Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

suspected virus [RESOLVED]

Started by gr8joel , Oct 18 2008 11:05 PM

  • This topic is locked This topic is locked

#1
gr8joel
Posted 18 October 2008 - 11:05 PM

gr8joel

    Member

  • Member
  • PipPipPip
  • 200 posts
I understood that you guys were busy so i went ahead and followed instructions on how to remove them myself, however this did not work, and problems still persist. so i will go ahead and post the latest mbam and hijack this report

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:12:21 PM, on 10/15/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
c:\WINDOWS\system32\ZuneBusEnum.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Richard\Desktop\Offline fix tools\HiJackThis\HijackThis.exe
C:\WINDOWS\SoftwareDistribution\Download\c8ed351b7eff9bb2da1c8957cf3e56c6\update\update.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: (no name) - {418461DF-E827-9096-797D-785B7D6BF083} - (no file)
O2 - BHO: (no name) - {53077BFD-F73A-4CD0-B29D-A2E5B31A1EB0} - (no file)
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {F3727275-224F-4AB0-8642-7D461EFB82D8} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NI.UERS_9999_N91S2507] "C:\Documents and Settings\Richard\Local Settings\Temporary Internet Files\Content.IE5\WAQ4XFUM\ErrorSafeNewReleaseInstall[1].exe" -nag
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Zune Launcher] "c:\Program Files\Zune\ZuneLauncher.exe"
O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace....ploader1006.cab
O20 - AppInit_DLLs:
O20 - Winlogon Notify: aoghe - C:\WINDOWS\
O20 - Winlogon Notify: apmpe - C:\WINDOWS\
O20 - Winlogon Notify: bcitd - bcitd.dll (file missing)
O20 - Winlogon Notify: bensd - bensd.dll (file missing)
O20 - Winlogon Notify: bin32 - C:\WINDOWS\
O20 - Winlogon Notify: bioke - C:\WINDOWS\
O20 - Winlogon Notify: ccpsd - C:\WINDOWS\
O20 - Winlogon Notify: ckbje - C:\WINDOWS\
O20 - Winlogon Notify: cmgge - C:\WINDOWS\
O20 - Winlogon Notify: cmpvd - C:\WINDOWS\
O20 - Winlogon Notify: cnmje - C:\WINDOWS\
O20 - Winlogon Notify: colie - C:\WINDOWS\
O20 - Winlogon Notify: colje - C:\WINDOWS\
O20 - Winlogon Notify: cpioe - C:\WINDOWS\
O20 - Winlogon Notify: dboge - C:\WINDOWS\
O20 - Winlogon Notify: dfphe - C:\WINDOWS\
O20 - Winlogon Notify: dkiie - C:\WINDOWS\
O20 - Winlogon Notify: dknhf - C:\WINDOWS\
O20 - Winlogon Notify: dkphe - C:\WINDOWS\
O20 - Winlogon Notify: doase - C:\WINDOWS\
O20 - Winlogon Notify: ekgvd - C:\WINDOWS\
O20 - Winlogon Notify: elfhe - C:\WINDOWS\
O20 - Winlogon Notify: eliuf - C:\WINDOWS\
O20 - Winlogon Notify: emlie - C:\WINDOWS\
O20 - Winlogon Notify: eoage - C:\WINDOWS\
O20 - Winlogon Notify: eohne - C:\WINDOWS\
O20 - Winlogon Notify: eoose - C:\WINDOWS\
O20 - Winlogon Notify: epgle - C:\WINDOWS\
O20 - Winlogon Notify: falme - C:\WINDOWS\
O20 - Winlogon Notify: fbdvd - C:\WINDOWS\
O20 - Winlogon Notify: fcjvd - C:\WINDOWS\
O20 - Winlogon Notify: fhhqe - C:\WINDOWS\
O20 - Winlogon Notify: fhjhe - C:\WINDOWS\
O20 - Winlogon Notify: fhjke - C:\WINDOWS\
O20 - Winlogon Notify: fklle - C:\WINDOWS\
O20 - Winlogon Notify: fklse - C:\WINDOWS\
O20 - Winlogon Notify: fknie - C:\WINDOWS\
O20 - Winlogon Notify: flkpe - C:\WINDOWS\
O20 - Winlogon Notify: fmhre - C:\WINDOWS\
O20 - Winlogon Notify: gbbhe - C:\WINDOWS\
O20 - Winlogon Notify: gcaie - C:\WINDOWS\
O20 - Winlogon Notify: gdptd - C:\WINDOWS\
O20 - Winlogon Notify: gemie - C:\WINDOWS\
O20 - Winlogon Notify: gigle - C:\WINDOWS\
O20 - Winlogon Notify: gjopd - C:\WINDOWS\
O20 - Winlogon Notify: gplvd - C:\WINDOWS\
O20 - Winlogon Notify: hdeje - C:\WINDOWS\
O20 - Winlogon Notify: hdlqe - C:\WINDOWS\
O20 - Winlogon Notify: hedud - C:\WINDOWS\
O20 - Winlogon Notify: hjdje - C:\WINDOWS\
O20 - Winlogon Notify: hkjvd - C:\WINDOWS\
O20 - Winlogon Notify: hpche - C:\WINDOWS\
O20 - Winlogon Notify: ibnhe - C:\WINDOWS\
O20 - Winlogon Notify: iebie - C:\WINDOWS\
O20 - Winlogon Notify: iebje - C:\WINDOWS\
O20 - Winlogon Notify: ifhme - C:\WINDOWS\
O20 - Winlogon Notify: ignle - C:\WINDOWS\
O20 - Winlogon Notify: iilje - C:\WINDOWS\
O20 - Winlogon Notify: jckie - C:\WINDOWS\
O20 - Winlogon Notify: jcpkf - C:\WINDOWS\
O20 - Winlogon Notify: jdjge - C:\WINDOWS\
O20 - Winlogon Notify: jense - C:\WINDOWS\
O20 - Winlogon Notify: jgeie - C:\WINDOWS\
O20 - Winlogon Notify: jgntd - C:\WINDOWS\
O20 - Winlogon Notify: jjivd - C:\WINDOWS\
O20 - Winlogon Notify: jmkpe - C:\WINDOWS\
O20 - Winlogon Notify: kakqe - C:\WINDOWS\
O20 - Winlogon Notify: kcktd - C:\WINDOWS\
O20 - Winlogon Notify: kjnoe - C:\WINDOWS\
O20 - Winlogon Notify: kllge - C:\WINDOWS\
O20 - Winlogon Notify: kpfhe - C:\WINDOWS\
O20 - Winlogon Notify: ldoie - C:\WINDOWS\
O20 - Winlogon Notify: leehe - C:\WINDOWS\
O20 - Winlogon Notify: lfdke - C:\WINDOWS\
O20 - Winlogon Notify: lgjhe - C:\WINDOWS\
O20 - Winlogon Notify: lhiie - C:\WINDOWS\
O20 - Winlogon Notify: lhpie - C:\WINDOWS\
O20 - Winlogon Notify: lnoje - C:\WINDOWS\
O20 - Winlogon Notify: lpdme - C:\WINDOWS\
O20 - Winlogon Notify: mfioe - C:\WINDOWS\
O20 - Winlogon Notify: mkiqe - C:\WINDOWS\
O20 - Winlogon Notify: mocme - C:\WINDOWS\
O20 - Winlogon Notify: nceke - C:\WINDOWS\
O20 - Winlogon Notify: nheie - C:\WINDOWS\
O20 - Winlogon Notify: nkgne - C:\WINDOWS\
O20 - Winlogon Notify: nndhe - C:\WINDOWS\
O20 - Winlogon Notify: nnkje - C:\WINDOWS\
O20 - Winlogon Notify: nocsd - C:\WINDOWS\
O20 - Winlogon Notify: ofpsd - C:\WINDOWS\
O20 - Winlogon Notify: ogfvd - C:\WINDOWS\
O20 - Winlogon Notify: oible - C:\WINDOWS\
O20 - Winlogon Notify: ojavd - C:\WINDOWS\
O20 - Winlogon Notify: okghe - C:\WINDOWS\
O20 - Winlogon Notify: olmge - C:\WINDOWS\
O20 - Winlogon Notify: onkhe - C:\WINDOWS\
O20 - Winlogon Notify: opgke - C:\WINDOWS\
O20 - Winlogon Notify: peoge - C:\WINDOWS\
O20 - Winlogon Notify: peoke - C:\WINDOWS\
O20 - Winlogon Notify: pfnhe - C:\WINDOWS\
O20 - Winlogon Notify: pjhvd - C:\WINDOWS\
O20 - Winlogon Notify: pngte - C:\WINDOWS\
O20 - Winlogon Notify: pnihe - C:\WINDOWS\
O20 - Winlogon Notify: poole - C:\WINDOWS\
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec RemoteAssist - Symantec, Inc. - C:\Program Files\Common Files\Symantec Shared\Support Controls\ssrc.exe

--
End of file - 11379 bytes

Attached Files


  • 0

Advertisements

#2
heir
Posted 19 October 2008 - 06:25 AM

heir

    Trusted Helper

  • Malware Removal
  • 5,427 posts
Hello gr8joel !

Welcome to the site! :) My nickname is heir and I'll be helping clean up your computer. :) I'm currently looking over your log. I am still in training here, so there might be a delay between my replies as they need to be checked by an expert before I can post them. I'll need a bit of time to research your log fully, so please bear with me.

Before we proceed to clean your computer from malware, let's go over some points that will help both me and you, and prevent causing damage to your computer:
  • To make sure that you receive an email when I reply to this topic, please click here and check that this topic is listed under Malware Removal - HijackThis™ Logs Go Here.
  • Please don't be afraid to ask questions! No question is considered dumb here. It's better to be safe than sorry!
  • When posting logs, please ensure Wordwrap is turned off in Notepad (to check, open Notepad in the menubar click on Format and make sure that Word Wrap is unchecked)
  • Please follow the steps exactly in the same order posted. If you can't perform a certain step, or you're unsure on what to do, please stop and let me know.
  • NEVER fix anything in HijackThis or other programs on your own! This can be very dangerous and cause harm to your system. If you see a certain entry or program you're unsure about, please don't hesitate to ask!
  • Make sure you reply to this thread using the Add Reply button: Posted Image

Please read my posts completely before following the instructions.
It may be easier for you if you copy and paste a post to a new text document or print it for reference later.
This is required when you won't have access to Internet.

Edited by heir, 19 October 2008 - 07:00 AM.

  • 0

#3
heir
Posted 19 October 2008 - 10:26 AM

heir

    Trusted Helper

  • Malware Removal
  • 5,427 posts
Hello again gr8joel!!

Lets start then.

Step 1.
Lop S&D:

Disable resident protections (Antivirus...); you'll re-enable them after the scan

Download Lop S&D < here

Double-click Lop S&D.exe
Choose the language, then choose Option 1 (Search)
Wait till the end of the scan
Post the log which is created: (%SystemDrive%\lopR.txt)
  • 0

#4
gr8joel
Posted 19 October 2008 - 11:33 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
--------------------\\ Lop S&D 4.2.4-5 XP/Vista

Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Mobile Intel® Pentium® 4 - M CPU 2.00GHz )
BIOS : Rev 1.0
USER : Richard ( Administrator )
BOOT : Normal boot
Antivirus : Norton AntiVirus 15.5.0.23 (Not Activated)
Firewall : Norton AntiVirus 15.5.0.23 (Activated)
C:\ (Local Disk) - NTFS - Total : 74 Go Free : 56 Go
D:\ (USB)
E:\ (USB)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [1] ( Sun 10/19/2008|21:50 )

--------------------\\ Listing folders in APPLIC~1

[11/02/2007|11:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple
[11/02/2007|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer
[10/16/2007|08:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google
[10/14/2008|08:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes
[12/15/2006|06:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[05/20/2007|10:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MSN6
[09/21/2008|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy
[05/04/2007|09:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> STOPzilla!
[10/10/2008|09:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Symantec
[12/25/2006|08:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[10/16/2007|07:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> YAHOO
[09/21/2008|12:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo!
[09/21/2008|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! Companion

[11/26/2006|11:27] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft

[12/24/2006|05:47] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft

[11/26/2006|11:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft

[01/18/2008|08:06] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Adobe
[02/12/2008|10:03] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Apple Computer
[12/18/2006|10:07] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Creative
[02/27/2008|04:42] C:\DOCUME~1\Richard\APPLIC~1\<DIR> DivX
[07/08/2008|12:09] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Google
[01/01/2007|02:26] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Help
[11/26/2006|11:40] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Identities
[04/13/2008|04:58] C:\DOCUME~1\Richard\APPLIC~1\<DIR> LimeWire
[12/02/2006|04:56] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Macromedia
[10/14/2008|08:31] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Malwarebytes
[07/04/2008|12:43] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Microsoft
[10/16/2007|03:11] C:\DOCUME~1\Richard\APPLIC~1\<DIR> MSN6
[06/05/2008|08:27] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Sun
[08/10/2008|11:44] C:\DOCUME~1\Richard\APPLIC~1\<DIR> U3
[09/21/2008|10:21] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Yahoo!
[06/19/2007|12:47] C:\DOCUME~1\Richard\APPLIC~1\<DIR> YourScreen

--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks

[10/13/2008 09:22 PM][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - Richard.job
[10/13/2008 02:18 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[10/23/2007 09:00 AM][--a------] C:\WINDOWS\tasks\rpc.job
[10/19/2008 07:49 PM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/23/2001 05:00 AM][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing Folders in C:\Program Files

[11/02/2007|11:01] C:\Program Files\<DIR> Apple Software Update
[10/14/2008|08:30] C:\Program Files\<DIR> Common Files
[11/26/2006|11:24] C:\Program Files\<DIR> ComPlus Applications
[01/01/2007|08:46] C:\Program Files\<DIR> Creative
[02/27/2008|04:49] C:\Program Files\<DIR> DivX
[12/14/2007|06:43] C:\Program Files\<DIR> epson
[10/14/2008|08:28] C:\Program Files\<DIR> ERUNT
[02/27/2008|05:32] C:\Program Files\<DIR> Fraunhofer DVD Codecs
[07/08/2008|12:08] C:\Program Files\<DIR> Google
[12/14/2007|06:41] C:\Program Files\<DIR> InstallShield Installation Information
[11/26/2006|01:33] C:\Program Files\<DIR> Intel
[10/15/2008|10:18] C:\Program Files\<DIR> Internet Explorer
[07/15/2008|09:18] C:\Program Files\<DIR> Java
[09/20/2008|10:14] C:\Program Files\<DIR> LimeWire
[10/14/2008|08:31] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[10/18/2008|09:57] C:\Program Files\<DIR> Messenger
[11/26/2006|01:57] C:\Program Files\<DIR> Microsoft ActiveSync
[11/26/2006|11:28] C:\Program Files\<DIR> microsoft frontpage
[11/26/2006|01:57] C:\Program Files\<DIR> Microsoft Office
[11/26/2006|01:56] C:\Program Files\<DIR> Microsoft Visual Studio
[11/26/2006|02:00] C:\Program Files\<DIR> Microsoft Works
[11/26/2006|01:57] C:\Program Files\<DIR> Microsoft.NET
[10/18/2008|09:45] C:\Program Files\<DIR> Movie Maker
[09/21/2008|03:21] C:\Program Files\<DIR> Mozilla Firefox
[10/16/2007|03:11] C:\Program Files\<DIR> MSN
[11/26/2006|11:23] C:\Program Files\<DIR> MSN Gaming Zone
[10/18/2008|09:45] C:\Program Files\<DIR> NetMeeting
[09/19/2008|11:23] C:\Program Files\<DIR> Norton AntiVirus
[11/26/2006|11:26] C:\Program Files\<DIR> Online Services
[10/18/2008|09:45] C:\Program Files\<DIR> Outlook Express
[11/02/2007|11:04] C:\Program Files\<DIR> QuickTime
[09/20/2008|09:59] C:\Program Files\<DIR> Symantec
[11/26/2006|11:40] C:\Program Files\<DIR> Uninstall Information
[10/17/2007|04:47] C:\Program Files\<DIR> Windows Media Connect 2
[10/18/2008|09:45] C:\Program Files\<DIR> Windows Media Player
[10/18/2008|09:45] C:\Program Files\<DIR> Windows NT
[09/19/2008|10:59] C:\Program Files\<DIR> Windows Sidebar
[12/14/2006|01:14] C:\Program Files\<DIR> WindowsUpdate
[11/26/2006|11:28] C:\Program Files\<DIR> xerox
[01/16/2008|09:08] C:\Program Files\<DIR> Yahoo!
[05/01/2008|06:27] C:\Program Files\<DIR> Zune

--------------------\\ Listing Folders in C:\Program Files\Common Files

[11/26/2006|01:57] C:\Program Files\Common Files\<DIR> DESIGNER
[10/14/2008|08:30] C:\Program Files\Common Files\<DIR> Download Manager
[12/18/2006|05:31] C:\Program Files\Common Files\<DIR> InstallShield
[05/04/2007|10:19] C:\Program Files\Common Files\<DIR> iS3
[05/27/2007|02:23] C:\Program Files\Common Files\<DIR> Java
[11/26/2006|01:58] C:\Program Files\Common Files\<DIR> L&H
[09/19/2008|10:26] C:\Program Files\Common Files\<DIR> Microsoft Shared
[11/26/2006|11:25] C:\Program Files\Common Files\<DIR> MSSoap
[11/26/2006|03:06] C:\Program Files\Common Files\<DIR> ODBC
[10/16/2007|10:39] C:\Program Files\Common Files\<DIR> Scanner
[11/26/2006|11:25] C:\Program Files\Common Files\<DIR> Services
[11/26/2006|03:06] C:\Program Files\Common Files\<DIR> SpeechEngines
[10/18/2008|01:13] C:\Program Files\Common Files\<DIR> Symantec Shared
[10/18/2008|09:45] C:\Program Files\Common Files\<DIR> System

--------------------\\ Process

( 32 Processes )

iexplore.exe ~ [PID:1988]

--------------------\\ Searching with S_Lop

No Lop folder found !

--------------------\\ Searching for Lop Files - Folders

C:\DOCUME~1\Richard\Cookies\richard@advertising[2].txt
C:\DOCUME~1\Richard\Cookies\[email protected][2].txt

--------------------\\ Searching within the Registry

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-19 21:52:05
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Searching for other infections

C:\WINDOWS\system32\VCeOYJjl.ini
C:\WINDOWS\system32\VCeOYJjl.ini2
==> VUNDO <==

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Richard\Incomplete\T-990478-(DRABBiTS) kc and jojo _life life_ (Crack) (Front).wma


[F:2366][D:82]-> C:\DOCUME~1\Richard\LOCALS~1\Temp
[F:72][D:0]-> C:\DOCUME~1\Richard\Cookies
[F:3000][D:25]-> C:\DOCUME~1\Richard\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - Sun 10/19/2008|21:53 - Option : [1]

--------------------\\ Scan completed at 21:53:56
  • 0

#5
heir
Posted 20 October 2008 - 06:44 AM

heir

    Trusted Helper

  • Malware Removal
  • 5,427 posts
Let's remove what we've found so far then have a deeper look.


Step 1.
HJT-fix:

Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below.

O2 - BHO: (no name) - {418461DF-E827-9096-797D-785B7D6BF083} - (no file)
O2 - BHO: (no name) - {53077BFD-F73A-4CD0-B29D-A2E5B31A1EB0} - (no file)
O2 - BHO: (no name) - {F3727275-224F-4AB0-8642-7D461EFB82D8} - (no file)
O4 - HKLM\..\Run: [NI.UERS_9999_N91S2507] "C:\Documents and Settings\Richard\Local Settings\Temporary Internet Files\Content.IE5\WAQ4XFUM\ErrorSafeNewReleaseInstall[1].exe" -nag
O20 - Winlogon Notify: aoghe - C:\WINDOWS\
O20 - Winlogon Notify: apmpe - C:\WINDOWS\
O20 - Winlogon Notify: bcitd - bcitd.dll (file missing)
O20 - Winlogon Notify: bensd - bensd.dll (file missing)
O20 - Winlogon Notify: bin32 - C:\WINDOWS\
O20 - Winlogon Notify: bioke - C:\WINDOWS\
O20 - Winlogon Notify: ccpsd - C:\WINDOWS\
O20 - Winlogon Notify: ckbje - C:\WINDOWS\
O20 - Winlogon Notify: cmgge - C:\WINDOWS\
O20 - Winlogon Notify: cmpvd - C:\WINDOWS\
O20 - Winlogon Notify: cnmje - C:\WINDOWS\
O20 - Winlogon Notify: colie - C:\WINDOWS\
O20 - Winlogon Notify: colje - C:\WINDOWS\
O20 - Winlogon Notify: cpioe - C:\WINDOWS\
O20 - Winlogon Notify: dboge - C:\WINDOWS\
O20 - Winlogon Notify: dfphe - C:\WINDOWS\
O20 - Winlogon Notify: dkiie - C:\WINDOWS\
O20 - Winlogon Notify: dknhf - C:\WINDOWS\
O20 - Winlogon Notify: dkphe - C:\WINDOWS\
O20 - Winlogon Notify: doase - C:\WINDOWS\
O20 - Winlogon Notify: ekgvd - C:\WINDOWS\
O20 - Winlogon Notify: elfhe - C:\WINDOWS\
O20 - Winlogon Notify: eliuf - C:\WINDOWS\
O20 - Winlogon Notify: emlie - C:\WINDOWS\
O20 - Winlogon Notify: eoage - C:\WINDOWS\
O20 - Winlogon Notify: eohne - C:\WINDOWS\
O20 - Winlogon Notify: eoose - C:\WINDOWS\
O20 - Winlogon Notify: epgle - C:\WINDOWS\
O20 - Winlogon Notify: falme - C:\WINDOWS\
O20 - Winlogon Notify: fbdvd - C:\WINDOWS\
O20 - Winlogon Notify: fcjvd - C:\WINDOWS\
O20 - Winlogon Notify: fhhqe - C:\WINDOWS\
O20 - Winlogon Notify: fhjhe - C:\WINDOWS\
O20 - Winlogon Notify: fhjke - C:\WINDOWS\
O20 - Winlogon Notify: fklle - C:\WINDOWS\
O20 - Winlogon Notify: fklse - C:\WINDOWS\
O20 - Winlogon Notify: fknie - C:\WINDOWS\
O20 - Winlogon Notify: flkpe - C:\WINDOWS\
O20 - Winlogon Notify: fmhre - C:\WINDOWS\
O20 - Winlogon Notify: gbbhe - C:\WINDOWS\
O20 - Winlogon Notify: gcaie - C:\WINDOWS\
O20 - Winlogon Notify: gdptd - C:\WINDOWS\
O20 - Winlogon Notify: gemie - C:\WINDOWS\
O20 - Winlogon Notify: gigle - C:\WINDOWS\
O20 - Winlogon Notify: gjopd - C:\WINDOWS\
O20 - Winlogon Notify: gplvd - C:\WINDOWS\
O20 - Winlogon Notify: hdeje - C:\WINDOWS\
O20 - Winlogon Notify: hdlqe - C:\WINDOWS\
O20 - Winlogon Notify: hedud - C:\WINDOWS\
O20 - Winlogon Notify: hjdje - C:\WINDOWS\
O20 - Winlogon Notify: hkjvd - C:\WINDOWS\
O20 - Winlogon Notify: hpche - C:\WINDOWS\
O20 - Winlogon Notify: ibnhe - C:\WINDOWS\
O20 - Winlogon Notify: iebie - C:\WINDOWS\
O20 - Winlogon Notify: iebje - C:\WINDOWS\
O20 - Winlogon Notify: ifhme - C:\WINDOWS\
O20 - Winlogon Notify: ignle - C:\WINDOWS\
O20 - Winlogon Notify: iilje - C:\WINDOWS\
O20 - Winlogon Notify: jckie - C:\WINDOWS\
O20 - Winlogon Notify: jcpkf - C:\WINDOWS\
O20 - Winlogon Notify: jdjge - C:\WINDOWS\
O20 - Winlogon Notify: jense - C:\WINDOWS\
O20 - Winlogon Notify: jgeie - C:\WINDOWS\
O20 - Winlogon Notify: jgntd - C:\WINDOWS\
O20 - Winlogon Notify: jjivd - C:\WINDOWS\
O20 - Winlogon Notify: jmkpe - C:\WINDOWS\
O20 - Winlogon Notify: kakqe - C:\WINDOWS\
O20 - Winlogon Notify: kcktd - C:\WINDOWS\
O20 - Winlogon Notify: kjnoe - C:\WINDOWS\
O20 - Winlogon Notify: kllge - C:\WINDOWS\
O20 - Winlogon Notify: kpfhe - C:\WINDOWS\
O20 - Winlogon Notify: ldoie - C:\WINDOWS\
O20 - Winlogon Notify: leehe - C:\WINDOWS\
O20 - Winlogon Notify: lfdke - C:\WINDOWS\
O20 - Winlogon Notify: lgjhe - C:\WINDOWS\
O20 - Winlogon Notify: lhiie - C:\WINDOWS\
O20 - Winlogon Notify: lhpie - C:\WINDOWS\
O20 - Winlogon Notify: lnoje - C:\WINDOWS\
O20 - Winlogon Notify: lpdme - C:\WINDOWS\
O20 - Winlogon Notify: mfioe - C:\WINDOWS\
O20 - Winlogon Notify: mkiqe - C:\WINDOWS\
O20 - Winlogon Notify: mocme - C:\WINDOWS\
O20 - Winlogon Notify: nceke - C:\WINDOWS\
O20 - Winlogon Notify: nheie - C:\WINDOWS\
O20 - Winlogon Notify: nkgne - C:\WINDOWS\
O20 - Winlogon Notify: nndhe - C:\WINDOWS\
O20 - Winlogon Notify: nnkje - C:\WINDOWS\
O20 - Winlogon Notify: nocsd - C:\WINDOWS\
O20 - Winlogon Notify: ofpsd - C:\WINDOWS\
O20 - Winlogon Notify: ogfvd - C:\WINDOWS\
O20 - Winlogon Notify: oible - C:\WINDOWS\
O20 - Winlogon Notify: ojavd - C:\WINDOWS\
O20 - Winlogon Notify: okghe - C:\WINDOWS\
O20 - Winlogon Notify: olmge - C:\WINDOWS\
O20 - Winlogon Notify: onkhe - C:\WINDOWS\
O20 - Winlogon Notify: opgke - C:\WINDOWS\
O20 - Winlogon Notify: peoge - C:\WINDOWS\
O20 - Winlogon Notify: peoke - C:\WINDOWS\
O20 - Winlogon Notify: pfnhe - C:\WINDOWS\
O20 - Winlogon Notify: pjhvd - C:\WINDOWS\
O20 - Winlogon Notify: pngte - C:\WINDOWS\
O20 - Winlogon Notify: pnihe - C:\WINDOWS\
O20 - Winlogon Notify: poole - C:\WINDOWS\


Now close all windows other than HiJackThis, then click Fix Checked. Close HiJackThis.


Step 2.
Uninstall unwanted software:

Please go to Start > Control Panel > Add/Remove Programs and remove the following (if present):

Limewire

--

Optional removals
Limewire and P2P programs in general are legal themselves, but much of the content downloaded with them is downloaded illegally. They are also a great way to infect yourself with malware.
It's up to you if you want to remove the above programs, however I recommend you do.


Step 3.
Remove files/folders:

Please download the OTMoveIt2 by OldTimer.
  • Save it to your desktop.
  • Please double-click OTMoveIt2.exe to run it.
  • Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    [kill explorer]
C:\WINDOWS\system32\VCeOYJjl.ini
C:\WINDOWS\system32\VCeOYJjl.ini2
emptytemp
purity
[start explorer]
  • Return to OTMoveIt2, right click in the "Paste List of Files/Folders to be Moved" window (under the yellow bar) and choose Paste.
  • Click the red Moveit! button.
  • Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTMoveIt2
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Step 4.
Scan with OTViewIt:

Download OTViewIt to your desktop.
  • Close all windows and open it
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up called OTViewIt.txt, the other will be saved on your desktop and called Extras.txt. Post both those logs here.
  • You may need to use two posts to get it all on the forum

Step 5.
Things I want to see in your reply

  • The content of the Results window in OTmoveIt2 from step 3
  • The content of OTViewIt.txt and Extras.txt on your desktop from step 4

  • 0

#6
gr8joel
Posted 20 October 2008 - 11:53 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
Explorer killed successfully
C:\WINDOWS\system32\VCeOYJjl.ini moved successfully.
C:\WINDOWS\system32\VCeOYJjl.ini2 moved successfully.
< emptytemp >
File delete failed. C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF8009.tmp scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\JETEE81.tmp scheduled to be deleted on reboot.
Temp folders emptied.
IE temp folders emptied.
< purity >
Explorer started successfully

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 10202008_224021

Files moved on Reboot...
C:\DOCUME~1\Richard\LOCALS~1\Temp\~DF8009.tmp moved successfully.
File C:\WINDOWS\temp\JETEE81.tmp not found!
  • 0

#7
gr8joel
Posted 20 October 2008 - 11:54 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
this next one will be sent through a txt.

Attached Files


Edited by gr8joel, 20 October 2008 - 11:57 PM.

  • 0

#8
gr8joel
Posted 20 October 2008 - 11:58 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
OTViewIt Extras logfile created on: 10/20/2008 10:49:20 PM - Run
OTViewIt by OldTimer - Version 1.0.17.0 Folder = C:\Documents and Settings\Richard\Desktop\Offline fix tools
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

246.42 Mb Total Physical Memory | 72.50 Mb Available Physical Memory | 29.42% Memory free
605.28 Mb Paging File | 397.56 Mb Available in Paging File | 65.68% Paging File free
Paging file location(s): C:\pagefile.sys 372 744;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 58.71 Gb Free Space | 78.79% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PEREZ
Current User Name: Richard
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url [@ = InternetShortcut] -- C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify"=0
"FirewallDisableNotify"=0
"UpdatesDisableNotify"=0
"AntiVirusOverride"=0
"FirewallOverride"=0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall"=0
"DoNotAllowExceptions"=0
"DisableNotifications"=0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[2004/08/04 01:56:58 | 00,140,800 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
[2006/10/10 05:44:50 | 00,557,568 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2004/08/04 01:56:58 | 00,140,800 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
[2006/10/10 05:44:50 | 00,557,568 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
[2004/10/13 09:24:37 | 01,694,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger
File not found -- C:\WINDOWS\system32\sysvx.exe:*:Enabled:enable
[2007/08/30 17:43:18 | 04,670,704 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger
[2007/08/30 17:43:18 | 00,091,376 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server
File not found -- C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire

========== (O10) Winsock2 Catalogs ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\]
NameSpace_Catalog5\Catalog_Entries\000000000004 [NWLink IPX/SPX/NetBIOS Compatible Transport Protocol] -- C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)

========== (O18) Protocol Handlers ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
ipp: [HKLM - No CLSID value]
[2003/07/11 03:25:22 | 00,842,816 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL ipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]
msdaipp: [HKLM - No CLSID value]
[2003/07/11 03:25:22 | 00,842,816 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]
[2003/07/11 03:25:22 | 00,842,816 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAIPP.BINDER]
[2000/04/19 19:47:36 | 00,520,117 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (ms-itss:{0A9007C0-4076-11D3-8789-0000F8105754} (HKLM) [Microsoft Infotech Storage Protocol for IE 4.0])
[2004/04/23 00:30:54 | 07,334,592 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (mso-offdap:{3D9F03FA-7A94-11D3-BE81-0050048385D1} (HKLM) [Data Page Pluggable Protocol mso-offdap Handler])
[2004/03/22 19:58:01 | 08,140,480 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (mso-offdap11:{32505114-5902-49B2-880A-1F7738E5A384} (HKLM) [Data Page Plugable Protocal mso-offdap11 Handler])

========== (O18) Protocol Filters ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\] - Protocol Filters
[2003/07/14 23:45:12 | 00,039,488 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL text/xml:{807553E5-5146-11D5-A672-00B0D022E945} (HKLM) [Reg Error: Value does not exist or could not be read.]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0076E1AC-9E7B-4B9F-A62A-4CC9511AD8E3}"=Zune Language Pack (FR)
"{109D28C7-FB38-483A-9C91-001CB59E2699}"=EPSON CardMonitor
"{18D10072035C4515918F7E37EAFAACFC}"=AutoUpdate
"{20C53FA2-4307-4671-A93F-9463B29DFCF1}"=Symantec Technical Support Web Controls
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"=Google Toolbar for Internet Explorer
"{31478BE1-CDE5-4753-A8B2-F6D4BC1FBE09}"=Component Framework
"{3248F0A8-6813-11D6-A77B-00B0D0160020}"=Java™ 6 Update 2
"{3248F0A8-6813-11D6-A77B-00B0D0160030}"=Java™ 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160070}"=Java™ 6 Update 7
"{34EEB1F5-E939-40A1-A6BA-957282A4B2C8}"=Norton AntiVirus Help
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP
"{62120008-8E1E-4807-860D-A8B48F8552DB}"=Norton Protection Center
"{7299052b-02a4-4627-81f2-1818da5d550d}"=Microsoft Visual C++ 2005 Redistributable
"{74EC78BC-B379-4E29-9006-8F161DCAABA6}"=Apple Software Update
"{7583239A-D4BE-48CA-A253-396122B3D3E9}"=Zune
"{77772678-817F-4401-9301-ED1D01A8DA56}"=SPBBC 32bit
"{77FFBA7E-0973-4F39-BBDB-AC2F537578D2}"=Norton AntiVirus
"{7B63B2922B174135AFC0E1377DD81EC2}"=DivX Codec
"{8A708DD8-A5E6-11D4-A706-000629E95E20}"=Intel® Extreme Graphics Driver
"{8ADFC4160D694100B5B8A22DE9DCABD9}"=DivX Player
"{90110409-6000-11D3-8CFE-0150048383C9}"=Microsoft Office Professional Edition 2003
"{95120000-00B9-0409-0000-0000000FF1CE}"=Microsoft Application Error Reporting
"{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}"=QuickTime
"{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}"=Google Earth
"{AE704636-ECD0-426C-952E-05B8DABD1949}"=EPSON PhotoStarter3.2
"{B13A7C41581B411290FBC0395694E2A9}"=DivX Converter
"{B24E05CC-46FF-4787-BBB8-5CD516AFB118}"=ccCommon
"{B508B3F1-A24A-32C0-B310-85786919EF28}"=Microsoft .NET Framework 2.0 Service Pack 1
"{B7050CBDB2504B34BC2A9CA0A692CC29}"=DivX Web Player
"{CE98A14F-DED3-4240-91B2-171334291410}"=SymNet
"{D050D7362D214723AD585B541FFB6C11}"=DivX Content Uploader
"{D6E6FA4A-5445-4850-8365-CF216C1CBB7A}"=Symantec Real Time Storage Protection Component
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}"=Google Toolbar for Internet Explorer
"{E80F62FF-5D3C-4A19-8409-9721F2928206}"=LiveUpdate (Symantec Corporation)
"{EE4ACABF-531E-419A-9225-B8E0FA4955AF}"=Zune Language Pack (ES)
"{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}"=AppCore
"Adobe Flash Player ActiveX"=Adobe Flash Player ActiveX
"Agere Systems Soft Modem"=Agere Systems AC'97 Modem
"EPSON Printer and Utilities"=EPSON Printer Software
"EPSON Scanner"=EPSON Scan
"ERUNT_is1"=ERUNT 1.1j
"HijackThis"=HijackThis 2.0.2
"IDNMitigationAPIs"=Microsoft Internationalized Domain Names Mitigation APIs
"ie7"=Windows Internet Explorer 7
"Malwarebytes' Anti-Malware_is1"=Malwarebytes' Anti-Malware
"MSCompPackV1"=Microsoft Compression Client Pack 1.0 for Windows XP
"MuVo Driver"=Creative Mass Storage Drivers
"NLSDownlevelMapping"=Microsoft National Language Support Downlevel APIs
"PROSet"=Intel® PRO Ethernet Adapter and Software
"PsuedoLiveUpdate"=LiveUpdate (Symantec Corporation)
"ShockwaveFlash"=Adobe Flash Player 9 ActiveX
"SymSetup.{77FFBA7E-0973-4F39-BBDB-AC2F537578D2}"=Norton AntiVirus (Symantec Corporation)
"SysInfo"=Creative System Information
"Wdf01005"=Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows Media Format Runtime"=Windows Media Format 11 runtime
"Windows Media Player"=Windows Media Player 11
"WMFDist11"=Windows Media Format 11 runtime
"wmp11"=Windows Media Player 11
"Wudf01000"=Microsoft User-Mode Driver Framework Feature Pack 1.0
"Yahoo! Anti-Spy"=Yahoo! Anti-Spy
"Yahoo! Companion"=Yahoo! Toolbar
"Yahoo! Extras"=Yahoo! Browser Services
"Yahoo! Mail"=Yahoo! Internet Mail
"Yahoo! Messenger"=Yahoo! Messenger
"YInstHelper"=Yahoo! Install Manager

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 7/14/2008 9:04:28 PM | Computer Name = PEREZ | Source = Application Error | ID = 1001
Description = Fault bucket 796277062.

Error - 7/15/2008 1:12:31 AM | Computer Name = PEREZ | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 7.0.6000.16674, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 7/20/2008 2:38:49 AM | Computer Name = PEREZ | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 7.0.6000.16674, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 7/20/2008 2:39:34 AM | Computer Name = PEREZ | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 7.0.6000.16674, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 7/20/2008 2:39:36 AM | Computer Name = PEREZ | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 7.0.6000.16674, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 8/17/2008 11:41:59 PM | Computer Name = PEREZ | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 7.0.6000.16674, faulting
module flash9e.ocx, version 9.0.115.0, fault address 0x00083126.

Error - 9/20/2008 2:11:58 AM | Computer Name = PEREZ | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download....uthrootseq.txt>
with error: This operation returned because the timeout period expired.

Error - 9/20/2008 1:19:45 PM | Computer Name = PEREZ | Source = Application Hang | ID = 1002
Description = Hanging application rundll32.exe, version 5.1.2600.2180, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 9/21/2008 3:06:24 AM | Computer Name = PEREZ | Source = Application Hang | ID = 1002
Description = Hanging application YahooMessenger.exe, version 8.1.0.421, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 10/12/2008 8:08:40 PM | Computer Name = PEREZ | Source = Application Error | ID = 1000
Description = Faulting application explorer.exe, version 6.0.2900.3156, faulting
module shdocvw.dll, version 6.0.2900.3231, fault address 0x000159a1.

[ System Events ]
Error - 10/19/2008 10:50:45 PM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7000
Description = The Upload Manager service failed to start due to the following error:
%%1079

Error - 10/19/2008 10:50:45 PM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
szkg

Error - 10/20/2008 1:51:06 AM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7000
Description = The Upload Manager service failed to start due to the following error:
%%1079

Error - 10/20/2008 1:51:06 AM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
szkg

Error - 10/20/2008 10:49:56 PM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7000
Description = The Upload Manager service failed to start due to the following error:
%%1079

Error - 10/20/2008 10:49:56 PM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
szkg

Error - 10/21/2008 1:21:48 AM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7000
Description = The Upload Manager service failed to start due to the following error:
%%1079

Error - 10/21/2008 1:21:48 AM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
szkg

Error - 10/21/2008 1:44:27 AM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7000
Description = The Upload Manager service failed to start due to the following error:
%%1079

Error - 10/21/2008 1:44:27 AM | Computer Name = PEREZ | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
szkg


< End of report >
  • 0

#9
heir
Posted 21 October 2008 - 12:13 AM

heir

    Trusted Helper

  • Malware Removal
  • 5,427 posts
Don't attach logs if I don't specifically ask you to.

Can you please post OTViewIt.txt again.

Sometimes when a log is long it might need to be split up in more than one post. If so make sure that some of the last lines is the first ones in the next post. Overlapping like this ensures that the log is complete.
  • 0

#10
gr8joel
Posted 21 October 2008 - 12:56 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
OTViewIt logfile created on: 10/20/2008 10:49:20 PM - Run
OTViewIt by OldTimer - Version 1.0.17.0 Folder = C:\Documents and Settings\Richard\Desktop\Offline fix tools
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

246.42 Mb Total Physical Memory | 72.50 Mb Available Physical Memory | 29.42% Memory free
605.28 Mb Paging File | 397.56 Mb Available in Paging File | 65.68% Paging File free
Paging file location(s): C:\pagefile.sys 372 744;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 58.71 Gb Free Space | 78.79% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PEREZ
Current User Name: Richard
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days

========== Processes ==========

[2008/01/25 18:47:02 | 00,149,864 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
[2008/02/09 17:06:33 | 00,238,968 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
[2003/06/20 00:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
[2008/01/11 17:54:42 | 00,061,856 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\system32\ZuneBusEnum.exe
[2003/02/14 12:59:00 | 00,088,107 | ---- | M] (Agere Systems) -- C:\WINDOWS\AGRSMMSG.exe
[2008/06/10 04:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
[2008/01/11 17:54:52 | 00,166,304 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Zune\ZuneLauncher.exe
[2004/10/13 09:24:37 | 01,694,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe
[2008/01/25 18:47:02 | 00,149,864 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
[2007/07/30 19:19:16 | 00,053,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
[2007/07/30 19:19:16 | 00,053,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
[2008/10/20 22:48:37 | 00,421,888 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Richard\Desktop\Offline fix tools\OTViewIt.exe

========== (O23) Win32 Services ==========

[2007/10/24 01:47:22 | 00,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
[2008/02/09 17:06:33 | 00,238,968 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler [Auto | Running])
[2008/01/25 18:47:02 | 00,149,864 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr [Auto | Running])
[2008/01/25 18:47:02 | 00,149,864 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr [Auto | Running])
[2007/10/24 01:47:40 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
[2008/01/25 18:47:02 | 00,149,864 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService [Auto | Running])
[2008/07/08 00:07:58 | 00,138,168 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
[2008/09/05 11:52:32 | 03,220,856 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate [On_Demand | Stopped])
[2008/01/25 18:47:02 | 00,149,864 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice [Auto | Running])
[2003/06/20 00:25:00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM [Auto | Running])
[2003/07/28 13:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
[2008/09/19 23:02:36 | 01,245,064 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC [On_Demand | Stopped])
[2008/01/29 16:09:02 | 00,394,704 | ---- | M] (Symantec, Inc.) -- C:\Program Files\Common Files\Symantec Shared\Support Controls\ssrc.exe -- (Symantec RemoteAssist [On_Demand | Stopped])
[2006/10/18 20:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
[2008/01/11 17:54:42 | 00,061,856 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\system32\ZuneBusEnum.exe -- (ZuneBusEnum [Auto | Running])
[2008/01/11 17:55:38 | 02,138,528 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Zune\ZuneNss.exe -- (ZuneNetworkSvc [On_Demand | Stopped])
[2008/01/11 17:54:58 | 00,245,664 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\system32\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc [On_Demand | Stopped])

========== Driver Services ==========

[2003/02/14 12:59:00 | 01,169,792 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem [On_Demand | Running])
[2005/06/01 19:10:56 | 00,463,872 | R--- | M] (Belkin Corporation.) -- C:\WINDOWS\system32\drivers\BLKWGN.sys -- (BLKWGN [On_Demand | Running])
[2008/07/30 17:42:12 | 00,023,888 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\COH_Mon.sys -- (COH_Mon [On_Demand | Stopped])
[2002/02/25 01:54:04 | 00,139,776 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\e100b325.sys -- (E100B [On_Demand | Running])
[2008/09/17 01:00:00 | 00,371,248 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl [System | Running])
[2008/09/17 01:00:00 | 00,099,376 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv [On_Demand | Running])
[2003/02/14 17:12:14 | 00,089,371 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmnt5.sys -- (ialm [On_Demand | Running])
[2004/08/03 22:58:36 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\kbdhid.sys -- (kbdhid [System | Stopped])
[2008/09/17 01:00:00 | 00,089,104 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20081020.024\NAVENG.SYS -- (NAVENG [On_Demand | Running])
[2008/09/17 01:00:00 | 00,873,552 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20081020.024\NAVEX15.SYS -- (NAVEX15 [On_Demand | Running])
[2004/08/04 00:03:36 | 00,088,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx [Auto | Running])
[2001/08/23 05:00:00 | 00,063,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb [Auto | Running])
[2001/08/23 05:00:00 | 00,055,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx [Auto | Running])
[2006/10/13 03:23:15 | 00,163,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\nwrdr.sys -- (NWRDR [On_Demand | Running])
[2001/08/23 05:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink [On_Demand | Running])
[2008/01/04 14:58:46 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
[2007/11/13 03:25:53 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv [On_Demand | Stopped])
[2008/01/16 21:05:42 | 00,447,024 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv [System | Running])
[2008/01/31 18:51:16 | 00,279,088 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\srtsp.sys -- (SRTSP [On_Demand | Running])
[2008/01/31 18:51:16 | 00,317,616 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\srtspl.sys -- (SRTSPL [On_Demand | Stopped])
[2008/01/31 18:51:16 | 00,043,696 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\srtspx.sys -- (SRTSPX [System | Running])
[2003/01/09 13:59:54 | 00,194,000 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\system32\drivers\STAC97.sys -- (STAC97 [On_Demand | Running])
[2008/06/13 14:13:38 | 00,013,616 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symdns.sys -- (SYMDNS [On_Demand | Running])
[2008/09/20 21:59:30 | 00,123,952 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent [On_Demand | Running])
[2008/06/13 14:13:38 | 00,096,432 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symfw.sys -- (SYMFW [On_Demand | Running])
[2008/06/13 14:13:38 | 00,038,576 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symids.sys -- (SYMIDS [On_Demand | Running])
[2008/09/12 00:33:21 | 00,250,224 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\SymcData\ipsdefs\20081014.001\SymIDSCo.sys -- (SYMIDSCO [On_Demand | Running])
[2008/06/13 14:14:02 | 00,031,280 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIM [On_Demand | Stopped])
[2008/06/13 14:14:02 | 00,031,280 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIMMP [On_Demand | Running])
[2008/06/13 14:13:38 | 00,037,424 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symndis.sys -- (SYMNDIS [On_Demand | Running])
[2008/06/13 14:13:38 | 00,022,320 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symredrv.sys -- (SYMREDRV [On_Demand | Running])
[2008/06/13 14:13:40 | 00,184,240 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\system32\drivers\symtdi.sys -- (SYMTDI [System | Running])
[2006/11/02 07:22:54 | 00,492,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\wdf01000.sys -- (Wdf01000 [On_Demand | Running])
[2004/04/21 18:51:34 | 00,016,384 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\system32\wlanndi5.sys -- (wlanndi5 [On_Demand | Stopped])
[2008/01/11 17:39:34 | 00,040,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\zumbus.sys -- (zumbus [Auto | Running])
[2003/02/14 17:13:22 | 00,109,344 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmsbw.sys -- ({6080A529-897E-4629-A488-ABA0C29B635E} [On_Demand | Running])
[2003/02/14 17:13:16 | 00,078,336 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmkchw.sys -- ({D31A0762-0CEB-444e-ACFF-B049A1F6FE91} [On_Demand | Running])

========== (R ) Internet Explorer ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.yahoo.com
"Default_Search_URL"=http://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com
"Default_Secondary_Page_URL"=
"Extensions Off Page"=about:NoAdd-ons
"Local Page"=%SystemRoot%\system32\blank.htm
"Search Page"=http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://www.yahoo.com
"Secondary Start Pages"=
"Security Risk Page"=about:SecurityRisk
"Start Page"=http://www.yahoo.com

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"CustomSearch"=http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr8/*http://www.yahoo.com/ext/search/search.html
"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default"=
"Local Page"=C:\WINDOWS\system32\blank.htm
"Search Page"=http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://www.yahoo.com
"Start Page"=http://www.yahoo.com/

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]
""=http://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0

========== (O1) Hosts File ==========

HOSTS File = (216739 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost
127.0.0.1 007guard.com
127.0.0.1 www.007guard.com
127.0.0.1 008i.com
127.0.0.1 008k.com
127.0.0.1 www.008k.com
127.0.0.1 00hq.com
127.0.0.1 www.00hq.com
127.0.0.1 010402.com
127.0.0.1 032439.com
127.0.0.1 www.032439.com
127.0.0.1 1001-search.info
127.0.0.1 www.1001-search.info
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 123topsearch.com
127.0.0.1 www.123topsearch.com
127.0.0.1 132.com
127.0.0.1 www.132.com
127.0.0.1 136136.net
127.0.0.1 www.136136.net
7617 more lines...

========== (O2) BHO's ==========

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]
{02478D38-C3F9-4efb-9B51-7695ECA05670} (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} (HKLM) -- C:\Program Files\Yahoo!\Common\yiesrvc.dll (Yahoo! Inc.)
{6D53EC84-6AAE-4787-AEEE-F4628F01010C} (HKLM) -- C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) -- C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)

========== (O3) Toolbars ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"SITEguard" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
"{C4069E3A-68F1-403E-B40E-20066696354B}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)

========== (O4) Run Keys ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AGRSMMSG"=AGRSMMSG.exe (Agere Systems)
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime (Apple Inc.)
"RegistryMechanic"= File not found
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" (Sun Microsystems, Inc.)
"Zune Launcher"="c:\Program Files\Zune\ZuneLauncher.exe" (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" /background (Microsoft Corporation)

========== (O4) Startup Folders ==========


========== (O6 & O7) Current Version Policies ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=145

========== (O8) IE Context Menu Extensions ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]
E&xport to Microsoft Excel: C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE [2004/05/18 17:58:38 | 10,080,960 | ---- | M] (Microsoft Corporation)

========== (O9) IE Extensions ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}: Menu: Sun Java Console -- %ProgramFiles%\Java\jre1.6.0_07\bin\npjpi160_07.dll [2008/06/10 04:27:02 | 00,132,496 | ---- | M] (Sun Microsystems, Inc.)
{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}: Button: Yahoo! Services -- %ProgramFiles%\Yahoo!\Common\yiesrvc.dll [2007/12/12 15:09:42 | 00,222,448 | ---- | M] (Yahoo! Inc.)
{92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Research -- %ProgramFiles%\Microsoft Office\OFFICE11\REFIEBAR.DLL [2003/07/14 23:57:08 | 00,040,512 | ---- | M] (Microsoft Corporation)
{e2e2dd38-d088-4134-82b7-f2ba38496583}: Menu: @xpsp3res.dll,-20001 -- %SystemRoot%\network diagnostic\xpnetdiag.exe [2006/10/10 05:44:50 | 00,557,568 | ---- | M] (Microsoft Corporation)
{FB5F1910-F110-11d2-BB9E-00C04F795683}: Button: Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2004/10/13 09:24:37 | 01,694,208 | ---- | M] (Microsoft Corporation)
{FB5F1910-F110-11d2-BB9E-00C04F795683}: Menu: Windows Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2004/10/13 09:24:37 | 01,694,208 | ---- | M] (Microsoft Corporation)

========== (O12) Internet Explorer Plugins ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" = http://activex.micro...d...=%s&mime=%s
PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery

========== (O13) Default Prefixes ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://

========== (O15) Trusted Sites ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
33 domain(s) and sub-domain(s) not assigned to a zone.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
33 domain(s) and sub-domain(s) not assigned to a zone.

========== (O16) DPF ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]
{17492023-C23A-453E-A040-C7C580BBF700}: http://download.micr...heckControl.cab -- Windows Genuine Advantage Validation Tool
{30528230-99F7-4BB4-88D8-FA1D4F56A2AB}: C:\Program Files\Yahoo!\Common\Yinsthelper.dll -- Installation Support
{48DD0448-9209-4F81-9F6D-D83562940134}: http://lads.myspace....ploader1006.cab -- MySpace Uploader Control
{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/...indows-i586.cab -- Java Plug-in 1.6.0_07
{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}: http://java.sun.com/...indows-i586.cab -- Java Plug-in 1.6.0_02
{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}: http://java.sun.com/...indows-i586.cab -- Java Plug-in 1.6.0_03
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}: http://java.sun.com/...indows-i586.cab -- Java Plug-in 1.6.0_07
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/...indows-i586.cab -- Java Plug-in 1.6.0_07

========== (O17) DNS Name Servers ==========

{09B45C3A-10AB-4BC9-8BBD-902EB36BB84F} (Servers: | Description: Belkin Wireless G Notebook Card)
{43F44A4C-3804-4B0C-AE81-9E1F5123C713} (Servers: | Description: Intel® PRO/100 VE Network Connection)

========== (O20) Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]
igfxcui: "DllName" = igfxsrvc.dll -- C:\WINDOWS\system32\igfxsrvc.dll (Intel Corporation)

========== Shell Execute Hooks ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{88B68482-AE05-47F5-8FED-8925E4290C4B}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

========== Safeboot Options ==========

"AlternateShell"=cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []
[2006/11/26 11:27:42 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]

========== MountPoints2 ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52b68651-6768-11dd-9bf7-00e0b854cb13}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52b68651-6768-11dd-9bf7-00e0b854cb13}\Shell\AutoRun]
""=Auto&Play


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{52b68651-6768-11dd-9bf7-00e0b854cb13}\Shell\AutoRun\command]
""=G:\LaunchU3.exe -- File not found


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b7016880-adec-11dc-9a09-00e0b854cb13}\Shell\AutoRun\command]
""=G:\nlrlnaon.exe -- File not found


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b7016880-adec-11dc-9a09-00e0b854cb13}\Shell\explore\Command]
""=G:\nlrlnaon.exe -- File not found


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b7016880-adec-11dc-9a09-00e0b854cb13}\Shell\open\Command]
""=G:\nlrlnaon.exe -- File not found

========== Files/Folders - Created Within 30 Days ==========

[3 C:\WINDOWS\System32\*.tmp files]
[7 C:\WINDOWS\*.tmp files]
[98 C:\Documents and Settings\Richard\Desktop\*.tmp files]
[2008/10/20 22:40:21 | 00,000,000 | ---D | C] -- C:\_OTMoveIt
[2008/10/20 21:24:05 | 00,000,162 | -H-- | C] () -- C:\Documents and Settings\Richard\Desktop\~$glish paper.doc
[2008/10/20 21:24:04 | 00,024,064 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\english paper.doc
[2008/10/19 21:50:02 | 00,000,000 | ---D | C] -- C:\Lop SD
[2008/10/19 20:35:52 | 04,691,181 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\04 Consume Me.wma
[2008/10/19 20:35:28 | 02,951,296 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\kid rock - pimp of the nation.mp3
[2008/10/19 20:35:14 | 07,024,330 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\rick james - Standing on the top (feat. the Temptations).mp3
[2008/10/18 22:08:58 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll
[2008/10/18 22:07:56 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2008/10/18 20:59:52 | 00,033,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sprecovr.exe
[2008/10/18 20:55:30 | 00,239,616 | ---- | C] () -- C:\WINDOWS\System32\wstrenderer.ax
[2008/10/18 20:55:29 | 00,443,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2008/10/18 20:55:29 | 00,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe
[2008/10/18 20:55:28 | 00,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstscax.dll
[2008/10/18 20:55:28 | 00,350,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2008/10/18 20:55:28 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll
[2008/10/18 20:55:28 | 00,118,272 | ---- | C] () -- C:\WINDOWS\System32\mpeg2data.ax
[2008/10/18 20:55:28 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tzchange.exe
[2008/10/18 20:55:28 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2008/10/18 20:55:27 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\wstpager.ax
[2008/10/18 20:55:26 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2008/10/18 20:55:25 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2008/10/18 20:55:22 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2008/10/18 20:55:21 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spiisupd.exe
[2008/10/18 20:55:19 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\asr_pfu.exe
[2008/10/18 20:55:17 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbicodec.ax
[2008/10/18 20:55:16 | 02,113,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiagn.dll
[2008/10/18 20:55:16 | 00,040,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2008/10/18 20:55:16 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\secedit.exe
[2008/10/18 20:55:15 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgasvc.dll
[2008/10/18 20:55:15 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdukx.dll
[2008/10/18 20:55:13 | 00,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2008/10/18 20:55:12 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pnrpnsp.dll
[2008/10/18 20:55:12 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsprpres.dll
[2008/10/18 20:55:10 | 00,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irprops.cpl
[2008/10/18 20:55:10 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscntfy.exe
[2008/10/18 20:55:09 | 00,526,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2psvc.dll
[2008/10/18 20:55:09 | 00,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscui.cpl
[2008/10/18 20:55:09 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w3ssl.dll
[2008/10/18 20:55:08 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2008/10/18 20:55:08 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsno.dll
[2008/10/18 20:55:07 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\firewall.cpl
[2008/10/18 20:55:07 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdwxp.exe
[2008/10/18 20:55:07 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdfi1.dll
[2008/10/18 20:55:06 | 00,312,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgraph.dll
[2008/10/18 20:55:06 | 00,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2008/10/18 20:55:06 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.cpl
[2008/10/18 20:55:04 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt47.dll
[2008/10/18 20:55:01 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sbeio.dll
[2008/10/18 20:54:59 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdadiag.dll
[2008/10/18 20:54:59 | 00,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshbth.dll
[2008/10/18 20:54:59 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\httpapi.dll
[2008/10/18 20:54:58 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hccoin.dll
[2008/10/18 20:54:56 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fwcfg.dll
[2008/10/18 20:54:56 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smbinst.exe
[2008/10/18 20:54:55 | 01,689,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d9.dll
[2008/10/18 20:54:53 | 00,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssap.dll
[2008/10/18 20:54:53 | 00,088,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pnetsh.dll
[2008/10/18 20:54:52 | 00,937,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winbrand.dll
[2008/10/18 20:54:52 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprov.dll
[2008/10/18 20:54:52 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprovi.dll
[2008/10/18 20:54:52 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\twext.dll
[2008/10/18 20:54:52 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spnpinst.exe
[2008/10/18 20:54:52 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinmal.dll
[2008/10/18 20:54:52 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinbe1.dll
[2008/10/18 20:54:51 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmsetacl.dll
[2008/10/18 20:54:47 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fsquirt.exe
[2008/10/18 20:54:47 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\btpanui.dll
[2008/10/18 20:54:45 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe
[2008/10/18 20:54:45 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthci.dll
[2008/10/18 20:54:44 | 00,351,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winhttp.dll
[2008/10/18 20:54:44 | 00,187,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp1res.dll
[2008/10/18 20:54:44 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bthserv.dll
[2008/10/18 20:54:44 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsfi.dll
[2008/10/18 20:54:43 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winshfhc.dll
[2008/10/18 20:54:43 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2008/10/18 20:54:42 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2008/10/18 20:54:41 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\faxpatch.exe
[2008/10/18 20:54:40 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscsvc.dll
[2008/10/18 20:54:39 | 00,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfime.ime
[2008/10/18 20:54:39 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\p2p.dll
[2008/10/18 20:54:39 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\encapi.dll
[2008/10/18 20:54:39 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt48.dll
[2008/10/18 20:54:38 | 00,438,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpob2res.dll
[2008/10/18 20:54:38 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\auditusr.exe
[2008/10/18 20:54:38 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdno1.dll
[2008/10/18 20:54:37 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\strmfilt.dll
[2008/10/18 20:54:37 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\blastcln.exe
[2008/10/18 20:54:35 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauserv.dll
[2008/10/18 20:54:35 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinben.dll
[2008/10/18 20:54:34 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmaori.dll
[2008/10/18 20:54:33 | 00,044,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agpcpq.sys
[2008/10/18 20:54:33 | 00,042,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\alim1541.sys
[2008/10/18 20:54:33 | 00,042,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agp440.sys
[2008/10/18 20:54:33 | 00,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthmodem.sys
[2008/10/18 20:54:33 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\amdk7.sys
[2008/10/18 20:54:33 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sdhcinst.dll
[2008/10/18 20:54:33 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthenum.sys
[2008/10/18 20:54:32 | 00,078,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbvideo.sys
[2008/10/18 20:54:32 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sdbus.sys
[2008/10/18 20:54:32 | 00,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rfcomm.sys

Edited by gr8joel, 21 October 2008 - 01:01 PM.

  • 0

Advertisements

#11
gr8joel
Posted 21 October 2008 - 12:58 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
[2008/10/18 20:54:32 | 00,046,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gagp30kx.sys
[2008/10/18 20:54:32 | 00,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\uagp35.sys
[2008/10/18 20:54:32 | 00,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\viaagp.sys
[2008/10/18 20:54:32 | 00,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\intelppm.sys
[2008/10/18 20:54:32 | 00,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2008/10/18 20:54:32 | 00,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ip6fw.sys
[2008/10/18 20:54:32 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbehci.sys
[2008/10/18 20:54:32 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidbth.sys
[2008/10/18 20:54:32 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthusb.sys
[2008/10/18 20:54:32 | 00,015,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mssmbios.sys
[2008/10/18 20:54:32 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidir.sys
[2008/10/18 20:54:32 | 00,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wacompen.sys
[2008/10/18 20:54:32 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023x.sys
[2008/10/18 20:54:32 | 00,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tunmp.sys
[2008/10/18 20:54:32 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffdisk.sys
[2008/10/18 20:54:32 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_sd.sys
[2008/10/18 20:54:32 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2008/10/18 20:54:31 | 02,897,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp2res.dll
[2008/10/18 20:54:31 | 00,382,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgr.dll
[2008/10/18 20:54:31 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgen.dll
[2008/10/18 20:54:30 | 00,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpcdll.dll
[2008/10/18 20:54:29 | 00,262,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\http.sys
[2008/10/18 20:54:27 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msftedit.dll
[2008/10/18 20:54:27 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msftedit.dll
[2008/10/18 20:54:27 | 00,128,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fltmgr.sys
[2008/10/18 20:54:27 | 00,128,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys
[2008/10/18 20:54:27 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll
[2008/10/18 20:54:27 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2008/10/18 20:54:27 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2008/10/18 20:54:27 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe
[2008/10/18 20:54:27 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltlib.dll
[2008/10/18 20:54:27 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll
[2008/10/18 20:54:26 | 00,764,868 | ---- | C] () -- C:\WINDOWS\System32\dllcache\apph_sp.sdb
[2008/10/18 20:54:25 | 00,566,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gpedit.dll
[2008/10/18 20:54:25 | 00,295,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\appmgr.dll
[2008/10/18 20:54:25 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gptext.dll
[2008/10/18 20:54:25 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\appmgmts.dll
[2008/10/18 20:54:25 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gpresult.exe
[2008/10/18 20:54:25 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eventtriggers.exe
[2008/10/18 20:54:25 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fdeploy.dll
[2008/10/18 20:54:25 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\driverquery.exe
[2008/10/18 20:54:25 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cipher.exe
[2008/10/18 20:54:25 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eventcreate.exe
[2008/10/18 20:54:25 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\asr_fmt.exe
[2008/10/18 20:54:25 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\efsadu.dll
[2008/10/18 20:54:24 | 01,200,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntbackup.exe
[2008/10/18 20:54:24 | 00,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqsnap.dll
[2008/10/18 20:54:24 | 00,225,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqoa.dll
[2008/10/18 20:54:24 | 00,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqtrig.dll
[2008/10/18 20:54:24 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqrtdep.dll
[2008/10/18 20:54:24 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\schtasks.exe
[2008/10/18 20:54:24 | 00,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqtgsvc.exe
[2008/10/18 20:54:24 | 00,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rsnotify.exe
[2008/10/18 20:54:24 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqlogmgr.dll
[2008/10/18 20:54:24 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\systeminfo.exe
[2008/10/18 20:54:24 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\openfiles.exe
[2008/10/18 20:54:24 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tlntadmn.exe
[2008/10/18 20:54:24 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logman.exe
[2008/10/18 20:54:24 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqbkup.exe
[2008/10/18 20:54:24 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\proxycfg.exe
[2008/10/18 20:54:24 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqsvc.exe
[2008/10/18 20:54:23 | 00,660,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqqm.dll
[2008/10/18 20:54:23 | 00,660,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqqm.dll
[2008/10/18 20:54:23 | 00,596,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsecedit.dll
[2008/10/18 20:54:23 | 00,259,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tracerpt.exe
[2008/10/18 20:54:23 | 00,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqad.dll
[2008/10/18 20:54:23 | 00,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqad.dll
[2008/10/18 20:54:23 | 00,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bootcfg.exe
[2008/10/18 20:54:23 | 00,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bootcfg.exe
[2008/10/18 20:54:23 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fde.dll
[2008/10/18 20:54:23 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fde.dll
[2008/10/18 20:54:23 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsnw.dll
[2008/10/18 20:54:23 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnw.dll
[2008/10/18 20:54:23 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tlntsess.exe
[2008/10/18 20:54:23 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evtrig.exe
[2008/10/18 20:54:23 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tlntsvr.exe
[2008/10/18 20:54:23 | 00,072,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mqac.sys
[2008/10/18 20:54:23 | 00,072,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqac.sys
[2008/10/18 20:54:23 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drvqry.exe
[2008/10/18 20:54:23 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getmac.exe
[2008/10/18 20:54:23 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getmac.exe
[2008/10/18 20:54:23 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqdscli.dll
[2008/10/18 20:54:23 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqdscli.dll
[2008/10/18 20:54:23 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqise.dll
[2008/10/18 20:54:23 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqise.dll
[2008/10/18 20:54:23 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tlntsvrp.dll
[2008/10/18 20:54:22 | 00,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqutil.dll
[2008/10/18 20:54:22 | 00,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqutil.dll
[2008/10/18 20:54:22 | 00,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqrt.dll
[2008/10/18 20:54:22 | 00,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqrt.dll
[2008/10/18 20:54:22 | 00,163,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nwrdr.sys
[2008/10/18 20:54:22 | 00,163,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nwrdr.sys
[2008/10/18 20:54:22 | 00,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqsec.dll
[2008/10/18 20:54:22 | 00,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqsec.dll
[2008/10/18 20:54:22 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tasklist.exe
[2008/10/18 20:54:22 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\taskkill.exe
[2008/10/18 20:54:22 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tasklist.exe
[2008/10/18 20:54:22 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskkill.exe
[2008/10/18 20:54:22 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysinfo.exe
[2008/10/18 20:54:22 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nwwks.dll
[2008/10/18 20:54:22 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nwwks.dll
[2008/10/18 20:54:22 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nwapi32.dll
[2008/10/18 20:54:22 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nwapi32.dll
[2008/10/18 20:54:22 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mqupgrd.dll
[2008/10/18 20:54:22 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mqupgrd.dll
[2008/10/18 20:54:22 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2008/10/18 20:54:11 | 00,256,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agentsvr.exe
[2008/10/18 20:54:11 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agentdpv.dll
[2008/10/18 20:54:11 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agentdp2.dll
[2008/10/18 20:54:11 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2008/10/18 20:54:11 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2008/10/18 20:54:10 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2008/10/18 20:54:10 | 00,217,118 | ---- | C] () -- C:\WINDOWS\System32\dllcache\apphelp.sdb
[2008/10/18 20:54:10 | 00,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2008/10/18 20:54:10 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2008/10/18 20:54:10 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2008/10/18 20:54:10 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2008/10/18 20:54:10 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll
[2008/10/18 20:54:10 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040c.dll
[2008/10/18 20:54:10 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0407.dll
[2008/10/18 20:54:10 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0816.dll
[2008/10/18 20:54:10 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0413.dll
[2008/10/18 20:54:10 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0410.dll
[2008/10/18 20:54:10 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0c0a.dll
[2008/10/18 20:54:10 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0416.dll
[2008/10/18 20:54:10 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041d.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0414.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040b.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0409.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0406.dll
[2008/10/18 20:54:10 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll
[2008/10/18 20:54:09 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2008/10/18 20:54:09 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll
[2008/10/18 20:54:09 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2008/10/18 20:54:09 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2008/10/18 20:54:09 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2008/10/18 20:54:09 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2008/10/18 20:54:09 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe
[2008/10/18 20:54:07 | 13,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2008/10/18 20:54:07 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2008/10/18 20:54:07 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2008/10/18 20:54:07 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2008/10/18 20:54:06 | 00,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2008/10/18 20:54:06 | 00,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2008/10/18 20:54:06 | 00,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2008/10/18 20:54:06 | 00,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2008/10/18 20:54:06 | 00,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2008/10/18 20:54:06 | 00,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2008/10/18 20:54:06 | 00,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2008/10/18 20:54:06 | 00,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2008/10/18 20:54:05 | 01,314,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoe.dll
[2008/10/18 20:54:05 | 00,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll
[2008/10/18 20:54:05 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll
[2008/10/18 20:54:05 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll
[2008/10/18 20:54:05 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll
[2008/10/18 20:54:05 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2008/10/18 20:54:05 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2008/10/18 20:54:05 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2008/10/18 20:54:05 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2008/10/18 20:54:05 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2008/10/18 20:54:05 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2008/10/18 20:54:04 | 02,136,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2008/10/18 20:54:04 | 02,015,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2008/10/18 20:54:04 | 00,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2008/10/18 20:54:04 | 00,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2008/10/18 20:54:04 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2008/10/18 20:54:04 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2008/10/18 20:54:04 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2008/10/18 20:54:04 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2008/10/18 20:54:04 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2008/10/18 20:54:03 | 01,197,294 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb
[2008/10/18 20:54:03 | 00,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2008/10/18 20:54:03 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2008/10/18 20:54:03 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2008/10/18 20:54:03 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2008/10/18 20:54:03 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2008/10/18 20:54:03 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2008/10/18 20:54:03 | 00,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2008/10/18 20:54:03 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2008/10/18 20:54:03 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2008/10/18 20:54:03 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2008/10/18 20:54:02 | 00,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll
[2008/10/18 20:54:02 | 00,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2008/10/18 20:54:02 | 00,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2008/10/18 20:54:02 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll
[2008/10/18 20:54:02 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2008/10/18 20:54:01 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2008/10/18 20:54:01 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2008/10/18 20:54:01 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2008/10/18 20:54:01 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2008/10/18 20:54:01 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2008/10/18 20:53:57 | 00,259,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsetup.dll
[2008/10/18 20:53:57 | 00,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imsinsnt.dll
[2008/10/18 20:53:57 | 00,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcstp.dll
[2008/10/18 20:53:54 | 01,033,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\explorer.exe
[2008/10/18 20:53:54 | 01,033,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2008/10/18 20:53:54 | 00,283,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\winhlp32.exe
[2008/10/18 20:53:54 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\regedit.exe
[2008/10/18 20:53:54 | 00,050,688 | ---- | C] (Twain Working Group) -- C:\WINDOWS\twain_32.dll
[2008/10/18 20:53:54 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\hh.exe
[2008/10/18 20:53:53 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe
[2008/10/18 20:53:52 | 00,263,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnt.dll
[2008/10/18 20:53:52 | 00,194,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\activeds.dll
[2008/10/18 20:53:52 | 00,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2008/10/18 20:53:52 | 00,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsldp.dll
[2008/10/18 20:53:52 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsldpc.dll
[2008/10/18 20:53:52 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\apphelp.dll
[2008/10/18 20:53:52 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aclui.dll
[2008/10/18 20:53:52 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\actxprxy.dll
[2008/10/18 20:53:52 | 00,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\6to4svc.dll
[2008/10/18 20:53:52 | 00,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\6to4svc.dll
[2008/10/18 20:53:52 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ahui.exe
[2008/10/18 20:53:52 | 00,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2008/10/18 20:53:52 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2008/10/18 20:53:52 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsmsext.dll
[2008/10/18 20:53:52 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\alg.exe
[2008/10/18 20:53:52 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\alrsvc.dll
[2008/10/18 20:53:52 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\actmovie.exe
[2008/10/18 20:53:51 | 00,580,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\autofmt.exe
[2008/10/18 20:53:51 | 00,549,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\appwiz.cpl
[2008/10/18 20:53:51 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\asctrls.ocx
[2008/10/18 20:53:51 | 00,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avifil32.dll
[2008/10/18 20:53:51 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\asycfilt.dll
[2008/10/18 20:53:51 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atl.dll
[2008/10/18 20:53:51 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\authz.dll
[2008/10/18 20:53:51 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\basesrv.dll
[2008/10/18 20:53:51 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\audiosrv.dll
[2008/10/18 20:53:51 | 00,030,208 | ---- | C] (Adobe Systems) -- C:\WINDOWS\System32\atmlib.dll
[2008/10/18 20:53:51 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batmeter.dll
[2008/10/18 20:53:51 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\at.exe
[2008/10/18 20:53:51 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bidispl.dll
[2008/10/18 20:53:51 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\attrib.exe
[2008/10/18 20:53:51 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\autolfn.exe
[2008/10/18 20:53:51 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\attrib.exe
[2008/10/18 20:53:51 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atmadm.exe
[2008/10/18 20:53:51 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2008/10/18 20:53:50 | 01,024,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browseui.dll
[2008/10/18 20:53:50 | 01,024,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browseui.dll
[2008/10/18 20:53:50 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\capesnpn.dll
[2008/10/18 20:53:50 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\capesnpn.dll
[2008/10/18 20:53:50 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cabview.dll
[2008/10/18 20:53:50 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browsewm.dll
[2008/10/18 20:53:50 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browser.dll
[2008/10/18 20:53:50 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browselc.dll
[2008/10/18 20:53:50 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cabinet.dll
[2008/10/18 20:53:50 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\camocx.dll
[2008/10/18 20:53:49 | 02,067,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdosys.dll
[2008/10/18 20:53:49 | 00,625,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2008/10/18 20:53:49 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatq.dll
[2008/10/18 20:53:49 | 00,457,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\certmgr.dll
[2008/10/18 20:53:49 | 00,225,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2008/10/18 20:53:49 | 00,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\certcli.dll
[2008/10/18 20:53:49 | 00,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdfview.dll
[2008/10/18 20:53:49 | 00,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdfview.dll
[2008/10/18 20:53:49 | 00,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2008/10/18 20:53:49 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cic.dll
[2008/10/18 20:53:49 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cic.dll
[2008/10/18 20:53:49 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2008/10/18 20:53:49 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.dll
[2008/10/18 20:53:49 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ciodm.dll
[2008/10/18 20:53:49 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ciodm.dll
[2008/10/18 20:53:49 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cleanmgr.exe
[2008/10/18 20:53:49 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2008/10/18 20:53:49 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.rll
[2008/10/18 20:53:49 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.exe
[2008/10/18 20:53:49 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgmgr32.dll
[2008/10/18 20:53:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cisvc.exe
[2008/10/18 20:53:48 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmdial32.dll
[2008/10/18 20:53:48 | 00,252,928 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll
[2008/10/18 20:53:48 | 00,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\compstui.dll
[2008/10/18 20:53:48 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2008/10/18 20:53:48 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2008/10/18 20:53:48 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll
[2008/10/18 20:53:48 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2008/10/18 20:53:48 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmstp.exe
[2008/10/18 20:53:48 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2008/10/18 20:53:48 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clusapi.dll
[2008/10/18 20:53:48 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cnbjmon.dll
[2008/10/18 20:53:48 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmdl32.exe
[2008/10/18 20:53:48 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmutil.dll
[2008/10/18 20:53:48 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmmon32.exe
[2008/10/18 20:53:48 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipsrv.exe
[2008/10/18 20:53:48 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll
[2008/10/18 20:53:48 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2008/10/18 20:53:48 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmcfg32.dll
[2008/10/18 20:53:47 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2008/10/18 20:53:47 | 00,792,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comres.dll
[2008/10/18 20:53:47 | 00,540,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2008/10/18 20:53:47 | 00,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmsp.dll
[2008/10/18 20:53:47 | 00,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\confmsp.dll
[2008/10/18 20:53:47 | 00,163,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credui.dll
[2008/10/18 20:53:47 | 00,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll
[2008/10/18 20:53:47 | 00,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2008/10/18 20:53:47 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2008/10/18 20:53:47 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\conime.exe
[2008/10/18 20:53:46 | 01,179,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8.dll
[2008/10/18 20:53:46 | 00,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\crypt32.dll
[2008/10/18 20:53:46 | 00,512,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptui.dll
[2008/10/18 20:53:46 | 00,326,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cscui.dll
[2008/10/18 20:53:46 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cscdll.dll
[2008/10/18 20:53:46 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cscript.exe
[2008/10/18 20:53:46 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptdlg.dll
[2008/10/18 20:53:46 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptnet.dll
[2008/10/18 20:53:46 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptsvc.dll
[2008/10/18 20:53:46 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptext.dll
[2008/10/18 20:53:46 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptdll.dll
[2008/10/18 20:53:46 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ctfmon.exe
[2008/10/18 20:53:46 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ctfmon.exe
[2008/10/18 20:53:46 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8thk.dll
[2008/10/18 20:53:46 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\csrss.exe
[2008/10/18 20:53:45 | 01,054,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\danim.dll
[2008/10/18 20:53:45 | 01,054,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\danim.dll
[2008/10/18 20:53:45 | 00,825,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dim700.dll
[2008/10/18 20:53:45 | 00,640,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbghelp.dll
[2008/10/18 20:53:45 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\daxctle.ocx
[2008/10/18 20:53:45 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\datime.dll
[2008/10/18 20:53:45 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\datime.dll
[2008/10/18 20:53:45 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbnetlib.dll
[2008/10/18 20:53:45 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dataclen.dll
[2008/10/18 20:53:45 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbnmpntw.dll
[2008/10/18 20:53:45 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsrpcn.dll
[2008/10/18 20:53:45 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\davclnt.dll
[2008/10/18 20:53:45 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dciman32.dll
[2008/10/18 20:53:45 | 00,001,788 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2008/10/18 20:53:44 | 00,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dhcpmon.dll
[2008/10/18 20:53:44 | 00,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpmon.dll
[2008/10/18 20:53:44 | 00,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\devmgr.dll
[2008/10/18 20:53:44 | 00,266,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ddraw.dll
[2008/10/18 20:53:44 | 00,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dinput8.dll
[2008/10/18 20:53:44 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dinput.dll
[2008/10/18 20:53:44 | 00,123,904 | ---- | C] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgui.dll
[2008/10/18 20:53:44 | 00,111,104 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\dgnet.dll
[2008/10/18 20:53:44 | 00,104,960 | ---- | C] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgntfs.exe
[2008/10/18 20:53:44 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\diantz.exe
[2008/10/18 20:53:44 | 00,082,432 | ---- | C] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgfat.exe
[2008/10/18 20:53:44 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\digest.dll
[2008/10/18 20:53:44 | 00,059,904 | ---- | C] () -- C:\WINDOWS\System32\devenum.dll
[2008/10/18 20:53:44 | 00,038,912 | ---- | C] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgsnap.dll
[2008/10/18 20:53:44 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ddeshare.exe
[2008/10/18 20:53:44 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dfsshlex.dll
[2008/10/18 20:53:44 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ddrawex.dll
[2008/10/18 20:53:44 | 00,025,088 | ---- | C] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\defrag.exe
[2008/10/18 20:53:44 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2008/10/18 20:53:44 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2008/10/18 20:53:43 | 01,501,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\diskcopy.dll
[2008/10/18 20:53:43 | 01,501,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\diskcopy.dll
[2008/10/18 20:53:43 | 00,273,920 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\System32\dmdlgs.dll
[2008/10/18 20:53:43 | 00,273,920 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\System32\dllcache\dmdlgs.dll
[2008/10/18 20:53:43 | 00,224,768 | ---- | C] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\dmadmin.exe
[2008/10/18 20:53:43 | 00,200,704 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\System32\dmdskmgr.dll
[2008/10/18 20:53:43 | 00,181,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmime.dll
[2008/10/18 20:53:43 | 00,163,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\diskpart.exe
[2008/10/18 20:53:43 | 00,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dnsapi.dll
[2008/10/18 20:53:43 | 00,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsapi.dll
[2008/10/18 20:53:43 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmstyle.dll
[2008/10/18 20:53:43 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmusic.dll
[2008/10/18 20:53:43 | 00,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmsynth.dll
[2008/10/18 20:53:43 | 00,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmscript.dll
[2008/10/18 20:53:43 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmcompos.dll
[2008/10/18 20:53:43 | 00,052,224 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\System32\dmutil.dll
[2008/10/18 20:53:43 | 00,045,083 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dispex.dll
[2008/10/18 20:53:43 | 00,045,083 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dispex.dll
[2008/10/18 20:53:43 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmloader.dll
[2008/10/18 20:53:43 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dmband.dll
[2008/10/18 20:53:43 | 00,023,552 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\System32\dmserver.dll
[2008/10/18 20:53:43 | 00,015,872 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\System32\dmremote.exe
[2008/10/18 20:53:43 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllhost.exe
[2008/10/18 20:53:42 | 00,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnet.dll
[2008/10/18 20:53:42 | 00,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dplayx.dll
[2008/10/18 20:53:42 | 00,212,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvoice.dll
[2008/10/18 20:53:42 | 00,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvvox.dll
[2008/10/18 20:53:42 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvsetup.exe
[2008/10/18 20:53:42 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnhupnp.dll
[2008/10/18 20:53:42 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\docprop2.dll
[2008/10/18 20:53:42 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dnsrslvr.dll
[2008/10/18 20:53:42 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsrslvr.dll
[2008/10/18 20:53:42 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dplaysvr.exe
[2008/10/18 20:53:42 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpmodemx.dll
[2008/10/18 20:53:42 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvacm.dll
[2008/10/18 20:53:42 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnsvr.exe
[2008/10/18 20:53:42 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnlobby.dll
[2008/10/18 20:53:42 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnaddr.dll
[2008/10/18 20:53:41 | 01,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsound3d.dll
[2008/10/18 20:53:41 | 00,367,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsound.dll
[2008/10/18 20:53:41 | 00,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsdmo.dll
[2008/10/18 20:53:41 | 00,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dskquoui.dll
[2008/10/18 20:53:41 | 00,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dskquoui.dll
[2008/10/18 20:53:41 | 00,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsprop.dll
[2008/10/18 20:53:41 | 00,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dskquota.dll
[2008/10/18 20:53:41 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsdmoprp.dll
[2008/10/18 20:53:41 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dpwsockx.dll
[2008/10/18 20:53:41 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ds32gt.dll

Edited by gr8joel, 21 October 2008 - 01:02 PM.

  • 0

#12
gr8joel
Posted 21 October 2008 - 01:03 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
[2008/10/18 20:53:41 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drprov.dll
[2008/10/18 20:53:40 | 01,298,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiag.exe
[2008/10/18 20:53:40 | 01,227,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dx8vb.dll
[2008/10/18 20:53:40 | 00,619,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dx7vb.dll
[2008/10/18 20:53:40 | 00,498,742 | ---- | C] () -- C:\WINDOWS\System32\dxmasf.dll
[2008/10/18 20:53:40 | 00,498,742 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll
[2008/10/18 20:53:40 | 00,304,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\duser.dll
[2008/10/18 20:53:40 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsquery.dll
[2008/10/18 20:53:40 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dwwin.exe
[2008/10/18 20:53:40 | 00,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dssenh.dll
[2008/10/18 20:53:40 | 00,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dsuiext.dll
[2008/10/18 20:53:40 | 00,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dssec.dll
[2008/10/18 20:53:40 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dswave.dll
[2008/10/18 20:53:40 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dvdupgrd.exe
[2008/10/18 20:53:40 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dumprep.exe
[2008/10/18 20:53:39 | 01,082,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\esent.dll
[2008/10/18 20:53:39 | 00,380,957 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\expsrv.dll
[2008/10/18 20:53:39 | 00,337,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\filemgmt.dll
[2008/10/18 20:53:39 | 00,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\es.dll
[2008/10/18 20:53:39 | 00,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\es.dll
[2008/10/18 20:53:39 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eudcedit.exe
[2008/10/18 20:53:39 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\els.dll
[2008/10/18 20:53:39 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\exts.dll
[2008/10/18 20:53:39 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exts.dll
[2008/10/18 20:53:39 | 00,087,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fldrclnr.dll
[2008/10/18 20:53:39 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\faultrep.dll
[2008/10/18 20:53:39 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eventlog.dll
[2008/10/18 20:53:39 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\extrac32.exe
[2008/10/18 20:53:39 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\findstr.exe
[2008/10/18 20:53:39 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ersvc.dll
[2008/10/18 20:53:39 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\feclient.dll
[2008/10/18 20:53:38 | 00,614,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\h323msp.dll
[2008/10/18 20:53:38 | 00,546,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hhctrl.ocx
[2008/10/18 20:53:38 | 00,546,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hhctrl.ocx
[2008/10/18 20:53:38 | 00,382,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fontext.dll
[2008/10/18 20:53:38 | 00,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdi32.dll
[2008/10/18 20:53:38 | 00,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll
[2008/10/18 20:53:38 | 00,265,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\h323.tsp
[2008/10/18 20:53:38 | 00,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hdwwiz.cpl
[2008/10/18 20:53:38 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\glu32.dll
[2008/10/18 20:53:38 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fontsub.dll
[2008/10/18 20:53:38 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2008/10/18 20:53:38 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hhsetup.dll
[2008/10/18 20:53:38 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\grpconv.exe
[2008/10/18 20:53:38 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hid.dll
[2008/10/18 20:53:38 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fontview.exe
[2008/10/18 20:53:38 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\help.exe
[2008/10/18 20:53:38 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\help.exe
[2008/10/18 20:53:38 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gpkrsrc.dll
[2008/10/18 20:53:38 | 00,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\framebuf.dll
[2008/10/18 20:53:38 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\forcedos.exe
[2008/10/18 20:53:38 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\forcedos.exe
[2008/10/18 20:53:37 | 00,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hnetcfg.dll
[2008/10/18 20:53:37 | 00,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hnetwiz.dll
[2008/10/18 20:53:37 | 00,254,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icm32.dll
[2008/10/18 20:53:37 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hotplug.dll
[2008/10/18 20:53:37 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iasrad.dll
[2008/10/18 20:53:37 | 00,080,384 | ---- | C] (Radius Inc.) -- C:\WINDOWS\System32\iccvid.dll
[2008/10/18 20:53:37 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2008/10/18 20:53:37 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hlink.dll
[2008/10/18 20:53:37 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hlink.dll
[2008/10/18 20:53:37 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\htui.dll
[2008/10/18 20:53:37 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hidphone.tsp
[2008/10/18 20:53:37 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hidserv.dll
[2008/10/18 20:53:37 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2008/10/18 20:53:37 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2008/10/18 20:53:37 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icmp.dll
[2008/10/18 20:53:36 | 00,683,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcomm.dll
[2008/10/18 20:53:36 | 00,683,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2008/10/18 20:53:36 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2008/10/18 20:53:36 | 00,150,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi.exe
[2008/10/18 20:53:36 | 00,135,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ifmon.dll
[2008/10/18 20:53:36 | 00,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\idq.dll
[2008/10/18 20:53:36 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iexpress.exe
[2008/10/18 20:53:36 | 00,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imm32.dll
[2008/10/18 20:53:36 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2008/10/18 20:53:36 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetpp.dll
[2008/10/18 20:53:36 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2008/10/18 20:53:36 | 00,036,921 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imeshare.dll
[2008/10/18 20:53:36 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetmib1.dll
[2008/10/18 20:53:36 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imaadp32.acm
[2008/10/18 20:53:36 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\igmpagnt.dll
[2008/10/18 20:53:35 | 00,384,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsmsnap.dll
[2008/10/18 20:53:35 | 00,349,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsecsnp.dll
[2008/10/18 20:53:35 | 00,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipnathlp.dll
[2008/10/18 20:53:35 | 00,330,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ippromon.dll
[2008/10/18 20:53:35 | 00,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsecsvc.dll
[2008/10/18 20:53:35 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iprtrmgr.dll
[2008/10/18 20:53:35 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprtrmgr.dll
[2008/10/18 20:53:35 | 00,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipmontr.dll
[2008/10/18 20:53:35 | 00,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipmontr.dll
[2008/10/18 20:53:35 | 00,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\initpki.dll
[2008/10/18 20:53:35 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\intl.cpl
[2008/10/18 20:53:35 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\input.dll
[2008/10/18 20:53:35 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iphlpapi.dll
[2008/10/18 20:53:35 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iphlpapi.dll
[2008/10/18 20:53:35 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipv6mon.dll
[2008/10/18 20:53:35 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipconfig.exe
[2008/10/18 20:53:35 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipv6.exe
[2008/10/18 20:53:35 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2008/10/18 20:53:35 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipxroute.exe
[2008/10/18 20:53:35 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipxwan.dll
[2008/10/18 20:53:35 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipxwan.dll
[2008/10/18 20:53:35 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipconf.tsp
[2008/10/18 20:53:35 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetppui.dll
[2008/10/18 20:53:34 | 00,491,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript.dll
[2008/10/18 20:53:34 | 00,491,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2008/10/18 20:53:34 | 00,295,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kerberos.dll
[2008/10/18 20:53:34 | 00,163,840 | ---- | C] (America Online) -- C:\WINDOWS\System32\jgdw400.dll
[2008/10/18 20:53:34 | 00,163,840 | ---- | C] (America Online) -- C:\WINDOWS\System32\dllcache\jgdw400.dll
[2008/10/18 20:53:34 | 00,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\itircl.dll
[2008/10/18 20:53:34 | 00,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\keymgr.dll
[2008/10/18 20:53:34 | 00,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\itss.dll
[2008/10/18 20:53:34 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2008/10/18 20:53:34 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\joy.cpl
[2008/10/18 20:53:34 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ixsso.dll
[2008/10/18 20:53:34 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iyuv_32.dll
[2008/10/18 20:53:34 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kmddsp.tsp
[2008/10/18 20:53:34 | 00,027,648 | ---- | C] (Johnson-Grace Company) -- C:\WINDOWS\System32\jgpl400.dll
[2008/10/18 20:53:34 | 00,027,648 | ---- | C] (Johnson-Grace Company) -- C:\WINDOWS\System32\dllcache\jgpl400.dll
[2008/10/18 20:53:34 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kd1394.dll
[2008/10/18 20:53:34 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnec.dll
[2008/10/18 20:53:34 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec.dll
[2008/10/18 20:53:33 | 00,514,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logonui.exe
[2008/10/18 20:53:33 | 00,423,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licdll.dll
[2008/10/18 20:53:33 | 00,399,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lmrt.dll
[2008/10/18 20:53:33 | 00,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\l3codeca.acm
[2008/10/18 20:53:33 | 00,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\localsec.dll
[2008/10/18 20:53:33 | 00,220,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logon.scr
[2008/10/18 20:53:33 | 00,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2008/10/18 20:53:33 | 00,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2008/10/18 20:53:33 | 00,097,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\loadperf.dll
[2008/10/18 20:53:33 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2008/10/18 20:53:33 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\linkinfo.dll
[2008/10/18 20:53:33 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\localui.dll
[2008/10/18 20:53:33 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2008/10/18 20:53:33 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2008/10/18 20:53:32 | 01,028,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42.dll
[2008/10/18 20:53:32 | 00,927,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc40u.dll
[2008/10/18 20:53:32 | 00,927,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2008/10/18 20:53:32 | 00,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdminst.dll
[2008/10/18 20:53:32 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\makecab.exe
[2008/10/18 20:53:32 | 00,084,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mciavi32.dll
[2008/10/18 20:53:32 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\magnify.exe
[2008/10/18 20:53:32 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mf3216.dll
[2008/10/18 20:53:32 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mf3216.dll
[2008/10/18 20:53:32 | 00,035,328 | ---- | C] () -- C:\WINDOWS\System32\mciqtz32.dll
[2008/10/18 20:53:32 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mciwave.dll
[2008/10/18 20:53:32 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mciseq.dll
[2008/10/18 20:53:32 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lpk.dll
[2008/10/18 20:53:32 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mcastmib.dll
[2008/10/18 20:53:32 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lsass.exe
[2008/10/18 20:53:32 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lprhelp.dll
[2008/10/18 20:53:31 | 01,192,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcndmgr.dll
[2008/10/18 20:53:31 | 00,815,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmc.exe
[2008/10/18 20:53:31 | 00,618,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmsys.cpl
[2008/10/18 20:53:31 | 00,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mlang.dll
[2008/10/18 20:53:31 | 00,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mpg4ds32.ax
[2008/10/18 20:53:31 | 00,216,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\moricons.dll
[2008/10/18 20:53:31 | 00,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mobsync.dll
[2008/10/18 20:53:31 | 00,153,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\modemui.dll
[2008/10/18 20:53:31 | 00,148,992 | ---- | C] () -- C:\WINDOWS\System32\mpg2splt.ax
[2008/10/18 20:53:31 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mobsync.exe
[2008/10/18 20:53:31 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcbase.dll
[2008/10/18 20:53:31 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\miglibnt.dll
[2008/10/18 20:53:31 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcshext.dll
[2008/10/18 20:53:31 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2008/10/18 20:53:31 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmsrvc.exe
[2008/10/18 20:53:31 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcsubs.dll
[2008/10/18 20:53:31 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mimefilt.dll
[2008/10/18 20:53:31 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\midimap.dll
[2008/10/18 20:53:31 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mimefilt.dll
[2008/10/18 20:53:31 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2008/10/18 20:53:31 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\more.com
[2008/10/18 20:53:30 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msaud32.acm
[2008/10/18 20:53:30 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msadds32.ax
[2008/10/18 20:53:30 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2008/10/18 20:53:30 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mprapi.dll
[2008/10/18 20:53:30 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msapsspc.dll
[2008/10/18 20:53:30 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscms.dll
[2008/10/18 20:53:30 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mscms.dll
[2008/10/18 20:53:30 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msacm32.dll
[2008/10/18 20:53:30 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2008/10/18 20:53:30 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mpr.dll
[2008/10/18 20:53:30 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msasn1.dll
[2008/10/18 20:53:30 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mprdim.dll
[2008/10/18 20:53:30 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mprdim.dll
[2008/10/18 20:53:30 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msadp32.acm
[2008/10/18 20:53:30 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msafd.dll
[2008/10/18 20:53:29 | 00,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2008/10/18 20:53:29 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msctf.dll
[2008/10/18 20:53:29 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msctf.dll
[2008/10/18 20:53:29 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdart.dll
[2008/10/18 20:53:29 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfp.dll
[2008/10/18 20:53:29 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2008/10/18 20:53:29 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscpxl32.dll
[2008/10/18 20:53:29 | 00,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2008/10/18 20:53:29 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdatsrc.tlb
[2008/10/18 20:53:29 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mscpx32r.dll
[2008/10/18 20:53:29 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtc.exe
[2008/10/18 20:53:28 | 02,854,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msi.dll
[2008/10/18 20:53:28 | 00,994,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msgina.dll
[2008/10/18 20:53:28 | 00,956,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2008/10/18 20:53:28 | 00,844,314 | ---- | C] () -- C:\WINDOWS\System32\msdxm.ocx
[2008/10/18 20:53:28 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msh263.drv
[2008/10/18 20:53:28 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msh261.drv
[2008/10/18 20:53:28 | 00,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2008/10/18 20:53:28 | 00,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msident.dll
[2008/10/18 20:53:28 | 00,004,126 | ---- | C] () -- C:\WINDOWS\System32\msdxmlc.dll
[2008/10/18 20:53:27 | 00,884,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msimsg.dll
[2008/10/18 20:53:27 | 00,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msnsspc.dll
[2008/10/18 20:53:27 | 00,271,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msihnd.dll
[2008/10/18 20:53:27 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2008/10/18 20:53:27 | 00,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msieftp.dll
[2008/10/18 20:53:27 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msimtf.dll
[2008/10/18 20:53:27 | 00,151,583 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjint40.dll
[2008/10/18 20:53:27 | 00,151,583 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjint40.dll
[2008/10/18 20:53:27 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2008/10/18 20:53:27 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msiexec.exe
[2008/10/18 20:53:27 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mslbui.dll
[2008/10/18 20:53:27 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msorc32r.dll
[2008/10/18 20:53:27 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msisip.dll
[2008/10/18 20:53:27 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msidle.dll
[2008/10/18 20:53:27 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msimg32.dll
[2008/10/18 20:53:26 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2008/10/18 20:53:26 | 00,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstask.dll
[2008/10/18 20:53:26 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msorcl32.dll
[2008/10/18 20:53:26 | 00,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstlsapi.dll
[2008/10/18 20:53:26 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscript.ocx
[2008/10/18 20:53:26 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msscds32.ax
[2008/10/18 20:53:26 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msprivs.dll
[2008/10/18 20:53:26 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspatcha.dll
[2008/10/18 20:53:26 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2008/10/18 20:53:26 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msrle32.dll
[2008/10/18 20:53:25 | 01,428,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvidctl.dll
[2008/10/18 20:53:25 | 01,386,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvbvm60.dll
[2008/10/18 20:53:25 | 00,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp60.dll
[2008/10/18 20:53:25 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcrt.dll
[2008/10/18 20:53:25 | 00,204,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mswebdvd.dll
[2008/10/18 20:53:25 | 00,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msutb.dll
[2008/10/18 20:53:25 | 00,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvfw32.dll
[2008/10/18 20:53:25 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msw3prt.dll
[2008/10/18 20:53:25 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcrt40.dll
[2008/10/18 20:53:25 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcirt.dll
[2008/10/18 20:53:24 | 01,104,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3.dll
[2008/10/18 20:53:24 | 01,104,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2008/10/18 20:53:24 | 00,701,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml2.dll
[2008/10/18 20:53:24 | 00,506,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml.dll
[2008/10/18 20:53:24 | 00,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mswsock.dll
[2008/10/18 20:53:24 | 00,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswsock.dll
[2008/10/18 20:53:24 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2008/10/18 20:53:24 | 00,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mydocs.dll
[2008/10/18 20:53:24 | 00,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxclu.dll
[2008/10/18 20:53:24 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\narrator.exe
[2008/10/18 20:53:24 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ncobjapi.dll
[2008/10/18 20:53:24 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2008/10/18 20:53:24 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll
[2008/10/18 20:53:24 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2008/10/18 20:53:24 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll
[2008/10/18 20:53:24 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nddeapi.dll
[2008/10/18 20:53:24 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msyuv.dll
[2008/10/18 20:53:24 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nddeapir.exe
[2008/10/18 20:53:24 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2008/10/18 20:53:24 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll
[2008/10/18 20:53:23 | 00,622,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netcfgx.dll
[2008/10/18 20:53:23 | 00,407,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netlogon.dll
[2008/10/18 20:53:23 | 00,332,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netapi32.dll
[2008/10/18 20:53:23 | 00,332,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2008/10/18 20:53:23 | 00,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netman.dll
[2008/10/18 20:53:23 | 00,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netid.dll
[2008/10/18 20:53:23 | 00,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\net1.exe
[2008/10/18 20:53:23 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netdde.exe
[2008/10/18 20:53:23 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ndptsp.tsp
[2008/10/18 20:53:23 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\net.exe
[2008/10/18 20:53:23 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nddenb32.dll
[2008/10/18 20:53:22 | 01,708,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netshell.dll
[2008/10/18 20:53:22 | 00,875,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netplwiz.dll
[2008/10/18 20:53:22 | 00,488,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsmgr.dll
[2008/10/18 20:53:22 | 00,435,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmssvc.dll
[2008/10/18 20:53:22 | 00,329,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.exe
[2008/10/18 20:53:22 | 00,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\newdev.dll
[2008/10/18 20:53:22 | 00,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netui1.dll
[2008/10/18 20:53:22 | 00,179,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsdba.dll
[2008/10/18 20:53:22 | 00,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntshrui.dll
[2008/10/18 20:53:22 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmarta.dll
[2008/10/18 20:53:22 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nlhtml.dll
[2008/10/18 20:53:22 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netsh.exe
[2008/10/18 20:53:22 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netui0.dll
[2008/10/18 20:53:22 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\notepad.exe
[2008/10/18 20:53:22 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe
[2008/10/18 20:53:22 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntdsapi.dll
[2008/10/18 20:53:22 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\npptools.dll
[2008/10/18 20:53:22 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntlanman.dll
[2008/10/18 20:53:22 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsapi.dll
[2008/10/18 20:53:22 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netstat.exe
[2008/10/18 20:53:22 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2008/10/18 20:53:22 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\netrap.dll
[2008/10/18 20:53:21 | 00,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\objsel.dll
[2008/10/18 20:53:21 | 00,278,559 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcjt32.dll
[2008/10/18 20:53:21 | 00,266,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oakley.dll
[2008/10/18 20:53:21 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nusrmgr.cpl
[2008/10/18 20:53:21 | 00,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbc32.dll
[2008/10/18 20:53:21 | 00,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbctrac.dll
[2008/10/18 20:53:21 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.dll
[2008/10/18 20:53:21 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccp32.dll
[2008/10/18 20:53:21 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcint.dll
[2008/10/18 20:53:21 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.exe
[2008/10/18 20:53:21 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccu32.dll
[2008/10/18 20:53:21 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccr32.dll
[2008/10/18 20:53:21 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ocmanage.dll
[2008/10/18 20:53:21 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ocmanage.dll
[2008/10/18 20:53:21 | 00,053,279 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcji32.dll
[2008/10/18 20:53:21 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccp32.cpl
[2008/10/18 20:53:21 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcad32.exe
[2008/10/18 20:53:21 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcbcp.dll
[2008/10/18 20:53:21 | 00,020,511 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oddbse32.dll
[2008/10/18 20:53:21 | 00,020,510 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odexl32.dll
[2008/10/18 20:53:21 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbc32gt.dll
[2008/10/18 20:53:21 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdmd.dll
[2008/10/18 20:53:21 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntvdmd.dll
[2008/10/18 20:53:21 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcp32r.dll
[2008/10/18 20:53:21 | 00,004,310 | ---- | C] () -- C:\WINDOWS\System32\odbcconf.rsp
[2008/10/18 20:53:20 | 01,285,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ole32.dll
[2008/10/18 20:53:20 | 00,713,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\opengl32.dll
[2008/10/18 20:53:20 | 00,283,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pdh.dll
[2008/10/18 20:53:20 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\osk.exe
[2008/10/18 20:53:20 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oledlg.dll
[2008/10/18 20:53:20 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledlg.dll
[2008/10/18 20:53:20 | 00,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\offfilt.dll
[2008/10/18 20:53:20 | 00,107,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oleprn.dll
[2008/10/18 20:53:20 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\olepro32.dll
[2008/10/18 20:53:20 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\olecli32.dll
[2008/10/18 20:53:20 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\olecli32.dll
[2008/10/18 20:53:20 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\osuninst.dll
[2008/10/18 20:53:20 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pautoenr.dll
[2008/10/18 20:53:20 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\packager.exe
[2008/10/18 20:53:20 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perfproc.dll
[2008/10/18 20:53:20 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perfdisk.dll
[2008/10/18 20:53:20 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perfos.dll
[2008/10/18 20:53:20 | 00,020,511 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odtext32.dll
[2008/10/18 20:53:20 | 00,020,510 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odpdx32.dll
[2008/10/18 20:53:20 | 00,020,510 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\odfox32.dll
[2008/10/18 20:53:20 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perfnet.dll
[2008/10/18 20:53:20 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perfnet.dll
[2008/10/18 20:53:20 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perfmon.exe
[2008/10/18 20:53:19 | 00,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photowiz.dll
[2008/10/18 20:53:19 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.cpl
[2008/10/18 20:53:19 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\progman.exe
[2008/10/18 20:53:19 | 00,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\polstore.dll
[2008/10/18 20:53:19 | 00,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\psbase.dll
[2008/10/18 20:53:19 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\proquota.exe
[2008/10/18 20:53:19 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pstorec.dll
  • 0

#13
gr8joel
Posted 21 October 2008 - 01:03 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
[2008/10/18 20:53:19 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pid.dll
[2008/10/18 20:53:19 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pstorsvc.dll
[2008/10/18 20:53:19 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\profmap.dll
[2008/10/18 20:53:19 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\psapi.dll
[2008/10/18 20:53:19 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ping.exe
[2008/10/18 20:53:19 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\powrprof.dll
[2008/10/18 20:53:19 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\pjlmon.dll
[2008/10/18 20:53:18 | 01,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\query.dll
[2008/10/18 20:53:18 | 01,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll
[2008/10/18 20:53:18 | 01,287,680 | ---- | C] () -- C:\WINDOWS\System32\quartz.dll
[2008/10/18 20:53:18 | 01,287,680 | ---- | C] () -- C:\WINDOWS\System32\dllcache\quartz.dll
[2008/10/18 20:53:18 | 00,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2008/10/18 20:53:18 | 00,562,176 | ---- | C] () -- C:\WINDOWS\System32\qedit.dll
[2008/10/18 20:53:18 | 00,385,024 | ---- | C] () -- C:\WINDOWS\System32\qdvd.dll
[2008/10/18 20:53:18 | 00,279,040 | ---- | C] () -- C:\WINDOWS\System32\qdv.dll
[2008/10/18 20:53:18 | 00,206,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasppp.dll
[2008/10/18 20:53:18 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\qcap.dll
[2008/10/18 20:53:18 | 00,181,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasmans.dll
[2008/10/18 20:53:18 | 00,181,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasmans.dll
[2008/10/18 20:53:18 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\raschap.dll
[2008/10/18 20:53:18 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasphone.exe
[2008/10/18 20:53:18 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2008/10/18 20:53:18 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2008/10/18 20:53:18 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2008/10/18 20:53:18 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasadhlp.dll
[2008/10/18 20:53:18 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasadhlp.dll
[2008/10/18 20:53:17 | 00,397,824 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\regwizc.dll
[2008/10/18 20:53:17 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2008/10/18 20:53:17 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rastls.dll
[2008/10/18 20:53:17 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rcbdyctl.dll
[2008/10/18 20:53:17 | 00,092,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpdd.dll
[2008/10/18 20:53:17 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2008/10/18 20:53:17 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\remotesp.tsp
[2008/10/18 20:53:17 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2008/10/18 20:53:17 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2008/10/18 20:53:17 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\remotepg.dll
[2008/10/18 20:53:17 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regsvc.dll
[2008/10/18 20:53:17 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\resutils.dll
[2008/10/18 20:53:17 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reg.exe
[2008/10/18 20:53:17 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regapi.dll
[2008/10/18 20:53:17 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rcimlby.exe
[2008/10/18 20:53:17 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rcp.exe
[2008/10/18 20:53:17 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2008/10/18 20:53:17 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rassapi.dll
[2008/10/18 20:53:17 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rexec.exe
[2008/10/18 20:53:17 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2008/10/18 20:53:17 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regsvr32.exe
[2008/10/18 20:53:16 | 00,582,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rpcrt4.dll
[2008/10/18 20:53:16 | 00,582,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2008/10/18 20:53:16 | 00,433,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\riched20.dll
[2008/10/18 20:53:16 | 00,433,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\riched20.dll
[2008/10/18 20:53:16 | 00,397,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rpcss.dll
[2008/10/18 20:53:16 | 00,313,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scesrv.dll
[2008/10/18 20:53:16 | 00,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\schedsvc.dll
[2008/10/18 20:53:16 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scecli.dll
[2008/10/18 20:53:16 | 00,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sccsccp.dll
[2008/10/18 20:53:16 | 00,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scrobj.dll
[2008/10/18 20:53:16 | 00,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rsaenh.dll
[2008/10/18 20:53:16 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scrrun.dll
[2008/10/18 20:53:16 | 00,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rsvpsp.dll
[2008/10/18 20:53:16 | 00,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsvpsp.dll
[2008/10/18 20:53:16 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rtcshare.exe
[2008/10/18 20:53:16 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scarddlg.dll
[2008/10/18 20:53:16 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2008/10/18 20:53:16 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rtutils.dll
[2008/10/18 20:53:16 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2008/10/18 20:53:16 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rundll32.exe
[2008/10/18 20:53:16 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rtipxmib.dll
[2008/10/18 20:53:16 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2008/10/18 20:53:16 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sclgntfy.dll
[2008/10/18 20:53:16 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rsmps.dll
[2008/10/18 20:53:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rsh.exe
[2008/10/18 20:53:16 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\runonce.exe
[2008/10/18 20:53:16 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scrnsave.scr
[2008/10/18 20:53:15 | 01,580,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sfcfiles.dll
[2008/10/18 20:53:15 | 01,498,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shdocvw.dll
[2008/10/18 20:53:15 | 01,498,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll
[2008/10/18 20:53:15 | 00,549,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shdoclc.dll
[2008/10/18 20:53:15 | 00,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sfc_os.dll
[2008/10/18 20:53:15 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sdbinst.exe
[2008/10/18 20:53:15 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2008/10/18 20:53:15 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\secur32.dll
[2008/10/18 20:53:15 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sendmail.dll
[2008/10/18 20:53:15 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sens.dll
[2008/10/18 20:53:15 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sethc.exe
[2008/10/18 20:53:15 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sendcmsg.dll
[2008/10/18 20:53:15 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setup.exe
[2008/10/18 20:53:15 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\seclogon.dll
[2008/10/18 20:53:15 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sensapi.dll
[2008/10/18 20:53:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\security.dll
[2008/10/18 20:53:15 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sfc.dll
[2008/10/18 20:53:13 | 08,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shell32.dll
[2008/10/18 20:53:13 | 08,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2008/10/18 20:53:13 | 00,474,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shlwapi.dll
[2008/10/18 20:53:13 | 00,474,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shlwapi.dll
[2008/10/18 20:53:13 | 00,438,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shimgvw.dll
[2008/10/18 20:53:13 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shgina.dll
[2008/10/18 20:53:13 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shimeng.dll
[2008/10/18 20:53:13 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shfolder.dll
[2008/10/18 20:53:12 | 00,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2008/10/18 20:53:12 | 00,363,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smlogcfg.dll
[2008/10/18 20:53:12 | 00,182,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\snmpsnap.dll
[2008/10/18 20:53:12 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shmedia.dll
[2008/10/18 20:53:12 | 00,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shsvcs.dll
[2008/10/18 20:53:12 | 00,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shsvcs.dll
[2008/10/18 20:53:12 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2008/10/18 20:53:12 | 00,098,304 | ---- | C] (Schlumberger Technology Corporation) -- C:\WINDOWS\System32\slbiop.dll
[2008/10/18 20:53:12 | 00,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smlogsvc.exe
[2008/10/18 20:53:12 | 00,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\sl_anet.acm
[2008/10/18 20:53:12 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shrpubw.exe
[2008/10/18 20:53:12 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spoolss.dll
[2008/10/18 20:53:12 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sigverif.exe
[2008/10/18 20:53:12 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shmgrate.exe
[2008/10/18 20:53:12 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shscrap.dll
[2008/10/18 20:53:12 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\skeys.exe
[2008/10/18 20:53:12 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\slayerxp.dll
[2008/10/18 20:53:12 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sort.exe
[2008/10/18 20:53:12 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sort.exe
[2008/10/18 20:53:12 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdown.exe
[2008/10/18 20:53:12 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\snmpapi.dll
[2008/10/18 20:53:12 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\simpdata.tlb
[2008/10/18 20:53:12 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sigtab.dll
[2008/10/18 20:53:11 | 00,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ss3dfo.scr
[2008/10/18 20:53:11 | 00,679,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sstext3d.scr
[2008/10/18 20:53:11 | 00,610,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sspipes.scr
[2008/10/18 20:53:11 | 00,442,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlsrv32.dll
[2008/10/18 20:53:11 | 00,393,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssflwbox.scr
[2008/10/18 20:53:11 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2008/10/18 20:53:11 | 00,180,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlunirl.dll
[2008/10/18 20:53:11 | 00,170,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srsvc.dll
[2008/10/18 20:53:11 | 00,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlsrv32.rll
[2008/10/18 20:53:11 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssdpsrv.dll
[2008/10/18 20:53:11 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srclient.dll
[2008/10/18 20:53:11 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spoolsv.exe
[2008/10/18 20:53:11 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmypics.scr
[2008/10/18 20:53:11 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssdpapi.dll
[2008/10/18 20:53:11 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmarque.scr
[2008/10/18 20:53:11 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssbezier.scr
[2008/10/18 20:53:11 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmyst.scr
[2008/10/18 20:53:11 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ssstars.scr
[2008/10/18 20:53:10 | 00,713,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sxs.dll
[2008/10/18 20:53:10 | 00,713,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sxs.dll
[2008/10/18 20:53:10 | 00,246,814 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\strmdll.dll
[2008/10/18 20:53:10 | 00,246,814 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\strmdll.dll
[2008/10/18 20:53:10 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sysmon.ocx
[2008/10/18 20:53:10 | 00,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\syncui.dll
[2008/10/18 20:53:10 | 00,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sti_ci.dll
[2008/10/18 20:53:10 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stobject.dll
[2008/10/18 20:53:10 | 00,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\t2embed.dll
[2008/10/18 20:53:10 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sysocmgr.exe
[2008/10/18 20:53:10 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2008/10/18 20:53:10 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sti.dll
[2008/10/18 20:53:10 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\synceng.dll
[2008/10/18 20:53:10 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2008/10/18 20:53:10 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll
[2008/10/18 20:53:10 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stdole2.tlb
[2008/10/18 20:53:10 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdole2.tlb
[2008/10/18 20:53:10 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stimon.exe
[2008/10/18 20:53:10 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\svchost.exe
[2008/10/18 20:53:09 | 00,858,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tapi3.dll
[2008/10/18 20:53:09 | 00,385,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\themeui.dll
[2008/10/18 20:53:09 | 00,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\termmgr.dll
[2008/10/18 20:53:09 | 00,347,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tourstart.exe
[2008/10/18 20:53:09 | 00,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\termsrv.dll
[2008/10/18 20:53:09 | 00,249,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tapisrv.dll
[2008/10/18 20:53:09 | 00,181,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tapi32.dll
[2008/10/18 20:53:09 | 00,135,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\taskmgr.exe
[2008/10/18 20:53:09 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\txflog.dll
[2008/10/18 20:53:09 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\timedate.cpl
[2008/10/18 20:53:09 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2008/10/18 20:53:09 | 00,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\trkwks.dll
[2008/10/18 20:53:09 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\telnet.exe
[2008/10/18 20:53:09 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmon.dll
[2008/10/18 20:53:09 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmib.dll
[2008/10/18 20:53:09 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tracert.exe
[2008/10/18 20:53:09 | 00,012,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsddd.dll
[2008/10/18 20:53:09 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tree.com
[2008/10/18 20:53:08 | 00,723,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\userenv.dll
[2008/10/18 20:53:08 | 00,577,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\user32.dll
[2008/10/18 20:53:08 | 00,577,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\user32.dll
[2008/10/18 20:53:08 | 00,406,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usp10.dll
[2008/10/18 20:53:08 | 00,239,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\upnpui.dll
[2008/10/18 20:53:08 | 00,206,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unimdm.tsp
[2008/10/18 20:53:08 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\upnphost.dll
[2008/10/18 20:53:08 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\upnphost.dll
[2008/10/18 20:53:08 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\upnp.dll
[2008/10/18 20:53:08 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\umpnpmgr.dll
[2008/10/18 20:53:08 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2008/10/18 20:53:08 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unimdmat.dll
[2008/10/18 20:53:08 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbui.dll
[2008/10/18 20:53:08 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\umandlg.dll
[2008/10/18 20:53:08 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\udhisapi.dll
[2008/10/18 20:53:08 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ups.exe
[2008/10/18 20:53:08 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbmon.dll
[2008/10/18 20:53:08 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\upnpcont.exe
[2008/10/18 20:53:08 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uniplat.dll
[2008/10/18 20:53:07 | 00,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vssapi.dll
[2008/10/18 20:53:07 | 00,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbscript.dll
[2008/10/18 20:53:07 | 00,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll
[2008/10/18 20:53:07 | 00,289,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vssvc.exe
[2008/10/18 20:53:07 | 00,218,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uxtheme.dll
[2008/10/18 20:53:07 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wavemsp.dll
[2008/10/18 20:53:07 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wavemsp.dll
[2008/10/18 20:53:07 | 00,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w32time.dll
[2008/10/18 20:53:07 | 00,135,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\webvw.dll
[2008/10/18 20:53:07 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\webclnt.dll
[2008/10/18 20:53:07 | 00,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vdmredir.dll
[2008/10/18 20:53:07 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\utilman.exe
[2008/10/18 20:53:07 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdigest.dll
[2008/10/18 20:53:07 | 00,030,749 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbajet32.dll
[2008/10/18 20:53:07 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vbisurf.ax
[2008/10/18 20:53:07 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vdmdbg.dll
[2008/10/18 20:53:07 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdmaud.drv
[2008/10/18 20:53:07 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.drv
[2008/10/18 20:53:07 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\version.dll
[2008/10/18 20:53:07 | 00,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\watchdog.sys
[2008/10/18 20:53:07 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verifier.dll
[2008/10/18 20:53:07 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\verifier.dll
[2008/10/18 20:53:06 | 00,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winntbbu.dll
[2008/10/18 20:53:06 | 00,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiashext.dll
[2008/10/18 20:53:06 | 00,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winlogon.exe
[2008/10/18 20:53:06 | 00,463,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiadefui.dll
[2008/10/18 20:53:06 | 00,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiaacmgr.exe
[2008/10/18 20:53:06 | 00,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiaservc.dll
[2008/10/18 20:53:06 | 00,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiaservc.dll
[2008/10/18 20:53:06 | 00,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winsrv.dll
[2008/10/18 20:53:06 | 00,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsrv.dll
[2008/10/18 20:53:06 | 00,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wintrust.dll
[2008/10/18 20:53:06 | 00,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmm.dll
[2008/10/18 20:53:06 | 00,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiadss.dll
[2008/10/18 20:53:06 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiavideo.dll
[2008/10/18 20:53:06 | 00,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winscard.dll
[2008/10/18 20:53:06 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiascr.dll
[2008/10/18 20:53:06 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wextract.exe
[2008/10/18 20:53:06 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winsta.dll
[2008/10/18 20:53:06 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winipsec.dll
[2008/10/18 20:53:06 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winrnr.dll
[2008/10/18 20:53:06 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winver.exe
[2008/10/18 20:53:05 | 00,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmstream.dll
[2008/10/18 20:53:05 | 00,278,559 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmv8ds32.ax
[2008/10/18 20:53:05 | 00,264,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wow32.dll
[2008/10/18 20:53:05 | 00,258,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvds32.ax
[2008/10/18 20:53:05 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wldap32.dll
[2008/10/18 20:53:05 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmoe.dll
[2008/10/18 20:53:05 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wscript.exe
[2008/10/18 20:53:05 | 00,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlnotify.dll
[2008/10/18 20:53:05 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ws2_32.dll
[2008/10/18 20:53:05 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshext.dll
[2008/10/18 20:53:05 | 00,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnpinst.exe
[2008/10/18 20:53:05 | 00,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpabaln.exe
[2008/10/18 20:53:05 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshcon.dll
[2008/10/18 20:53:05 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ws2help.dll
[2008/10/18 20:53:05 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wship6.dll
[2008/10/18 20:53:05 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmi.dll
[2008/10/18 20:53:04 | 00,378,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcdlg.dll
[2008/10/18 20:53:04 | 00,359,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcsvc.dll
[2008/10/18 20:53:04 | 00,337,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\zipfldr.dll
[2008/10/18 20:53:04 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshom.ocx
[2008/10/18 20:53:04 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactsrv.dll
[2008/10/18 20:53:04 | 00,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcsapi.dll
[2008/10/18 20:53:04 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wstdecod.dll
[2008/10/18 20:53:04 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsnmp32.dll
[2008/10/18 20:53:04 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xcopy.exe
[2008/10/18 20:53:04 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wsock32.dll
[2008/10/18 20:53:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshtcpip.dll
[2008/10/18 20:53:04 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wtsapi32.dll
[2008/10/18 20:53:04 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2008/10/18 20:53:04 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshrm.dll
[2008/10/18 20:53:03 | 00,616,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\advapi32.dll
[2008/10/18 20:53:03 | 00,602,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\autoconv.exe
[2008/10/18 20:53:03 | 00,588,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\autochk.exe
[2008/10/18 20:53:03 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cacls.exe
[2008/10/18 20:53:03 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cacls.exe
[2008/10/18 20:53:02 | 00,984,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kernel32.dll
[2008/10/18 20:53:02 | 00,984,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll
[2008/10/18 20:53:02 | 00,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2008/10/18 20:53:02 | 00,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comctl32.dll
[2008/10/18 20:53:02 | 00,388,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.exe
[2008/10/18 20:53:02 | 00,341,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\localspl.dll
[2008/10/18 20:53:02 | 00,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comdlg32.dll
[2008/10/18 20:53:02 | 00,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imagehlp.dll
[2008/10/18 20:53:02 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\desk.cpl
[2008/10/18 20:53:02 | 00,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dhcpcsvc.dll
[2008/10/18 20:53:02 | 00,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpcsvc.dll
[2008/10/18 20:53:02 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ftp.exe
[2008/10/18 20:53:02 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\csrsrv.dll
[2008/10/18 20:53:02 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\format.com
[2008/10/18 20:53:02 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lmhsvc.dll
[2008/10/18 20:53:01 | 00,721,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lsasrv.dll
[2008/10/18 20:53:01 | 00,721,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2008/10/18 20:53:01 | 00,708,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntdll.dll
[2008/10/18 20:53:01 | 00,550,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\oleaut32.dll
[2008/10/18 20:53:01 | 00,550,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oleaut32.dll
[2008/10/18 20:53:01 | 00,419,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdm.exe
[2008/10/18 20:53:01 | 00,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nwprovau.dll
[2008/10/18 20:53:01 | 00,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nwprovau.dll
[2008/10/18 20:53:01 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msv1_0.dll
  • 0

#14
gr8joel
Posted 21 October 2008 - 01:04 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
[2008/10/18 20:53:01 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntprint.dll
[2008/10/18 20:53:01 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nslookup.exe
[2008/10/18 20:53:01 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\locator.exe
[2008/10/18 20:53:01 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msgsvc.dll
[2008/10/18 20:53:01 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mgmtapi.dll
[2008/10/18 20:53:01 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntlsapi.dll
[2008/10/18 20:53:00 | 00,657,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasdlg.dll
[2008/10/18 20:53:00 | 00,560,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\printui.dll
[2008/10/18 20:53:00 | 00,415,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\samsrv.dll
[2008/10/18 20:53:00 | 00,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasapi32.dll
[2008/10/18 20:53:00 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\schannel.dll
[2008/10/18 20:53:00 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll
[2008/10/18 20:53:00 | 00,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sessmgr.exe
[2008/10/18 20:53:00 | 00,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\services.exe
[2008/10/18 20:53:00 | 00,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\scardsvr.exe
[2008/10/18 20:53:00 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasauto.dll
[2008/10/18 20:53:00 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\samlib.dll
[2008/10/18 20:53:00 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasman.dll
[2008/10/18 20:53:00 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rastapi.dll
[2008/10/18 20:53:00 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rshx32.dll
[2008/10/18 20:53:00 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\perfctrs.dll
[2008/10/18 20:53:00 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\olecnv32.dll
[2008/10/18 20:53:00 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\olecnv32.dll
[2008/10/18 20:53:00 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\savedump.exe
[2008/10/18 20:52:59 | 01,846,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2008/10/18 20:52:59 | 01,846,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2008/10/18 20:52:59 | 00,984,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\syssetup.dll
[2008/10/18 20:52:59 | 00,983,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupapi.dll
[2008/10/18 20:52:59 | 00,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\untfs.dll
[2008/10/18 20:52:59 | 00,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sysdm.cpl
[2008/10/18 20:52:59 | 00,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ulib.dll
[2008/10/18 20:52:59 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winspool.drv
[2008/10/18 20:52:59 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2008/10/18 20:52:59 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wkssvc.dll
[2008/10/18 20:52:59 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wkssvc.dll
[2008/10/18 20:52:59 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\win32spl.dll
[2008/10/18 20:52:59 | 00,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srvsvc.dll
[2008/10/18 20:52:59 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smss.exe
[2008/10/18 20:52:59 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmonui.dll
[2008/10/18 20:52:59 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\userinit.exe
[2008/10/18 20:52:58 | 00,799,744 | ---- | C] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\drivers\dmboot.sys
[2008/10/18 20:52:58 | 00,187,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\acpi.sys
[2008/10/18 20:52:58 | 00,153,344 | ---- | C] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\drivers\dmio.sys
[2008/10/18 20:52:58 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fastfat.sys
[2008/10/18 20:52:58 | 00,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\aec.sys
[2008/10/18 20:52:58 | 00,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys
[2008/10/18 20:52:58 | 00,138,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\afd.sys
[2008/10/18 20:52:58 | 00,138,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys
[2008/10/18 20:52:58 | 00,095,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atapi.sys
[2008/10/18 20:52:58 | 00,095,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atapi.sys
[2008/10/18 20:52:58 | 00,071,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bridge.sys
[2008/10/18 20:52:58 | 00,071,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxg.sys
[2008/10/18 20:52:58 | 00,063,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cdfs.sys
[2008/10/18 20:52:58 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\arp1394.sys
[2008/10/18 20:52:58 | 00,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2008/10/18 20:52:58 | 00,060,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2008/10/18 20:52:58 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atmarpc.sys
[2008/10/18 20:52:58 | 00,055,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atmlane.sys
[2008/10/18 20:52:58 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dmusic.sys
[2008/10/18 20:52:58 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys
[2008/10/18 20:52:58 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\classpnp.sys
[2008/10/18 20:52:58 | 00,049,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cdrom.sys
[2008/10/18 20:52:58 | 00,036,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\amdk6.sys
[2008/10/18 20:52:58 | 00,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\crusoe.sys
[2008/10/18 20:52:58 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\disk.sys
[2008/10/18 20:52:58 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\asyncmac.sys
[2008/10/18 20:52:58 | 00,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\diskdump.sys
[2008/10/18 20:52:58 | 00,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cmbatt.sys
[2008/10/18 20:52:58 | 00,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys
[2008/10/18 20:52:58 | 00,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\compbatt.sys
[2008/10/18 20:52:58 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmkaud.sys
[2008/10/18 20:52:58 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys
[2008/10/18 20:52:57 | 00,179,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mrxdav.sys
[2008/10/18 20:52:57 | 00,179,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxdav.sys
[2008/10/18 20:52:57 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kmixer.sys
[2008/10/18 20:52:57 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys
[2008/10/18 20:52:57 | 00,140,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ks.sys
[2008/10/18 20:52:57 | 00,140,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ks.sys
[2008/10/18 20:52:57 | 00,134,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipnat.sys
[2008/10/18 20:52:57 | 00,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ksecdd.sys
[2008/10/18 20:52:57 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipsec.sys
[2008/10/18 20:52:57 | 00,063,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mf.sys
[2008/10/18 20:52:57 | 00,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\i8042prt.sys
[2008/10/18 20:52:57 | 00,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mountmgr.sys
[2008/10/18 20:52:57 | 00,041,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\imapi.sys
[2008/10/18 20:52:57 | 00,036,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidclass.sys
[2008/10/18 20:52:57 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\isapnp.sys
[2008/10/18 20:52:57 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapnp.sys
[2008/10/18 20:52:57 | 00,034,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fips.sys
[2008/10/18 20:52:57 | 00,034,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fips.sys
[2008/10/18 20:52:57 | 00,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\modem.sys
[2008/10/18 20:52:57 | 00,027,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fdc.sys
[2008/10/18 20:52:57 | 00,024,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidparse.sys
[2008/10/18 20:52:57 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kbdclass.sys
[2008/10/18 20:52:57 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mouclass.sys
[2008/10/18 20:52:57 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipinip.sys
[2008/10/18 20:52:57 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\flpydisk.sys
[2008/10/18 20:52:57 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kbdhid.sys
[2008/10/18 20:52:57 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2008/10/18 20:52:57 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irenum.sys
[2008/10/18 20:52:57 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidusb.sys
[2008/10/18 20:52:57 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2008/10/18 20:52:56 | 00,574,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ntfs.sys
[2008/10/18 20:52:56 | 00,574,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntfs.sys
[2008/10/18 20:52:56 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mrxsmb.sys
[2008/10/18 20:52:56 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2008/10/18 20:52:56 | 00,182,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndis.sys
[2008/10/18 20:52:56 | 00,162,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\netbt.sys
[2008/10/18 20:52:56 | 00,107,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mup.sys
[2008/10/18 20:52:56 | 00,091,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndiswan.sys
[2008/10/18 20:52:56 | 00,088,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nwlnkipx.sys
[2008/10/18 20:52:56 | 00,080,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\parport.sys
[2008/10/18 20:52:56 | 00,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nic1394.sys
[2008/10/18 20:52:56 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\p3.sys
[2008/10/18 20:52:56 | 00,040,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nmnt.sys
[2008/10/18 20:52:56 | 00,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndproxy.sys
[2008/10/18 20:52:56 | 00,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2008/10/18 20:52:56 | 00,035,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msgpc.sys
[2008/10/18 20:52:56 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\netbios.sys
[2008/10/18 20:52:56 | 00,030,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\npfs.sys
[2008/10/18 20:52:56 | 00,019,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msfs.sys
[2008/10/18 20:52:56 | 00,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\partmgr.sys
[2008/10/18 20:52:56 | 00,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\partmgr.sys
[2008/10/18 20:52:56 | 00,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndisuio.sys
[2008/10/18 20:52:56 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndistapi.sys
[2008/10/18 20:52:56 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2008/10/18 20:52:56 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mskssrv.sys
[2008/10/18 20:52:56 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys
[2008/10/18 20:52:56 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspclock.sys
[2008/10/18 20:52:56 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys
[2008/10/18 20:52:56 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspqm.sys
[2008/10/18 20:52:56 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys
[2008/10/18 20:52:55 | 00,360,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip.sys
[2008/10/18 20:52:55 | 00,360,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys
[2008/10/18 20:52:55 | 00,333,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\srv.sys
[2008/10/18 20:52:55 | 00,333,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2008/10/18 20:52:55 | 00,202,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rmcast.sys
[2008/10/18 20:52:55 | 00,202,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2008/10/18 20:52:55 | 00,196,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpdr.sys
[2008/10/18 20:52:55 | 00,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdbss.sys
[2008/10/18 20:52:55 | 00,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdbss.sys
[2008/10/18 20:52:55 | 00,145,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2008/10/18 20:52:55 | 00,145,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2008/10/18 20:52:55 | 00,139,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpwd.sys
[2008/10/18 20:52:55 | 00,119,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pcmcia.sys
[2008/10/18 20:52:55 | 00,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\scsiport.sys
[2008/10/18 20:52:55 | 00,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sr.sys
[2008/10/18 20:52:55 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\psched.sys
[2008/10/18 20:52:55 | 00,068,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pci.sys
[2008/10/18 20:52:55 | 00,068,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pci.sys
[2008/10/18 20:52:55 | 00,064,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\serial.sys
[2008/10/18 20:52:55 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sysaudio.sys
[2008/10/18 20:52:55 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys
[2008/10/18 20:52:55 | 00,057,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\redbook.sys
[2008/10/18 20:52:55 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swmidi.sys
[2008/10/18 20:52:55 | 00,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys
[2008/10/18 20:52:55 | 00,051,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rasl2tp.sys
[2008/10/18 20:52:55 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\stream.sys
[2008/10/18 20:52:55 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stream.sys
[2008/10/18 20:52:55 | 00,048,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\raspptp.sys
[2008/10/18 20:52:55 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\raspppoe.sys
[2008/10/18 20:52:55 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\processr.sys
[2008/10/18 20:52:55 | 00,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismp.sys
[2008/10/18 20:52:55 | 00,025,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sonydcam.sys
[2008/10/18 20:52:55 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pciidex.sys
[2008/10/18 20:52:55 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pciidex.sys
[2008/10/18 20:52:55 | 00,015,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\serenum.sys
[2008/10/18 20:52:55 | 00,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tape.sys
[2008/10/18 20:52:55 | 00,011,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sfloppy.sys
[2008/10/18 20:52:55 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\splitter.sys
[2008/10/18 20:52:55 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys
[2008/10/18 20:52:55 | 00,004,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swenum.sys
[2008/10/18 20:52:54 | 02,057,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntkrnlpa.exe
[2008/10/18 20:52:54 | 02,057,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2008/10/18 20:52:54 | 00,364,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\update.sys
[2008/10/18 20:52:54 | 00,364,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\update.sys
[2008/10/18 20:52:54 | 00,250,032 | ---- | C] () -- C:\ntldr
[2008/10/18 20:52:54 | 00,225,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip6.sys
[2008/10/18 20:52:54 | 00,225,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip6.sys
[2008/10/18 20:52:54 | 00,142,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbport.sys
[2008/10/18 20:52:54 | 00,142,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbport.sys
[2008/10/18 20:52:54 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdmaud.sys
[2008/10/18 20:52:54 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys
[2008/10/18 20:52:54 | 00,081,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\hal.dll
[2008/10/18 20:52:54 | 00,079,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\videoprt.sys
[2008/10/18 20:52:54 | 00,066,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\udfs.sys
[2008/10/18 20:52:54 | 00,057,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbhub.sys
[2008/10/18 20:52:54 | 00,057,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbhub.sys
[2008/10/18 20:52:54 | 00,052,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\volsnap.sys
[2008/10/18 20:52:54 | 00,040,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\termdd.sys
[2008/10/18 20:52:54 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wanarp.sys
[2008/10/18 20:52:54 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys
[2008/10/18 20:52:54 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2008/10/18 20:52:54 | 00,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbstor.sys
[2008/10/18 20:52:54 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbprint.sys
[2008/10/18 20:52:54 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2008/10/18 20:52:54 | 00,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd2.sys
[2008/10/18 20:52:54 | 00,023,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd.sys
[2008/10/18 20:52:54 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdtcp.sys
[2008/10/18 20:52:54 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vga.sys
[2008/10/18 20:52:54 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbuhci.sys
[2008/10/18 20:52:54 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbuhci.sys
[2008/10/18 20:52:54 | 00,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdi.sys
[2008/10/18 20:52:54 | 00,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbintel.sys
[2008/10/18 20:52:54 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbscan.sys
[2008/10/18 20:52:54 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2008/10/18 20:52:54 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023.sys
[2008/10/18 20:52:54 | 00,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdpipe.sys
[2008/10/18 20:52:53 | 02,180,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe
[2008/10/18 20:52:53 | 02,180,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2008/10/15 21:23:29 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2008/10/15 21:17:23 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2008/10/14 20:31:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Richard\Application Data\Malwarebytes
[2008/10/14 20:31:17 | 00,017,200 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2008/10/14 20:31:17 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2008/10/14 20:31:15 | 00,038,528 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2008/10/14 20:31:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2008/10/14 20:31:11 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2008/10/14 20:30:50 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Download Manager
[2008/10/14 20:29:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2008/10/14 20:28:21 | 00,000,611 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\NTREGOPT.lnk
[2008/10/14 20:28:21 | 00,000,592 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\ERUNT.lnk
[2008/10/14 20:28:19 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2008/10/14 20:21:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Richard\Desktop\Offline fix tools
[2008/10/12 16:55:27 | 05,544,263 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\Incan Pan Pipes.mp3
[2008/10/10 14:19:51 | 03,676,822 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\Ghost Lullaby.mp3
[2008/09/30 11:27:24 | 36,130,820 | ---- | C] () -- C:\Documents and Settings\Richard\Desktop\ccc_the_truth.mpg
[2008/09/21 21:20:42 | 00,000,000 | -H-- | C] () -- C:\Documents and Settings\Richard\Local Settings\Application Data\IconCache.db
[2008/09/21 15:21:52 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2008/09/21 00:03:08 | 00,000,812 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk

========== Files - Modified Within 30 Days ==========

[3 C:\WINDOWS\System32\*.tmp files]
[7 C:\WINDOWS\*.tmp files]
[8 C:\Documents and Settings\Richard\My Documents\*.tmp files]
[98 C:\Documents and Settings\Richard\Desktop\*.tmp files]
[2008/10/20 22:44:44 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2008/10/20 22:43:01 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2008/10/20 22:42:56 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2008/10/20 22:41:38 | 00,000,000 | -H-- | M] () -- C:\Documents and Settings\Richard\Local Settings\Application Data\IconCache.db
[2008/10/20 21:24:05 | 00,024,064 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\english paper.doc
[2008/10/20 21:24:05 | 00,000,162 | -H-- | M] () -- C:\Documents and Settings\Richard\Desktop\~$glish paper.doc
[2008/10/20 21:22:39 | 00,002,497 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\Microsoft Office Word 2003.lnk
[2008/10/20 20:00:00 | 00,000,560 | ---- | M] () -- C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - Richard.job
[2008/10/18 22:08:46 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2008/10/18 22:08:46 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2008/10/18 21:44:29 | 00,250,032 | ---- | M] () -- C:\ntldr
[2008/10/18 21:36:42 | 02,951,296 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\kid rock - pimp of the nation.mp3
[2008/10/18 20:50:50 | 07,024,330 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\rick james - Standing on the top (feat. the Temptations).mp3
[2008/10/15 22:18:50 | 00,241,536 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/10/15 22:16:05 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2008/10/14 20:31:17 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2008/10/14 20:28:21 | 00,000,611 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\NTREGOPT.lnk
[2008/10/14 20:28:21 | 00,000,592 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\ERUNT.lnk
[2008/10/13 15:05:53 | 05,544,263 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\Incan Pan Pipes.mp3
[2008/10/13 14:18:16 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2008/10/10 15:40:42 | 03,676,822 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\Ghost Lullaby.mp3
[2008/10/07 12:19:42 | 16,721,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2008/10/03 10:41:15 | 06,066,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieframe.dll
[2008/10/03 10:41:15 | 06,066,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2008/09/30 11:27:37 | 36,130,820 | ---- | M] () -- C:\Documents and Settings\Richard\Desktop\ccc_the_truth.mpg
[2008/09/21 00:03:08 | 00,000,812 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Yahoo! Messenger.lnk
< End of report >
  • 0

#15
gr8joel
Posted 21 October 2008 - 01:06 PM

gr8joel

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 200 posts
sorry for the mistake heir, even though i didnt overlap, i can assure you that everything has been posted with nothing left out. thanks again for your time. once this is done , then i too will join GeekU. i am so looking foward to learning about how to stop viruses and protect against them . ive always been into computers and stuff like that. once again thanks very much heir.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP