2008/04/11 11:04:26 | 00,691,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll

[2008/03/24 20:50:58 | 00,621,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswstr10.dll

[2008/03/24 20:50:58 | 00,621,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswstr10.dll

[2008/03/24 20:50:58 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxbde40.dll

[2008/03/24 20:50:58 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxbde40.dll

[2008/03/24 20:50:57 | 00,838,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswdat10.dll

[2008/03/24 20:50:57 | 00,838,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswdat10.dll

[2008/03/24 20:50:55 | 00,264,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstext40.dll

[2008/03/24 20:50:55 | 00,264,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstext40.dll

[2008/03/24 20:50:52 | 00,559,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrepl40.dll

[2008/03/24 20:50:52 | 00,559,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrepl40.dll

[2008/03/24 20:50:49 | 00,322,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd3x40.dll

[2008/03/24 20:50:49 | 00,322,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd3x40.dll

[2008/03/24 20:50:47 | 00,432,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd2x40.dll

[2008/03/24 20:50:47 | 00,432,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd2x40.dll

[2008/03/24 20:50:45 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspbde40.dll

[2008/03/24 20:50:45 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspbde40.dll

[2008/03/24 20:50:44 | 00,219,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msltus40.dll

[2008/03/24 20:50:44 | 00,219,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msltus40.dll

[2008/03/24 20:50:42 | 00,248,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjtes40.dll

[2008/03/24 20:50:42 | 00,248,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjtes40.dll

[2008/03/24 20:50:42 | 00,060,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjter40.dll

[2008/03/24 20:50:42 | 00,060,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjter40.dll

[2008/03/24 20:50:40 | 00,355,112 | ---- | M] () -- C:\WINDOWS\System32\msjetoledb40.dll

[2008/03/24 20:50:40 | 00,355,112 | ---- | M] () -- C:\WINDOWS\System32\dllcache\msjetol1.dll

[2008/03/24 20:50:34 | 01,516,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet40.dll

[2008/03/24 20:50:34 | 01,516,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjet40.dll

[2008/03/24 20:50:30 | 00,326,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msexcl40.dll

[2008/03/24 20:50:30 | 00,326,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexcl40.dll

[2008/03/24 20:50:28 | 00,518,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msexch40.dll

[2008/03/24 20:50:28 | 00,518,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexch40.dll

[2008/03/24 20:50:25 | 00,554,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll

[2008/02/29 02:13:24 | 00,036,880 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LMouFilt.Sys

[2008/02/29 02:13:16 | 00,035,344 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LHidFilt.Sys

[2008/02/29 02:12:48 | 00,020,240 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\L8042Kbd.sys

[2008/02/29 02:12:38 | 00,076,304 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\KHALMNPR.Exe

[2008/01/17 08:34:01 | 00,093,264 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys

[2007/11/30 04:39:22 | 00,017,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll

[2007/09/17 00:48:10 | 00,001,261 | ---- | M] () -- C:\WINDOWS\System32\pid.inf

[2007/08/10 19:46:18 | 00,026,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe

[2007/07/12 21:33:58 | 00,087,552 | ---- | M] () -- C:\WINDOWS\System32\cpwmon2k.dll

[2007/06/25 21:58:10 | 00,067,374 | ---- | M] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm

[2007/06/22 11:34:02 | 01,419,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01005.dll

[2007/04/19 11:26:00 | 01,703,936 | ---- | M] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2007/04/19 11:26:00 | 01,626,112 | ---- | M] () -- C:\WINDOWS\System32\nwiz.exe

[2007/04/19 11:26:00 | 01,474,560 | ---- | M] () -- C:\WINDOWS\System32\nview.dll

[2007/04/19 11:26:00 | 01,339,392 | ---- | M] () -- C:\WINDOWS\System32\nvdspsch.exe

[2007/04/19 11:26:00 | 01,019,904 | ---- | M] () -- C:\WINDOWS\System32\nvwimg.dll

[2007/04/19 11:26:00 | 00,581,632 | ---- | M] () -- C:\WINDOWS\System32\nvhwvid.dll

[2007/04/19 11:26:00 | 00,466,944 | ---- | M] () -- C:\WINDOWS\System32\nvshell.dll

[2007/04/19 11:26:00 | 00,442,368 | ---- | M] () -- C:\WINDOWS\System32\nvappbar.exe

[2007/04/19 11:26:00 | 00,425,984 | ---- | M] () -- C:\WINDOWS\System32\keystone.exe

[2007/04/19 11:26:00 | 00,286,720 | ---- | M] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2007/04/19 11:26:00 | 00,212,992 | ---- | M] () -- C:\WINDOWS\System32\nvapi.dll

[2007/04/19 11:26:00 | 00,073,728 | ---- | M] () -- C:\WINDOWS\System32\nvtuicpl.cpl

[2007/04/19 11:26:00 | 00,017,056 | ---- | M] () -- C:\WINDOWS\System32\nvdisp.nvu

[2007/04/02 19:14:47 | 00,981,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42u.dll

[2007/04/02 09:51:05 | 00,023,195 | ---- | M] () -- C:\WINDOWS\System32\dllcache\wmplay.chm

[2006/12/30 17:26:44 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\gpkrsrc.dll

[2006/11/02 06:22:54 | 00,492,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdf01000.sys

[2006/11/02 06:22:52 | 00,032,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys

[2006/10/26 18:56:10 | 00,032,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll

[2006/10/26 13:42:36 | 00,035,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ESN.DLL

[2006/10/26 13:10:08 | 01,190,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL

[2006/10/26 13:10:06 | 00,033,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL

[2006/10/26 12:45:04 | 00,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WISPTIS.EXE

[2006/10/26 12:45:04 | 00,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\INKED.DLL

[2006/07/24 09:50:40 | 00,047,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\VBAME.DLL

[2006/07/24 09:50:40 | 00,039,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SCP32.DLL

[2006/07/24 09:50:38 | 00,125,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MSSTDFMT.DLL

[2005/06/24 16:05:34 | 00,016,958 | ---- | M] () -- C:\WINDOWS\System32\evga.ico

[2004/12/26 11:19:19 | 00,423,424 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Max\Desktop\OTViewIt.exe

[2004/12/26 11:14:20 | 00,088,723 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2004/12/26 11:13:52 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2004/12/26 11:13:46 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2004/12/26 11:13:44 | 79,648,7680 | -HS- | M] () -- C:\hiberfil.sys

[2004/12/26 03:30:45 | 01,576,002 | -H-- | M] () -- C:\Documents and Settings\Max\Local Settings\Application Data\IconCache.db

[2004/12/25 22:54:56 | 00,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk

[2004/12/25 17:00:15 | 00,925,696 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\votado co[2]...pps

[2004/12/25 16:59:47 | 00,000,098 | ---- | M] () -- C:\WINDOWS\System32\B4eocaps.SRG

[2004/12/25 16:48:10 | 02,079,744 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\Navidad2008.pps

[2004/12/25 16:47:04 | 00,398,336 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\Cumplea_osNavidad.pps

[2004/12/25 06:39:11 | 00,240,496 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\wpcap.dll

[2004/12/25 06:39:11 | 00,042,000 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\drivers\npf.sys

[2004/12/25 06:39:11 | 00,013,531 | ---- | M] () -- C:\WINDOWS\System32\wacbult.exe

[2004/12/25 06:39:10 | 00,088,952 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\Packet.dll

[2004/12/25 06:39:10 | 00,068,480 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\WanPacket.dll

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\ZGWZ.PIF

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\WINDOWS\System32\spoolsv.exe

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\WINDOWS\System32\dllcache\spoolsv.exe

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\sytseem

[2004/12/24 21:42:56 | 29,775,112 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\setupeng.exe

[2004/12/24 19:34:34 | 00,000,296 | ---- | M] () -- C:\WINDOWS\system.ini

[2004/12/24 19:33:15 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2004/12/24 18:56:08 | 12,861,144 | ---- | M] (Emsi Software GmbH ) -- C:\Documents and Settings\Max\Desktop\a2FreeSetup.exe

[2004/12/24 16:31:09 | 00,002,560 | ---- | M] () -- C:\WINDOWS\System32\gscpx32r.det

[2004/12/24 16:16:00 | 00,000,032 | ---- | M] () -- C:\WINDOWS\System32\ormsgse.axz

[2004/12/24 15:59:35 | 00,000,032 | ---- | M] () -- C:\WINDOWS\System32\gprmsgse.axz

[2004/12/24 15:41:44 | 00,137,728 | ---- | M] () -- C:\Documents and Settings\Max\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2004/12/24 15:31:53 | 00,013,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\Atieccx.sys

[2004/12/24 15:30:34 | 00,020,680 | -HS- | M] () -- C:\ZGVZ.PIF

[2004/12/24 15:30:34 | 00,020,680 | -HS- | M] () -- C:\tm.sa

[2004/12/24 15:29:42 | 00,012,800 | ---- | M] () -- C:\WINDOWS\System32\dbwqsuio.dll

[2004/12/24 15:28:25 | 00,000,151 | -HS- | M] () -- C:\AUTORUN.INF

< End of report >

Share this post


Link to post
Share on other sites

Extras.Txt log:

OTViewIt Extras logfile created on: 12/26/2004 11:20:04 AM - Run

OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Documents and Settings\Max\Desktop

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.5512)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

759.52 Mb Total Physical Memory | 507.52 Mb Available Physical Memory | 66.82% Memory free

1.81 Gb Paging File | 1.56 Gb Available in Paging File | 86.21% Paging File free

Paging file location(s): C:\pagefile.sys 1140 2280;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 105.78 Gb Total Space | 40.26 Gb Free Space | 38.06% Space Free | Partition Type: NTFS

Drive D: | 68.52 Gb Total Space | 46.86 Gb Free Space | 68.38% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: VALUED-3253602F

Current User Name: Max

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Whitelist: On

File Age = 30 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)

.cpl [@ = cplfile] -- C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)

.hta [@ = htafile] -- C:\WINDOWS\system32\mshta.exe (Microsoft Corporation)

.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

.inf [@ = inffile] -- C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)

.ini [@ = inifile] -- C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)

.url [@ = InternetShortcut] -- C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)

.js [@ = JSFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.jse [@ = JSEFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.reg [@ = regfile] -- C:\WINDOWS\regedit.exe (Microsoft Corporation)

.txt [@ = txtfile] -- C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)

.vbe [@ = VBEFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.vbs [@ = VBSFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.wsf [@ = WSFFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.wsh [@ = WSHFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"AntiVirusDisableNotify"=0

"FirewallDisableNotify"=0

"UpdatesDisableNotify"=0

"AntiVirusOverride"=0

"FirewallOverride"=0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[2008/04/13 16:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

[2008/04/13 16:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[2003/06/23 16:32:54 | 01,409,024 | ---- | M] (Support.com, Inc.) -- C:\Program Files\support.com\client\bin\tgcmd.exe:*:Disabled:tgcmd Module

[2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[2006/10/27 14:16:48 | 12,813,096 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook

[2006/10/27 14:37:44 | 00,338,216 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove

[2006/10/27 14:03:04 | 01,018,664 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote

[2008/10/10 10:14:24 | 00,270,128 | ---- | M] (BitTorrent, Inc.) -- C:\Documents and Settings\Max\Desktop\utorrent.exe:*:Enabled:µTorrent

[2008/08/12 17:19:02 | 21,741,864 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype

[2008/09/26 07:52:28 | 00,208,896 | ---- | M] () -- C:\Program Files\Unreal Tournament 2004\System\UT2004.exe:*:Enabled:UT2004

========== (O18) Protocol Handlers ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]

[2006/10/26 23:48:02 | 00,222,512 | ---- | M] (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (grooveLocalGWS:{88FED34C-F0CA-4636-A375-3CB6248B04CD} (HKLM) [Local Groove Web Services Protocol])

ipp: [HKLM - No CLSID value]

[2006/10/26 18:49:48 | 01,011,488 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL ipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]

msdaipp: [HKLM - No CLSID value]

[2006/10/26 18:49:48 | 01,011,488 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]

[2006/10/26 18:49:48 | 01,011,488 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAIPP.BINDER]

[2006/10/26 12:45:02 | 00,873,216 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (ms-help:{314111c7-a502-11d2-bbca-00c04f8ec294} (HKLM) [HxProtocol Class])

[2008/08/12 17:19:02 | 01,942,864 | R--- | M] (Skype Technologies) C:\Program Files\Common Files\Skype\Skype4COM.dll (skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} (HKLM) [iEProtocolHandler Class])

========== (O18) Protocol Filters ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\] - Protocol Filters

[2006/10/26 20:41:48 | 00,044,344 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL text/xml:{807563E5-5146-11D5-A672-00B0D022E945} (HKLM) [Microsoft Office InfoPath XML Mime Filter]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{00000000-3976-4267-9F39-1DC4745090B7}"=Microsoft Learning and Research Plus Support Files

"{00203668-8170-44A0-BE44-B632FA4D780F}"=Adobe AIR

"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}"=ATI Control Panel

"{0C826C5B-B131-423A-A229-C71B3CACCD6A}"=CDDRV_Installer

"{13515135-48BB-4184-8C1F-2FAE0138E200}"=TBS WMP Plug-in

"{1D643CD7-4DD6-11D7-A4E0-000874180BB3}"=Microsoft Money 2004

"{1DBB465A-5DFC-4E3A-9A8A-15612D2386F0}"=Turbo Tax Offer

"{1EB317D8-8945-4FD6-B37F-DF470317C6AB}"=VAIO Media 2.6

"{27337663-2619-11D4-99DC-0000F49094C7}"=Memory Stick Formatter

"{3101CB58-3482-4D21-AF1A-7057FC935355}"=KhalInstallWrapper

"{315BA29D-2644-4760-B5FD-5AC04A52B8C5}"=VAIO Registration

"{3248F0A8-6813-11D6-A77B-00B0D0160070}"=Java 6 Update 7

"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP

"{369B36BE-3D64-4641-9AEA-808D436FE130}"=Microsoft Picture It! Express 7.0

"{394DC0BC-5476-4260-B52C-BDE1BDEFA958}"=Unreal Tournament 2004

"{3B24B725-D81F-442D-8CE5-2AF05A4A4CC9}"=Music Visualizer Library 1.4.00

"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}"=Logitech Registration

"{4D1D6640-CD43-4AD9-A52F-E48265DB28E0}"=VAIO BrightColor Wallpaper

"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}"=Skypeâ„¢ 3.8

"{62F33B80-6244-4A70-A233-0DA13B640364}"=OpenMG Secure Module 3.2

"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}"=PowerDVD

"{685BCC47-B8EC-45EC-BBCE-77DF2451502C}"=DVgate Plus

"{6990A2BF-D1D2-11D3-81BC-00609789C908}"=Sony Video Shared Library

"{7128C69B-8F7E-4336-8698-3FD3CDD955EC}"=VAIO Media Redistribution 2.6

"{71D6CE84-B7DC-4166-8E0D-56C1C37BFB5A}"=SonicStage 1.6.00

"{7299052b-02a4-4627-81f2-1818da5d550d}"=Microsoft Visual C++ 2005 Redistributable

"{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}"=Microsoft Works 7.0

"{77DCDCE3-2DED-62F3-8154-05E745472D07}"=Acrobat.com

"{789289CA-F73A-4A16-A331-54D498CE069F}"=Ventrilo Client

"{7A79D11B-FD82-4A5E-834F-20173515DD14}"=VAIO Media Integrated Server 2.6

"{7C2F71B2-6C73-11D6-B659-00C04F790F76}"=Click to DVD 1.3

"{88DA0A52-3372-4803-971A-ADFB961707E8}"=PictureGear Studio 2.0

"{8A708DD8-A5E6-11D4-A706-000629E95E20}"=Intel® Extreme Graphics Driver

"{8C64E145-54BA-11D6-91B1-00500462BE80}"=Microsoft Money 2004 System Pack

"{90120000-0010-0C0A-0000-0000000FF1CE}"=Microsoft Software Update for Web Folders (Spanish) 12

"{90120000-0015-0C0A-0000-0000000FF1CE}"=Microsoft Office Access MUI (Spanish) 2007

"{90120000-0016-0C0A-0000-0000000FF1CE}"=Microsoft Office Excel MUI (Spanish) 2007

"{90120000-0018-0C0A-0000-0000000FF1CE}"=Microsoft Office PowerPoint MUI (Spanish) 2007

"{90120000-0019-0C0A-0000-0000000FF1CE}"=Microsoft Office Publisher MUI (Spanish) 2007

"{90120000-001A-0C0A-0000-0000000FF1CE}"=Microsoft Office Outlook MUI (Spanish) 2007

"{90120000-001B-0C0A-0000-0000000FF1CE}"=Microsoft Office Word MUI (Spanish) 2007

"{90120000-001F-0403-0000-0000000FF1CE}"=Microsoft Office Proof (Catalan) 2007

"{90120000-001F-0409-0000-0000000FF1CE}"=Microsoft Office Proof (English) 2007

"{90120000-001F-040C-0000-0000000FF1CE}"=Microsoft Office Proof (French) 2007

"{90120000-001F-0416-0000-0000000FF1CE}"=Microsoft Office Proof (Portuguese (Brazil)) 2007

"{90120000-001F-042D-0000-0000000FF1CE}"=Microsoft Office Proof (Basque) 2007

"{90120000-001F-0456-0000-0000000FF1CE}"=Microsoft Office Proof (Galician) 2007

"{90120000-001F-0C0A-0000-0000000FF1CE}"=Microsoft Office Proof (Spanish) 2007

"{90120000-002C-0C0A-0000-0000000FF1CE}"=Microsoft Office Proofing (Spanish) 2007

"{90120000-0030-0000-0000-0000000FF1CE}"=Microsoft Office Enterprise 2007

"{90120000-0044-0C0A-0000-0000000FF1CE}"=Microsoft Office InfoPath MUI (Spanish) 2007

"{90120000-006E-0C0A-0000-0000000FF1CE}"=Microsoft Office Shared MUI (Spanish) 2007

"{90120000-00A1-0C0A-0000-0000000FF1CE}"=Microsoft Office OneNote MUI (Spanish) 2007

"{90120000-00BA-0C0A-0000-0000000FF1CE}"=Microsoft Office Groove MUI (Spanish) 2007

"{93B80FB1-7A23-11D3-B250-00105A1F4184}"=

"{AC76BA86-7AD7-1033-7B44-A90000000001}"=Adobe Reader 9

"{BEF3EFE7-5159-436D-9BF0-CCC633179EB4}"=EVGA Display Driver

"{CD7D5804-C157-48A6-AEE0-4A40A4B5C054}"=VAIO System Information

"{D0448678-1203-4158-A58F-B3D0B616BF9E}"=Sony Certificate PCH

"{DDC146FA-73E0-4FA1-A353-841EA14BF600}"=Drag'n Drop CD+DVD

"{E68B38DE-D7DD-4FB3-A453-3F03A947EA8E}"=VAIO Help and Support

"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}"=Logitech SetPoint

"{F61F2821-694C-475F-99AB-6AF2EFDF40FD}"=Quicken 2003 New User Edition

"{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}"=VAIO Survey Standalone

"7-Zip"=7-Zip 4.57

"Adobe AIR"=Adobe AIR

"Adobe Flash Player ActiveX"=Adobe Flash Player ActiveX

"Adobe Flash Player Plugin"=Adobe Flash Player Plugin

"Agere Systems Soft Modem"=Agere Systems AC'97 Modem

"a-squared Free_is1"=a-squared Free 4.0

"AT&T Worldnet Setup"=AT&T Worldnet Setup

"ATI Display Driver"=ATI Display Driver

"avast!"=avast! Antivirus

"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1"=Acrobat.com

"CutePDF Writer Installation"=CutePDF Writer 2.7

"Dropbox"=Dropbox

"DVD Decrypter"=DVD Decrypter (Remove Only)

"DVD Shrink_is1"=DVD Shrink 3.2

"DVD43_is1"=DVD43 v4.3.1

"ENTERPRISE"=Microsoft Office Enterprise 2007

"Hamachi"=Hamachi 1.0.3.0

"HijackThis"=HijackThis 2.0.2

"InstallShield_{13515135-48BB-4184-8C1F-2FAE0138E200}"=TBS WMP Plug-in

"InstallShield_{315BA29D-2644-4760-B5FD-5AC04A52B8C5}"=VAIO Registration

"InstallShield_{E68B38DE-D7DD-4FB3-A453-3F03A947EA8E}"=VAIO Help and Support

"InstallShield_{F61F2821-694C-475F-99AB-6AF2EFDF40FD}"=Quicken 2003 New User Edition

"InstallShield_{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}"=VAIO Survey Standalone

"LiveReg"=LiveReg (Symantec Corporation)

"LiveUpdate"=LiveUpdate 1.80 (Symantec Corporation)

"Malwarebytes' Anti-Malware_is1"=Malwarebytes' Anti-Malware

"MoodLogic"=MoodLogic

"Mozilla Firefox (2.0.0.20)"=Mozilla Firefox (2.0.0.20)

"MSNMS"=MSN Internet Software

"Netscape (7.02)"=Netscape (7.02)

"OpenMG HotFix3.2-03-01-16-01"=OpenMG Limited Patch 3.2-03-02-21-08

"OpenMG HotFix3.2-03-01-16-02"=OpenMG Limited Patch 3.2-03-03-18-01

"OpenMG HotFix3.2-03-04-14-02"=OpenMG Limited Patch 3.2-03-04-14-02

"PeerGuardian_is1"=PeerGuardian 2.0

"PROSet"=Intel® PRO Network Adapters and Drivers

"QuickTime"=QuickTime

"Shockwave"=Shockwave

"Sony on Yahoo! Essentials"=Sony on Yahoo! Essentials

"VAIO Support"=VAIO Support

"ViewpointMediaPlayer"=Viewpoint Media Player (Remove Only)

"VLC media player"=VideoLAN VLC media player 0.8.6i

"Wdf01005"=Microsoft Kernel-Mode Driver Framework Feature Pack 1.5

"Welcome to VAIO life"=Welcome to VAIO life

"Windows XP Service Pack"=Windows XP Service Pack 3

"WinRAR archiver"=WinRAR archiver

"Xfire"=Xfire (remove only)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Google Chrome"=Google Chrome

"Octoshape add-in for Adobe Flash Player"=Octoshape add-in for Adobe Flash Player

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 12/9/2008 11:21:17 PM | Computer Name = VALUED-3253602F | Source = Application Error | ID = 1000

Description = Faulting application pg2.exe, version 1.0.6.4, faulting module ntdll.dll,

version 5.1.2600.5512, fault address 0x0001b1fa.

Error - 12/22/2008 5:16:34 PM | Computer Name = VALUED-3253602F | Source = Application Error | ID = 1000

Description = Faulting application pg2.exe, version 1.0.6.4, faulting module ntdll.dll,

version 5.1.2600.5512, fault address 0x0001b1fa.

Error - 12/24/2004 10:49:07 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/24/2004 10:49:08 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/24/2004 10:49:08 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/24/2004 10:49:11 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:26:13 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:43:29 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:45:39 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:49:23 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

[ System Events ]

Error - 12/26/2004 1:21:22 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7000

Description = The mrtRate service failed to start due to the following error: %%2

Error - 12/26/2004 1:21:22 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

Beep

Error - 12/26/2004 1:23:22 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7000

Description = The mrtRate service failed to start due to the following error: %%2

Error - 12/26/2004 1:23:24 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

Beep

Error - 12/26/2004 5:15:15 AM | Computer Name = VALUED-3253602F | Source = Dhcp | ID = 1000

Description = Your computer has lost the lease to its IP address 5.44.169.91 on

the Network Card with network address 7A79052CA95B.

Error - 12/26/2004 6:44:12 AM | Computer Name = VALUED-3253602F | Source = BROWSER | ID = 8032

Description = The browser service has failed to retrieve the backup list too many

times on transport \Device\NetBT_Tcpip_{6BDFFCC5-B5E0-45B6-9987-8AB8047530E1}. The

backup browser is stopping.

Error - 12/26/2004 7:17:58 AM | Computer Name = VALUED-3253602F | Source = DCOM | ID = 10010

Description = The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register

with DCOM within the required timeout.

Error - 12/26/2004 7:32:56 AM | Computer Name = VALUED-3253602F | Source = DCOM | ID = 10010

Description = The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register

with DCOM within the required timeout.

Error - 12/26/2004 3:14:09 PM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7000

Description = The mrtRate service failed to start due to the following error: %%2

Error - 12/26/2004 3:14:11 PM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

Beep

< End of report >

Share this post


Link to post
Share on other sites

Hello again,

Sorry for the delay! The holidays got a hold of me and I just got in early this morning.

Step 1

I do not recommend that you have more than one anti virus product installed and running on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:

1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.

2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.

Therefore please go to Add or Remove in the control panel and remove either avast! or a-squared Free.

Step 2

Please download ATF Cleaner by Atribune.

  • Double-click ATF-Cleaner.exe to run the program.
    Under Main choose: Select All
    Click the Empty Selected button.

If you use Firefox browser

  • Click Firefox at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser

  • Click Opera at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.

Click Exit on the Main menu to close the program.

Step 3

Please do an online scan with Kaspersky WebScanner

I highly recommend using Internet Explorer for best results!

Note: If you are using Windows Vista, open your browser by right-clicking on its icon and select 'Run as administrator' to perform this scan.

Click on the Accept button and install any components it needs.

  • The program will install and then begin downloading the latest definition files.
  • Once they are downloaded, the database will be updated.
    Please accept any ActiveX or Java notifications
  • After the files have been updated, go to the left side of the page under the Scan section and select My Computer.
  • This will start the program and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete, click on View scan report
  • Now, click on the Save Report as button.
  • Save the file to your desktop.
  • Copy and paste that information in your next post.

Share this post


Link to post
Share on other sites
Step 3

Please do an online scan with Kaspersky WebScanner

I highly recommend using Internet Explorer for best results!

Note: If you are using Windows Vista, open your browser by right-clicking on its icon and select 'Run as administrator' to perform this scan.

Click on the Accept button and install any components it needs.

  • The program will install and then begin downloading the latest definition files.
  • Once they are downloaded, the database will be updated.
    Please accept any ActiveX or Java notifications
  • After the files have been updated, go to the left side of the page under the Scan section and select My Computer.
  • This will start the program and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete, click on View scan report
  • Now, click on the Save Report as button.
  • Save the file to your desktop.
  • Copy and paste that information in your next post.

Kaspersky can't update its definitions, I tried several times in both Firefox and IE and this is what I get:

kaperfailupdate1.png

Share this post


Link to post
Share on other sites

well I think I found the reason for the problem I overlooked it before since I would click accept without stopping to read the message. It says that kaspersky can't run properly if there's another antivirus program running, and I'm guessing Avast it's conflicting with it. I've tried to uninstall it several times from control panel, but it says there was an error during the uninstall and the avast icon is still running on my system tray, is there any other way to uninstall the program without using control panel or from the start menu program?

Edited by intocomputing2

Share this post


Link to post
Share on other sites

ok I managed to recover the important files on my C drive by doing a file search and copying those folders, next I formated the C drive using the recovery partition and now I got back access to the C drive, however, I'm yet to obtain access to my D drive since the problem remains in that one.

Share this post


Link to post
Share on other sites
Have you ever had access to your D drive?

Yes, I was able to access my D drive before the virus took over both drives. I managed to get access to the C drive as mentioned in a previous post, but I still don't have access to the D drive.

Edited by intocomputing2

Share this post


Link to post
Share on other sites

Hey,

Hello,

Please go to Start

  • Control Panel
  • Administrative Tools
  • Computer Management
  • Storage
  • Disk Management

You should see Disk 0 and Disk 1. What does it say for each HDD?

Share this post


Link to post
Share on other sites

Hello again,

Please download the OTMoveIt3 by OldTimer.

  • Save it to your desktop.
  • Please double-click OTMoveIt3.exe to run it. (Vista users, please right click on OTMoveit3.exe and select "Run as an Administrator")
  • Copy the fix below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
    :processes
    explorer.exe

    :files
    D:\ZGH.PIF
    D:\ZGVZ.PIF
    D:\ZGWZ.PIF

    :commands
    [purity]
    [emptytemp]
    [start explorer]


  • Return to OTMoveIt3, right click in the "Paste Instructions for Items to be Moved" window (under the yellow bar) and choose Paste.
  • Click the red Moveit! button.
  • A log of files and folders moved will be created in the c:\_OTMoveIt\MovedFiles folder in the form of Date and Time (mmddyyyy_hhmmss.log). Please open this log in Notepad and post its contents in your next reply.
  • Close OTMoveIt3

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Share this post


Link to post
Share on other sites

Here's the OTMoveIt3 log in case that is needed:

========== PROCESSES ==========

Process explorer.exe killed successfully.

========== FILES ==========

D:\ZGH.PIF moved successfully.

D:\ZGVZ.PIF moved successfully.

D:\ZGWZ.PIF moved successfully.

========== COMMANDS ==========

File delete failed. C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF2B94.tmp scheduled to be deleted on reboot.

File delete failed. C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF8CC2.tmp scheduled to be deleted on reboot.

User's Temp folder emptied.

User's Temporary Internet Files folder emptied.

User's Internet Explorer cache folder emptied.

Local Service Temp folder emptied.

File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.

Local Service Temporary Internet Files folder emptied.

File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.

File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_540.dat scheduled to be deleted on reboot.

File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_798.dat scheduled to be deleted on reboot.

Windows Temp folder emptied.

Java cache emptied.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.

FireFox cache emptied.

Temp folders emptied.

Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12302008_102636

Files moved on Reboot...

File C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF2B94.tmp not found!

C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF8CC2.tmp moved successfully.

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat moved successfully.

File C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!

C:\WINDOWS\temp\Perflib_Perfdata_540.dat moved successfully.

File C:\WINDOWS\temp\Perflib_Perfdata_798.dat not found!

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_001_ moved successfully.

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_002_ moved successfully.

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_003_ moved successfully.

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_MAP_ moved successfully.

Edited by intocomputing2

Share this post


Link to post
Share on other sites

Hey,

Please go to Start

  • Run
  • Type cmd
  • Press Ok
  • Copy and paste the two following commands one at a time into the cmd box

notepad d:\autorun.ini

dir d: > c:\output.txt

Please post the log that opens in notepad, and the other one at c:\output.txt.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.