Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

help me with malware please

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

help me with malware please

Unread postby neildush » April 10th, 2007, 5:07 pm

Please could someone help me remove some malware I have on my system?

I keep getting pop up windows and messages coming up refering to:


any purpose loan
ad server plus
your debts
broadcaster.com
yourdebts.co.uk
debt-solution.co.uk
getmusicfree.com
casale
loopylove

I have run vundofix, avg spyware, a-squared anti malware and spybot but the problem still persists. It seems to be a similar fault to this thread:

http://www.malwareremoval.com/forum/viewtop ... 55d0992e08

Here is my hijack this log:

Logfile of HijackThis v1.99.1
Scan saved at 22:08:48, on 10/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\vVX3000.exe
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\alg.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: 0 - {8BC64626-ADC8-4E9F-689B-A91D1B5D5760} - C:\Program Files\MSN Gaming Zone\rybi.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {EAB009A4-744E-409A-A60D-A6AD0B713F34} - C:\Program Files\Online Services\nipybalo.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [OemReset] %systemroot%\OPTIONS\OEMRESET.EXE /AUDIT
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 4.6\THGuard.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156297066
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156286962
O17 - HKLM\System\CCS\Services\Tcpip\..\{9378AC09-ACA3-47F9-85D0-7916189DB920}: NameServer = 4.2.2.1,4.2.2.2
O20 - AppInit_DLLs: dxclib303562752.dll
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Thank you for your help.
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London
Advertisement
Register to Remove

Unread postby Vino Rosso » April 10th, 2007, 7:13 pm

Hi neildush and welcome to the Malware Removal forums.
My name is Vino Rosso - if it helps, you can call me Vino for short. I would be glad to take a look at your log and help you with solving any malware problems.

HijackThis logs can take a little time to research so please be patient and I'd be grateful if you would note the following:
  • I will working on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Finally, please reply to this thread. Do not start a new topic.
1 - ComboFix
Download ComboFix from >here< to your Desktop
Double click combofix.exe follow the prompts
When finished, the program will produce a log
Please post the log in your next reply

Please Note:
  • Do not mouse click in the combofix window while it is running - this may cause your system to hang/crash.
  • Disable Script Blocking if you have Norton Antivirus installed as it will interfere with the normal working of ComboFix.
  • Trojan Hunter has been reported to detect this tool as Worm.Qiv.100 - please ignore this, it's a false-positive.
2 - Check on status
After you have completed the above, please reboot and provide:
  1. the ComboFix report
  2. a new HijackThis log
Thanks
Vino
User avatar
Vino Rosso
Admin/Teacher Emeritus
 
Posts: 9024
Joined: April 24th, 2006, 8:36 am
Location: Gloria Jean's in Murray St. Mall (I wish!)

Hi Vino

Unread postby neildush » April 10th, 2007, 7:40 pm

Thank you for your help:

Here is my combifix log:

"Neil D" - 07-04-11 0:34:26 Service Pack 2
ComboFix 07-04-05 - Running from: "C:\Documents and Settings\Neil D\Desktop"


(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\DOCUME~1\NEILD~1\APPLIC~1\Dxcdmns.dll
C:\WINDOWS\system32\bund1\ClientBundle1.exe
C:\WINDOWS\system32\bund1\temp.txt
C:\WINDOWS\system32\bund1


((((((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))


-------\LEGACY_MCHINJDRV


((((((((((((((((((((((((((((((( Files Created from 2007-03-11 to 2007-04-11 ))))))))))))))))))))))))))))))))))


2007-04-10 23:34 <DIR> d-------- C:\Program Files\CCleaner
2007-04-10 23:33 1,168 --a------ C:\WINDOWS\mozver.dat
2007-04-10 23:25 0 --a------ C:\WINDOWS\nsreg.dat
2007-04-10 08:37 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2007-04-10 03:09 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\TrojanHunter
2007-04-10 03:02 <DIR> d-------- C:\WINDOWS\system32\PreInstall
2007-04-10 03:01 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2007-04-10 01:28 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2007-04-10 01:17 <DIR> d-------- C:\Program Files\Java
2007-04-10 01:16 <DIR> d-------- C:\Program Files\Common Files\Java
2007-04-10 00:59 <DIR> d-------- C:\Program Files\TrojanHunter 4.6
2007-04-10 00:59 <DIR> d-------- C:\Program Files\a-squared Anti-Malware
2007-04-10 00:37 <DIR> d-------- C:\VundoFix Backups
2007-04-10 00:29 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2007-04-10 00:29 53,760 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2007-04-10 00:29 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2007-04-10 00:29 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2007-04-10 00:29 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2007-04-10 00:29 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
2007-04-10 00:29 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
2007-04-10 00:29 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
2007-04-10 00:29 <DIR> d-------- C:\Program Files\Google
2007-04-10 00:29 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Google
2007-04-10 00:29 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
2007-04-10 00:28 <DIR> d-------- C:\Program Files\Microsoft LifeCam
2007-04-10 00:27 <DIR> d-------- C:\WINDOWS\RegisteredPackages
2007-04-10 00:26 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2007-04-10 00:11 <DIR> d-------- C:\WINDOWS\Prefetch
2007-04-09 23:57 9,216 --------- C:\WINDOWS\system32\proxycfg.exe
2007-04-09 23:57 59,392 --------- C:\WINDOWS\system32\logman.exe
2007-04-09 23:56 95,424 --------- C:\WINDOWS\system32\drivers\slnthal.sys
2007-04-09 23:56 940,544 --a------ C:\WINDOWS\system32\wmspdmoe.dll
2007-04-09 23:56 88,064 --------- C:\WINDOWS\system32\p2pnetsh.dll
2007-04-09 23:56 870,784 --------- C:\WINDOWS\system32\ati3d1ag.dll
2007-04-09 23:56 86,016 --------- C:\WINDOWS\system32\p2pgasvc.dll
2007-04-09 23:56 86,016 --------- C:\WINDOWS\system32\mdmxsdk.dll
2007-04-09 23:56 81,920 --------- C:\WINDOWS\system32\ieencode.dll
2007-04-09 23:56 81,408 --------- C:\WINDOWS\system32\wscsvc.dll
2007-04-09 23:56 8,192 --------- C:\WINDOWS\system32\smbinst.exe
2007-04-09 23:56 8,192 --------- C:\WINDOWS\system32\bitsprx2.dll
2007-04-09 23:56 78,464 --------- C:\WINDOWS\system32\drivers\usbvideo.sys
2007-04-09 23:56 75,776 --------- C:\WINDOWS\system32\strmfilt.dll
2007-04-09 23:56 73,832 --------- C:\WINDOWS\system32\slcoinst.dll
2007-04-09 23:56 73,796 --------- C:\WINDOWS\system32\slserv.exe
2007-04-09 23:56 73,216 --------- C:\WINDOWS\system32\drivers\atintuxx.sys
2007-04-09 23:56 71,680 --------- C:\WINDOWS\system32\blastcln.exe
2007-04-09 23:56 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-04-09 23:56 7,680 --------- C:\WINDOWS\system32\kbdsmsno.dll
2007-04-09 23:56 7,680 --------- C:\WINDOWS\system32\kbdsmsfi.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\kbdukx.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\kbdno1.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\kbdfi1.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2007-04-09 23:56 685,056 --------- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2007-04-09 23:56 67,584 --------- C:\WINDOWS\system32\drivers\sdbus.sys
2007-04-09 23:56 63,663 --------- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2007-04-09 23:56 63,488 --------- C:\WINDOWS\system32\drivers\atinxsxx.sys
2007-04-09 23:56 60,416 --------- C:\WINDOWS\system32\fwcfg.dll
2007-04-09 23:56 6,656 --------- C:\WINDOWS\system32\kbdinmal.dll
2007-04-09 23:56 6,656 --------- C:\WINDOWS\system32\kbdinben.dll
2007-04-09 23:56 6,144 --------- C:\WINDOWS\system32\kbdmlt48.dll
2007-04-09 23:56 6,144 --------- C:\WINDOWS\system32\kbdmlt47.dll
2007-04-09 23:56 6,144 --------- C:\WINDOWS\system32\kbdinbe1.dll
2007-04-09 23:56 6,016 --------- C:\WINDOWS\system32\drivers\smbali.sys
2007-04-09 23:56 59,648 --------- C:\WINDOWS\system32\drivers\rfcomm.sys
2007-04-09 23:56 57,856 --------- C:\WINDOWS\system32\drivers\atinbtxx.sys
2007-04-09 23:56 56,623 --------- C:\WINDOWS\system32\drivers\ati1btxx.sys
2007-04-09 23:56 526,848 --------- C:\WINDOWS\system32\p2psvc.dll
2007-04-09 23:56 52,224 --------- C:\WINDOWS\system32\drivers\atinraxx.sys
2007-04-09 23:56 516,768 --------- C:\WINDOWS\system32\ativvaxx.dll
2007-04-09 23:56 50,688 --------- C:\WINDOWS\system32\btpanui.dll
2007-04-09 23:56 50,176 --------- C:\WINDOWS\system32\xmlprovi.dll
2007-04-09 23:56 5,632 --------- C:\WINDOWS\system32\kbdmaori.dll
2007-04-09 23:56 49,152 --------- C:\WINDOWS\system32\powercfg.exe
2007-04-09 23:56 48,640 --------- C:\WINDOWS\system32\pnrpnsp.dll
2007-04-09 23:56 46,464 --------- C:\WINDOWS\system32\drivers\gagp30kx.sys
2007-04-09 23:56 452,736 --------- C:\WINDOWS\system32\drivers\mtxparhm.sys
2007-04-09 23:56 44,672 --------- C:\WINDOWS\system32\drivers\uagp35.sys
2007-04-09 23:56 44,032 --------- C:\WINDOWS\system32\twext.dll
2007-04-09 23:56 438,784 --------- C:\WINDOWS\system32\xpob2res.dll
2007-04-09 23:56 413,944 --a------ C:\WINDOWS\system32\wmspdmod.dll
2007-04-09 23:56 404,990 --------- C:\WINDOWS\system32\drivers\slntamr.sys
2007-04-09 23:56 4,255 --------- C:\WINDOWS\system32\drivers\adv01nt5.dll
2007-04-09 23:56 397,056 --------- C:\WINDOWS\system32\s3gnb.dll
2007-04-09 23:56 384,512 --------- C:\WINDOWS\system32\mp4sdmod.dll
2007-04-09 23:56 38,016 --------- C:\WINDOWS\system32\drivers\bthmodem.sys
2007-04-09 23:56 377,984 --------- C:\WINDOWS\system32\ati2dvaa.dll
2007-04-09 23:56 36,463 --------- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2007-04-09 23:56 36,096 --------- C:\WINDOWS\system32\drivers\intelppm.sys
2007-04-09 23:56 35,456 --------- C:\WINDOWS\system32\drivers\bthprint.sys
2007-04-09 23:56 34,735 --------- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2007-04-09 23:56 327,040 --------- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2007-04-09 23:56 32,866 --------- C:\WINDOWS\system32\slrundll.exe
2007-04-09 23:56 32,866 --------- C:\WINDOWS\slrundll.exe
2007-04-09 23:56 32,768 --------- C:\WINDOWS\system32\ativtmxx.dll
2007-04-09 23:56 32,285 --------- C:\WINDOWS\system32\hsfcisp2.dll
2007-04-09 23:56 312,320 --------- C:\WINDOWS\system32\p2pgraph.dll
2007-04-09 23:56 310,272 --------- C:\WINDOWS\system32\mp43dmod.dll
2007-04-09 23:56 31,744 --------- C:\WINDOWS\system32\drivers\atinxbxx.sys
2007-04-09 23:56 30,671 --------- C:\WINDOWS\system32\drivers\ati1raxx.sys
2007-04-09 23:56 30,208 --------- C:\WINDOWS\system32\bthserv.dll
2007-04-09 23:56 30,080 --------- C:\WINDOWS\system32\drivers\rndismpx.sys
2007-04-09 23:56 3,967 --------- C:\WINDOWS\system32\drivers\adv02nt5.dll
2007-04-09 23:56 3,901 --------- C:\WINDOWS\system32\drivers\siint5.dll
2007-04-09 23:56 3,775 --------- C:\WINDOWS\system32\drivers\adv11nt5.dll
2007-04-09 23:56 3,711 --------- C:\WINDOWS\system32\drivers\adv09nt5.dll
2007-04-09 23:56 3,647 --------- C:\WINDOWS\system32\drivers\adv07nt5.dll
2007-04-09 23:56 3,615 --------- C:\WINDOWS\system32\drivers\adv05nt5.dll
2007-04-09 23:56 3,135 --------- C:\WINDOWS\system32\drivers\adv08nt5.dll
2007-04-09 23:56 29,455 --------- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2007-04-09 23:56 29,184 --------- C:\WINDOWS\system32\sdhcinst.dll
2007-04-09 23:56 29,056 --------- C:\WINDOWS\system32\drivers\ip6fw.sys
2007-04-09 23:56 286,792 --------- C:\WINDOWS\system32\slextspk.dll
2007-04-09 23:56 28,672 --------- C:\WINDOWS\system32\drivers\atinsnxx.sys
2007-04-09 23:56 274,304 --------- C:\WINDOWS\system32\drivers\bthport.sys
2007-04-09 23:56 262,784 --------- C:\WINDOWS\system32\drivers\http.sys
2007-04-09 23:56 26,367 --------- C:\WINDOWS\system32\drivers\ati1snxx.sys
2007-04-09 23:56 25,600 --------- C:\WINDOWS\system32\drivers\hidbth.sys
2007-04-09 23:56 25,471 --------- C:\WINDOWS\system32\drivers\watv10nt.sys
2007-04-09 23:56 25,471 --------- C:\WINDOWS\system32\drivers\atv04nt5.dll
2007-04-09 23:56 25,088 --a------ C:\WINDOWS\system32\MsPMSNSv.dll
2007-04-09 23:56 24,576 --------- C:\WINDOWS\system32\httpapi.dll
2007-04-09 23:56 233,472 --------- C:\WINDOWS\system32\wmpdxm.dll
2007-04-09 23:56 23,040 --a------ C:\WINDOWS\system32\fltmc.exe
2007-04-09 23:56 229,376 --------- C:\WINDOWS\system32\ati2cqag.dll
2007-04-09 23:56 220,032 --------- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2007-04-09 23:56 22,271 --------- C:\WINDOWS\system32\drivers\watv06nt.sys
2007-04-09 23:56 21,343 --------- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2007-04-09 23:56 21,183 --------- C:\WINDOWS\system32\drivers\atv01nt5.dll
2007-04-09 23:56 201,728 --------- C:\WINDOWS\system32\ati2dvag.dll
2007-04-09 23:56 20,992 --------- C:\WINDOWS\system32\bthci.dll
2007-04-09 23:56 2,113,536 --------- C:\WINDOWS\system32\dxdiagn.dll
2007-04-09 23:56 193,024 --------- C:\WINDOWS\system32\fsquirt.exe
2007-04-09 23:56 188,508 --------- C:\WINDOWS\system32\slgen.dll
2007-04-09 23:56 180,360 --------- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2007-04-09 23:56 18,944 --------- C:\WINDOWS\system32\drivers\bthusb.sys
2007-04-09 23:56 17,408 --------- C:\WINDOWS\system32\winshfhc.dll
2007-04-09 23:56 17,279 --------- C:\WINDOWS\system32\drivers\atv10nt5.dll
2007-04-09 23:56 17,024 --------- C:\WINDOWS\system32\drivers\bthenum.sys
2007-04-09 23:56 168,448 --------- C:\WINDOWS\system32\wmerror.dll
2007-04-09 23:56 166,912 --------- C:\WINDOWS\system32\drivers\s3gnbm.sys
2007-04-09 23:56 16,896 --a------ C:\WINDOWS\system32\fltlib.dll
2007-04-09 23:56 150,016 --a------ C:\WINDOWS\system32\wmidx.dll
2007-04-09 23:56 15,872 --------- C:\WINDOWS\system32\w3ssl.dll
2007-04-09 23:56 15,488 --------- C:\WINDOWS\system32\drivers\mssmbios.sys
2007-04-09 23:56 15,423 --------- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2007-04-09 23:56 15,104 --------- C:\WINDOWS\system32\drivers\hidir.sys
2007-04-09 23:56 14,336 --------- C:\WINDOWS\system32\drivers\atinpdxx.sys
2007-04-09 23:56 14,336 --------- C:\WINDOWS\system32\auditusr.exe
2007-04-09 23:56 14,143 --------- C:\WINDOWS\system32\drivers\atv06nt5.dll
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\wscntfy.exe
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\drivers\atinttxx.sys
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\drivers\atinmdxx.sys
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\cmsetacl.dll
2007-04-09 23:56 13,776 --------- C:\WINDOWS\system32\drivers\recagent.sys
2007-04-09 23:56 13,568 --------- C:\WINDOWS\system32\drivers\wacompen.sys
2007-04-09 23:56 13,240 --------- C:\WINDOWS\system32\drivers\slwdmsup.sys
2007-04-09 23:56 129,536 --------- C:\WINDOWS\system32\xmlprov.dll
2007-04-09 23:56 129,535 --------- C:\WINDOWS\system32\drivers\slnt7554.sys
2007-04-09 23:56 128,896 --------- C:\WINDOWS\system32\drivers\fltmgr.sys
2007-04-09 23:56 126,686 --------- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2007-04-09 23:56 12,672 --------- C:\WINDOWS\system32\drivers\usb8023x.sys
2007-04-09 23:56 12,672 --------- C:\WINDOWS\system32\drivers\mutohpen.sys
2007-04-09 23:56 12,047 --------- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2007-04-09 23:56 118,784 --------- C:\WINDOWS\system32\msdadiag.dll
2007-04-09 23:56 116,224 --------- C:\WINDOWS\system32\p2p.dll
2007-04-09 23:56 114,688 --------- C:\WINDOWS\system32\wmpasf.dll
2007-04-09 23:56 11,935 --------- C:\WINDOWS\system32\drivers\wadv11nt.sys
2007-04-09 23:56 11,871 --------- C:\WINDOWS\system32\drivers\wadv09nt.sys
2007-04-09 23:56 11,868 --------- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2007-04-09 23:56 11,807 --------- C:\WINDOWS\system32\drivers\wadv07nt.sys
2007-04-09 23:56 11,615 --------- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2007-04-09 23:56 11,359 --------- C:\WINDOWS\system32\drivers\atv02nt5.dll
2007-04-09 23:56 11,325 --------- C:\WINDOWS\system32\drivers\vchnt5.dll
2007-04-09 23:56 11,295 --------- C:\WINDOWS\system32\drivers\wadv08nt.sys
2007-04-09 23:56 11,136 --------- C:\WINDOWS\system32\drivers\sffdisk.sys
2007-04-09 23:56 108,032 --------- C:\WINDOWS\system32\wshbth.dll
2007-04-09 23:56 104,960 --------- C:\WINDOWS\system32\drivers\atinrvxx.sys
2007-04-09 23:56 100,992 --------- C:\WINDOWS\system32\drivers\bthpan.sys
2007-04-09 23:56 10,240 --------- C:\WINDOWS\system32\drivers\sffp_sd.sys
2007-04-09 23:56 1,888,992 --------- C:\WINDOWS\system32\ati3duag.dll
2007-04-09 23:56 1,737,856 --------- C:\WINDOWS\system32\mtxparhd.dll
2007-04-09 23:56 1,689,088 --------- C:\WINDOWS\system32\d3d9.dll
2007-04-09 23:56 1,309,184 --------- C:\WINDOWS\system32\drivers\mtlstrm.sys
2007-04-09 23:56 1,119,744 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2007-04-09 23:56 1,041,536 --------- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2007-04-09 23:56 1,003,008 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2007-04-09 23:56 <DIR> d-------- C:\WINDOWS\provisioning
2007-04-09 23:56 <DIR> d-------- C:\WINDOWS\peernet
2007-04-09 23:52 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2007-04-09 23:48 2,897,920 --------- C:\WINDOWS\system32\xpsp2res.dll
2007-04-09 23:45 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2007-04-09 23:42 <DIR> d-------- C:\WINDOWS\EHome
2007-04-09 23:14 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-04-09 23:13 <DIR> d-------- C:\WINDOWS\system32\ZoneLabs
2007-04-09 23:12 <DIR> d-------- C:\WINDOWS\Internet Logs
2007-04-09 23:05 465,176 --a------ C:\WINDOWS\system32\wuapi.dll
2007-04-09 23:05 41,240 --a------ C:\WINDOWS\system32\wups.dll
2007-04-09 23:05 194,328 --a------ C:\WINDOWS\system32\wuaueng1.dll
2007-04-09 23:05 18,200 --a------ C:\WINDOWS\system32\wups2.dll
2007-04-09 23:05 172,312 --a------ C:\WINDOWS\system32\wuauclt1.exe
2007-04-09 23:05 127,256 --a------ C:\WINDOWS\system32\wucltui.dll
2007-04-09 23:04 <DIR> d-------- C:\WINDOWS\SoftwareDistribution
2007-04-09 22:41 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-04-09 22:38 <DIR> d-------- C:\Program Files\Common Files\Hewlett-Packard
2007-04-09 22:37 94,208 --a------ C:\WINDOWS\system32\HPZipt12.dll
2007-04-09 22:37 69,632 --a------ C:\WINDOWS\system32\HPZipm12.exe
2007-04-09 22:37 61,440 --a------ C:\WINDOWS\system32\HPZinw12.exe
2007-04-09 22:37 57,344 --a------ C:\WINDOWS\system32\HPZisn12.dll
2007-04-09 22:37 278,584 --a------ C:\WINDOWS\system32\HPZidr12.dll
2007-04-09 22:37 204,800 --a------ C:\WINDOWS\system32\HPZipr12.dll
2007-04-09 22:36 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Help
2007-04-09 22:35 <DIR> d-------- C:\Program Files\HP
2007-04-09 22:33 8,464 --a------ C:\WINDOWS\system32\sporder.dll
2007-04-09 22:33 72,320 --a------ C:\WINDOWS\system32\drivers\core.sys
2007-04-09 22:33 105,434 --a------ C:\WINDOWS\VTTC.exe
2007-04-09 22:33 <DIR> d-------- C:\Temp\tn3
2007-04-09 22:33 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Skype
2007-04-09 22:32 68,302 --a------ C:\WINDOWS\hpoins05.dat
2007-04-09 22:32 51,120 --a------ C:\WINDOWS\system32\drivers\HPZid412.sys
2007-04-09 22:32 21,744 --a------ C:\WINDOWS\system32\drivers\HPZius12.sys
2007-04-09 22:32 19,696 --------- C:\WINDOWS\hpomdl05.dat
2007-04-09 22:32 16,496 --a------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2007-04-09 22:32 <DIR> d-------- C:\WINDOWS\system32\micro1
2007-04-09 22:32 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
2007-04-09 22:31 581,632 --a------ C:\WINDOWS\system32\hpotscl.dll
2007-04-09 22:31 393,216 --a------ C:\WINDOWS\system32\hpzcon12.dll
2007-04-09 22:31 278,528 --a------ C:\WINDOWS\system32\hpgwiamd.dll
2007-04-09 22:31 274,432 --a------ C:\WINDOWS\system32\HPZc3212.dll
2007-04-09 22:31 229,376 --a------ C:\WINDOWS\system32\hpovst08.dll
2007-04-09 22:31 196,608 --a------ C:\WINDOWS\system32\hpzcoi12.dll
2007-04-09 22:31 139,345 --a------ C:\WINDOWS\system32\hpzlnt12.dll
2007-04-09 22:31 <DIR> d-------- C:\Program Files\Skype
2007-04-09 22:30 <DIR> d-------- C:\Temp\HP_WebRelease
2007-04-09 22:30 <DIR> d-------- C:\Temp
2007-04-09 22:18 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2007-04-09 22:17 <DIR> d-------- C:\WINDOWS\MaxSecureBackup
2007-04-09 22:16 63 --a------ C:\WINDOWS\system\SYSRegC.dll
2007-04-09 22:16 143,360 --a------ C:\WINDOWS\system32\GetHardDiskNo.dll
2007-04-09 22:16 1,007,616 --a------ C:\WINDOWS\system32\VchReg.dll
2007-04-09 22:16 <DIR> d-------- C:\Program Files\Max Registry Cleaner
2007-04-09 22:15 <DIR> d-------- C:\Program Files\Lavasoft
2007-04-09 22:15 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Lavasoft
2007-04-09 22:14 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-04-09 22:13 <DIR> d-------- C:\Program Files\Microsoft IntelliPoint 5.2
2007-04-09 22:12 23,040 --a------ C:\WINDOWS\system32\drivers\mouclass.sys
2007-04-09 22:12 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2007-04-09 22:11 97,792 --a------ C:\WINDOWS\system32\LGUICOM.DLL
2007-04-09 22:11 70,801 --a------ C:\WINDOWS\system32\drivers\LMouFlt2.Sys
2007-04-09 22:11 51,729 --------- C:\WINDOWS\system32\drivers\L8042PR2.SYS
2007-04-09 22:11 37,887 --------- C:\WINDOWS\system32\drivers\LHIDUSB.SYS
2007-04-09 22:11 3,568 --a------ C:\WINDOWS\system32\LMOUSE16.DLL
2007-04-09 22:11 25,505 --a------ C:\WINDOWS\system32\drivers\LHidFlt2.Sys
2007-04-09 22:11 23,375 --------- C:\WINDOWS\system32\LCOINST.DLL
2007-04-09 22:11 19,968 --------- C:\WINDOWS\LOGI_MWX.EXE
2007-04-09 22:11 16,896 --a------ C:\WINDOWS\system32\LMOUSE32.DLL
2007-04-09 22:11 152,064 --------- C:\WINDOWS\system32\lmoufrc.dll
2007-04-09 22:11 14,095 --------- C:\WINDOWS\system32\drivers\LCCFLTR.SYS
2007-04-09 22:11 104,960 --a------ C:\WINDOWS\system32\COMNCTR.DLL
2007-04-09 22:11 <DIR> d-------- C:\Program Files\Logitech
2007-04-09 22:11 <DIR> d-------- C:\Program Files\Common Files\Logitech
2007-04-09 22:09 24,576 --a------ C:\WINDOWS\system32\drivers\kbdclass.sys
2007-04-09 22:09 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
2007-04-09 22:05 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
2007-04-09 22:05 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
2007-04-09 21:59 <DIR> d-------- C:\Swsetup
2007-04-09 21:59 <DIR> d-------- C:\Program Files\Hewlett-Packard
2007-04-09 20:23 <DIR> d---s---- C:\DOCUME~1\NEILD~1\UserData
2007-04-09 20:17 140,416 -ra------ C:\WINDOWS\system32\drivers\rt2500usb.sys
2007-04-09 20:15 98,304 --a------ C:\WINDOWS\system32\nvudisp.exe
2007-04-09 20:04 198,424 --a------ C:\WINDOWS\system32\iuengine.dll
2007-04-09 19:46 707 --a------ C:\WINDOWS\_default.pif
2007-04-09 19:46 337,920 --a------ C:\WINDOWS\system32\zipfldr.dll
2007-04-09 19:46 187,392 --a------ C:\WINDOWS\system32\xpsp1res.dll
2007-04-09 19:45 99,328 --a------ C:\WINDOWS\system32\winscard.dll
2007-04-09 19:45 984,576 --a------ C:\WINDOWS\system32\syssetup.dll
2007-04-09 19:45 983,552 --a------ C:\WINDOWS\system32\setupapi.dll
2007-04-09 19:45 98,304 --a------ C:\WINDOWS\system32\verifier.exe
2007-04-09 19:45 98,304 --a------ C:\WINDOWS\system32\slbiop.dll
2007-04-09 19:45 98,304 --a------ C:\WINDOWS\system32\rtm.dll
2007-04-09 19:45 96,768 --a------ C:\WINDOWS\system32\srvsvc.dll
2007-04-09 19:45 96,768 --a------ C:\WINDOWS\system32\psbase.dll
2007-04-09 19:45 96,256 --a------ C:\WINDOWS\system32\drivers\scsiport.sys
2007-04-09 19:45 95,744 --a------ C:\WINDOWS\system32\scardsvr.exe
2007-04-09 19:45 94,784 --a------ C:\WINDOWS\twain.dll
2007-04-09 19:45 937,984 --a------ C:\WINDOWS\system32\winbrand.dll
2007-04-09 19:45 93,696 --a------ C:\WINDOWS\system32\tscfgwmi.dll
2007-04-09 19:45 92,672 --a------ C:\WINDOWS\system32\wlnotify.dll
2007-04-09 19:45 92,168 --a------ C:\WINDOWS\system32\rdpdd.dll
2007-04-09 19:45 91,648 --a------ C:\WINDOWS\system32\xactsrv.dll
2007-04-09 19:45 90,624 --a------ C:\WINDOWS\system32\trkwks.dll
2007-04-09 19:45 90,112 --a------ C:\WINDOWS\system32\rsvpsp.dll
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\sprestrt.exe
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\sfc.exe
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\rsvpperf.dll
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\reset.exe
2007-04-09 19:45 9,344 --a------ C:\WINDOWS\system32\vga.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\wshatm.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\winfax.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\wifeman.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\subst.exe
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\scrnsave.scr
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\print.exe
2007-04-09 19:45 9,008 --a------ C:\WINDOWS\system32\ver.dll
2007-04-09 19:45 9,008 --a------ C:\WINDOWS\system\VER.DLL
2007-04-09 19:45 895,736 --a------ C:\WINDOWS\system32\wmvdmod.dll
2007-04-09 19:45 89,600 --a------ C:\WINDOWS\system32\smlogsvc.exe
2007-04-09 19:45 89,088 --a------ C:\WINDOWS\system32\rasauto.dll
2007-04-09 19:45 882 --a------ C:\WINDOWS\system32\share.exe
2007-04-09 19:45 87,176 --a------ C:\WINDOWS\system32\rdpwsx.dll
2007-04-09 19:45 858,624 --a------ C:\WINDOWS\system32\tapi3.dll
2007-04-09 19:45 83,456 --a------ C:\WINDOWS\system32\olepro32.dll
2007-04-09 19:45 82,944 --a------ C:\WINDOWS\system32\ws2_32.dll
2007-04-09 19:45 82,944 --a------ C:\WINDOWS\system32\olecli.dll
2007-04-09 19:45 82,944 --a------ C:\WINDOWS\system\OLECLI.DLL
2007-04-09 19:45 82,432 --a------ C:\WINDOWS\system32\ufat.dll
2007-04-09 19:45 8,832 --a------ C:\WINDOWS\system32\drivers\rasacd.sys
2007-04-09 19:45 8,192 --a------ C:\WINDOWS\system32\qosname.dll
2007-04-09 19:45 8,192 --a------ C:\WINDOWS\system32\psnppagn.dll
2007-04-09 19:45 79,744 --a------ C:\WINDOWS\system32\drivers\videoprt.sys
2007-04-09 19:45 78,848 --a------ C:\WINDOWS\system32\tapiui.dll
2007-04-09 19:45 774,904 --a------ C:\WINDOWS\system32\wmsdmod.dll
2007-04-09 19:45 77,824 --a------ C:\WINDOWS\system32\wmpstub.exe
2007-04-09 19:45 77,824 --a------ C:\WINDOWS\system32\shrpubw.exe
2007-04-09 19:45 77,312 --a------ C:\WINDOWS\system32\sdbinst.exe
2007-04-09 19:45 77,312 --a------ C:\WINDOWS\system32\rtcshare.exe
2007-04-09 19:45 764,928 --a------ C:\WINDOWS\system32\winntbbu.dll
2007-04-09 19:45 75,776 --a------ C:\WINDOWS\system32\wiascr.dll
2007-04-09 19:45 74,752 --a------ C:\WINDOWS\system32\spoolss.dll
2007-04-09 19:45 74,752 --a------ C:\WINDOWS\system32\olecli32.dll
2007-04-09 19:45 74,240 --a------ C:\WINDOWS\system32\unimdmat.dll
2007-04-09 19:45 733,696 --a------ C:\WINDOWS\system32\qedwipes.dll
2007-04-09 19:45 73,472 --a------ C:\WINDOWS\system32\drivers\sr.sys
2007-04-09 19:45 723,456 --a------ C:\WINDOWS\system32\userenv.dll
2007-04-09 19:45 716,288 --a------ C:\WINDOWS\system32\wmadmoe.dll
2007-04-09 19:45 713,728 --a------ C:\WINDOWS\system32\opengl32.dll
2007-04-09 19:45 713,216 --a------ C:\WINDOWS\system32\sxs.dll
2007-04-09 19:45 71,680 --a------ C:\WINDOWS\system32\ssdpsrv.dll
2007-04-09 19:45 704,512 --a------ C:\WINDOWS\system32\ss3dfo.scr
2007-04-09 19:45 70,144 --a------ C:\WINDOWS\system32\sigverif.exe
2007-04-09 19:45 7,680 --a------ C:\WINDOWS\system32\vcdex.dll
2007-04-09 19:45 7,168 --a------ C:\WINDOWS\system32\wshnetbs.dll
2007-04-09 19:45 7,168 --a------ C:\WINDOWS\system32\recover.exe
2007-04-09 19:45 69,632 --a------ C:\WINDOWS\system32\scarddlg.dll
2007-04-09 19:45 69,632 --a------ C:\WINDOWS\system32\raschap.dll
2007-04-09 19:45 69,120 --a------ C:\WINDOWS\system32\olethk32.dll
2007-04-09 19:45 69,120 --a------ C:\WINDOWS\system32\drivers\psched.sys
2007-04-09 19:45 68,224 --a------ C:\WINDOWS\system32\drivers\pci.sys
2007-04-09 19:45 68,096 --a------ C:\WINDOWS\system32\webclnt.dll
2007-04-09 19:45 68,096 --a------ C:\WINDOWS\system32\shgina.dll
2007-04-09 19:45 679,936 --a------ C:\WINDOWS\system32\sstext3d.scr
2007-04-09 19:45 67,584 --a------ C:\WINDOWS\system32\sti.dll
2007-04-09 19:45 67,584 --a------ C:\WINDOWS\system32\srclient.dll
2007-04-09 19:45 67,584 --a------ C:\WINDOWS\system32\osuninst.dll
2007-04-09 19:45 67,072 --a------ C:\WINDOWS\system32\rdshost.exe
2007-04-09 19:45 66,176 --a------ C:\WINDOWS\system32\drivers\udfs.sys
2007-04-09 19:45 657,920 --a------ C:\WINDOWS\system32\rasdlg.dll
2007-04-09 19:45 65,536 --a------ C:\WINDOWS\system32\wshext.dll
2007-04-09 19:45 65,536 --a------ C:\WINDOWS\system32\wextract.exe
2007-04-09 19:45 65,536 --a------ C:\WINDOWS\system32\shimeng.dll
2007-04-09 19:45 64,896 --a------ C:\WINDOWS\system32\drivers\serial.sys
2007-04-09 19:45 64,000 --a------ C:\WINDOWS\system32\samlib.dll
2007-04-09 19:45 62,976 --a------ C:\WINDOWS\system32\pautoenr.dll
2007-04-09 19:45 62,464 --a------ C:\WINDOWS\system32\rdpclip.exe
2007-04-09 19:45 610,304 --a------ C:\WINDOWS\system32\sspipes.scr
2007-04-09 19:45 61,440 --a------ C:\WINDOWS\system32\rasman.dll
2007-04-09 19:45 60,416 --a------ C:\WINDOWS\system32\remotepg.dll
2007-04-09 19:45 6,784 --a------ C:\WINDOWS\system32\drivers\parvdm.sys
2007-04-09 19:45 6,656 --a------ C:\WINDOWS\system32\wuauserv.dll
2007-04-09 19:45 6,656 --a------ C:\WINDOWS\system32\sensapi.dll
2007-04-09 19:45 6,656 --a------ C:\WINDOWS\system32\routetab.dll
2007-04-09 19:45 6,144 --a------ C:\WINDOWS\system32\svcpack.dll
2007-04-09 19:45 59,904 --a------ C:\WINDOWS\system32\regsvc.dll
2007-04-09 19:45 589,312 --a------ C:\WINDOWS\system32\wiashext.dll
2007-04-09 19:45 581,120 --a------ C:\WINDOWS\system32\rpcrt4.dll
2007-04-09 19:45 58,880 --a------ C:\WINDOWS\system32\resutils.dll
2007-04-09 19:45 58,880 --a------ C:\WINDOWS\system32\rastapi.dll
2007-04-09 19:45 58,368 --a------ C:\WINDOWS\system32\packager.exe
2007-04-09 19:45 577,536 --a------ C:\WINDOWS\system32\user32.dll
2007-04-09 19:45 57,856 --a------ C:\WINDOWS\system32\synceng.dll
2007-04-09 19:45 57,856 --a------ C:\WINDOWS\system32\spoolsv.exe
2007-04-09 19:45 57,856 --a------ C:\WINDOWS\system32\scripto.dll
2007-04-09 19:45 57,600 --a------ C:\WINDOWS\system32\drivers\usbhub.sys
2007-04-09 19:45 562,176 --a------ C:\WINDOWS\system32\qedit.dll
2007-04-09 19:45 560,640 --a------ C:\WINDOWS\system32\printui.dll
2007-04-09 19:45 56,832 --a------ C:\WINDOWS\system32\sol.exe
2007-04-09 19:45 56,832 --a------ C:\WINDOWS\system32\rasphone.exe
2007-04-09 19:45 56,320 --a------ C:\WINDOWS\system32\servdeps.dll
2007-04-09 19:45 553,472 --a------ C:\WINDOWS\system32\oleaut32.dll
2007-04-09 19:45 55,808 --a------ C:\WINDOWS\system32\secur32.dll
2007-04-09 19:45 55,296 --a------ C:\WINDOWS\system32\sendmail.dll
2007-04-09 19:45 549,376 --a------ C:\WINDOWS\system32\shdoclc.dll
2007-04-09 19:45 54,272 --a------ C:\WINDOWS\system32\stclient.dll
2007-04-09 19:45 538,624 --a------ C:\WINDOWS\system32\spider.exe
2007-04-09 19:45 53,760 --a------ C:\WINDOWS\system32\winsta.dll
2007-04-09 19:45 52,352 --a------ C:\WINDOWS\system32\drivers\volsnap.sys
2007-04-09 19:45 52,224 --a------ C:\WINDOWS\system32\tsappcmp.dll
2007-04-09 19:45 51,712 --a------ C:\WINDOWS\system32\vdmredir.dll
2007-04-09 19:45 51,456 --a------ C:\WINDOWS\system32\vga256.dll
2007-04-09 19:45 51,328 --a------ C:\WINDOWS\system32\drivers\rasl2tp.sys
2007-04-09 19:45 51,200 --a------ C:\WINDOWS\system32\wmerrenu.dll
2007-04-09 19:45 51,200 --a------ C:\WINDOWS\system32\syncapp.exe
2007-04-09 19:45 502,272 --a------ C:\WINDOWS\system32\winlogon.exe
2007-04-09 19:45 50,688 --a------ C:\WINDOWS\twain_32.dll
2007-04-09 19:45 50,688 --a------ C:\WINDOWS\system32\wstdecod.dll
2007-04-09 19:45 50,688 --a------ C:\WINDOWS\system32\smss.exe
2007-04-09 19:45 50,176 --a------ C:\WINDOWS\system32\utilman.exe
2007-04-09 19:45 50,176 --a------ C:\WINDOWS\system32\reg.exe
2007-04-09 19:45 50,176 --a------ C:\WINDOWS\system32\proquota.exe
2007-04-09 19:45 5,888 --a------ C:\WINDOWS\system32\drivers\rootmdm.sys
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\write.exe
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\wmi.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\winver.exe
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\tapiperf.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\softpub.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\skdll.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\security.dll
2007-04-09 19:45 5,504 --a------ C:\WINDOWS\system32\drivers\perc2hib.sys
2007-04-09 19:45 5,376 --a------ C:\WINDOWS\system32\drivers\viaide.sys
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system32\winnls.dll
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system32\shell.dll
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system32\sfc.dll
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system\SHELL.DLL
2007-04-09 19:45 49,680 --a------ C:\WINDOWS\twunk_16.exe
2007-04-09 19:45 49,664 --a------ C:\WINDOWS\system32\w32tm.exe
2007-04-09 19:45 49,664 --a------ C:\WINDOWS\system32\regapi.dll
2007-04-09 19:45 49,179 --a------ C:\WINDOWS\system32\sqlwoa.dll
2007-04-09 19:45 49,152 --a------ C:\WINDOWS\system32\wdigest.dll
2007-04-09 19:45 49,152 --a------ C:\WINDOWS\system32\rsmui.exe
2007-04-09 19:45 49,152 --a------ C:\WINDOWS\system32\rsm.exe
2007-04-09 19:45 49,024 --a------ C:\WINDOWS\system32\drivers\ql1280.sys
2007-04-09 19:45 48,384 --a------ C:\WINDOWS\system32\drivers\raspptp.sys
2007-04-09 19:45 47,872 --a------ C:\WINDOWS\system32\user.exe
2007-04-09 19:45 47,104 --a------ C:\WINDOWS\system32\ssmypics.scr
2007-04-09 19:45 463,360 --a------ C:\WINDOWS\system32\wiadefui.dll
2007-04-09 19:45 46,592 --a------ C:\WINDOWS\system32\pmspl.dll
2007-04-09 19:45 45,568 --a------ C:\WINDOWS\system32\tcpmonui.dll
2007-04-09 19:45 45,568 --a------ C:\WINDOWS\system32\tcpmon.dll
2007-04-09 19:45 45,568 --a------ C:\WINDOWS\system32\safrslv.dll
2007-04-09 19:45 45,312 --a------ C:\WINDOWS\system32\drivers\ql12160.sys
2007-04-09 19:45 446,464 --a------ C:\WINDOWS\system32\wmvdmoe.dll
2007-04-09 19:45 442,368 --a------ C:\WINDOWS\system32\sqlsrv32.dll
2007-04-09 19:45 44,544 --a------ C:\WINDOWS\system32\tscupgrd.exe
2007-04-09 19:45 44,032 --a------ C:\WINDOWS\system32\rtutils.dll
2007-04-09 19:45 438,272 --a------ C:\WINDOWS\system32\shimgvw.dll
2007-04-09 19:45 433,664 --a------ C:\WINDOWS\system32\wiaacmgr.exe
2007-04-09 19:45 430,592 --a------ C:\WINDOWS\system32\vssapi.dll
2007-04-09 19:45 43,520 --a------ C:\WINDOWS\system32\safrcdlg.dll
2007-04-09 19:45 43,520 --a------ C:\WINDOWS\system32\racpldlg.dll
2007-04-09 19:45 43,520 --a------ C:\WINDOWS\system32\pstorec.dll
2007-04-09 19:45 42,496 --a------ C:\WINDOWS\system32\wsnmp32.dll
2007-04-09 19:45 42,496 --a------ C:\WINDOWS\system32\shmgrate.exe
2007-04-09 19:45 417,792 --a------ C:\WINDOWS\system32\vbscript.dll
2007-04-09 19:45 415,744 --a------ C:\WINDOWS\system32\samsrv.dll
2007-04-09 19:45 414,208 --a------ C:\WINDOWS\system32\setupdll.dll
2007-04-09 19:45 41,472 --a------ C:\WINDOWS\system32\drivers\raspppoe.sys
2007-04-09 19:45 406,528 --a------ C:\WINDOWS\system32\usp10.dll
2007-04-09 19:45 40,448 --a------ C:\WINDOWS\system32\webhits.dll
2007-04-09 19:45 40,448 --a------ C:\WINDOWS\system32\osuninst.exe
2007-04-09 19:45 40,448 --a------ C:\WINDOWS\system32\drivers\ql1240.sys
2007-04-09 19:45 40,320 --a------ C:\WINDOWS\system32\drivers\ql1080.sys
2007-04-09 19:45 4,992 --a------ C:\WINDOWS\system32\drivers\toside.sys
2007-04-09 19:45 4,736 --a------ C:\WINDOWS\system32\drivers\usbd.sys
2007-04-09 19:45 4,608 --a------ C:\WINDOWS\system32\vjoy.dll
2007-04-09 19:45 4,608 --a------ C:\WINDOWS\system32\regwiz.exe
2007-04-09 19:45 4,518 --a------ C:\WINDOWS\system32\oembios.dat
2007-04-09 19:45 4,352 --a------ C:\WINDOWS\system32\drivers\wmilib.sys
2007-04-09 19:45 4,224 --a------ C:\WINDOWS\system32\drivers\rdpcdd.sys
2007-04-09 19:45 4,208 --a------ C:\WINDOWS\system32\storage.dll
2007-04-09 19:45 4,096 --a------ C:\WINDOWS\system32\unlodctr.exe
2007-04-09 19:45 4,096 --a------ C:\WINDOWS\system32\rdpcfgex.dll
2007-04-09 19:45 397,824 --a------ C:\WINDOWS\system32\rpcss.dll
2007-04-09 19:45 397,824 --a------ C:\WINDOWS\system32\regwizc.dll
2007-04-09 19:45 396,528 --a------ C:\WINDOWS\system32\wmadmod.dll
2007-04-09 19:45 393,216 --a------ C:\WINDOWS\system32\ssflwbox.scr
2007-04-09 19:45 39,936 --a------ C:\WINDOWS\system32\rshx32.dll
2007-04-09 19:45 39,936 --a------ C:\WINDOWS\system32\perfctrs.dll
2007-04-09 19:45 39,744 --a------ C:\WINDOWS\system32\ole2.dll
2007-04-09 19:45 385,536 --a------ C:\WINDOWS\system32\themeui.dll
2007-04-09 19:45 385,024 --a------ C:\WINDOWS\system32\qdvd.dll
2007-04-09 19:45 382,464 --a------ C:\WINDOWS\system32\qmgr.dll
2007-04-09 19:45 38,912 --a------ C:\WINDOWS\system32\sens.dll
2007-04-09 19:45 378,368 --a------ C:\WINDOWS\system32\wzcdlg.dll
2007-04-09 19:45 37,888 --a------ C:\WINDOWS\system32\olecnv32.dll
2007-04-09 19:45 363,008 --a------ C:\WINDOWS\system32\smlogcfg.dll
2007-04-09 19:45 36,864 --a------ C:\WINDOWS\system32\syskey.exe
2007-04-09 19:45 36,736 --a------ C:\WINDOWS\system32\drivers\ultra.sys
2007-04-09 19:45 359,808 --a------ C:\WINDOWS\system32\drivers\tcpip.sys
2007-04-09 19:45 358,400 --a------ C:\WINDOWS\system32\termmgr.dll
2007-04-09 19:45 351,232 --a------ C:\WINDOWS\system32\winhttp.dll
2007-04-09 19:45 35,840 --a------ C:\WINDOWS\system32\umandlg.dll
2007-04-09 19:45 35,840 --a------ C:\WINDOWS\system32\rcimlby.exe
2007-04-09 19:45 35,328 --a------ C:\WINDOWS\system32\winchat.exe
2007-04-09 19:45 35,328 --a------ C:\WINDOWS\system32\pifmgr.dll
2007-04-09 19:45 34,816 --a------ C:\WINDOWS\system32\ssdpapi.dll
2007-04-09 19:45 34,816 --a------ C:\WINDOWS\system32\perfproc.dll
2007-04-09 19:45 34,560 --a------ C:\WINDOWS\system32\drivers\wanarp.sys
2007-04-09 19:45 34,432 --a------ C:\WINDOWS\system32\drivers\rawwan.sys
2007-04-09 19:45 34,304 --a------ C:\WINDOWS\system32\pstorsvc.dll
2007-04-09 19:45 332,928 --a------ C:\WINDOWS\system32\drivers\srv.sys
2007-04-09 19:45 33,792 --a------ C:\WINDOWS\system32\WMDMPS.dll
2007-04-09 19:45 33,792 --a------ C:\WINDOWS\system32\vssadmin.exe
2007-04-09 19:45 33,792 --a------ C:\WINDOWS\system32\regini.exe
2007-04-09 19:45 33,280 --a------ C:\WINDOWS\system32\rundll32.exe
2007-04-09 19:45 33,280 --a------ C:\WINDOWS\system32\ping6.exe
2007-04-09 19:45 33,152 --a------ C:\WINDOWS\system32\drivers\ql10wnt.sys
2007-04-09 19:45 32,768 --a------ C:\WINDOWS\system32\winipsec.dll
2007-04-09 19:45 32,640 --a------ C:\WINDOWS\system32\drivers\symc8xx.sys
2007-04-09 19:45 32,256 --a------ C:\WINDOWS\system32\wupdmgr.exe
2007-04-09 19:45 32,256 --a------ C:\WINDOWS\system32\wpnpinst.exe
2007-04-09 19:45 32,256 --a------ C:\WINDOWS\system32\wpabaln.exe
2007-04-09 19:45 316,416 --a------ C:\WINDOWS\system32\untfs.dll
2007-04-09 19:45 313,856 --a------ C:\WINDOWS\system32\scesrv.dll
2007-04-09 19:45 311,327 --a------ C:\WINDOWS\system32\wmv8dmod.dll
2007-04-09 19:45 31,744 --a------ C:\WINDOWS\system32\tracert6.exe
2007-04-09 19:45 31,744 --a------ C:\WINDOWS\system32\rtipxmib.dll
2007-04-09 19:45 31,232 --a------ C:\WINDOWS\system32\traffic.dll
2007-04-09 19:45 31,232 --a------ C:\WINDOWS\system32\sethc.exe
2007-04-09 19:45 31,232 --a------ C:\WINDOWS\system32\sc.exe
2007-04-09 19:45 306,176 --a------ C:\WINDOWS\system32\slbcsp.dll
2007-04-09 19:45 303,616 --a------ C:\WINDOWS\system32\wmstream.dll
2007-04-09 19:45 30,749 --a------ C:\WINDOWS\system32\vbajet32.dll
2007-04-09 19:45 30,720 --a------ C:\WINDOWS\system32\xcopy.exe
2007-04-09 19:45 30,720 --a------ C:\WINDOWS\system32\plustab.dll
2007-04-09 19:45 30,688 --a------ C:\WINDOWS\system32\drivers\sym_u3.sys
2007-04-09 19:45 30,080 --a------ C:\WINDOWS\system32\drivers\rndismp.sys
2007-04-09 19:45 3,708 --a------ C:\WINDOWS\system32\pubprn.vbs
2007-04-09 19:45 3,584 --a------ C:\WINDOWS\system32\riched32.dll
2007-04-09 19:45 3,584 --a------ C:\WINDOWS\system32\regedt32.exe
2007-04-09 19:45 3,456 --a------ C:\WINDOWS\system32\drivers\oprghdlr.sys
2007-04-09 19:45 3,338 --a------ C:\WINDOWS\system32\redir.exe
2007-04-09 19:45 3,328 --a------ C:\WINDOWS\system32\drivers\pciide.sys
2007-04-09 19:45 3,072 --a------ C:\WINDOWS\system32\systray.exe
2007-04-09 19:45 3,072 --a------ C:\WINDOWS\system32\rnr20.dll
2007-04-09 19:45 295,424 --a------ C:\WINDOWS\system32\termsrv.dll
2007-04-09 19:45 291,840 --a------ C:\WINDOWS\system32\winsrv.dll
2007-04-09 19:45 29,696 --a------ C:\WINDOWS\system32\safrdm.dll
2007-04-09 19:45 29,184 --a------ C:\WINDOWS\system32\sendcmsg.dll
2007-04-09 19:45 289,792 --a------ C:\WINDOWS\system32\vssvc.exe
2007-04-09 19:45 287,263 --a------ C:\WINDOWS\system32\vmhelper.dll
2007-04-09 19:45 283,648 --a------ C:\WINDOWS\winhlp32.exe
2007-04-09 19:45 283,648 --a------ C:\WINDOWS\system32\pdh.dll
2007-04-09 19:45 28,672 --a------ C:\WINDOWS\system32\wshcon.dll
2007-04-09 19:45 28,626 --a------ C:\WINDOWS\system32\perfd009.dat
2007-04-09 19:45 28,384 --a------ C:\WINDOWS\system32\drivers\sym_hi.sys
2007-04-09 19:45 28,160 --a------ C:\WINDOWS\system32\WMDMLOG.dll
2007-04-09 19:45 279,040 --a------ C:\WINDOWS\system32\qdv.dll
2007-04-09 19:45 275,456 --a------ C:\WINDOWS\system32\ulib.dll
2007-04-09 19:45 272,128 --a------ C:\WINDOWS\system32\perfi009.dat
2007-04-09 19:45 270,848 --a------ C:\WINDOWS\system32\sbe.dll
2007-04-09 19:45 27,648 --a------ C:\WINDOWS\system32\shscrap.dll
2007-04-09 19:45 27,648 --a------ C:\WINDOWS\system32\profmap.dll
2007-04-09 19:45 27,440 --a------ C:\WINDOWS\system32\drivers\secdrv.sys
2007-04-09 19:45 27,296 --a------ C:\WINDOWS\system32\drivers\perc2.sys
2007-04-09 19:45 264,192 --a------ C:\WINDOWS\system32\wow32.dll
2007-04-09 19:45 26,624 --a------ C:\WINDOWS\system32\scredir.dll
2007-04-09 19:45 26,624 --a------ C:\WINDOWS\system32\perfdisk.dll
2007-04-09 19:45 26,112 --a------ C:\WINDOWS\system32\vdmdbg.dll
2007-04-09 19:45 26,112 --a------ C:\WINDOWS\system32\skeys.exe
2007-04-09 19:45 256,192 --a------ C:\WINDOWS\winhelp.exe
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\twunk_32.exe
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\system32\utildll.dll
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\system32\udhisapi.dll
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\system32\routemon.exe
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\slayerxp.dll
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\shfolder.dll
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\perfos.dll
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\drivers\pciidex.sys
2007-04-09 19:45 249,344 --a------ C:\WINDOWS\system32\tapisrv.dll
2007-04-09 19:45 246,814 --a------ C:\WINDOWS\system32\strmdll.dll
2007-04-09 19:45 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2007-04-09 19:45 24,603 --a------ C:\WINDOWS\system32\sqlwid.dll
2007-04-09 19:45 24,576 --a------ C:\WINDOWS\system32\userinit.exe
2007-04-09 19:45 24,576 --a------ C:\WINDOWS\system32\rsmsink.exe
2007-04-09 19:45 24,064 --a------ C:\WINDOWS\system32\olesvr.dll
2007-04-09 19:45 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL
2007-04-09 19:45 239,616 --a------ C:\WINDOWS\system32\upnpui.dll
2007-04-09 19:45 239,104 --a------ C:\WINDOWS\system32\srrstr.dll
2007-04-09 19:45 236,544 --a------ C:\WINDOWS\system32\rasapi32.dll
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\sort.exe
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\sfmapi.dll
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\rsvpmsg.dll
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\rasrad.dll
2007-04-09 19:45 23,040 --a------ C:\WINDOWS\system32\setup.exe
2007-04-09 19:45 23,040 --a------ C:\WINDOWS\system32\psapi.dll
2007-04-09 19:45 225,664 --a------ C:\WINDOWS\system32\drivers\tcpip6.sys
2007-04-09 19:45 224,768 --a------ C:\WINDOWS\system32\wmasf.dll
2007-04-09 19:45 221,184 --a------ C:\WINDOWS\system32\qasf.dll
2007-04-09 19:45 22,528 --a------ C:\WINDOWS\system32\wsock32.dll
2007-04-09 19:45 22,528 --a------ C:\WINDOWS\system32\rasmxs.dll
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\w32topl.dll
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\rpcns4.dll
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\qwinsta.exe
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\olesvr32.dll
2007-04-09 19:45 218,624 --a------ C:\WINDOWS\system32\uxtheme.dll
2007-04-09 19:45 215,552 --a------ C:\WINDOWS\system32\osk.exe
2007-04-09 19:45 21,896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2007-04-09 19:45 21,504 --a------ C:\WINDOWS\system32\rcp.exe
2007-04-09 19:45 21,504 --a------ C:\WINDOWS\system32\pathping.exe
2007-04-09 19:45 209,408 --a------ C:\WINDOWS\system32\drivers\update.sys
2007-04-09 19:45 208,896 --a------ C:\WINDOWS\system32\wavemsp.dll
2007-04-09 19:45 206,336 --a------ C:\WINDOWS\system32\rasppp.dll
2007-04-09 19:45 202,240 --a------ C:\WINDOWS\system32\drivers\rmcast.sys
2007-04-09 19:45 20,992 --a------ C:\WINDOWS\system32\ssmarque.scr
2007-04-09 19:45 20,992 --a------ C:\WINDOWS\system32\sclgntfy.dll
2007-04-09 19:45 20,992 --a------ C:\WINDOWS\system32\drivers\vga.sys
2007-04-09 19:45 20,535 --a------ C:\WINDOWS\system32\vfpodbc.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\wmpui.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\wmpcore.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\wmpcd.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\qprocess.exe
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\drivers\usbuhci.sys
2007-04-09 19:45 2,940,928 --a------ C:\WINDOWS\system32\wmploc.dll
2007-04-09 19:45 2,864 --a------ C:\WINDOWS\system32\winsock.dll
2007-04-09 19:45 2,736 --a------ C:\WINDOWS\system32\wowdeb.exe
2007-04-09 19:45 2,112 --a------ C:\WINDOWS\system32\winspool.exe
2007-04-09 19:45 192,512 --a------ C:\WINDOWS\system32\qcap.dll
2007-04-09 19:45 191,488 --a------ C:\WINDOWS\system32\syncui.dll
2007-04-09 19:45 190,976 --a------ C:\WINDOWS\system32\schedsvc.dll
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\wshtcpip.dll
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\ws2help.dll
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\ssbezier.scr
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\route.exe
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\rdpsnd.dll
2007-04-09 19:45 19,456 --a------ C:\WINDOWS\system32\tcpsvcs.exe
2007-04-09 19:45 19,456 --a------ C:\WINDOWS\system32\shutdown.exe
2007-04-09 19:45 19,200 --a------ C:\WINDOWS\system32\tapi.dll
2007-04-09 19:45 19,200 --a------ C:\WINDOWS\system\TAPI.DLL
2007-04-09 19:45 19,072 --a------ C:\WINDOWS\system32\drivers\sparrow.sys
2007-04-09 19:45 185,344 --a------ C:\WINDOWS\system32\upnphost.dll
2007-04-09 19:45 182,272 --a------ C:\WINDOWS\system32\snmpsnap.dll
2007-04-09 19:45 181,760 --a------ C:\WINDOWS\system32\tapi32.dll
2007-04-09 19:45 180,800 --a------ C:\WINDOWS\system32\sqlunirl.dll
2007-04-09 19:45 180,224 --a------ C:\WINDOWS\system32\scecli.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\vmmreg32.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\wmiprop.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\winstrm.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\version.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\ssmyst.scr
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\snmpapi.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\seclogon.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\rsmps.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2007-04-09 19:45 18,896 --a------ C:\WINDOWS\system32\sysedit.exe
2007-04-09 19:45 18,688 --a------ C:\WINDOWS\system32\drivers\partmgr.sys
2007-04-09 19:45 18,560 --a------ C:\WINDOWS\system32\drivers\tdi.sys
2007-04-09 19:45 18,432 --a------ C:\WINDOWS\system32\wtsapi32.dll
2007-04-09 19:45 18,432 --a------ C:\WINDOWS\system32\win.com
2007-04-09 19:45 18,432 --a------ C:\WINDOWS\system32\ups.exe
2007-04-09 19:45 18,176 --a------ C:\WINDOWS\system32\vga64k.dll
2007-04-09 19:45 177,856 --a------ C:\WINDOWS\system32\typelib.dll
2007-04-09 19:45 176,640 --a------ C:\WINDOWS\system32\wintrust.dll
2007-04-09 19:45 176,128 --a------ C:\WINDOWS\system32\winmm.dll
2007-04-09 19:45 176,128 --a------ C:\WINDOWS\system32\photowiz.dll
2007-04-09 19:45 174,592 --a------ C:\WINDOWS\system32\w32time.dll
2007-04-09 19:45 174,592 --a------ C:\WINDOWS\system32\drivers\rdbss.sys
2007-04-09 19:45 174,200 --a------ C:\WINDOWS\system32\xenroll.dll
2007-04-09 19:45 172,032 --a------ C:\WINDOWS\system32\wldap32.dll
2007-04-09 19:45 171,549 --a------ C:\WINDOWS\system32\wjview.exe
2007-04-09 19:45 171,008 --a------ C:\WINDOWS\system32\sccsccp.dll
2007-04-09 19:45 170,496 --a------ C:\WINDOWS\system32\srsvc.dll
2007-04-09 19:45 17,920 --a------ C:\WINDOWS\system32\ureg.dll
2007-04-09 19:45 17,920 --a------ C:\WINDOWS\system32\ping.exe
2007-04-09 19:45 17,792 --a------ C:\WINDOWS\system32\drivers\ptilink.sys
2007-04-09 19:45 17,664 --a------ C:\WINDOWS\system32\watchdog.sys
2007-04-09 19:45 17,408 --a------ C:\WINDOWS\system32\powrprof.dll
2007-04-09 19:45 169,984 --a------ C:\WINDOWS\system32\sccbase.dll
2007-04-09 19:45 169,520 --a------ C:\WINDOWS\system32\ole2disp.dll
2007-04-09 19:45 163,328 --a------ C:\WINDOWS\system32\oleacc.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\winrnr.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\vss_ps.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\usbmon.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\upnpcont.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\tsshutdn.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\tftp.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\rassapi.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\qappsrv.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\perfnet.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\oleaccrc.dll
2007-04-09 19:45 16,512 --a------ C:\WINDOWS\system32\drivers\raspti.sys
2007-04-09 19:45 16,384 --a------ C:\WINDOWS\system32\tskill.exe
2007-04-09 19:45 16,384 --a------ C:\WINDOWS\system32\runas.exe
2007-04-09 19:45 16,384 --a------ C:\WINDOWS\system32\prflbmsg.dll
2007-04-09 19:45 16,256 --a------ C:\WINDOWS\system32\drivers\symc810.sys
2007-04-09 19:45 159,744 --a------ C:\WINDOWS\system32\scrobj.dll
2007-04-09 19:45 159,232 --a------ C:\WINDOWS\system32\sbeio.dll
2007-04-09 19:45 153,008 --a------ C:\WINDOWS\system32\ole2nls.dll
2007-04-09 19:45 152,576 --a------ C:\WINDOWS\system32\rsaenh.dll
2007-04-09 19:45 151,552 --a------ C:\WINDOWS\system32\shmedia.dll
2007-04-09 19:45 151,552 --a------ C:\WINDOWS\system32\scrrun.dll
2007-04-09 19:45 15,872 --a------ C:\WINDOWS\system32\sysinv.dll
2007-04-09 19:45 15,872 --a------ C:\WINDOWS\system32\rwinsta.exe
2007-04-09 19:45 15,872 --a------ C:\WINDOWS\system32\perfmon.exe
2007-04-09 19:45 15,488 --a------ C:\WINDOWS\system32\drivers\serenum.sys
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\TASKMAN.EXE
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\system32\tsd32.dll
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\system32\taskman.exe
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\system32\pentnt.exe
2007-04-09 19:45 147,968 --a------ C:\WINDOWS\system32\rdchost.dll
2007-04-09 19:45 145,408 --a------ C:\WINDOWS\system32\wiavusd.dll
2007-04-09 19:45 144,896 --a------ C:\WINDOWS\system32\schannel.dll
2007-04-09 19:45 143,360 --a------ C:\WINDOWS\system32\rasmontr.dll
2007-04-09 19:45 142,976 --a------ C:\WINDOWS\system32\drivers\usbport.sys
2007-04-09 19:45 140,800 --a------ C:\WINDOWS\system32\sessmgr.exe
2007-04-09 19:45 140,288 --a------ C:\WINDOWS\system32\sfc_os.dll
2007-04-09 19:45 14,976 --a------ C:\WINDOWS\system32\drivers\tape.sys
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\tscon.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\tcpmib.dll
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\stimon.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\slbrccsp.dll
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\shadow.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\serwvdrv.dll
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\rsh.exe
2007-04-09 19:45 14,592 --a------ C:\WINDOWS\system32\drivers\smclib.sys
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\wship6.dll
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\svchost.exe
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\ssstars.scr
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\serialui.dll
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\runonce.exe
2007-04-09 19:45 139,528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2007-04-09 19:45 138,752 --a------ C:\WINDOWS\system32\swprv.dll
2007-04-09 19:45 138,752 --a------ C:\WINDOWS\system32\sndvol32.exe
2007-04-09 19:45 136,704 --a------ C:\WINDOWS\system32\sti_ci.dll
2007-04-09 19:45 135,680 --a------ C:\WINDOWS\system32\webvw.dll
2007-04-09 19:45 135,680 --a------ C:\WINDOWS\system32\taskmgr.exe
2007-04-09 19:45 132,608 --a------ C:\WINDOWS\system32\upnp.dll
2007-04-09 19:45 132,608 --a------ C:\WINDOWS\system32\rsvp.exe
2007-04-09 19:45 132,096 --a------ C:\WINDOWS\system32\wkssvc.dll
2007-04-09 19:45 131,584 --a------ C:\WINDOWS\system32\sndrec32.exe
2007-04-09 19:45 130,048 --a------ C:\WINDOWS\system32\sdpblb.dll
2007-04-09 19:45 13,888 --a------ C:\WINDOWS\system32\toolhelp.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\uniplat.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\sisbkup.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\senscfg.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\rexec.exe
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\rdsaddin.exe
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\win87em.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\verifier.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\umdmxfrm.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\sigtab.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\savedump.exe
2007-04-09 19:45 124,416 --a------ C:\WINDOWS\system32\wiadss.dll
2007-04-09 19:45 124,184 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-04-09 19:45 123,392 --a------ C:\WINDOWS\system32\umpnpmgr.dll
2007-04-09 19:45 122,880 --a------ C:\WINDOWS\system32\oledlg.dll
2007-04-09 19:45 121,856 --a------ C:\WINDOWS\system32\stobject.dll
2007-04-09 19:45 120,832 --a------ C:\WINDOWS\system32\offfilt.dll
2007-04-09 19:45 12,800 --a------ C:\WINDOWS\system32\replace.exe
2007-04-09 19:45 12,800 --a------ C:\WINDOWS\system32\rasser.dll
2007-04-09 19:45 12,672 --a------ C:\WINDOWS\system32\drivers\usb8023.sys
2007-04-09 19:45 12,288 --a------ C:\WINDOWS\system32\tracert.exe
2007-04-09 19:45 12,288 --a------ C:\WINDOWS\system32\tcmsetup.exe
2007-04-09 19:45 12,288 --a------ C:\WINDOWS\system32\perfts.dll
2007-04-09 19:45 12,168 --a------ C:\WINDOWS\system32\tsddd.dll
2007-04-09 19:45 12,040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2007-04-09 19:45 12,032 --a------ C:\WINDOWS\system32\drivers\ws2ifsl.sys
2007-04-09 19:45 119,936 --a------ C:\WINDOWS\system32\drivers\pcmcia.sys
2007-04-09 19:45 119,808 --a------ C:\WINDOWS\system32\winmine.exe
2007-04-09 19:45 118,784 --a------ C:\WINDOWS\system32\scardssp.dll
2007-04-09 19:45 118,272 --a------ C:\WINDOWS\system32\t2embed.dll
2007-04-09 19:45 115,200 --a------ C:\WINDOWS\system32\wmsdmoe.dll
2007-04-09 19:45 114,688 --a------ C:\WINDOWS\system32\wscript.exe
2007-04-09 19:45 112,128 --a------ C:\WINDOWS\system32\rastls.dll
2007-04-09 19:45 111,104 --a------ C:\WINDOWS\system32\wiavideo.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\wshrm.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\wshisn.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\winmsd.exe
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\regsvr32.exe
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\rasctrs.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\rasautou.exe
2007-04-09 19:45 11,753 --a------ C:\WINDOWS\system32\setver.exe
2007-04-09 19:45 11,392 --a------ C:\WINDOWS\system32\drivers\sfloppy.sys
2007-04-09 19:45 11,264 --a------ C:\WINDOWS\system32\tree.com
2007-04-09 19:45 11,264 --a------ C:\WINDOWS\system32\rasdial.exe
2007-04-09 19:45 109,568 --a------ C:\WINDOWS\system32\progman.exe
2007-04-09 19:45 108,032 --a------ C:\WINDOWS\system32\services.exe
2007-04-09 19:45 107,520 --a------ C:\WINDOWS\system32\rend.dll
2007-04-09 19:45 107,008 --a------ C:\WINDOWS\system32\oleprn.dll
2007-04-09 19:45 105,984 --a------ C:\WINDOWS\system32\sysocmgr.exe
2007-04-09 19:45 105,472 --a------ C:\WINDOWS\system32\polstore.dll
2007-04-09 19:45 102,400 --a------ C:\WINDOWS\system32\wmpshell.dll
2007-04-09 19:45 102,400 --a------ C:\WINDOWS\system32\rcbdyctl.dll
2007-04-09 19:45 101,888 --a------ C:\WINDOWS\system32\win32spl.dll
2007-04-09 19:45 101,376 --a------ C:\WINDOWS\system32\txflog.dll
2007-04-09 19:45 10,752 --a------ C:\WINDOWS\system32\pschdprf.dll
2007-04-09 19:45 10,368 --a------ C:\WINDOWS\system32\wowexec.exe
2007-04-09 19:45 10,240 --a------ C:\WINDOWS\system32\panmap.dll
2007-04-09 19:45 1,843,584 --a------ C:\WINDOWS\system32\win32k.sys
2007-04-09 19:45 1,677,312 --a------ C:\WINDOWS\system32\wmvcore2.dll
2007-04-09 19:45 1,580,544 --a------ C:\WINDOWS\system32\sfcfiles.dll
2007-04-09 19:45 1,435,648 --a------ C:\WINDOWS\system32\query.dll
2007-04-09 19:45 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-04-09 19:45 1,287,168 --a------ C:\WINDOWS\system32\quartz.dll
2007-04-09 19:45 1,285,120 --a------ C:\WINDOWS\system32\ole32.dll
2007-04-09 19:45 1,161 --a------ C:\WINDOWS\system32\usrlogon.cmd
2007-04-09 19:45 1,027,072 --a------ C:\WINDOWS\system32\wmnetmgr.dll
2007-04-09 19:44 994,304 --a------ C:\WINDOWS\system32\msgina.dll
2007-04-09 19:44 99,840 --a------ C:\WINDOWS\system32\mprmsg.dll
2007-04-09 19:44 981,760 --a------ C:\WINDOWS\system32\mfc42u.dll
2007-04-09 19:44 97,280 --a------ C:\WINDOWS\system32\loadperf.dll
2007-04-09 19:44 96,768 --a------ C:\WINDOWS\system32\logagent.exe
2007-04-09 19:44 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll
2007-04-09 19:44 945,693 --a------ C:\WINDOWS\system32\msjava.dll
2007-04-09 19:44 94,282 --a------ C:\WINDOWS\system32\msencode.dll
2007-04-09 19:44 94,208 --a------ C:\WINDOWS\system32\odbcint.dll
2007-04-09 19:44 927,504 --a------ C:\WINDOWS\system32\mfc40u.dll
2007-04-09 19:44 924,432 --a------ C:\WINDOWS\system32\mfc40.dll
2007-04-09 19:44 91,776 --a------ C:\WINDOWS\system32\drivers\ndiswan.sys
2007-04-09 19:44 91,136 --a------ C:\WINDOWS\system32\ntprint.dll
2007-04-09 19:44 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll
2007-04-09 19:44 90,624 --a------ C:\WINDOWS\system32\mydocs.dll
2007-04-09 19:44 90,112 --a------ C:\WINDOWS\system32\mycomput.dll
2007-04-09 19:44 9,936 --a------ C:\WINDOWS\system32\lzexpand.dll
2007-04-09 19:44 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL
2007-04-09 19:44 9,600 --a------ C:\WINDOWS\system32\drivers\ndistapi.sys
2007-04-09 19:44 9,216 --a------ C:\WINDOWS\system32\lprmonui.dll
2007-04-09 19:44 89,600 --a------ C:\WINDOWS\system32\langwrbk.dll
2007-04-09 19:44 884,736 --a------ C:\WINDOWS\system32\msimsg.dll
2007-04-09 19:44 88,448 --a------ C:\WINDOWS\system32\drivers\nwlnkipx.sys
2007-04-09 19:44 875,008 --a------ C:\WINDOWS\system32\netplwiz.dll
2007-04-09 19:44 87,040 --a------ C:\WINDOWS\system32\mprapi.dll
2007-04-09 19:44 86,016 --a------ C:\WINDOWS\system32\netsh.exe
2007-04-09 19:44 86,016 --a------ C:\WINDOWS\system32\msapsspc.dll
2007-04-09 19:44 85,504 --a------ C:\WINDOWS\system32\makecab.exe
2007-04-09 19:44 84,480 --a------ C:\WINDOWS\system32\mciavi32.dll
2007-04-09 19:44 831,519 --a------ C:\WINDOWS\system32\mswdat10.dll
2007-04-09 19:44 817 --a------ C:\WINDOWS\system32\mscdexnt.exe
2007-04-09 19:44 815,104 --a------ C:\WINDOWS\system32\mmc.exe
2007-04-09 19:44 80,896 --a------ C:\WINDOWS\system32\netui0.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\ntlsapi.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\mountvol.exe
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\mciole16.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\mag_hook.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\lpr.exe
2007-04-09 19:44 78,848 --a------ C:\WINDOWS\system32\msiexec.exe
2007-04-09 19:44 76,800 --a------ C:\WINDOWS\system32\nslookup.exe
2007-04-09 19:44 75,264 --a------ C:\WINDOWS\system32\locator.exe
2007-04-09 19:44 741 --a------ C:\WINDOWS\system32\noise.dat
2007-04-09 19:44 74,240 --a------ C:\WINDOWS\system32\mscms.dll
2007-04-09 19:44 73,802 --a------ C:\WINDOWS\system32\msrclr40.dll
2007-04-09 19:44 721,920 --a------ C:\WINDOWS\system32\lsasrv.dll
2007-04-09 19:44 72,704 --a------ C:\WINDOWS\system32\msw3prt.dll
2007-04-09 19:44 72,704 --a------ C:\WINDOWS\system32\magnify.exe
2007-04-09 19:44 71,680 --a------ C:\WINDOWS\system32\msacm32.dll
2007-04-09 19:44 701,440 --a------ C:\WINDOWS\system32\msxml2.dll
2007-04-09 19:44 70,656 --a------ C:\WINDOWS\system32\mmcbase.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\ncxpnt.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\mll_mtf.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\mciole32.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\drivers\mcd.sys
2007-04-09 19:44 7,168 --a------ C:\WINDOWS\system32\msr2cenu.dll
2007-04-09 19:44 7,168 --a------ C:\WINDOWS\system32\mscat32.dll
2007-04-09 19:44 7,052 --a------ C:\WINDOWS\system32\nlsfunc.exe
2007-04-09 19:44 69,632 --a------ C:\WINDOWS\system32\odbcconf.exe
2007-04-09 19:44 69,632 --a------ C:\WINDOWS\system32\msr2c.dll
2007-04-09 19:44 69,632 --a------ C:\WINDOWS\system32\msconf.dll
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\system32\notepad.exe
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\system32\msctfp.dll
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\system32\mprddm.dll
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\notepad.exe
2007-04-09 19:44 68,768 --a------ C:\WINDOWS\system32\mmsystem.dll
2007-04-09 19:44 68,768 --a------ C:\WINDOWS\system\mmsystem.dll
2007-04-09 19:44 673,088 --a------ C:\WINDOWS\system32\mlang.dat
2007-04-09 19:44 67,072 --a------ C:\WINDOWS\system32\ntdsapi.dll
2007-04-09 19:44 66,560 --a------ C:\WINDOWS\system32\mtxclu.dll
2007-04-09 19:44 655,360 --a------ C:\WINDOWS\system32\mstscax.dll
2007-04-09 19:44 65,536 --a------ C:\WINDOWS\system32\odbccu32.dll
2007-04-09 19:44 65,536 --a------ C:\WINDOWS\system32\odbccr32.dll
2007-04-09 19:44 65,024 --a------ C:\WINDOWS\system32\msaudite.dll
2007-04-09 19:44 63,232 --a------ C:\WINDOWS\system32\drivers\nwlnknb.sys
2007-04-09 19:44 622,080 --a------ C:\WINDOWS\system32\netcfgx.dll
2007-04-09 19:44 614,429 --a------ C:\WINDOWS\system32\mswstr10.dll
2007-04-09 19:44 61,440 --a------ C:\WINDOWS\system32\msvcrt40.dll
2007-04-09 19:44 61,168 --a------ C:\WINDOWS\system32\msacm.dll
2007-04-09 19:44 60,928 --a------ C:\WINDOWS\system32\ocmanage.dll
2007-04-09 19:44 60,928 --a------ C:\WINDOWS\system32\miglibnt.dll
2007-04-09 19:44 60,416 --a------ C:\WINDOWS\system32\msratelc.dll
2007-04-09 19:44 6,656 --a------ C:\WINDOWS\system32\msswchx.exe
2007-04-09 19:44 6,656 --a------ C:\WINDOWS\system32\msidle.dll
2007-04-09 19:44 6,656 --a------ C:\WINDOWS\system32\laprxy.dll
2007-04-09 19:44 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
2007-04-09 19:44 6,144 --a------ C:\WINDOWS\system32\lpq.exe
2007-04-09 19:44 59,904 --a------ C:\WINDOWS\system32\mpr.dll
2007-04-09 19:44 586,240 --a------ C:\WINDOWS\system32\mlang.dll
2007-04-09 19:44 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll
2007-04-09 19:44 58,880 --a------ C:\WINDOWS\system32\licwmi.dll
2007-04-09 19:44 57,856 --a------ C:\WINDOWS\system32\ntlanui.dll
2007-04-09 19:44 57,344 --a------ C:\WINDOWS\system32\msasn1.dll
2007-04-09 19:44 565,760 --a------ C:\WINDOWS\system32\msvcp50.dll
2007-04-09 19:44 56,832 --a------ C:\WINDOWS\system32\mshtmler.dll
2007-04-09 19:44 552,989 --a------ C:\WINDOWS\system32\msrepl40.dll
2007-04-09 19:44 55,936 --a------ C:\WINDOWS\system32\drivers\nwlnkspx.sys
2007-04-09 19:44 54,784 --a------ C:\WINDOWS\system32\npptools.dll
2007-04-09 19:44 54,784 --a------ C:\WINDOWS\system32\msvcirt.dll
2007-04-09 19:44 53,760 --a------ C:\WINDOWS\system32\narrator.exe
2007-04-09 19:44 53,279 --a------ C:\WINDOWS\system32\odbcji32.dll
2007-04-09 19:44 53,279 --a------ C:\WINDOWS\system32\msjter40.dll
2007-04-09 19:44 514,560 --a------ C:\WINDOWS\system32\logonui.exe
2007-04-09 19:44 512,029 --a------ C:\WINDOWS\system32\msexch40.dll
2007-04-09 19:44 51,712 --a------ C:\WINDOWS\system32\msident.dll
2007-04-09 19:44 51,712 --a------ C:\WINDOWS\system32\migpwd.exe
2007-04-09 19:44 506,368 --a------ C:\WINDOWS\system32\msxml.dll
2007-04-09 19:44 50,688 --a------ C:\WINDOWS\system32\mmcshext.dll
2007-04-09 19:44 50,176 --a------ C:\WINDOWS\system32\mdhcp.dll
2007-04-09 19:44 50,176 --a------ C:\WINDOWS\system32\loghours.dll
2007-04-09 19:44 5,632 --a------ C:\WINDOWS\system32\mll_qic.dll
2007-04-09 19:44 5,120 --a------ C:\WINDOWS\system32\lodctr.exe
2007-04-09 19:44 49,152 --a------ C:\WINDOWS\system32\mprdim.dll
2007-04-09 19:44 488,448 --a------ C:\WINDOWS\system32\ntmsmgr.dll
2007-04-09 19:44 48,128 --a------ C:\WINDOWS\system32\msprivs.dll
2007-04-09 19:44 47,104 --a------ C:\WINDOWS\system32\mprui.dll
2007-04-09 19:44 46,258 --a------ C:\WINDOWS\system32\mib.bin
2007-04-09 19:44 453,120 --a------ C:\WINDOWS\system32\drivers\mrxsmb.sys
2007-04-09 19:44 44,032 --a------ C:\WINDOWS\system32\msxml3r.dll
2007-04-09 19:44 435,200 --a------ C:\WINDOWS\system32\ntmssvc.dll
2007-04-09 19:44 43,520 --a------ C:\WINDOWS\system32\ntlanman.dll
2007-04-09 19:44 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll
2007-04-09 19:44 423,936 --a------ C:\WINDOWS\system32\licdll.dll
2007-04-09 19:44 421,919 --a------ C:\WINDOWS\system32\msrd2x40.dll
2007-04-09 19:44 42,496 --a------ C:\WINDOWS\system32\net.exe
2007-04-09 19:44 42,240 --a------ C:\WINDOWS\system32\drivers\mountmgr.sys
2007-04-09 19:44 419,840 --a------ C:\WINDOWS\system32\ntvdm.exe
2007-04-09 19:44 413,696 --a------ C:\WINDOWS\system32\msvcp60.dll
2007-04-09 19:44 41,984 --a------ C:\WINDOWS\system32\msports.dll
2007-04-09 19:44 407,552 --a------ C:\WINDOWS\system32\mstsc.exe
2007-04-09 19:44 407,040 --a------ C:\WINDOWS\system32\netlogon.dll
2007-04-09 19:44 40,960 --a------ C:\WINDOWS\system32\ntmsapi.dll
2007-04-09 19:44 40,960 --a------ C:\WINDOWS\system32\mf3216.dll
2007-04-09 19:44 40,320 --a------ C:\WINDOWS\system32\drivers\nmnt.sys
2007-04-09 19:44 4,608 --a------ C:\WINDOWS\system32\mssip32.dll
2007-04-09 19:44 4,608 --a------ C:\WINDOWS\system32\msimg32.dll
2007-04-09 19:44 4,608 --a------ C:\WINDOWS\system32\mchgrcoi.dll
2007-04-09 19:44 4,224 --a------ C:\WINDOWS\system32\drivers\mnmdd.sys
2007-04-09 19:44 4,126 --a------ C:\WINDOWS\system32\msdxmlc.dll
2007-04-09 19:44 4,096 --a------ C:\WINDOWS\system32\nddeapir.exe
2007-04-09 19:44 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
2007-04-09 19:44 399,872 --a------ C:\WINDOWS\system32\lmrt.dll
2007-04-09 19:44 39,274 --a------ C:\WINDOWS\system32\mem.exe
2007-04-09 19:44 38,016 --a------ C:\WINDOWS\system32\drivers\ndproxy.sys
2007-04-09 19:44 37,916 --a------ C:\WINDOWS\system32\msxml2r.dll
2007-04-09 19:44 368,710 --a------ C:\WINDOWS\system32\msisam11.dll
2007-04-09 19:44 364,784 --a------ C:\WINDOWS\system32\MSSCP.dll
2007-04-09 19:44 36,864 --a------ C:\WINDOWS\system32\ntmsevt.dll
2007-04-09 19:44 36,864 --a------ C:\WINDOWS\system32\netstat.exe
2007-04-09 19:44 36,864 --a------ C:\WINDOWS\system32\mscpxl32.dll
200
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

sorry about the last postting

Unread postby neildush » April 10th, 2007, 7:43 pm

combofix log:

"Neil D" - 07-04-11 0:34:26 Service Pack 2
ComboFix 07-04-05 - Running from: "C:\Documents and Settings\Neil D\Desktop"


(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\DOCUME~1\NEILD~1\APPLIC~1\Dxcdmns.dll
C:\WINDOWS\system32\bund1\ClientBundle1.exe
C:\WINDOWS\system32\bund1\temp.txt
C:\WINDOWS\system32\bund1


((((((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))


-------\LEGACY_MCHINJDRV


((((((((((((((((((((((((((((((( Files Created from 2007-03-11 to 2007-04-11 ))))))))))))))))))))))))))))))))))


2007-04-10 23:34 <DIR> d-------- C:\Program Files\CCleaner
2007-04-10 23:33 1,168 --a------ C:\WINDOWS\mozver.dat
2007-04-10 23:25 0 --a------ C:\WINDOWS\nsreg.dat
2007-04-10 08:37 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2007-04-10 03:09 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\TrojanHunter
2007-04-10 03:02 <DIR> d-------- C:\WINDOWS\system32\PreInstall
2007-04-10 03:01 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2007-04-10 01:28 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2007-04-10 01:17 <DIR> d-------- C:\Program Files\Java
2007-04-10 01:16 <DIR> d-------- C:\Program Files\Common Files\Java
2007-04-10 00:59 <DIR> d-------- C:\Program Files\TrojanHunter 4.6
2007-04-10 00:59 <DIR> d-------- C:\Program Files\a-squared Anti-Malware
2007-04-10 00:37 <DIR> d-------- C:\VundoFix Backups
2007-04-10 00:29 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
2007-04-10 00:29 53,760 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2007-04-10 00:29 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2007-04-10 00:29 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
2007-04-10 00:29 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
2007-04-10 00:29 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
2007-04-10 00:29 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
2007-04-10 00:29 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
2007-04-10 00:29 <DIR> d-------- C:\Program Files\Google
2007-04-10 00:29 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Google
2007-04-10 00:29 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
2007-04-10 00:28 <DIR> d-------- C:\Program Files\Microsoft LifeCam
2007-04-10 00:27 <DIR> d-------- C:\WINDOWS\RegisteredPackages
2007-04-10 00:26 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2007-04-10 00:11 <DIR> d-------- C:\WINDOWS\Prefetch
2007-04-09 23:57 9,216 --------- C:\WINDOWS\system32\proxycfg.exe
2007-04-09 23:57 59,392 --------- C:\WINDOWS\system32\logman.exe
2007-04-09 23:56 95,424 --------- C:\WINDOWS\system32\drivers\slnthal.sys
2007-04-09 23:56 940,544 --a------ C:\WINDOWS\system32\wmspdmoe.dll
2007-04-09 23:56 88,064 --------- C:\WINDOWS\system32\p2pnetsh.dll
2007-04-09 23:56 870,784 --------- C:\WINDOWS\system32\ati3d1ag.dll
2007-04-09 23:56 86,016 --------- C:\WINDOWS\system32\p2pgasvc.dll
2007-04-09 23:56 86,016 --------- C:\WINDOWS\system32\mdmxsdk.dll
2007-04-09 23:56 81,920 --------- C:\WINDOWS\system32\ieencode.dll
2007-04-09 23:56 81,408 --------- C:\WINDOWS\system32\wscsvc.dll
2007-04-09 23:56 8,192 --------- C:\WINDOWS\system32\smbinst.exe
2007-04-09 23:56 8,192 --------- C:\WINDOWS\system32\bitsprx2.dll
2007-04-09 23:56 78,464 --------- C:\WINDOWS\system32\drivers\usbvideo.sys
2007-04-09 23:56 75,776 --------- C:\WINDOWS\system32\strmfilt.dll
2007-04-09 23:56 73,832 --------- C:\WINDOWS\system32\slcoinst.dll
2007-04-09 23:56 73,796 --------- C:\WINDOWS\system32\slserv.exe
2007-04-09 23:56 73,216 --------- C:\WINDOWS\system32\drivers\atintuxx.sys
2007-04-09 23:56 71,680 --------- C:\WINDOWS\system32\blastcln.exe
2007-04-09 23:56 701,440 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-04-09 23:56 7,680 --------- C:\WINDOWS\system32\kbdsmsno.dll
2007-04-09 23:56 7,680 --------- C:\WINDOWS\system32\kbdsmsfi.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\kbdukx.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\kbdno1.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\kbdfi1.dll
2007-04-09 23:56 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2007-04-09 23:56 685,056 --------- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2007-04-09 23:56 67,584 --------- C:\WINDOWS\system32\drivers\sdbus.sys
2007-04-09 23:56 63,663 --------- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2007-04-09 23:56 63,488 --------- C:\WINDOWS\system32\drivers\atinxsxx.sys
2007-04-09 23:56 60,416 --------- C:\WINDOWS\system32\fwcfg.dll
2007-04-09 23:56 6,656 --------- C:\WINDOWS\system32\kbdinmal.dll
2007-04-09 23:56 6,656 --------- C:\WINDOWS\system32\kbdinben.dll
2007-04-09 23:56 6,144 --------- C:\WINDOWS\system32\kbdmlt48.dll
2007-04-09 23:56 6,144 --------- C:\WINDOWS\system32\kbdmlt47.dll
2007-04-09 23:56 6,144 --------- C:\WINDOWS\system32\kbdinbe1.dll
2007-04-09 23:56 6,016 --------- C:\WINDOWS\system32\drivers\smbali.sys
2007-04-09 23:56 59,648 --------- C:\WINDOWS\system32\drivers\rfcomm.sys
2007-04-09 23:56 57,856 --------- C:\WINDOWS\system32\drivers\atinbtxx.sys
2007-04-09 23:56 56,623 --------- C:\WINDOWS\system32\drivers\ati1btxx.sys
2007-04-09 23:56 526,848 --------- C:\WINDOWS\system32\p2psvc.dll
2007-04-09 23:56 52,224 --------- C:\WINDOWS\system32\drivers\atinraxx.sys
2007-04-09 23:56 516,768 --------- C:\WINDOWS\system32\ativvaxx.dll
2007-04-09 23:56 50,688 --------- C:\WINDOWS\system32\btpanui.dll
2007-04-09 23:56 50,176 --------- C:\WINDOWS\system32\xmlprovi.dll
2007-04-09 23:56 5,632 --------- C:\WINDOWS\system32\kbdmaori.dll
2007-04-09 23:56 49,152 --------- C:\WINDOWS\system32\powercfg.exe
2007-04-09 23:56 48,640 --------- C:\WINDOWS\system32\pnrpnsp.dll
2007-04-09 23:56 46,464 --------- C:\WINDOWS\system32\drivers\gagp30kx.sys
2007-04-09 23:56 452,736 --------- C:\WINDOWS\system32\drivers\mtxparhm.sys
2007-04-09 23:56 44,672 --------- C:\WINDOWS\system32\drivers\uagp35.sys
2007-04-09 23:56 44,032 --------- C:\WINDOWS\system32\twext.dll
2007-04-09 23:56 438,784 --------- C:\WINDOWS\system32\xpob2res.dll
2007-04-09 23:56 413,944 --a------ C:\WINDOWS\system32\wmspdmod.dll
2007-04-09 23:56 404,990 --------- C:\WINDOWS\system32\drivers\slntamr.sys
2007-04-09 23:56 4,255 --------- C:\WINDOWS\system32\drivers\adv01nt5.dll
2007-04-09 23:56 397,056 --------- C:\WINDOWS\system32\s3gnb.dll
2007-04-09 23:56 384,512 --------- C:\WINDOWS\system32\mp4sdmod.dll
2007-04-09 23:56 38,016 --------- C:\WINDOWS\system32\drivers\bthmodem.sys
2007-04-09 23:56 377,984 --------- C:\WINDOWS\system32\ati2dvaa.dll
2007-04-09 23:56 36,463 --------- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2007-04-09 23:56 36,096 --------- C:\WINDOWS\system32\drivers\intelppm.sys
2007-04-09 23:56 35,456 --------- C:\WINDOWS\system32\drivers\bthprint.sys
2007-04-09 23:56 34,735 --------- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2007-04-09 23:56 327,040 --------- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2007-04-09 23:56 32,866 --------- C:\WINDOWS\system32\slrundll.exe
2007-04-09 23:56 32,866 --------- C:\WINDOWS\slrundll.exe
2007-04-09 23:56 32,768 --------- C:\WINDOWS\system32\ativtmxx.dll
2007-04-09 23:56 32,285 --------- C:\WINDOWS\system32\hsfcisp2.dll
2007-04-09 23:56 312,320 --------- C:\WINDOWS\system32\p2pgraph.dll
2007-04-09 23:56 310,272 --------- C:\WINDOWS\system32\mp43dmod.dll
2007-04-09 23:56 31,744 --------- C:\WINDOWS\system32\drivers\atinxbxx.sys
2007-04-09 23:56 30,671 --------- C:\WINDOWS\system32\drivers\ati1raxx.sys
2007-04-09 23:56 30,208 --------- C:\WINDOWS\system32\bthserv.dll
2007-04-09 23:56 30,080 --------- C:\WINDOWS\system32\drivers\rndismpx.sys
2007-04-09 23:56 3,967 --------- C:\WINDOWS\system32\drivers\adv02nt5.dll
2007-04-09 23:56 3,901 --------- C:\WINDOWS\system32\drivers\siint5.dll
2007-04-09 23:56 3,775 --------- C:\WINDOWS\system32\drivers\adv11nt5.dll
2007-04-09 23:56 3,711 --------- C:\WINDOWS\system32\drivers\adv09nt5.dll
2007-04-09 23:56 3,647 --------- C:\WINDOWS\system32\drivers\adv07nt5.dll
2007-04-09 23:56 3,615 --------- C:\WINDOWS\system32\drivers\adv05nt5.dll
2007-04-09 23:56 3,135 --------- C:\WINDOWS\system32\drivers\adv08nt5.dll
2007-04-09 23:56 29,455 --------- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2007-04-09 23:56 29,184 --------- C:\WINDOWS\system32\sdhcinst.dll
2007-04-09 23:56 29,056 --------- C:\WINDOWS\system32\drivers\ip6fw.sys
2007-04-09 23:56 286,792 --------- C:\WINDOWS\system32\slextspk.dll
2007-04-09 23:56 28,672 --------- C:\WINDOWS\system32\drivers\atinsnxx.sys
2007-04-09 23:56 274,304 --------- C:\WINDOWS\system32\drivers\bthport.sys
2007-04-09 23:56 262,784 --------- C:\WINDOWS\system32\drivers\http.sys
2007-04-09 23:56 26,367 --------- C:\WINDOWS\system32\drivers\ati1snxx.sys
2007-04-09 23:56 25,600 --------- C:\WINDOWS\system32\drivers\hidbth.sys
2007-04-09 23:56 25,471 --------- C:\WINDOWS\system32\drivers\watv10nt.sys
2007-04-09 23:56 25,471 --------- C:\WINDOWS\system32\drivers\atv04nt5.dll
2007-04-09 23:56 25,088 --a------ C:\WINDOWS\system32\MsPMSNSv.dll
2007-04-09 23:56 24,576 --------- C:\WINDOWS\system32\httpapi.dll
2007-04-09 23:56 233,472 --------- C:\WINDOWS\system32\wmpdxm.dll
2007-04-09 23:56 23,040 --a------ C:\WINDOWS\system32\fltmc.exe
2007-04-09 23:56 229,376 --------- C:\WINDOWS\system32\ati2cqag.dll
2007-04-09 23:56 220,032 --------- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2007-04-09 23:56 22,271 --------- C:\WINDOWS\system32\drivers\watv06nt.sys
2007-04-09 23:56 21,343 --------- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2007-04-09 23:56 21,183 --------- C:\WINDOWS\system32\drivers\atv01nt5.dll
2007-04-09 23:56 201,728 --------- C:\WINDOWS\system32\ati2dvag.dll
2007-04-09 23:56 20,992 --------- C:\WINDOWS\system32\bthci.dll
2007-04-09 23:56 2,113,536 --------- C:\WINDOWS\system32\dxdiagn.dll
2007-04-09 23:56 193,024 --------- C:\WINDOWS\system32\fsquirt.exe
2007-04-09 23:56 188,508 --------- C:\WINDOWS\system32\slgen.dll
2007-04-09 23:56 180,360 --------- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2007-04-09 23:56 18,944 --------- C:\WINDOWS\system32\drivers\bthusb.sys
2007-04-09 23:56 17,408 --------- C:\WINDOWS\system32\winshfhc.dll
2007-04-09 23:56 17,279 --------- C:\WINDOWS\system32\drivers\atv10nt5.dll
2007-04-09 23:56 17,024 --------- C:\WINDOWS\system32\drivers\bthenum.sys
2007-04-09 23:56 168,448 --------- C:\WINDOWS\system32\wmerror.dll
2007-04-09 23:56 166,912 --------- C:\WINDOWS\system32\drivers\s3gnbm.sys
2007-04-09 23:56 16,896 --a------ C:\WINDOWS\system32\fltlib.dll
2007-04-09 23:56 150,016 --a------ C:\WINDOWS\system32\wmidx.dll
2007-04-09 23:56 15,872 --------- C:\WINDOWS\system32\w3ssl.dll
2007-04-09 23:56 15,488 --------- C:\WINDOWS\system32\drivers\mssmbios.sys
2007-04-09 23:56 15,423 --------- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2007-04-09 23:56 15,104 --------- C:\WINDOWS\system32\drivers\hidir.sys
2007-04-09 23:56 14,336 --------- C:\WINDOWS\system32\drivers\atinpdxx.sys
2007-04-09 23:56 14,336 --------- C:\WINDOWS\system32\auditusr.exe
2007-04-09 23:56 14,143 --------- C:\WINDOWS\system32\drivers\atv06nt5.dll
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\wscntfy.exe
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\drivers\atinttxx.sys
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\drivers\atinmdxx.sys
2007-04-09 23:56 13,824 --------- C:\WINDOWS\system32\cmsetacl.dll
2007-04-09 23:56 13,776 --------- C:\WINDOWS\system32\drivers\recagent.sys
2007-04-09 23:56 13,568 --------- C:\WINDOWS\system32\drivers\wacompen.sys
2007-04-09 23:56 13,240 --------- C:\WINDOWS\system32\drivers\slwdmsup.sys
2007-04-09 23:56 129,536 --------- C:\WINDOWS\system32\xmlprov.dll
2007-04-09 23:56 129,535 --------- C:\WINDOWS\system32\drivers\slnt7554.sys
2007-04-09 23:56 128,896 --------- C:\WINDOWS\system32\drivers\fltmgr.sys
2007-04-09 23:56 126,686 --------- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2007-04-09 23:56 12,672 --------- C:\WINDOWS\system32\drivers\usb8023x.sys
2007-04-09 23:56 12,672 --------- C:\WINDOWS\system32\drivers\mutohpen.sys
2007-04-09 23:56 12,047 --------- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2007-04-09 23:56 118,784 --------- C:\WINDOWS\system32\msdadiag.dll
2007-04-09 23:56 116,224 --------- C:\WINDOWS\system32\p2p.dll
2007-04-09 23:56 114,688 --------- C:\WINDOWS\system32\wmpasf.dll
2007-04-09 23:56 11,935 --------- C:\WINDOWS\system32\drivers\wadv11nt.sys
2007-04-09 23:56 11,871 --------- C:\WINDOWS\system32\drivers\wadv09nt.sys
2007-04-09 23:56 11,868 --------- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2007-04-09 23:56 11,807 --------- C:\WINDOWS\system32\drivers\wadv07nt.sys
2007-04-09 23:56 11,615 --------- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2007-04-09 23:56 11,359 --------- C:\WINDOWS\system32\drivers\atv02nt5.dll
2007-04-09 23:56 11,325 --------- C:\WINDOWS\system32\drivers\vchnt5.dll
2007-04-09 23:56 11,295 --------- C:\WINDOWS\system32\drivers\wadv08nt.sys
2007-04-09 23:56 11,136 --------- C:\WINDOWS\system32\drivers\sffdisk.sys
2007-04-09 23:56 108,032 --------- C:\WINDOWS\system32\wshbth.dll
2007-04-09 23:56 104,960 --------- C:\WINDOWS\system32\drivers\atinrvxx.sys
2007-04-09 23:56 100,992 --------- C:\WINDOWS\system32\drivers\bthpan.sys
2007-04-09 23:56 10,240 --------- C:\WINDOWS\system32\drivers\sffp_sd.sys
2007-04-09 23:56 1,888,992 --------- C:\WINDOWS\system32\ati3duag.dll
2007-04-09 23:56 1,737,856 --------- C:\WINDOWS\system32\mtxparhd.dll
2007-04-09 23:56 1,689,088 --------- C:\WINDOWS\system32\d3d9.dll
2007-04-09 23:56 1,309,184 --------- C:\WINDOWS\system32\drivers\mtlstrm.sys
2007-04-09 23:56 1,119,744 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2007-04-09 23:56 1,041,536 --------- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2007-04-09 23:56 1,003,008 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2007-04-09 23:56 <DIR> d-------- C:\WINDOWS\provisioning
2007-04-09 23:56 <DIR> d-------- C:\WINDOWS\peernet
2007-04-09 23:52 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2007-04-09 23:48 2,897,920 --------- C:\WINDOWS\system32\xpsp2res.dll
2007-04-09 23:45 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2007-04-09 23:42 <DIR> d-------- C:\WINDOWS\EHome
2007-04-09 23:14 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-04-09 23:13 <DIR> d-------- C:\WINDOWS\system32\ZoneLabs
2007-04-09 23:12 <DIR> d-------- C:\WINDOWS\Internet Logs
2007-04-09 23:05 465,176 --a------ C:\WINDOWS\system32\wuapi.dll
2007-04-09 23:05 41,240 --a------ C:\WINDOWS\system32\wups.dll
2007-04-09 23:05 194,328 --a------ C:\WINDOWS\system32\wuaueng1.dll
2007-04-09 23:05 18,200 --a------ C:\WINDOWS\system32\wups2.dll
2007-04-09 23:05 172,312 --a------ C:\WINDOWS\system32\wuauclt1.exe
2007-04-09 23:05 127,256 --a------ C:\WINDOWS\system32\wucltui.dll
2007-04-09 23:04 <DIR> d-------- C:\WINDOWS\SoftwareDistribution
2007-04-09 22:41 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-04-09 22:38 <DIR> d-------- C:\Program Files\Common Files\Hewlett-Packard
2007-04-09 22:37 94,208 --a------ C:\WINDOWS\system32\HPZipt12.dll
2007-04-09 22:37 69,632 --a------ C:\WINDOWS\system32\HPZipm12.exe
2007-04-09 22:37 61,440 --a------ C:\WINDOWS\system32\HPZinw12.exe
2007-04-09 22:37 57,344 --a------ C:\WINDOWS\system32\HPZisn12.dll
2007-04-09 22:37 278,584 --a------ C:\WINDOWS\system32\HPZidr12.dll
2007-04-09 22:37 204,800 --a------ C:\WINDOWS\system32\HPZipr12.dll
2007-04-09 22:36 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Help
2007-04-09 22:35 <DIR> d-------- C:\Program Files\HP
2007-04-09 22:33 8,464 --a------ C:\WINDOWS\system32\sporder.dll
2007-04-09 22:33 72,320 --a------ C:\WINDOWS\system32\drivers\core.sys
2007-04-09 22:33 105,434 --a------ C:\WINDOWS\VTTC.exe
2007-04-09 22:33 <DIR> d-------- C:\Temp\tn3
2007-04-09 22:33 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Skype
2007-04-09 22:32 68,302 --a------ C:\WINDOWS\hpoins05.dat
2007-04-09 22:32 51,120 --a------ C:\WINDOWS\system32\drivers\HPZid412.sys
2007-04-09 22:32 21,744 --a------ C:\WINDOWS\system32\drivers\HPZius12.sys
2007-04-09 22:32 19,696 --------- C:\WINDOWS\hpomdl05.dat
2007-04-09 22:32 16,496 --a------ C:\WINDOWS\system32\drivers\HPZipr12.sys
2007-04-09 22:32 <DIR> d-------- C:\WINDOWS\system32\micro1
2007-04-09 22:32 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
2007-04-09 22:31 581,632 --a------ C:\WINDOWS\system32\hpotscl.dll
2007-04-09 22:31 393,216 --a------ C:\WINDOWS\system32\hpzcon12.dll
2007-04-09 22:31 278,528 --a------ C:\WINDOWS\system32\hpgwiamd.dll
2007-04-09 22:31 274,432 --a------ C:\WINDOWS\system32\HPZc3212.dll
2007-04-09 22:31 229,376 --a------ C:\WINDOWS\system32\hpovst08.dll
2007-04-09 22:31 196,608 --a------ C:\WINDOWS\system32\hpzcoi12.dll
2007-04-09 22:31 139,345 --a------ C:\WINDOWS\system32\hpzlnt12.dll
2007-04-09 22:31 <DIR> d-------- C:\Program Files\Skype
2007-04-09 22:30 <DIR> d-------- C:\Temp\HP_WebRelease
2007-04-09 22:30 <DIR> d-------- C:\Temp
2007-04-09 22:18 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2007-04-09 22:17 <DIR> d-------- C:\WINDOWS\MaxSecureBackup
2007-04-09 22:16 63 --a------ C:\WINDOWS\system\SYSRegC.dll
2007-04-09 22:16 143,360 --a------ C:\WINDOWS\system32\GetHardDiskNo.dll
2007-04-09 22:16 1,007,616 --a------ C:\WINDOWS\system32\VchReg.dll
2007-04-09 22:16 <DIR> d-------- C:\Program Files\Max Registry Cleaner
2007-04-09 22:15 <DIR> d-------- C:\Program Files\Lavasoft
2007-04-09 22:15 <DIR> d-------- C:\DOCUME~1\NEILD~1\APPLIC~1\Lavasoft
2007-04-09 22:14 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-04-09 22:13 <DIR> d-------- C:\Program Files\Microsoft IntelliPoint 5.2
2007-04-09 22:12 23,040 --a------ C:\WINDOWS\system32\drivers\mouclass.sys
2007-04-09 22:12 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2007-04-09 22:11 97,792 --a------ C:\WINDOWS\system32\LGUICOM.DLL
2007-04-09 22:11 70,801 --a------ C:\WINDOWS\system32\drivers\LMouFlt2.Sys
2007-04-09 22:11 51,729 --------- C:\WINDOWS\system32\drivers\L8042PR2.SYS
2007-04-09 22:11 37,887 --------- C:\WINDOWS\system32\drivers\LHIDUSB.SYS
2007-04-09 22:11 3,568 --a------ C:\WINDOWS\system32\LMOUSE16.DLL
2007-04-09 22:11 25,505 --a------ C:\WINDOWS\system32\drivers\LHidFlt2.Sys
2007-04-09 22:11 23,375 --------- C:\WINDOWS\system32\LCOINST.DLL
2007-04-09 22:11 19,968 --------- C:\WINDOWS\LOGI_MWX.EXE
2007-04-09 22:11 16,896 --a------ C:\WINDOWS\system32\LMOUSE32.DLL
2007-04-09 22:11 152,064 --------- C:\WINDOWS\system32\lmoufrc.dll
2007-04-09 22:11 14,095 --------- C:\WINDOWS\system32\drivers\LCCFLTR.SYS
2007-04-09 22:11 104,960 --a------ C:\WINDOWS\system32\COMNCTR.DLL
2007-04-09 22:11 <DIR> d-------- C:\Program Files\Logitech
2007-04-09 22:11 <DIR> d-------- C:\Program Files\Common Files\Logitech
2007-04-09 22:09 24,576 --a------ C:\WINDOWS\system32\drivers\kbdclass.sys
2007-04-09 22:09 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
2007-04-09 22:05 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
2007-04-09 22:05 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
2007-04-09 21:59 <DIR> d-------- C:\Swsetup
2007-04-09 21:59 <DIR> d-------- C:\Program Files\Hewlett-Packard
2007-04-09 20:23 <DIR> d---s---- C:\DOCUME~1\NEILD~1\UserData
2007-04-09 20:17 140,416 -ra------ C:\WINDOWS\system32\drivers\rt2500usb.sys
2007-04-09 20:15 98,304 --a------ C:\WINDOWS\system32\nvudisp.exe
2007-04-09 20:04 198,424 --a------ C:\WINDOWS\system32\iuengine.dll
2007-04-09 19:46 707 --a------ C:\WINDOWS\_default.pif
2007-04-09 19:46 337,920 --a------ C:\WINDOWS\system32\zipfldr.dll
2007-04-09 19:46 187,392 --a------ C:\WINDOWS\system32\xpsp1res.dll
2007-04-09 19:45 99,328 --a------ C:\WINDOWS\system32\winscard.dll
2007-04-09 19:45 984,576 --a------ C:\WINDOWS\system32\syssetup.dll
2007-04-09 19:45 983,552 --a------ C:\WINDOWS\system32\setupapi.dll
2007-04-09 19:45 98,304 --a------ C:\WINDOWS\system32\verifier.exe
2007-04-09 19:45 98,304 --a------ C:\WINDOWS\system32\slbiop.dll
2007-04-09 19:45 98,304 --a------ C:\WINDOWS\system32\rtm.dll
2007-04-09 19:45 96,768 --a------ C:\WINDOWS\system32\srvsvc.dll
2007-04-09 19:45 96,768 --a------ C:\WINDOWS\system32\psbase.dll
2007-04-09 19:45 96,256 --a------ C:\WINDOWS\system32\drivers\scsiport.sys
2007-04-09 19:45 95,744 --a------ C:\WINDOWS\system32\scardsvr.exe
2007-04-09 19:45 94,784 --a------ C:\WINDOWS\twain.dll
2007-04-09 19:45 937,984 --a------ C:\WINDOWS\system32\winbrand.dll
2007-04-09 19:45 93,696 --a------ C:\WINDOWS\system32\tscfgwmi.dll
2007-04-09 19:45 92,672 --a------ C:\WINDOWS\system32\wlnotify.dll
2007-04-09 19:45 92,168 --a------ C:\WINDOWS\system32\rdpdd.dll
2007-04-09 19:45 91,648 --a------ C:\WINDOWS\system32\xactsrv.dll
2007-04-09 19:45 90,624 --a------ C:\WINDOWS\system32\trkwks.dll
2007-04-09 19:45 90,112 --a------ C:\WINDOWS\system32\rsvpsp.dll
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\sprestrt.exe
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\sfc.exe
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\rsvpperf.dll
2007-04-09 19:45 9,728 --a------ C:\WINDOWS\system32\reset.exe
2007-04-09 19:45 9,344 --a------ C:\WINDOWS\system32\vga.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\wshatm.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\winfax.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\wifeman.dll
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\subst.exe
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\scrnsave.scr
2007-04-09 19:45 9,216 --a------ C:\WINDOWS\system32\print.exe
2007-04-09 19:45 9,008 --a------ C:\WINDOWS\system32\ver.dll
2007-04-09 19:45 9,008 --a------ C:\WINDOWS\system\VER.DLL
2007-04-09 19:45 895,736 --a------ C:\WINDOWS\system32\wmvdmod.dll
2007-04-09 19:45 89,600 --a------ C:\WINDOWS\system32\smlogsvc.exe
2007-04-09 19:45 89,088 --a------ C:\WINDOWS\system32\rasauto.dll
2007-04-09 19:45 882 --a------ C:\WINDOWS\system32\share.exe
2007-04-09 19:45 87,176 --a------ C:\WINDOWS\system32\rdpwsx.dll
2007-04-09 19:45 858,624 --a------ C:\WINDOWS\system32\tapi3.dll
2007-04-09 19:45 83,456 --a------ C:\WINDOWS\system32\olepro32.dll
2007-04-09 19:45 82,944 --a------ C:\WINDOWS\system32\ws2_32.dll
2007-04-09 19:45 82,944 --a------ C:\WINDOWS\system32\olecli.dll
2007-04-09 19:45 82,944 --a------ C:\WINDOWS\system\OLECLI.DLL
2007-04-09 19:45 82,432 --a------ C:\WINDOWS\system32\ufat.dll
2007-04-09 19:45 8,832 --a------ C:\WINDOWS\system32\drivers\rasacd.sys
2007-04-09 19:45 8,192 --a------ C:\WINDOWS\system32\qosname.dll
2007-04-09 19:45 8,192 --a------ C:\WINDOWS\system32\psnppagn.dll
2007-04-09 19:45 79,744 --a------ C:\WINDOWS\system32\drivers\videoprt.sys
2007-04-09 19:45 78,848 --a------ C:\WINDOWS\system32\tapiui.dll
2007-04-09 19:45 774,904 --a------ C:\WINDOWS\system32\wmsdmod.dll
2007-04-09 19:45 77,824 --a------ C:\WINDOWS\system32\wmpstub.exe
2007-04-09 19:45 77,824 --a------ C:\WINDOWS\system32\shrpubw.exe
2007-04-09 19:45 77,312 --a------ C:\WINDOWS\system32\sdbinst.exe
2007-04-09 19:45 77,312 --a------ C:\WINDOWS\system32\rtcshare.exe
2007-04-09 19:45 764,928 --a------ C:\WINDOWS\system32\winntbbu.dll
2007-04-09 19:45 75,776 --a------ C:\WINDOWS\system32\wiascr.dll
2007-04-09 19:45 74,752 --a------ C:\WINDOWS\system32\spoolss.dll
2007-04-09 19:45 74,752 --a------ C:\WINDOWS\system32\olecli32.dll
2007-04-09 19:45 74,240 --a------ C:\WINDOWS\system32\unimdmat.dll
2007-04-09 19:45 733,696 --a------ C:\WINDOWS\system32\qedwipes.dll
2007-04-09 19:45 73,472 --a------ C:\WINDOWS\system32\drivers\sr.sys
2007-04-09 19:45 723,456 --a------ C:\WINDOWS\system32\userenv.dll
2007-04-09 19:45 716,288 --a------ C:\WINDOWS\system32\wmadmoe.dll
2007-04-09 19:45 713,728 --a------ C:\WINDOWS\system32\opengl32.dll
2007-04-09 19:45 713,216 --a------ C:\WINDOWS\system32\sxs.dll
2007-04-09 19:45 71,680 --a------ C:\WINDOWS\system32\ssdpsrv.dll
2007-04-09 19:45 704,512 --a------ C:\WINDOWS\system32\ss3dfo.scr
2007-04-09 19:45 70,144 --a------ C:\WINDOWS\system32\sigverif.exe
2007-04-09 19:45 7,680 --a------ C:\WINDOWS\system32\vcdex.dll
2007-04-09 19:45 7,168 --a------ C:\WINDOWS\system32\wshnetbs.dll
2007-04-09 19:45 7,168 --a------ C:\WINDOWS\system32\recover.exe
2007-04-09 19:45 69,632 --a------ C:\WINDOWS\system32\scarddlg.dll
2007-04-09 19:45 69,632 --a------ C:\WINDOWS\system32\raschap.dll
2007-04-09 19:45 69,120 --a------ C:\WINDOWS\system32\olethk32.dll
2007-04-09 19:45 69,120 --a------ C:\WINDOWS\system32\drivers\psched.sys
2007-04-09 19:45 68,224 --a------ C:\WINDOWS\system32\drivers\pci.sys
2007-04-09 19:45 68,096 --a------ C:\WINDOWS\system32\webclnt.dll
2007-04-09 19:45 68,096 --a------ C:\WINDOWS\system32\shgina.dll
2007-04-09 19:45 679,936 --a------ C:\WINDOWS\system32\sstext3d.scr
2007-04-09 19:45 67,584 --a------ C:\WINDOWS\system32\sti.dll
2007-04-09 19:45 67,584 --a------ C:\WINDOWS\system32\srclient.dll
2007-04-09 19:45 67,584 --a------ C:\WINDOWS\system32\osuninst.dll
2007-04-09 19:45 67,072 --a------ C:\WINDOWS\system32\rdshost.exe
2007-04-09 19:45 66,176 --a------ C:\WINDOWS\system32\drivers\udfs.sys
2007-04-09 19:45 657,920 --a------ C:\WINDOWS\system32\rasdlg.dll
2007-04-09 19:45 65,536 --a------ C:\WINDOWS\system32\wshext.dll
2007-04-09 19:45 65,536 --a------ C:\WINDOWS\system32\wextract.exe
2007-04-09 19:45 65,536 --a------ C:\WINDOWS\system32\shimeng.dll
2007-04-09 19:45 64,896 --a------ C:\WINDOWS\system32\drivers\serial.sys
2007-04-09 19:45 64,000 --a------ C:\WINDOWS\system32\samlib.dll
2007-04-09 19:45 62,976 --a------ C:\WINDOWS\system32\pautoenr.dll
2007-04-09 19:45 62,464 --a------ C:\WINDOWS\system32\rdpclip.exe
2007-04-09 19:45 610,304 --a------ C:\WINDOWS\system32\sspipes.scr
2007-04-09 19:45 61,440 --a------ C:\WINDOWS\system32\rasman.dll
2007-04-09 19:45 60,416 --a------ C:\WINDOWS\system32\remotepg.dll
2007-04-09 19:45 6,784 --a------ C:\WINDOWS\system32\drivers\parvdm.sys
2007-04-09 19:45 6,656 --a------ C:\WINDOWS\system32\wuauserv.dll
2007-04-09 19:45 6,656 --a------ C:\WINDOWS\system32\sensapi.dll
2007-04-09 19:45 6,656 --a------ C:\WINDOWS\system32\routetab.dll
2007-04-09 19:45 6,144 --a------ C:\WINDOWS\system32\svcpack.dll
2007-04-09 19:45 59,904 --a------ C:\WINDOWS\system32\regsvc.dll
2007-04-09 19:45 589,312 --a------ C:\WINDOWS\system32\wiashext.dll
2007-04-09 19:45 581,120 --a------ C:\WINDOWS\system32\rpcrt4.dll
2007-04-09 19:45 58,880 --a------ C:\WINDOWS\system32\resutils.dll
2007-04-09 19:45 58,880 --a------ C:\WINDOWS\system32\rastapi.dll
2007-04-09 19:45 58,368 --a------ C:\WINDOWS\system32\packager.exe
2007-04-09 19:45 577,536 --a------ C:\WINDOWS\system32\user32.dll
2007-04-09 19:45 57,856 --a------ C:\WINDOWS\system32\synceng.dll
2007-04-09 19:45 57,856 --a------ C:\WINDOWS\system32\spoolsv.exe
2007-04-09 19:45 57,856 --a------ C:\WINDOWS\system32\scripto.dll
2007-04-09 19:45 57,600 --a------ C:\WINDOWS\system32\drivers\usbhub.sys
2007-04-09 19:45 562,176 --a------ C:\WINDOWS\system32\qedit.dll
2007-04-09 19:45 560,640 --a------ C:\WINDOWS\system32\printui.dll
2007-04-09 19:45 56,832 --a------ C:\WINDOWS\system32\sol.exe
2007-04-09 19:45 56,832 --a------ C:\WINDOWS\system32\rasphone.exe
2007-04-09 19:45 56,320 --a------ C:\WINDOWS\system32\servdeps.dll
2007-04-09 19:45 553,472 --a------ C:\WINDOWS\system32\oleaut32.dll
2007-04-09 19:45 55,808 --a------ C:\WINDOWS\system32\secur32.dll
2007-04-09 19:45 55,296 --a------ C:\WINDOWS\system32\sendmail.dll
2007-04-09 19:45 549,376 --a------ C:\WINDOWS\system32\shdoclc.dll
2007-04-09 19:45 54,272 --a------ C:\WINDOWS\system32\stclient.dll
2007-04-09 19:45 538,624 --a------ C:\WINDOWS\system32\spider.exe
2007-04-09 19:45 53,760 --a------ C:\WINDOWS\system32\winsta.dll
2007-04-09 19:45 52,352 --a------ C:\WINDOWS\system32\drivers\volsnap.sys
2007-04-09 19:45 52,224 --a------ C:\WINDOWS\system32\tsappcmp.dll
2007-04-09 19:45 51,712 --a------ C:\WINDOWS\system32\vdmredir.dll
2007-04-09 19:45 51,456 --a------ C:\WINDOWS\system32\vga256.dll
2007-04-09 19:45 51,328 --a------ C:\WINDOWS\system32\drivers\rasl2tp.sys
2007-04-09 19:45 51,200 --a------ C:\WINDOWS\system32\wmerrenu.dll
2007-04-09 19:45 51,200 --a------ C:\WINDOWS\system32\syncapp.exe
2007-04-09 19:45 502,272 --a------ C:\WINDOWS\system32\winlogon.exe
2007-04-09 19:45 50,688 --a------ C:\WINDOWS\twain_32.dll
2007-04-09 19:45 50,688 --a------ C:\WINDOWS\system32\wstdecod.dll
2007-04-09 19:45 50,688 --a------ C:\WINDOWS\system32\smss.exe
2007-04-09 19:45 50,176 --a------ C:\WINDOWS\system32\utilman.exe
2007-04-09 19:45 50,176 --a------ C:\WINDOWS\system32\reg.exe
2007-04-09 19:45 50,176 --a------ C:\WINDOWS\system32\proquota.exe
2007-04-09 19:45 5,888 --a------ C:\WINDOWS\system32\drivers\rootmdm.sys
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\write.exe
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\wmi.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\winver.exe
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\tapiperf.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\softpub.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\skdll.dll
2007-04-09 19:45 5,632 --a------ C:\WINDOWS\system32\security.dll
2007-04-09 19:45 5,504 --a------ C:\WINDOWS\system32\drivers\perc2hib.sys
2007-04-09 19:45 5,376 --a------ C:\WINDOWS\system32\drivers\viaide.sys
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system32\winnls.dll
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system32\shell.dll
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system32\sfc.dll
2007-04-09 19:45 5,120 --a------ C:\WINDOWS\system\SHELL.DLL
2007-04-09 19:45 49,680 --a------ C:\WINDOWS\twunk_16.exe
2007-04-09 19:45 49,664 --a------ C:\WINDOWS\system32\w32tm.exe
2007-04-09 19:45 49,664 --a------ C:\WINDOWS\system32\regapi.dll
2007-04-09 19:45 49,179 --a------ C:\WINDOWS\system32\sqlwoa.dll
2007-04-09 19:45 49,152 --a------ C:\WINDOWS\system32\wdigest.dll
2007-04-09 19:45 49,152 --a------ C:\WINDOWS\system32\rsmui.exe
2007-04-09 19:45 49,152 --a------ C:\WINDOWS\system32\rsm.exe
2007-04-09 19:45 49,024 --a------ C:\WINDOWS\system32\drivers\ql1280.sys
2007-04-09 19:45 48,384 --a------ C:\WINDOWS\system32\drivers\raspptp.sys
2007-04-09 19:45 47,872 --a------ C:\WINDOWS\system32\user.exe
2007-04-09 19:45 47,104 --a------ C:\WINDOWS\system32\ssmypics.scr
2007-04-09 19:45 463,360 --a------ C:\WINDOWS\system32\wiadefui.dll
2007-04-09 19:45 46,592 --a------ C:\WINDOWS\system32\pmspl.dll
2007-04-09 19:45 45,568 --a------ C:\WINDOWS\system32\tcpmonui.dll
2007-04-09 19:45 45,568 --a------ C:\WINDOWS\system32\tcpmon.dll
2007-04-09 19:45 45,568 --a------ C:\WINDOWS\system32\safrslv.dll
2007-04-09 19:45 45,312 --a------ C:\WINDOWS\system32\drivers\ql12160.sys
2007-04-09 19:45 446,464 --a------ C:\WINDOWS\system32\wmvdmoe.dll
2007-04-09 19:45 442,368 --a------ C:\WINDOWS\system32\sqlsrv32.dll
2007-04-09 19:45 44,544 --a------ C:\WINDOWS\system32\tscupgrd.exe
2007-04-09 19:45 44,032 --a------ C:\WINDOWS\system32\rtutils.dll
2007-04-09 19:45 438,272 --a------ C:\WINDOWS\system32\shimgvw.dll
2007-04-09 19:45 433,664 --a------ C:\WINDOWS\system32\wiaacmgr.exe
2007-04-09 19:45 430,592 --a------ C:\WINDOWS\system32\vssapi.dll
2007-04-09 19:45 43,520 --a------ C:\WINDOWS\system32\safrcdlg.dll
2007-04-09 19:45 43,520 --a------ C:\WINDOWS\system32\racpldlg.dll
2007-04-09 19:45 43,520 --a------ C:\WINDOWS\system32\pstorec.dll
2007-04-09 19:45 42,496 --a------ C:\WINDOWS\system32\wsnmp32.dll
2007-04-09 19:45 42,496 --a------ C:\WINDOWS\system32\shmgrate.exe
2007-04-09 19:45 417,792 --a------ C:\WINDOWS\system32\vbscript.dll
2007-04-09 19:45 415,744 --a------ C:\WINDOWS\system32\samsrv.dll
2007-04-09 19:45 414,208 --a------ C:\WINDOWS\system32\setupdll.dll
2007-04-09 19:45 41,472 --a------ C:\WINDOWS\system32\drivers\raspppoe.sys
2007-04-09 19:45 406,528 --a------ C:\WINDOWS\system32\usp10.dll
2007-04-09 19:45 40,448 --a------ C:\WINDOWS\system32\webhits.dll
2007-04-09 19:45 40,448 --a------ C:\WINDOWS\system32\osuninst.exe
2007-04-09 19:45 40,448 --a------ C:\WINDOWS\system32\drivers\ql1240.sys
2007-04-09 19:45 40,320 --a------ C:\WINDOWS\system32\drivers\ql1080.sys
2007-04-09 19:45 4,992 --a------ C:\WINDOWS\system32\drivers\toside.sys
2007-04-09 19:45 4,736 --a------ C:\WINDOWS\system32\drivers\usbd.sys
2007-04-09 19:45 4,608 --a------ C:\WINDOWS\system32\vjoy.dll
2007-04-09 19:45 4,608 --a------ C:\WINDOWS\system32\regwiz.exe
2007-04-09 19:45 4,518 --a------ C:\WINDOWS\system32\oembios.dat
2007-04-09 19:45 4,352 --a------ C:\WINDOWS\system32\drivers\wmilib.sys
2007-04-09 19:45 4,224 --a------ C:\WINDOWS\system32\drivers\rdpcdd.sys
2007-04-09 19:45 4,208 --a------ C:\WINDOWS\system32\storage.dll
2007-04-09 19:45 4,096 --a------ C:\WINDOWS\system32\unlodctr.exe
2007-04-09 19:45 4,096 --a------ C:\WINDOWS\system32\rdpcfgex.dll
2007-04-09 19:45 397,824 --a------ C:\WINDOWS\system32\rpcss.dll
2007-04-09 19:45 397,824 --a------ C:\WINDOWS\system32\regwizc.dll
2007-04-09 19:45 396,528 --a------ C:\WINDOWS\system32\wmadmod.dll
2007-04-09 19:45 393,216 --a------ C:\WINDOWS\system32\ssflwbox.scr
2007-04-09 19:45 39,936 --a------ C:\WINDOWS\system32\rshx32.dll
2007-04-09 19:45 39,936 --a------ C:\WINDOWS\system32\perfctrs.dll
2007-04-09 19:45 39,744 --a------ C:\WINDOWS\system32\ole2.dll
2007-04-09 19:45 385,536 --a------ C:\WINDOWS\system32\themeui.dll
2007-04-09 19:45 385,024 --a------ C:\WINDOWS\system32\qdvd.dll
2007-04-09 19:45 382,464 --a------ C:\WINDOWS\system32\qmgr.dll
2007-04-09 19:45 38,912 --a------ C:\WINDOWS\system32\sens.dll
2007-04-09 19:45 378,368 --a------ C:\WINDOWS\system32\wzcdlg.dll
2007-04-09 19:45 37,888 --a------ C:\WINDOWS\system32\olecnv32.dll
2007-04-09 19:45 363,008 --a------ C:\WINDOWS\system32\smlogcfg.dll
2007-04-09 19:45 36,864 --a------ C:\WINDOWS\system32\syskey.exe
2007-04-09 19:45 36,736 --a------ C:\WINDOWS\system32\drivers\ultra.sys
2007-04-09 19:45 359,808 --a------ C:\WINDOWS\system32\drivers\tcpip.sys
2007-04-09 19:45 358,400 --a------ C:\WINDOWS\system32\termmgr.dll
2007-04-09 19:45 351,232 --a------ C:\WINDOWS\system32\winhttp.dll
2007-04-09 19:45 35,840 --a------ C:\WINDOWS\system32\umandlg.dll
2007-04-09 19:45 35,840 --a------ C:\WINDOWS\system32\rcimlby.exe
2007-04-09 19:45 35,328 --a------ C:\WINDOWS\system32\winchat.exe
2007-04-09 19:45 35,328 --a------ C:\WINDOWS\system32\pifmgr.dll
2007-04-09 19:45 34,816 --a------ C:\WINDOWS\system32\ssdpapi.dll
2007-04-09 19:45 34,816 --a------ C:\WINDOWS\system32\perfproc.dll
2007-04-09 19:45 34,560 --a------ C:\WINDOWS\system32\drivers\wanarp.sys
2007-04-09 19:45 34,432 --a------ C:\WINDOWS\system32\drivers\rawwan.sys
2007-04-09 19:45 34,304 --a------ C:\WINDOWS\system32\pstorsvc.dll
2007-04-09 19:45 332,928 --a------ C:\WINDOWS\system32\drivers\srv.sys
2007-04-09 19:45 33,792 --a------ C:\WINDOWS\system32\WMDMPS.dll
2007-04-09 19:45 33,792 --a------ C:\WINDOWS\system32\vssadmin.exe
2007-04-09 19:45 33,792 --a------ C:\WINDOWS\system32\regini.exe
2007-04-09 19:45 33,280 --a------ C:\WINDOWS\system32\rundll32.exe
2007-04-09 19:45 33,280 --a------ C:\WINDOWS\system32\ping6.exe
2007-04-09 19:45 33,152 --a------ C:\WINDOWS\system32\drivers\ql10wnt.sys
2007-04-09 19:45 32,768 --a------ C:\WINDOWS\system32\winipsec.dll
2007-04-09 19:45 32,640 --a------ C:\WINDOWS\system32\drivers\symc8xx.sys
2007-04-09 19:45 32,256 --a------ C:\WINDOWS\system32\wupdmgr.exe
2007-04-09 19:45 32,256 --a------ C:\WINDOWS\system32\wpnpinst.exe
2007-04-09 19:45 32,256 --a------ C:\WINDOWS\system32\wpabaln.exe
2007-04-09 19:45 316,416 --a------ C:\WINDOWS\system32\untfs.dll
2007-04-09 19:45 313,856 --a------ C:\WINDOWS\system32\scesrv.dll
2007-04-09 19:45 311,327 --a------ C:\WINDOWS\system32\wmv8dmod.dll
2007-04-09 19:45 31,744 --a------ C:\WINDOWS\system32\tracert6.exe
2007-04-09 19:45 31,744 --a------ C:\WINDOWS\system32\rtipxmib.dll
2007-04-09 19:45 31,232 --a------ C:\WINDOWS\system32\traffic.dll
2007-04-09 19:45 31,232 --a------ C:\WINDOWS\system32\sethc.exe
2007-04-09 19:45 31,232 --a------ C:\WINDOWS\system32\sc.exe
2007-04-09 19:45 306,176 --a------ C:\WINDOWS\system32\slbcsp.dll
2007-04-09 19:45 303,616 --a------ C:\WINDOWS\system32\wmstream.dll
2007-04-09 19:45 30,749 --a------ C:\WINDOWS\system32\vbajet32.dll
2007-04-09 19:45 30,720 --a------ C:\WINDOWS\system32\xcopy.exe
2007-04-09 19:45 30,720 --a------ C:\WINDOWS\system32\plustab.dll
2007-04-09 19:45 30,688 --a------ C:\WINDOWS\system32\drivers\sym_u3.sys
2007-04-09 19:45 30,080 --a------ C:\WINDOWS\system32\drivers\rndismp.sys
2007-04-09 19:45 3,708 --a------ C:\WINDOWS\system32\pubprn.vbs
2007-04-09 19:45 3,584 --a------ C:\WINDOWS\system32\riched32.dll
2007-04-09 19:45 3,584 --a------ C:\WINDOWS\system32\regedt32.exe
2007-04-09 19:45 3,456 --a------ C:\WINDOWS\system32\drivers\oprghdlr.sys
2007-04-09 19:45 3,338 --a------ C:\WINDOWS\system32\redir.exe
2007-04-09 19:45 3,328 --a------ C:\WINDOWS\system32\drivers\pciide.sys
2007-04-09 19:45 3,072 --a------ C:\WINDOWS\system32\systray.exe
2007-04-09 19:45 3,072 --a------ C:\WINDOWS\system32\rnr20.dll
2007-04-09 19:45 295,424 --a------ C:\WINDOWS\system32\termsrv.dll
2007-04-09 19:45 291,840 --a------ C:\WINDOWS\system32\winsrv.dll
2007-04-09 19:45 29,696 --a------ C:\WINDOWS\system32\safrdm.dll
2007-04-09 19:45 29,184 --a------ C:\WINDOWS\system32\sendcmsg.dll
2007-04-09 19:45 289,792 --a------ C:\WINDOWS\system32\vssvc.exe
2007-04-09 19:45 287,263 --a------ C:\WINDOWS\system32\vmhelper.dll
2007-04-09 19:45 283,648 --a------ C:\WINDOWS\winhlp32.exe
2007-04-09 19:45 283,648 --a------ C:\WINDOWS\system32\pdh.dll
2007-04-09 19:45 28,672 --a------ C:\WINDOWS\system32\wshcon.dll
2007-04-09 19:45 28,626 --a------ C:\WINDOWS\system32\perfd009.dat
2007-04-09 19:45 28,384 --a------ C:\WINDOWS\system32\drivers\sym_hi.sys
2007-04-09 19:45 28,160 --a------ C:\WINDOWS\system32\WMDMLOG.dll
2007-04-09 19:45 279,040 --a------ C:\WINDOWS\system32\qdv.dll
2007-04-09 19:45 275,456 --a------ C:\WINDOWS\system32\ulib.dll
2007-04-09 19:45 272,128 --a------ C:\WINDOWS\system32\perfi009.dat
2007-04-09 19:45 270,848 --a------ C:\WINDOWS\system32\sbe.dll
2007-04-09 19:45 27,648 --a------ C:\WINDOWS\system32\shscrap.dll
2007-04-09 19:45 27,648 --a------ C:\WINDOWS\system32\profmap.dll
2007-04-09 19:45 27,440 --a------ C:\WINDOWS\system32\drivers\secdrv.sys
2007-04-09 19:45 27,296 --a------ C:\WINDOWS\system32\drivers\perc2.sys
2007-04-09 19:45 264,192 --a------ C:\WINDOWS\system32\wow32.dll
2007-04-09 19:45 26,624 --a------ C:\WINDOWS\system32\scredir.dll
2007-04-09 19:45 26,624 --a------ C:\WINDOWS\system32\perfdisk.dll
2007-04-09 19:45 26,112 --a------ C:\WINDOWS\system32\vdmdbg.dll
2007-04-09 19:45 26,112 --a------ C:\WINDOWS\system32\skeys.exe
2007-04-09 19:45 256,192 --a------ C:\WINDOWS\winhelp.exe
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\twunk_32.exe
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\system32\utildll.dll
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\system32\udhisapi.dll
2007-04-09 19:45 25,600 --a------ C:\WINDOWS\system32\routemon.exe
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\slayerxp.dll
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\shfolder.dll
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\perfos.dll
2007-04-09 19:45 25,088 --a------ C:\WINDOWS\system32\drivers\pciidex.sys
2007-04-09 19:45 249,344 --a------ C:\WINDOWS\system32\tapisrv.dll
2007-04-09 19:45 246,814 --a------ C:\WINDOWS\system32\strmdll.dll
2007-04-09 19:45 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2007-04-09 19:45 24,603 --a------ C:\WINDOWS\system32\sqlwid.dll
2007-04-09 19:45 24,576 --a------ C:\WINDOWS\system32\userinit.exe
2007-04-09 19:45 24,576 --a------ C:\WINDOWS\system32\rsmsink.exe
2007-04-09 19:45 24,064 --a------ C:\WINDOWS\system32\olesvr.dll
2007-04-09 19:45 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL
2007-04-09 19:45 239,616 --a------ C:\WINDOWS\system32\upnpui.dll
2007-04-09 19:45 239,104 --a------ C:\WINDOWS\system32\srrstr.dll
2007-04-09 19:45 236,544 --a------ C:\WINDOWS\system32\rasapi32.dll
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\sort.exe
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\sfmapi.dll
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\rsvpmsg.dll
2007-04-09 19:45 23,552 --a------ C:\WINDOWS\system32\rasrad.dll
2007-04-09 19:45 23,040 --a------ C:\WINDOWS\system32\setup.exe
2007-04-09 19:45 23,040 --a------ C:\WINDOWS\system32\psapi.dll
2007-04-09 19:45 225,664 --a------ C:\WINDOWS\system32\drivers\tcpip6.sys
2007-04-09 19:45 224,768 --a------ C:\WINDOWS\system32\wmasf.dll
2007-04-09 19:45 221,184 --a------ C:\WINDOWS\system32\qasf.dll
2007-04-09 19:45 22,528 --a------ C:\WINDOWS\system32\wsock32.dll
2007-04-09 19:45 22,528 --a------ C:\WINDOWS\system32\rasmxs.dll
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\w32topl.dll
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\rpcns4.dll
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\qwinsta.exe
2007-04-09 19:45 22,016 --a------ C:\WINDOWS\system32\olesvr32.dll
2007-04-09 19:45 218,624 --a------ C:\WINDOWS\system32\uxtheme.dll
2007-04-09 19:45 215,552 --a------ C:\WINDOWS\system32\osk.exe
2007-04-09 19:45 21,896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2007-04-09 19:45 21,504 --a------ C:\WINDOWS\system32\rcp.exe
2007-04-09 19:45 21,504 --a------ C:\WINDOWS\system32\pathping.exe
2007-04-09 19:45 209,408 --a------ C:\WINDOWS\system32\drivers\update.sys
2007-04-09 19:45 208,896 --a------ C:\WINDOWS\system32\wavemsp.dll
2007-04-09 19:45 206,336 --a------ C:\WINDOWS\system32\rasppp.dll
2007-04-09 19:45 202,240 --a------ C:\WINDOWS\system32\drivers\rmcast.sys
2007-04-09 19:45 20,992 --a------ C:\WINDOWS\system32\ssmarque.scr
2007-04-09 19:45 20,992 --a------ C:\WINDOWS\system32\sclgntfy.dll
2007-04-09 19:45 20,992 --a------ C:\WINDOWS\system32\drivers\vga.sys
2007-04-09 19:45 20,535 --a------ C:\WINDOWS\system32\vfpodbc.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\wmpui.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\wmpcore.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\wmpcd.dll
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\qprocess.exe
2007-04-09 19:45 20,480 --a------ C:\WINDOWS\system32\drivers\usbuhci.sys
2007-04-09 19:45 2,940,928 --a------ C:\WINDOWS\system32\wmploc.dll
2007-04-09 19:45 2,864 --a------ C:\WINDOWS\system32\winsock.dll
2007-04-09 19:45 2,736 --a------ C:\WINDOWS\system32\wowdeb.exe
2007-04-09 19:45 2,112 --a------ C:\WINDOWS\system32\winspool.exe
2007-04-09 19:45 192,512 --a------ C:\WINDOWS\system32\qcap.dll
2007-04-09 19:45 191,488 --a------ C:\WINDOWS\system32\syncui.dll
2007-04-09 19:45 190,976 --a------ C:\WINDOWS\system32\schedsvc.dll
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\wshtcpip.dll
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\ws2help.dll
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\ssbezier.scr
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\route.exe
2007-04-09 19:45 19,968 --a------ C:\WINDOWS\system32\rdpsnd.dll
2007-04-09 19:45 19,456 --a------ C:\WINDOWS\system32\tcpsvcs.exe
2007-04-09 19:45 19,456 --a------ C:\WINDOWS\system32\shutdown.exe
2007-04-09 19:45 19,200 --a------ C:\WINDOWS\system32\tapi.dll
2007-04-09 19:45 19,200 --a------ C:\WINDOWS\system\TAPI.DLL
2007-04-09 19:45 19,072 --a------ C:\WINDOWS\system32\drivers\sparrow.sys
2007-04-09 19:45 185,344 --a------ C:\WINDOWS\system32\upnphost.dll
2007-04-09 19:45 182,272 --a------ C:\WINDOWS\system32\snmpsnap.dll
2007-04-09 19:45 181,760 --a------ C:\WINDOWS\system32\tapi32.dll
2007-04-09 19:45 180,800 --a------ C:\WINDOWS\system32\sqlunirl.dll
2007-04-09 19:45 180,224 --a------ C:\WINDOWS\system32\scecli.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\vmmreg32.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\wmiprop.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\winstrm.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\version.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\ssmyst.scr
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\snmpapi.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\seclogon.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\rsmps.dll
2007-04-09 19:45 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2007-04-09 19:45 18,896 --a------ C:\WINDOWS\system32\sysedit.exe
2007-04-09 19:45 18,688 --a------ C:\WINDOWS\system32\drivers\partmgr.sys
2007-04-09 19:45 18,560 --a------ C:\WINDOWS\system32\drivers\tdi.sys
2007-04-09 19:45 18,432 --a------ C:\WINDOWS\system32\wtsapi32.dll
2007-04-09 19:45 18,432 --a------ C:\WINDOWS\system32\win.com
2007-04-09 19:45 18,432 --a------ C:\WINDOWS\system32\ups.exe
2007-04-09 19:45 18,176 --a------ C:\WINDOWS\system32\vga64k.dll
2007-04-09 19:45 177,856 --a------ C:\WINDOWS\system32\typelib.dll
2007-04-09 19:45 176,640 --a------ C:\WINDOWS\system32\wintrust.dll
2007-04-09 19:45 176,128 --a------ C:\WINDOWS\system32\winmm.dll
2007-04-09 19:45 176,128 --a------ C:\WINDOWS\system32\photowiz.dll
2007-04-09 19:45 174,592 --a------ C:\WINDOWS\system32\w32time.dll
2007-04-09 19:45 174,592 --a------ C:\WINDOWS\system32\drivers\rdbss.sys
2007-04-09 19:45 174,200 --a------ C:\WINDOWS\system32\xenroll.dll
2007-04-09 19:45 172,032 --a------ C:\WINDOWS\system32\wldap32.dll
2007-04-09 19:45 171,549 --a------ C:\WINDOWS\system32\wjview.exe
2007-04-09 19:45 171,008 --a------ C:\WINDOWS\system32\sccsccp.dll
2007-04-09 19:45 170,496 --a------ C:\WINDOWS\system32\srsvc.dll
2007-04-09 19:45 17,920 --a------ C:\WINDOWS\system32\ureg.dll
2007-04-09 19:45 17,920 --a------ C:\WINDOWS\system32\ping.exe
2007-04-09 19:45 17,792 --a------ C:\WINDOWS\system32\drivers\ptilink.sys
2007-04-09 19:45 17,664 --a------ C:\WINDOWS\system32\watchdog.sys
2007-04-09 19:45 17,408 --a------ C:\WINDOWS\system32\powrprof.dll
2007-04-09 19:45 169,984 --a------ C:\WINDOWS\system32\sccbase.dll
2007-04-09 19:45 169,520 --a------ C:\WINDOWS\system32\ole2disp.dll
2007-04-09 19:45 163,328 --a------ C:\WINDOWS\system32\oleacc.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\winrnr.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\vss_ps.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\usbmon.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\upnpcont.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\tsshutdn.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\tftp.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\rassapi.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\qappsrv.exe
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\perfnet.dll
2007-04-09 19:45 16,896 --a------ C:\WINDOWS\system32\oleaccrc.dll
2007-04-09 19:45 16,512 --a------ C:\WINDOWS\system32\drivers\raspti.sys
2007-04-09 19:45 16,384 --a------ C:\WINDOWS\system32\tskill.exe
2007-04-09 19:45 16,384 --a------ C:\WINDOWS\system32\runas.exe
2007-04-09 19:45 16,384 --a------ C:\WINDOWS\system32\prflbmsg.dll
2007-04-09 19:45 16,256 --a------ C:\WINDOWS\system32\drivers\symc810.sys
2007-04-09 19:45 159,744 --a------ C:\WINDOWS\system32\scrobj.dll
2007-04-09 19:45 159,232 --a------ C:\WINDOWS\system32\sbeio.dll
2007-04-09 19:45 153,008 --a------ C:\WINDOWS\system32\ole2nls.dll
2007-04-09 19:45 152,576 --a------ C:\WINDOWS\system32\rsaenh.dll
2007-04-09 19:45 151,552 --a------ C:\WINDOWS\system32\shmedia.dll
2007-04-09 19:45 151,552 --a------ C:\WINDOWS\system32\scrrun.dll
2007-04-09 19:45 15,872 --a------ C:\WINDOWS\system32\sysinv.dll
2007-04-09 19:45 15,872 --a------ C:\WINDOWS\system32\rwinsta.exe
2007-04-09 19:45 15,872 --a------ C:\WINDOWS\system32\perfmon.exe
2007-04-09 19:45 15,488 --a------ C:\WINDOWS\system32\drivers\serenum.sys
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\TASKMAN.EXE
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\system32\tsd32.dll
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\system32\taskman.exe
2007-04-09 19:45 15,360 --a------ C:\WINDOWS\system32\pentnt.exe
2007-04-09 19:45 147,968 --a------ C:\WINDOWS\system32\rdchost.dll
2007-04-09 19:45 145,408 --a------ C:\WINDOWS\system32\wiavusd.dll
2007-04-09 19:45 144,896 --a------ C:\WINDOWS\system32\schannel.dll
2007-04-09 19:45 143,360 --a------ C:\WINDOWS\system32\rasmontr.dll
2007-04-09 19:45 142,976 --a------ C:\WINDOWS\system32\drivers\usbport.sys
2007-04-09 19:45 140,800 --a------ C:\WINDOWS\system32\sessmgr.exe
2007-04-09 19:45 140,288 --a------ C:\WINDOWS\system32\sfc_os.dll
2007-04-09 19:45 14,976 --a------ C:\WINDOWS\system32\drivers\tape.sys
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\tscon.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\tcpmib.dll
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\stimon.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\slbrccsp.dll
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\shadow.exe
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\serwvdrv.dll
2007-04-09 19:45 14,848 --a------ C:\WINDOWS\system32\rsh.exe
2007-04-09 19:45 14,592 --a------ C:\WINDOWS\system32\drivers\smclib.sys
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\wship6.dll
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\svchost.exe
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\ssstars.scr
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\serialui.dll
2007-04-09 19:45 14,336 --a------ C:\WINDOWS\system32\runonce.exe
2007-04-09 19:45 139,528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2007-04-09 19:45 138,752 --a------ C:\WINDOWS\system32\swprv.dll
2007-04-09 19:45 138,752 --a------ C:\WINDOWS\system32\sndvol32.exe
2007-04-09 19:45 136,704 --a------ C:\WINDOWS\system32\sti_ci.dll
2007-04-09 19:45 135,680 --a------ C:\WINDOWS\system32\webvw.dll
2007-04-09 19:45 135,680 --a------ C:\WINDOWS\system32\taskmgr.exe
2007-04-09 19:45 132,608 --a------ C:\WINDOWS\system32\upnp.dll
2007-04-09 19:45 132,608 --a------ C:\WINDOWS\system32\rsvp.exe
2007-04-09 19:45 132,096 --a------ C:\WINDOWS\system32\wkssvc.dll
2007-04-09 19:45 131,584 --a------ C:\WINDOWS\system32\sndrec32.exe
2007-04-09 19:45 130,048 --a------ C:\WINDOWS\system32\sdpblb.dll
2007-04-09 19:45 13,888 --a------ C:\WINDOWS\system32\toolhelp.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\uniplat.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\sisbkup.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\senscfg.dll
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\rexec.exe
2007-04-09 19:45 13,824 --a------ C:\WINDOWS\system32\rdsaddin.exe
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\win87em.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\verifier.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\umdmxfrm.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\sigtab.dll
2007-04-09 19:45 13,312 --a------ C:\WINDOWS\system32\savedump.exe
2007-04-09 19:45 124,416 --a------ C:\WINDOWS\system32\wiadss.dll
2007-04-09 19:45 124,184 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-04-09 19:45 123,392 --a------ C:\WINDOWS\system32\umpnpmgr.dll
2007-04-09 19:45 122,880 --a------ C:\WINDOWS\system32\oledlg.dll
2007-04-09 19:45 121,856 --a------ C:\WINDOWS\system32\stobject.dll
2007-04-09 19:45 120,832 --a------ C:\WINDOWS\system32\offfilt.dll
2007-04-09 19:45 12,800 --a------ C:\WINDOWS\system32\replace.exe
2007-04-09 19:45 12,800 --a------ C:\WINDOWS\system32\rasser.dll
2007-04-09 19:45 12,672 --a------ C:\WINDOWS\system32\drivers\usb8023.sys
2007-04-09 19:45 12,288 --a------ C:\WINDOWS\system32\tracert.exe
2007-04-09 19:45 12,288 --a------ C:\WINDOWS\system32\tcmsetup.exe
2007-04-09 19:45 12,288 --a------ C:\WINDOWS\system32\perfts.dll
2007-04-09 19:45 12,168 --a------ C:\WINDOWS\system32\tsddd.dll
2007-04-09 19:45 12,040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2007-04-09 19:45 12,032 --a------ C:\WINDOWS\system32\drivers\ws2ifsl.sys
2007-04-09 19:45 119,936 --a------ C:\WINDOWS\system32\drivers\pcmcia.sys
2007-04-09 19:45 119,808 --a------ C:\WINDOWS\system32\winmine.exe
2007-04-09 19:45 118,784 --a------ C:\WINDOWS\system32\scardssp.dll
2007-04-09 19:45 118,272 --a------ C:\WINDOWS\system32\t2embed.dll
2007-04-09 19:45 115,200 --a------ C:\WINDOWS\system32\wmsdmoe.dll
2007-04-09 19:45 114,688 --a------ C:\WINDOWS\system32\wscript.exe
2007-04-09 19:45 112,128 --a------ C:\WINDOWS\system32\rastls.dll
2007-04-09 19:45 111,104 --a------ C:\WINDOWS\system32\wiavideo.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\wshrm.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\wshisn.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\winmsd.exe
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\regsvr32.exe
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\rasctrs.dll
2007-04-09 19:45 11,776 --a------ C:\WINDOWS\system32\rasautou.exe
2007-04-09 19:45 11,753 --a------ C:\WINDOWS\system32\setver.exe
2007-04-09 19:45 11,392 --a------ C:\WINDOWS\system32\drivers\sfloppy.sys
2007-04-09 19:45 11,264 --a------ C:\WINDOWS\system32\tree.com
2007-04-09 19:45 11,264 --a------ C:\WINDOWS\system32\rasdial.exe
2007-04-09 19:45 109,568 --a------ C:\WINDOWS\system32\progman.exe
2007-04-09 19:45 108,032 --a------ C:\WINDOWS\system32\services.exe
2007-04-09 19:45 107,520 --a------ C:\WINDOWS\system32\rend.dll
2007-04-09 19:45 107,008 --a------ C:\WINDOWS\system32\oleprn.dll
2007-04-09 19:45 105,984 --a------ C:\WINDOWS\system32\sysocmgr.exe
2007-04-09 19:45 105,472 --a------ C:\WINDOWS\system32\polstore.dll
2007-04-09 19:45 102,400 --a------ C:\WINDOWS\system32\wmpshell.dll
2007-04-09 19:45 102,400 --a------ C:\WINDOWS\system32\rcbdyctl.dll
2007-04-09 19:45 101,888 --a------ C:\WINDOWS\system32\win32spl.dll
2007-04-09 19:45 101,376 --a------ C:\WINDOWS\system32\txflog.dll
2007-04-09 19:45 10,752 --a------ C:\WINDOWS\system32\pschdprf.dll
2007-04-09 19:45 10,368 --a------ C:\WINDOWS\system32\wowexec.exe
2007-04-09 19:45 10,240 --a------ C:\WINDOWS\system32\panmap.dll
2007-04-09 19:45 1,843,584 --a------ C:\WINDOWS\system32\win32k.sys
2007-04-09 19:45 1,677,312 --a------ C:\WINDOWS\system32\wmvcore2.dll
2007-04-09 19:45 1,580,544 --a------ C:\WINDOWS\system32\sfcfiles.dll
2007-04-09 19:45 1,435,648 --a------ C:\WINDOWS\system32\query.dll
2007-04-09 19:45 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-04-09 19:45 1,287,168 --a------ C:\WINDOWS\system32\quartz.dll
2007-04-09 19:45 1,285,120 --a------ C:\WINDOWS\system32\ole32.dll
2007-04-09 19:45 1,161 --a------ C:\WINDOWS\system32\usrlogon.cmd
2007-04-09 19:45 1,027,072 --a------ C:\WINDOWS\system32\wmnetmgr.dll
2007-04-09 19:44 994,304 --a------ C:\WINDOWS\system32\msgina.dll
2007-04-09 19:44 99,840 --a------ C:\WINDOWS\system32\mprmsg.dll
2007-04-09 19:44 981,760 --a------ C:\WINDOWS\system32\mfc42u.dll
2007-04-09 19:44 97,280 --a------ C:\WINDOWS\system32\loadperf.dll
2007-04-09 19:44 96,768 --a------ C:\WINDOWS\system32\logagent.exe
2007-04-09 19:44 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll
2007-04-09 19:44 945,693 --a------ C:\WINDOWS\system32\msjava.dll
2007-04-09 19:44 94,282 --a------ C:\WINDOWS\system32\msencode.dll
2007-04-09 19:44 94,208 --a------ C:\WINDOWS\system32\odbcint.dll
2007-04-09 19:44 927,504 --a------ C:\WINDOWS\system32\mfc40u.dll
2007-04-09 19:44 924,432 --a------ C:\WINDOWS\system32\mfc40.dll
2007-04-09 19:44 91,776 --a------ C:\WINDOWS\system32\drivers\ndiswan.sys
2007-04-09 19:44 91,136 --a------ C:\WINDOWS\system32\ntprint.dll
2007-04-09 19:44 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll
2007-04-09 19:44 90,624 --a------ C:\WINDOWS\system32\mydocs.dll
2007-04-09 19:44 90,112 --a------ C:\WINDOWS\system32\mycomput.dll
2007-04-09 19:44 9,936 --a------ C:\WINDOWS\system32\lzexpand.dll
2007-04-09 19:44 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL
2007-04-09 19:44 9,600 --a------ C:\WINDOWS\system32\drivers\ndistapi.sys
2007-04-09 19:44 9,216 --a------ C:\WINDOWS\system32\lprmonui.dll
2007-04-09 19:44 89,600 --a------ C:\WINDOWS\system32\langwrbk.dll
2007-04-09 19:44 884,736 --a------ C:\WINDOWS\system32\msimsg.dll
2007-04-09 19:44 88,448 --a------ C:\WINDOWS\system32\drivers\nwlnkipx.sys
2007-04-09 19:44 875,008 --a------ C:\WINDOWS\system32\netplwiz.dll
2007-04-09 19:44 87,040 --a------ C:\WINDOWS\system32\mprapi.dll
2007-04-09 19:44 86,016 --a------ C:\WINDOWS\system32\netsh.exe
2007-04-09 19:44 86,016 --a------ C:\WINDOWS\system32\msapsspc.dll
2007-04-09 19:44 85,504 --a------ C:\WINDOWS\system32\makecab.exe
2007-04-09 19:44 84,480 --a------ C:\WINDOWS\system32\mciavi32.dll
2007-04-09 19:44 831,519 --a------ C:\WINDOWS\system32\mswdat10.dll
2007-04-09 19:44 817 --a------ C:\WINDOWS\system32\mscdexnt.exe
2007-04-09 19:44 815,104 --a------ C:\WINDOWS\system32\mmc.exe
2007-04-09 19:44 80,896 --a------ C:\WINDOWS\system32\netui0.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\ntlsapi.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\mountvol.exe
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\mciole16.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\mag_hook.dll
2007-04-09 19:44 8,192 --a------ C:\WINDOWS\system32\lpr.exe
2007-04-09 19:44 78,848 --a------ C:\WINDOWS\system32\msiexec.exe
2007-04-09 19:44 76,800 --a------ C:\WINDOWS\system32\nslookup.exe
2007-04-09 19:44 75,264 --a------ C:\WINDOWS\system32\locator.exe
2007-04-09 19:44 741 --a------ C:\WINDOWS\system32\noise.dat
2007-04-09 19:44 74,240 --a------ C:\WINDOWS\system32\mscms.dll
2007-04-09 19:44 73,802 --a------ C:\WINDOWS\system32\msrclr40.dll
2007-04-09 19:44 721,920 --a------ C:\WINDOWS\system32\lsasrv.dll
2007-04-09 19:44 72,704 --a------ C:\WINDOWS\system32\msw3prt.dll
2007-04-09 19:44 72,704 --a------ C:\WINDOWS\system32\magnify.exe
2007-04-09 19:44 71,680 --a------ C:\WINDOWS\system32\msacm32.dll
2007-04-09 19:44 701,440 --a------ C:\WINDOWS\system32\msxml2.dll
2007-04-09 19:44 70,656 --a------ C:\WINDOWS\system32\mmcbase.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\ncxpnt.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\mll_mtf.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\mciole32.dll
2007-04-09 19:44 7,680 --a------ C:\WINDOWS\system32\drivers\mcd.sys
2007-04-09 19:44 7,168 --a------ C:\WINDOWS\system32\msr2cenu.dll
2007-04-09 19:44 7,168 --a------ C:\WINDOWS\system32\mscat32.dll
2007-04-09 19:44 7,052 --a------ C:\WINDOWS\system32\nlsfunc.exe
2007-04-09 19:44 69,632 --a------ C:\WINDOWS\system32\odbcconf.exe
2007-04-09 19:44 69,632 --a------ C:\WINDOWS\system32\msr2c.dll
2007-04-09 19:44 69,632 --a------ C:\WINDOWS\system32\msconf.dll
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\system32\notepad.exe
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\system32\msctfp.dll
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\system32\mprddm.dll
2007-04-09 19:44 69,120 --a------ C:\WINDOWS\notepad.exe
2007-04-09 19:44 68,768 --a------ C:\WINDOWS\system32\mmsystem.dll
2007-04-09 19:44 68,768 --a------ C:\WINDOWS\system\mmsystem.dll
2007-04-09 19:44 673,088 --a------ C:\WINDOWS\system32\mlang.dat
2007-04-09 19:44 67,072 --a------ C:\WINDOWS\system32\ntdsapi.dll
2007-04-09 19:44 66,560 --a------ C:\WINDOWS\system32\mtxclu.dll
2007-04-09 19:44 655,360 --a------ C:\WINDOWS\system32\mstscax.dll
2007-04-09 19:44 65,536 --a------ C:\WINDOWS\system32\odbccu32.dll
2007-04-09 19:44 65,536 --a------ C:\WINDOWS\system32\odbccr32.dll
2007-04-09 19:44 65,024 --a------ C:\WINDOWS\system32\msaudite.dll
2007-04-09 19:44 63,232 --a------ C:\WINDOWS\system32\drivers\nwlnknb.sys
2007-04-09 19:44 622,080 --a------ C:\WINDOWS\system32\netcfgx.dll
2007-04-09 19:44 614,429 --a------ C:\WINDOWS\system32\mswstr10.dll
2007-04-09 19:44 61,440 --a------ C:\WINDOWS\system32\msvcrt40.dll
2007-04-09 19:44 61,168 --a------ C:\WINDOWS\system32\msacm.dll
2007-04-09 19:44 60,928 --a------ C:\WINDOWS\system32\ocmanage.dll
2007-04-09 19:44 60,928 --a------ C:\WINDOWS\system32\miglibnt.dll
2007-04-09 19:44 60,416 --a------ C:\WINDOWS\system32\msratelc.dll
2007-04-09 19:44 6,656 --a------ C:\WINDOWS\system32\msswchx.exe
2007-04-09 19:44 6,656 --a------ C:\WINDOWS\system32\msidle.dll
2007-04-09 19:44 6,656 --a------ C:\WINDOWS\system32\laprxy.dll
2007-04-09 19:44 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
2007-04-09 19:44 6,144 --a------ C:\WINDOWS\system32\lpq.exe
2007-04-09 19:44 59,904 --a------ C:\WINDOWS\system32\mpr.dll
2007-04-09 19:44 586,240 --a------ C:\WINDOWS\system32\mlang.dll
2007-04-09 19:44 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll
2007-04-09 19:44 58,880 --a------ C:\WINDOWS\system32\licwmi.dll
2007-04-09 19:44 57,856 --a------ C:\WINDOWS\system32\ntlanui.dll
2007-04-09 19:44 57,344 --a------ C:\WINDOWS\system32\msasn1.dll
2007-04-09 19:44 565,760 --a------ C:\WINDOWS\system32\msvcp50.dll
2007-04-09 19:44 56,832 --a------ C:\WINDOWS\system32\mshtmler.dll
2007-04-09 19:44 552,989 --a------ C:\WINDOWS\system32\msrepl40.dll
2007-04-09 19:44 55,936 --a------ C:\WINDOWS\system32\drivers\nwlnkspx.sys
2007-04-09 19:44 54,784 --a------ C:\WINDOWS\system32\npptools.dll
2007-04-09 19:44 54,784 --a------ C:\WINDOWS\system32\msvcirt.dll
2007-04-09 19:44 53,760 --a------ C:\WINDOWS\system32\narrator.exe
2007-04-09 19:44 53,279 --a------ C:\WINDOWS\system32\odbcji32.dll
2007-04-09 19:44 53,279 --a------ C:\WINDOWS\system32\msjter40.dll
2007-04-09 19:44 514,560 --a------ C:\WINDOWS\system32\logonui.exe
2007-04-09 19:44 512,029 --a------ C:\WINDOWS\system32\msexch40.dll
2007-04-09 19:44 51,712 --a------ C:\WINDOWS\system32\msident.dll
2007-04-09 19:44 51,712 --a------ C:\WINDOWS\system32\migpwd.exe
2007-04-09 19:44 506,368 --a------ C:\WINDOWS\system32\msxml.dll
2007-04-09 19:44 50,688 --a------ C:\WINDOWS\system32\mmcshext.dll
2007-04-09 19:44 50,176 --a------ C:\WINDOWS\system32\mdhcp.dll
2007-04-09 19:44 50,176 --a------ C:\WINDOWS\system32\loghours.dll
2007-04-09 19:44 5,632 --a------ C:\WINDOWS\system32\mll_qic.dll
2007-04-09 19:44 5,120 --a------ C:\WINDOWS\system32\lodctr.exe
2007-04-09 19:44 49,152 --a------ C:\WINDOWS\system32\mprdim.dll
2007-04-09 19:44 488,448 --a------ C:\WINDOWS\system32\ntmsmgr.dll
2007-04-09 19:44 48,128 --a------ C:\WINDOWS\system32\msprivs.dll
2007-04-09 19:44 47,104 --a------ C:\WINDOWS\system32\mprui.dll
2007-04-09 19:44 46,258 --a------ C:\WINDOWS\system32\mib.bin
2007-04-09 19:44 453,120 --a------ C:\WINDOWS\system32\drivers\mrxsmb.sys
2007-04-09 19:44 44,032 --a------ C:\WINDOWS\system32\msxml3r.dll
2007-04-09 19:44 435,200 --a------ C:\WINDOWS\system32\ntmssvc.dll
2007-04-09 19:44 43,520 --a------ C:\WINDOWS\system32\ntlanman.dll
2007-04-09 19:44 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll
2007-04-09 19:44 423,936 --a------ C:\WINDOWS\system32\licdll.dll
2007-04-09 19:44 421,919 --a------ C:\WINDOWS\system32\msrd2x40.dll
2007-04-09 19:44 42,496 --a------ C:\WINDOWS\system32\net.exe
2007-04-09 19:44 42,240 --a------ C:\WINDOWS\system32\drivers\mountmgr.sys
2007-04-09 19:44 419,840 --a------ C:\WINDOWS\system32\ntvdm.exe
2007-04-09 19:44 413,696 --a------ C:\WINDOWS\system32\msvcp60.dll
2007-04-09 19:44 41,984 --a------ C:\WINDOWS\system32\msports.dll
2007-04-09 19:44 407,552 --a------ C:\WINDOWS\system32\mstsc.exe
2007-04-09 19:44 407,040 --a------ C:\WINDOWS\system32\netlogon.dll
2007-04-09 19:44 40,960 --a------ C:\WINDOWS\system32\ntmsapi.dll
2007-04-09 19:44 40,960 --a------ C:\WINDOWS\system32\mf3216.dll
2007-04-09 19:44 40,320 --a------ C:\WINDOWS\system32\drivers\nmnt.sys
2007-04-09 19:44 4,608 --a------ C:\WINDOWS\system32\mssip32.dll
2007-04-09 19:44 4,608 --a------ C:\WINDOWS\system32\msimg32.dll
2007-04-09 19:44 4,608 --a------ C:\WINDOWS\system32\mchgrcoi.dll
2007-04-09 19:44 4,224 --a------ C:\WINDOWS\system32\drivers\mnmdd.sys
2007-04-09 19:44 4,126 --a------ C:\WINDOWS\system32\msdxmlc.dll
2007-04-09 19:44 4,096 --a------ C:\WINDOWS\system32\nddeapir.exe
2007-04-09 19:44 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
2007-04-09 19:44 399,872 --a------ C:\WINDOWS\system32\lmrt.dll
2007-04-09 19:44 39,274 --a------ C:\WINDOWS\system32\mem.exe
2007-04-09 19:44 38,016 --a------ C:\WINDOWS\system32\drivers\ndproxy.sys
2007-04-09 19:44 37,916 --a------ C:\WINDOWS\system32\msxml2r.dll
2007-04-09 19:44 368,710 --a------ C:\WINDOWS\system32\msisam11.dll
2007-04-09 19:44 364,784 --a------ C:\WINDOWS\system32\MSSCP.dll
2007-04-09 19:44 36,864 --a------ C:\WINDOWS\system32\ntmsevt.dll
2007-04-09 19:44 36,864 --a------ C:\WINDOWS\system32\netstat.exe
2007-04-09 19:44 36,864 --a------ C:\WINDOWS\system32\mscpxl32.dll
2007-04-09 19:44 36,352 --a------ C:\WINDOW
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

sorry about posting

Unread postby neildush » April 10th, 2007, 8:17 pm

hi seems to only post in in bits:

here is my combi log continued:

2007-04-09 19:44 36,864 --a------ C:\WINDOWS\system32\mscpxl32.dll
2007-04-09 19:44 36,352 --a------ C:\WINDOWS\system32\ncobjapi.dll
2007-04-09 19:44 35,840 --a------ C:\WINDOWS\system32\narrhook.dll
2007-04-09 19:44 35,840 --a------ C:\WINDOWS\system32\mssign32.dll
2007-04-09 19:44 35,648 --a------ C:\WINDOWS\system32\ntio411.sys
2007-04-09 19:44 35,424 --a------ C:\WINDOWS\system32\ntio412.sys
2007-04-09 19:44 35,328 --a------ C:\WINDOWS\system32\mciqtz32.dll
2007-04-09 19:44 35,072 --a------ C:\WINDOWS\system32\drivers\msgpc.sys
2007-04-09 19:44 348,189 --a------ C:\WINDOWS\system32\msxbde40.dll
2007-04-09 19:44 348,189 --a------ C:\WINDOWS\system32\mspbde40.dll
2007-04-09 19:44 343,040 --a------ C:\WINDOWS\system32\msvcrt.dll
2007-04-09 19:44 343,040 --a------ C:\WINDOWS\system32\mspaint.exe
2007-04-09 19:44 341,504 --a------ C:\WINDOWS\system32\localspl.dll
2007-04-09 19:44 34,560 --a------ C:\WINDOWS\system32\ntio804.sys
2007-04-09 19:44 34,560 --a------ C:\WINDOWS\system32\ntio404.sys
2007-04-09 19:44 34,560 --a------ C:\WINDOWS\system32\mnmdd.dll
2007-04-09 19:44 34,560 --a------ C:\WINDOWS\system32\drivers\netbios.sys
2007-04-09 19:44 33,840 --a------ C:\WINDOWS\system32\ntio.sys
2007-04-09 19:44 33,792 --a------ C:\WINDOWS\system32\msgsvc.dll
2007-04-09 19:44 33,280 --a------ C:\WINDOWS\system32\msobjs.dll
2007-04-09 19:44 32,768 --a------ C:\WINDOWS\system32\odbcad32.exe
2007-04-09 19:44 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe
2007-04-09 19:44 32,512 --a------ C:\WINDOWS\system32\drivers\nwlnkfwd.sys
2007-04-09 19:44 319,517 --a------ C:\WINDOWS\system32\msexcl40.dll
2007-04-09 19:44 315,904 --a------ C:\WINDOWS\system32\MSWMDM.dll
2007-04-09 19:44 315,423 --a------ C:\WINDOWS\system32\msrd3x40.dll
2007-04-09 19:44 308,224 --a------ C:\WINDOWS\system32\netui2.dll
2007-04-09 19:44 30,848 --a------ C:\WINDOWS\system32\drivers\npfs.sys
2007-04-09 19:44 30,208 --a------ C:\WINDOWS\system32\mspatcha.dll
2007-04-09 19:44 3,584 --a------ C:\WINDOWS\system32\msafd.dll
2007-04-09 19:44 3,584 --a------ C:\WINDOWS\system32\mll_hp.dll
2007-04-09 19:44 294,400 --a------ C:\WINDOWS\system32\msctf.dll
2007-04-09 19:44 290,816 --a------ C:\WINDOWS\system32\msnsspc.dll
2007-04-09 19:44 29,696 --a------ C:\WINDOWS\system32\lights.exe
2007-04-09 19:44 29,370 --a------ C:\WINDOWS\system32\ntdos411.sys
2007-04-09 19:44 29,274 --a------ C:\WINDOWS\system32\ntdos412.sys
2007-04-09 19:44 29,184 --a------ C:\WINDOWS\system32\mshta.exe
2007-04-09 19:44 29,146 --a------ C:\WINDOWS\system32\ntdos804.sys
2007-04-09 19:44 29,146 --a------ C:\WINDOWS\system32\ntdos404.sys
2007-04-09 19:44 285,696 --a------ C:\WINDOWS\system32\objsel.dll
2007-04-09 19:44 28,746 --a------ C:\WINDOWS\system32\msrecr40.dll
2007-04-09 19:44 28,672 --a------ C:\WINDOWS\system32\nmmkcert.dll
2007-04-09 19:44 278,559 --a------ C:\WINDOWS\system32\odbcjt32.dll
2007-04-09 19:44 274,944 --a------ C:\WINDOWS\system32\mstask.dll
2007-04-09 19:44 271,360 --a------ C:\WINDOWS\system32\msihnd.dll
2007-04-09 19:44 27,866 --a------ C:\WINDOWS\system32\ntdos.sys
2007-04-09 19:44 266,752 --a------ C:\WINDOWS\system32\oakley.dll
2007-04-09 19:44 26,624 --a------ C:\WINDOWS\system32\msxmlr.dll
2007-04-09 19:44 26,224 --a------ C:\WINDOWS\system32\odbc16gt.dll
2007-04-09 19:44 258,077 --a------ C:\WINDOWS\system32\mstext40.dll
2007-04-09 19:44 253,952 --a------ C:\WINDOWS\system32\neth.dll
2007-04-09 19:44 253,952 --a------ C:\WINDOWS\system32\msvcrt20.dll
2007-04-09 19:44 252,928 --a------ C:\WINDOWS\system32\msoeacct.dll
2007-04-09 19:44 25,600 --a------ C:\WINDOWS\system32\msvidc32.dll
2007-04-09 19:44 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
2007-04-09 19:44 25,088 --a------ C:\WINDOWS\system32\mslbui.dll
2007-04-09 19:44 25,088 --a------ C:\WINDOWS\system32\lnkstub.exe
2007-04-09 19:44 249,856 --a------ C:\WINDOWS\system32\odbc32.dll
2007-04-09 19:44 248,832 --a------ C:\WINDOWS\system32\newdev.dll
2007-04-09 19:44 248,832 --a------ C:\WINDOWS\system32\msieftp.dll
2007-04-09 19:44 245,760 --a------ C:\WINDOWS\system32\netui1.dll
2007-04-09 19:44 245,248 --a------ C:\WINDOWS\system32\mswsock.dll
2007-04-09 19:44 241,725 --a------ C:\WINDOWS\system32\msuni11.dll
2007-04-09 19:44 241,693 --a------ C:\WINDOWS\system32\msjtes40.dll
2007-04-09 19:44 240,640 --a------ C:\WINDOWS\system32\mpg4dmod.dll
2007-04-09 19:44 24,576 --a------ C:\WINDOWS\system32\odbcbcp.dll
2007-04-09 19:44 23,552 --a------ C:\WINDOWS\system32\mciwave.dll
2007-04-09 19:44 23,040 --a------ C:\WINDOWS\system32\mciseq.dll
2007-04-09 19:44 221,696 --a------ C:\WINDOWS\system32\localsec.dll
2007-04-09 19:44 220,672 --a------ C:\WINDOWS\system32\logon.scr
2007-04-09 19:44 22,528 --a------ C:\WINDOWS\system32\mfcsubs.dll
2007-04-09 19:44 22,016 --a------ C:\WINDOWS\system32\mpnotify.exe
2007-04-09 19:44 22,016 --a------ C:\WINDOWS\system32\lpk.dll
2007-04-09 19:44 22,016 --a------ C:\WINDOWS\system32\licmgr10.dll
2007-04-09 19:44 216,064 --a------ C:\WINDOWS\system32\moricons.dll
2007-04-09 19:44 214,016 --a------ C:\WINDOWS\system32\netevent.dll
2007-04-09 19:44 213,023 --a------ C:\WINDOWS\system32\msltus40.dll
2007-04-09 19:44 21,023 --a------ C:\WINDOWS\system32\msjdbc10.dll
2007-04-09 19:44 207,360 --a------ C:\WINDOWS\system32\mobsync.dll
2007-04-09 19:44 204,288 --a------ C:\WINDOWS\system32\mswebdvd.dll
2007-04-09 19:44 20,992 --a------ C:\WINDOWS\system32\msg.exe
2007-04-09 19:44 20,511 --a------ C:\WINDOWS\system32\odtext32.dll
2007-04-09 19:44 20,511 --a------ C:\WINDOWS\system32\oddbse32.dll
2007-04-09 19:44 20,510 --a------ C:\WINDOWS\system32\odpdx32.dll
2007-04-09 19:44 20,510 --a------ C:\WINDOWS\system32\odfox32.dll
2007-04-09 19:44 20,510 --a------ C:\WINDOWS\system32\odexl32.dll
2007-04-09 19:44 20,480 --a------ C:\WINDOWS\system32\nbtstat.exe
2007-04-09 19:44 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll
2007-04-09 19:44 20,480 --a------ C:\WINDOWS\system32\msorc32r.dll
2007-04-09 19:44 2,944 --a------ C:\WINDOWS\system32\drivers\null.sys
2007-04-09 19:44 2,890,240 --a------ C:\WINDOWS\system32\msi.dll
2007-04-09 19:44 2,560 --a------ C:\WINDOWS\system32\lz32.dll
2007-04-09 19:44 197,632 --a------ C:\WINDOWS\system32\netman.dll
2007-04-09 19:44 195,072 --a------ C:\WINDOWS\system32\msutb.dll
2007-04-09 19:44 19,968 --a------ C:\WINDOWS\system32\linkinfo.dll
2007-04-09 19:44 19,456 --a------ C:\WINDOWS\system32\mode.com
2007-04-09 19:44 19,072 --a------ C:\WINDOWS\system32\drivers\msfs.sys
2007-04-09 19:44 182,912 --a------ C:\WINDOWS\system32\drivers\ndis.sys
2007-04-09 19:44 181,248 --a------ C:\WINDOWS\system32\drivers\mrxdav.sys
2007-04-09 19:44 18,944 --a------ C:\WINDOWS\system32\nddenb32.dll
2007-04-09 19:44 18,944 --a------ C:\WINDOWS\system32\mimefilt.dll
2007-04-09 19:44 18,944 --a------ C:\WINDOWS\system32\midimap.dll
2007-04-09 19:44 179,712 --a------ C:\WINDOWS\system32\ntmsdba.dll
2007-04-09 19:44 173,568 --a------ C:\WINDOWS\system32\MsPMSP.dll
2007-04-09 19:44 171,008 --a------ C:\WINDOWS\system32\netmsg.dll
2007-04-09 19:44 17,920 --a------ C:\WINDOWS\system32\nddeapi.dll
2007-04-09 19:44 17,408 --a------ C:\WINDOWS\system32\mmfutil.dll
2007-04-09 19:44 17,408 --a------ C:\WINDOWS\system32\mcicda.dll
2007-04-09 19:44 17,280 --a------ C:\WINDOWS\system32\drivers\mraid35x.sys
2007-04-09 19:44 163,840 --a------ C:\WINDOWS\system32\mindex.dll
2007-04-09 19:44 162,816 --a------ C:\WINDOWS\system32\drivers\netbt.sys
2007-04-09 19:44 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll
2007-04-09 19:44 16,384 --a------ C:\WINDOWS\system32\odbc32gt.dll
2007-04-09 19:44 159,232 --a------ C:\WINDOWS\system32\msimtf.dll
2007-04-09 19:44 154,140 --a------ C:\WINDOWS\system32\msawt.dll
2007-04-09 19:44 153,600 --a------ C:\WINDOWS\system32\modemui.dll
2007-04-09 19:44 151,583 --a------ C:\WINDOWS\system32\msjint40.dll
2007-04-09 19:44 151,552 --a------ C:\WINDOWS\system32\msdart.dll
2007-04-09 19:44 15,872 --a------ C:\WINDOWS\system32\more.com
2007-04-09 19:44 15,360 --a------ C:\WINDOWS\system32\msisip.dll
2007-04-09 19:44 15,360 --a------ C:\WINDOWS\system32\logoff.exe
2007-04-09 19:44 147,456 --a------ C:\WINDOWS\system32\odbctrac.dll
2007-04-09 19:44 146,432 --a------ C:\WINDOWS\system32\msls31.dll
2007-04-09 19:44 143,872 --a------ C:\WINDOWS\system32\ntshrui.dll
2007-04-09 19:44 143,360 --a------ C:\WINDOWS\system32\msorcl32.dll
2007-04-09 19:44 143,360 --a------ C:\WINDOWS\system32\mobsync.exe
2007-04-09 19:44 142,336 --a------ C:\WINDOWS\system32\nwprovau.dll
2007-04-09 19:44 142,336 --a------ C:\WINDOWS\system32\msnetobj.dll
2007-04-09 19:44 14,848 --a------ C:\WINDOWS\system32\msidntld.dll
2007-04-09 19:44 14,848 --a------ C:\WINDOWS\system32\mgmtapi.dll
2007-04-09 19:44 14,848 --a------ C:\WINDOWS\system32\mcastmib.dll
2007-04-09 19:44 14,336 --a------ C:\WINDOWS\system32\ntlanui2.dll
2007-04-09 19:44 14,336 --a------ C:\WINDOWS\system32\msdmo.dll
2007-04-09 19:44 139,264 --a------ C:\WINDOWS\system32\netid.dll
2007-04-09 19:44 135,168 --a------ C:\WINDOWS\system32\odbcconf.dll
2007-04-09 19:44 134,656 --a------ C:\WINDOWS\system32\mssap.dll
2007-04-09 19:44 13,824 --a------ C:\WINDOWS\system32\lmhsvc.dll
2007-04-09 19:44 13,312 --a------ C:\WINDOWS\system32\ntvdmd.dll
2007-04-09 19:44 13,312 --a------ C:\WINDOWS\system32\msswch.dll
2007-04-09 19:44 13,312 --a------ C:\WINDOWS\system32\lsass.exe
2007-04-09 19:44 13,107,200 --a------ C:\WINDOWS\system32\oembios.bin
2007-04-09 19:44 129,536 --a------ C:\WINDOWS\system32\msv1_0.dll
2007-04-09 19:44 126,976 --a------ C:\WINDOWS\system32\mshearts.exe
2007-04-09 19:44 126,912 --a------ C:\WINDOWS\system32\msvideo.dll
2007-04-09 19:44 126,912 --a------ C:\WINDOWS\system\MSVIDEO.DLL
2007-04-09 19:44 124,928 --a------ C:\WINDOWS\system32\net1.exe
2007-04-09 19:44 123,392 --a------ C:\WINDOWS\system32\mplay32.exe
2007-04-09 19:44 120,832 --a------ C:\WINDOWS\system32\msvfw32.dll
2007-04-09 19:44 12,800 --a------ C:\WINDOWS\system32\mrinfo.exe
2007-04-09 19:44 12,416 --a------ C:\WINDOWS\system32\drivers\nwlnkflt.sys
2007-04-09 19:44 12,288 --a------ C:\WINDOWS\system32\odbcp32r.dll
2007-04-09 19:44 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll
2007-04-09 19:44 12,288 --a------ C:\WINDOWS\system32\netrap.dll
2007-04-09 19:44 12,288 --a------ C:\WINDOWS\system32\mstinit.exe
2007-04-09 19:44 12,288 --a------ C:\WINDOWS\system32\mscpx32r.dll
2007-04-09 19:44 12,288 --a------ C:\WINDOWS\system32\mmdrv.dll
2007-04-09 19:44 119,808 --a------ C:\WINDOWS\system32\mmutilse.dll
2007-04-09 19:44 118,784 --a------ C:\WINDOWS\system32\ntmarta.dll
2007-04-09 19:44 118,272 --a------ C:\WINDOWS\system32\mdminst.dll
2007-04-09 19:44 115,712 --a------ C:\WINDOWS\system32\mstlsapi.dll
2007-04-09 19:44 112,128 --a------ C:\WINDOWS\system32\mapistub.dll
2007-04-09 19:44 111,104 --a------ C:\WINDOWS\system32\netdde.exe
2007-04-09 19:44 11,776 --a------ C:\WINDOWS\system32\localui.dll
2007-04-09 19:44 11,264 --a------ C:\WINDOWS\system32\msrle32.dll
2007-04-09 19:44 108,464 --a------ C:\WINDOWS\system32\netapi.dll
2007-04-09 19:44 107,904 --a------ C:\WINDOWS\system32\drivers\mup.sys
2007-04-09 19:44 106,496 --a------ C:\WINDOWS\system32\odbccp32.dll
2007-04-09 19:44 105,984 --a------ C:\WINDOWS\system32\msoert2.dll
2007-04-09 19:44 103,936 --a------ C:\WINDOWS\system32\nlhtml.dll
2007-04-09 19:44 102,912 --a------ C:\WINDOWS\system32\msaatext.dll
2007-04-09 19:44 10,496 --a------ C:\WINDOWS\system32\mcdsrv32.dll
2007-04-09 19:44 10,240 --a------ C:\WINDOWS\system32\mcd32.dll
2007-04-09 19:44 10,240 --a------ C:\WINDOWS\system32\lprhelp.dll
2007-04-09 19:44 10,112 --a------ C:\WINDOWS\system32\modex.dll
2007-04-09 19:44 1,708,032 --a------ C:\WINDOWS\system32\netshell.dll
2007-04-09 19:44 1,507,356 --a------ C:\WINDOWS\system32\msjet40.dll
2007-04-09 19:44 1,428,480 --a------ C:\WINDOWS\system32\msvidctl.dll
2007-04-09 19:44 1,392,671 --a------ C:\WINDOWS\system32\msvbvm60.dll
2007-04-09 19:44 1,355,776 --a------ C:\WINDOWS\system32\msvbvm50.dll
2007-04-09 19:44 1,192,960 --a------ C:\WINDOWS\system32\mmcndmgr.dll
2007-04-09 19:44 1,131 --a------ C:\WINDOWS\system32\loadfix.com
2007-04-09 19:44 1,084,416 --a------ C:\WINDOWS\system32\msxml3.dll
2007-04-09 19:44 1,028,096 --a------ C:\WINDOWS\system32\mfc42.dll
2007-04-09 19:43 96,768 --a------ C:\WINDOWS\system32\drmstor.dll
2007-04-09 19:43 92,672 --a------ C:\WINDOWS\system32\dskquota.dll
2007-04-09 19:43 92,224 --a------ C:\WINDOWS\system32\krnl386.exe
2007-04-09 19:43 9,728 --a------ C:\WINDOWS\system32\label.exe
2007-04-09 19:43 9,728 --a------ C:\WINDOWS\system32\gpkrsrc.dll
2007-04-09 19:43 9,344 --a------ C:\WINDOWS\system32\framebuf.dll
2007-04-09 19:43 9,216 --a------ C:\WINDOWS\system32\finger.exe
2007-04-09 19:43 9,216 --a------ C:\WINDOWS\system32\find.exe
2007-04-09 19:43 882 --a------ C:\WINDOWS\system32\fastopen.exe
2007-04-09 19:43 87,552 --a------ C:\WINDOWS\system32\fldrclnr.dll
2007-04-09 19:43 86,528 --a------ C:\WINDOWS\system32\iassam.dll
2007-04-09 19:43 83,968 --a------ C:\WINDOWS\system32\ipxmontr.dll
2007-04-09 19:43 81,920 --a------ C:\WINDOWS\system32\isign32.dll
2007-04-09 19:43 81,920 --a------ C:\WINDOWS\system32\ils.dll
2007-04-09 19:43 81,408 --a------ C:\WINDOWS\system32\fsusd.dll
2007-04-09 19:43 80,896 --a------ C:\WINDOWS\system32\fontsub.dll
2007-04-09 19:43 80,384 --a------ C:\WINDOWS\system32\iccvid.dll
2007-04-09 19:43 80,384 --a------ C:\WINDOWS\system32\faultrep.dll
2007-04-09 19:43 8,704 --a------ C:\WINDOWS\system32\eventvwr.exe
2007-04-09 19:43 8,424 --a------ C:\WINDOWS\system32\exe2bin.exe
2007-04-09 19:43 8,192 --a------ C:\WINDOWS\system32\igmpagnt.dll
2007-04-09 19:43 8,192 --a------ C:\WINDOWS\system32\drivers\i2omgmt.sys
2007-04-09 19:43 76,800 --a------ C:\WINDOWS\system32\gcdef.dll
2007-04-09 19:43 75,264 --a------ C:\WINDOWS\system32\inetpp.dll
2007-04-09 19:43 74,752 --a------ C:\WINDOWS\system32\drivers\ipsec.sys
2007-04-09 19:43 73,728 --a------ C:\WINDOWS\system32\icwdial.dll
2007-04-09 19:43 72,704 --a------ C:\WINDOWS\system32\hlink.dll
2007-04-09 19:43 71,680 --a------ C:\WINDOWS\system32\dsdmoprp.dll
2007-04-09 19:43 71,040 --a------ C:\WINDOWS\system32\drivers\dxg.sys
2007-04-09 19:43 70,656 --a------ C:\WINDOWS\system32\ifsutil.dll
2007-04-09 19:43 7,936 --a------ C:\WINDOWS\system32\drivers\fs_rec.sys
2007-04-09 19:43 7,680 --a------ C:\WINDOWS\system32\kbdcan.dll
2007-04-09 19:43 7,680 --a------ C:\WINDOWS\system32\hostname.exe
2007-04-09 19:43 7,424 --a------ C:\WINDOWS\system32\kd1394.dll
2007-04-09 19:43 7,168 --a------ C:\WINDOWS\system32\forcedos.exe
2007-04-09 19:43 7,040 --a------ C:\WINDOWS\system32\kdcom.dll
2007-04-09 19:43 69,886 --a------ C:\WINDOWS\system32\edit.com
2007-04-09 19:43 69,120 --a------ C:\WINDOWS\system32\ipxpromn.dll
2007-04-09 19:43 679,424 --a------ C:\WINDOWS\system32\inetcomm.dll
2007-04-09 19:43 66,560 --a------ C:\WINDOWS\system32\ipxsap.dll
2007-04-09 19:43 65,536 --a------ C:\WINDOWS\system32\jgsh400.dll
2007-04-09 19:43 65,536 --a------ C:\WINDOWS\system32\icwphbk.dll
2007-04-09 19:43 63,007 --a------ C:\WINDOWS\system32\javaprxy.dll
2007-04-09 19:43 62,976 --a------ C:\WINDOWS\system32\iesetup.dll
2007-04-09 19:43 62,976 --a------ C:\WINDOWS\system32\dsauth.dll
2007-04-09 19:43 62,464 --a------ C:\WINDOWS\system32\iasnap.dll
2007-04-09 19:43 619,008 --a------ C:\WINDOWS\system32\dx7vb.dll
2007-04-09 19:43 614,912 --a------ C:\WINDOWS\system32\h323msp.dll
2007-04-09 19:43 605,696 --a------ C:\WINDOWS\system32\getuname.dll
2007-04-09 19:43 6,144 --a------ C:\WINDOWS\system32\kbdmac.dll
2007-04-09 19:43 6,144 --a------ C:\WINDOWS\system32\kbdfo.dll
2007-04-09 19:43 6,144 --a------ C:\WINDOWS\system32\kbdbene.dll
2007-04-09 19:43 59,904 --a------ C:\WINDOWS\system32\ipv6mon.dll
2007-04-09 19:43 59,392 --a------ C:\WINDOWS\system32\iassvcs.dll
2007-04-09 19:43 56,320 --a------ C:\WINDOWS\system32\fsutil.exe
2007-04-09 19:43 55,808 --a------ C:\WINDOWS\system32\ipconfig.exe
2007-04-09 19:43 55,808 --a------ C:\WINDOWS\system32\eventlog.dll
2007-04-09 19:43 55,296 --a------ C:\WINDOWS\system32\freecell.exe
2007-04-09 19:43 54,784 --a------ C:\WINDOWS\system32\icmui.dll
2007-04-09 19:43 54,272 --a------ C:\WINDOWS\system32\ixsso.dll
2007-04-09 19:43 53,248 --a------ C:\WINDOWS\system32\ipv6.exe
2007-04-09 19:43 52,736 --a------ C:\WINDOWS\system32\drivers\i8042prt.sys
2007-04-09 19:43 51,200 --a------ C:\WINDOWS\system32\dssec.dll
2007-04-09 19:43 502,272 --a------ C:\WINDOWS\system32\drmv2clt.dll
2007-04-09 19:43 5,504 --a------ C:\WINDOWS\system32\drivers\intelide.sys
2007-04-09 19:43 498,742 --a------ C:\WINDOWS\system32\dxmasf.dll
2007-04-09 19:43 48,128 --a------ C:\WINDOWS\system32\inetres.dll
2007-04-09 19:43 47,952 --a------ C:\WINDOWS\system32\jobexec.dll
2007-04-09 19:43 450,560 --a------ C:\WINDOWS\system32\infosoft.dll
2007-04-09 19:43 45,568 --a------ C:\WINDOWS\system32\jgsd400.dll
2007-04-09 19:43 45,568 --a------ C:\WINDOWS\system32\extrac32.exe
2007-04-09 19:43 45,568 --a------ C:\WINDOWS\system32\drwtsn32.exe
2007-04-09 19:43 44,544 --a------ C:\WINDOWS\system32\jgaw400.dll
2007-04-09 19:43 44,544 --a------ C:\WINDOWS\system32\hticons.dll
2007-04-09 19:43 44,032 --a------ C:\WINDOWS\system32\ipsec6.exe
2007-04-09 19:43 42,809 --a------ C:\WINDOWS\system32\key01.sys
2007-04-09 19:43 42,537 --a------ C:\WINDOWS\system32\keyboard.sys
2007-04-09 19:43 42,496 --a------ C:\WINDOWS\system32\ftp.exe
2007-04-09 19:43 41,984 --a------ C:\WINDOWS\system32\htui.dll
2007-04-09 19:43 41,856 --a------ C:\WINDOWS\system32\drivers\imapi.sys
2007-04-09 19:43 41,472 --a------ C:\WINDOWS\system32\iasads.dll
2007-04-09 19:43 41,472 --a------ C:\WINDOWS\system32\hhsetup.dll
2007-04-09 19:43 404,509 --a------ C:\WINDOWS\system32\javart.dll
2007-04-09 19:43 4,768 --a------ C:\WINDOWS\system32\himem.sys
2007-04-09 19:43 4,656 --a------ C:\WINDOWS\system32\ds16gt.dLL
2007-04-09 19:43 4,096 --a------ C:\WINDOWS\system32\iprtprio.dll
2007-04-09 19:43 4,096 --a------ C:\WINDOWS\system32\dsprpres.dll
2007-04-09 19:43 39,936 --a------ C:\WINDOWS\system32\ipxrtmgr.dll
2007-04-09 19:43 39,424 --a------ C:\WINDOWS\system32\grpconv.exe
2007-04-09 19:43 39,424 --a------ C:\WINDOWS\system32\esentutl.exe
2007-04-09 19:43 384,000 --a------ C:\WINDOWS\system32\ipsmsnap.dll
2007-04-09 19:43 382,976 --a------ C:\WINDOWS\system32\fontext.dll
2007-04-09 19:43 380,957 --a------ C:\WINDOWS\system32\expsrv.dll
2007-04-09 19:43 367,616 --a------ C:\WINDOWS\system32\dsound.dll
2007-04-09 19:43 362,496 --a------ C:\WINDOWS\system32\jet500.dll
2007-04-09 19:43 36,921 --a------ C:\WINDOWS\system32\imeshare.dll
2007-04-09 19:43 36,224 --a------ C:\WINDOWS\system32\drivers\hidclass.sys
2007-04-09 19:43 35,840 --a------ C:\WINDOWS\system32\jgmd400.dll
2007-04-09 19:43 35,840 --a------ C:\WINDOWS\system32\imgutil.dll
2007-04-09 19:43 35,840 --a------ C:\WINDOWS\system32\drivers\isapnp.sys
2007-04-09 19:43 349,696 --a------ C:\WINDOWS\system32\ipsecsnp.dll
2007-04-09 19:43 347,136 --a------ C:\WINDOWS\system32\hypertrm.dll
2007-04-09 19:43 344,064 --a------ C:\WINDOWS\system32\hnetcfg.dll
2007-04-09 19:43 34,944 --a------ C:\WINDOWS\system32\drivers\fips.sys
2007-04-09 19:43 337,920 --a------ C:\WINDOWS\system32\filemgmt.dll
2007-04-09 19:43 331,264 --a------ C:\WINDOWS\system32\ipnathlp.dll
2007-04-09 19:43 330,752 --a------ C:\WINDOWS\system32\ippromon.dll
2007-04-09 19:43 330,752 --a------ C:\WINDOWS\system32\hnetwiz.dll
2007-04-09 19:43 33,280 --a------ C:\WINDOWS\system32\inetmib1.dll
2007-04-09 19:43 33,280 --a------ C:\WINDOWS\system32\eventcls.dll
2007-04-09 19:43 32,896 --a------ C:\WINDOWS\system32\drivers\ipfltdrv.sys
2007-04-09 19:43 32,768 --a------ C:\WINDOWS\system32\isrdbg32.dll
2007-04-09 19:43 32,256 --a------ C:\WINDOWS\system32\iashlpr.dll
2007-04-09 19:43 313,856 --a------ C:\WINDOWS\system32\dx3j.dll
2007-04-09 19:43 304,128 --a------ C:\WINDOWS\system32\duser.dll
2007-04-09 19:43 30,720 --a------ C:\WINDOWS\system32\iologmsg.dll
2007-04-09 19:43 3,584 --a------ C:\WINDOWS\system32\iprop.dll
2007-04-09 19:43 3,584 --a------ C:\WINDOWS\system32\icmp.dll
2007-04-09 19:43 3,328 --a------ C:\WINDOWS\system32\drivers\dxgthk.sys
2007-04-09 19:43 3,072 --a------ C:\WINDOWS\system32\fixmapi.exe
2007-04-09 19:43 295,936 --a------ C:\WINDOWS\system32\kerberos.dll
2007-04-09 19:43 285,184 --a------ C:\WINDOWS\system32\glmf32.dll
2007-04-09 19:43 281,600 --a------ C:\WINDOWS\system32\gdi32.dll
2007-04-09 19:43 28,112 --a------ C:\WINDOWS\system32\drwatson.exe
2007-04-09 19:43 274,432 --a------ C:\WINDOWS\system32\inetcfg.dll
2007-04-09 19:43 27,392 --a------ C:\WINDOWS\system32\drivers\fdc.sys
2007-04-09 19:43 27,136 --a------ C:\WINDOWS\system32\findstr.exe
2007-04-09 19:43 26,112 --a------ C:\WINDOWS\system32\graftabl.com
2007-04-09 19:43 258,296 --a------ C:\WINDOWS\system32\drmclien.dll
2007-04-09 19:43 254,976 --a------ C:\WINDOWS\system32\icm32.dll
2007-04-09 19:43 25,952 --a------ C:\WINDOWS\system32\drivers\hpn.sys
2007-04-09 19:43 25,600 --a------ C:\WINDOWS\system32\format.com
2007-04-09 19:43 247,808 --a------ C:\WINDOWS\system32\iassdo.dll
2007-04-09 19:43 243,200 --a------ C:\WINDOWS\system32\es.dll
2007-04-09 19:43 24,960 --a------ C:\WINDOWS\system32\drivers\hidparse.sys
2007-04-09 19:43 24,576 --a------ C:\WINDOWS\system32\gdi.exe
2007-04-09 19:43 239,104 --a------ C:\WINDOWS\system32\dsquery.dll
2007-04-09 19:43 23,552 --a------ C:\WINDOWS\system32\ipxroute.exe
2007-04-09 19:43 23,552 --a------ C:\WINDOWS\system32\iasacct.dll
2007-04-09 19:43 23,040 --a------ C:\WINDOWS\system32\ersvc.dll
2007-04-09 19:43 218,003 --a------ C:\WINDOWS\system32\dssec.dat
2007-04-09 19:43 21,504 --a------ C:\WINDOWS\system32\ipxrip.dll
2007-04-09 19:43 21,504 --a------ C:\WINDOWS\system32\feclient.dll
2007-04-09 19:43 20,992 --a------ C:\WINDOWS\system32\ipxwan.dll
2007-04-09 19:43 20,992 --a------ C:\WINDOWS\system32\fontview.exe
2007-04-09 19:43 20,992 --a------ C:\WINDOWS\system32\drivers\ipinip.sys
2007-04-09 19:43 20,480 --a------ C:\WINDOWS\system32\encapi.dll
2007-04-09 19:43 20,480 --a------ C:\WINDOWS\system32\drivers\flpydisk.sys
2007-04-09 19:43 199,168 --a------ C:\WINDOWS\system32\ir32_32.dll
2007-04-09 19:43 193,024 --a------ C:\WINDOWS\system32\eudcedit.exe
2007-04-09 19:43 19,694 --a------ C:\WINDOWS\system32\graphics.com
2007-04-09 19:43 19,456 --a------ C:\WINDOWS\system32\dswave.dll
2007-04-09 19:43 186,911 --a------ C:\WINDOWS\system32\javacypt.dll
2007-04-09 19:43 186,368 --a------ C:\WINDOWS\system32\encdec.dll
2007-04-09 19:43 183,296 --a------ C:\WINDOWS\system32\els.dll
2007-04-09 19:43 182,784 --a------ C:\WINDOWS\system32\ipsecsvc.dll
2007-04-09 19:43 181,760 --a------ C:\WINDOWS\system32\dsdmo.dll
2007-04-09 19:43 180,224 --a------ C:\WINDOWS\system32\dwwin.exe
2007-04-09 19:43 18,560 --a------ C:\WINDOWS\system32\drivers\i2omp.sys
2007-04-09 19:43 176,128 --a------ C:\WINDOWS\system32\ftsrch.dll
2007-04-09 19:43 172,060 --a------ C:\WINDOWS\system32\jview.exe
2007-04-09 19:43 171,034 --a------ C:\WINDOWS\system32\jit.dll
2007-04-09 19:43 17,920 --a------ C:\WINDOWS\system32\iaspolcy.dll
2007-04-09 19:43 17,920 --a------ C:\WINDOWS\system32\dvdupgrd.exe
2007-04-09 19:43 17,408 --a------ C:\WINDOWS\system32\esentprf.dll
2007-04-09 19:43 169,984 --a------ C:\WINDOWS\system32\iprtrmgr.dll
2007-04-09 19:43 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll
2007-04-09 19:43 16,384 --a------ C:\WINDOWS\system32\fmifs.dll
2007-04-09 19:43 16,384 --a------ C:\WINDOWS\system32\ds32gt.dll
2007-04-09 19:43 16,000 --a------ C:\WINDOWS\system32\drivers\ini910u.sys
2007-04-09 19:43 155,136 --a------ C:\WINDOWS\system32\itircl.dll
2007-04-09 19:43 154,112 --a------ C:\WINDOWS\system32\ipmontr.dll
2007-04-09 19:43 150,528 --a------ C:\WINDOWS\system32\keymgr.dll
2007-04-09 19:43 150,016 --a------ C:\WINDOWS\system32\imapi.exe
2007-04-09 19:43 15,872 --a------ C:\WINDOWS\system32\inetppui.dll
2007-04-09 19:43 147,456 --a------ C:\WINDOWS\system32\initpki.dll
2007-04-09 19:43 144,896 --a------ C:\WINDOWS\system32\hotplug.dll
2007-04-09 19:43 144,384 --a------ C:\WINDOWS\system32\dskquoui.dll
2007-04-09 19:43 143,360 --a------ C:\WINDOWS\system32\drivers\fastfat.sys
2007-04-09 19:43 142,336 --a------ C:\WINDOWS\system32\dsprop.dll
2007-04-09 19:43 141,312 --a------ C:\WINDOWS\system32\iasrecst.dll
2007-04-09 19:43 14,878 --a------ C:\WINDOWS\system32\jdbgmgr.exe
2007-04-09 19:43 14,848 --a------ C:\WINDOWS\system32\hnetmon.dll
2007-04-09 19:43 14,848 --a------ C:\WINDOWS\system32\help.exe
2007-04-09 19:43 14,848 --a------ C:\WINDOWS\system32\fc.exe
2007-04-09 19:43 14,710 --a------ C:\WINDOWS\system32\kb16.com
2007-04-09 19:43 14,336 --a------ C:\WINDOWS\system32\drprov.dll
2007-04-09 19:43 137,216 --a------ C:\WINDOWS\system32\itss.dll
2007-04-09 19:43 137,216 --a------ C:\WINDOWS\system32\dssenh.dll
2007-04-09 19:43 135,680 --a------ C:\WINDOWS\system32\ifmon.dll
2007-04-09 19:43 134,912 --a------ C:\WINDOWS\system32\drivers\ipnat.sys
2007-04-09 19:43 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2007-04-09 19:43 125,056 --a------ C:\WINDOWS\system32\drivers\ftdisk.sys
2007-04-09 19:43 123,392 --a------ C:\WINDOWS\system32\input.dll
2007-04-09 19:43 122,880 --a------ C:\WINDOWS\system32\glu32.dll
2007-04-09 19:43 120,832 --a------ C:\WINDOWS\system32\idq.dll
2007-04-09 19:43 12,642 --a------ C:\WINDOWS\system32\edlin.exe
2007-04-09 19:43 119,808 --a------ C:\WINDOWS\system32\iasrad.dll
2007-04-09 19:43 114,688 --a------ C:\WINDOWS\system32\iexpress.exe
2007-04-09 19:43 113,152 --a------ C:\WINDOWS\system32\dsuiext.dll
2007-04-09 19:43 110,592 --a------ C:\WINDOWS\system32\inetcplc.dll
2007-04-09 19:43 110,080 --a------ C:\WINDOWS\system32\imm32.dll
2007-04-09 19:43 11,264 --a------ C:\WINDOWS\system32\icaapi.dll
2007-04-09 19:43 11,264 --a------ C:\WINDOWS\system32\drivers\irenum.sys
2007-04-09 19:43 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll
2007-04-09 19:43 101,888 --a------ C:\WINDOWS\system32\gpkcsp.dll
2007-04-09 19:43 10,752 --a------ C:\WINDOWS\system32\dumprep.exe
2007-04-09 19:43 10,752 --a------ C:\WINDOWS\hh.exe
2007-04-09 19:43 10,496 --a------ C:\WINDOWS\system32\drivers\dxapi.sys
2007-04-09 19:43 1,298,432 --a------ C:\WINDOWS\system32\dxdiag.exe
2007-04-09 19:43 1,294,336 --a------ C:\WINDOWS\system32\dsound3d.dll
2007-04-09 19:43 1,227,264 --a------ C:\WINDOWS\system32\dx8vb.dll
2007-04-09 19:43 1,114,896 --a------ C:\WINDOWS\system32\esent97.dll
2007-04-09 19:43 1,082,368 --a------ C:\WINDOWS\system32\esent.dll
2007-04-09 19:43 1,032,192 --a------ C:\WINDOWS\explorer.exe
2007-04-09 19:42 98,304 --a------ C:\WINDOWS\system32\cscript.exe
2007-04-09 19:42 98,304 --a------ C:\WINDOWS\system32\ahui.exe
2007-04-09 19:42 97,792 --a------ C:\WINDOWS\system32\comrepl.dll
2007-04-09 19:42 97,280 --a------ C:\WINDOWS\system32\dpcdll.dll
2007-04-09 19:42 95,360 --a------ C:\WINDOWS\system32\drivers\atapi.sys
2007-04-09 19:42 9,216 --a------ C:\WINDOWS\system32\diskcomp.com
2007-04-09 19:42 9,029 --a------ C:\WINDOWS\system32\ansi.sys
2007-04-09 19:42 85,504 --a------ C:\WINDOWS\system32\diantz.exe
2007-04-09 19:42 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll
2007-04-09 19:42 85,020 --a------ C:\WINDOWS\system32\dgsetup.dll
2007-04-09 19:42 84,992 --a------ C:\WINDOWS\system32\avifil32.dll
2007-04-09 19:42 84,480 --a------ C:\WINDOWS\system32\cabview.dll
2007-04-09 19:42 83,456 --a------ C:\WINDOWS\system32\dpvsetup.exe
2007-04-09 19:42 825,344 --a------ C:\WINDOWS\system32\d3dim700.dll
2007-04-09 19:42 82,432 --a------ C:\WINDOWS\system32\dmscript.dll
2007-04-09 19:42 82,432 --a------ C:\WINDOWS\system32\dfrgfat.exe
2007-04-09 19:42 80,384 --a------ C:\WINDOWS\system32\charmap.exe
2007-04-09 19:42 80,384 --a------ C:\WINDOWS\system32\autodisc.dll
2007-04-09 19:42 8,704 --a------ C:\WINDOWS\system32\dciman32.dll
2007-04-09 19:42 8,704 --a------ C:\WINDOWS\system32\batt.dll
2007-04-09 19:42 8,192 --a------ C:\WINDOWS\system32\d3d8thk.dll
2007-04-09 19:42 8,192 --a------ C:\WINDOWS\system32\control.exe
2007-04-09 19:42 8,192 --a------ C:\WINDOWS\system32\cidaemon.exe
2007-04-09 19:42 8,192 --a------ C:\WINDOWS\system32\asferror.dll
2007-04-09 19:42 799,744 --a------ C:\WINDOWS\system32\drivers\dmboot.sys
2007-04-09 19:42 792,064 --a------ C:\WINDOWS\system32\comres.dll
2007-04-09 19:42 78,336 --a------ C:\WINDOWS\system32\browsewm.dll
2007-04-09 19:42 77,824 --a------ C:\WINDOWS\system32\cliconfg.dll
2007-04-09 19:42 77,312 --a------ C:\WINDOWS\system32\browser.dll
2007-04-09 19:42 75,544 --a------ C:\WINDOWS\system32\cdm.dll
2007-04-09 19:42 74,752 --a------ C:\WINDOWS\system32\cryptdlg.dll
2007-04-09 19:42 74,240 --a------ C:\WINDOWS\system32\dhcpsapi.dll
2007-04-09 19:42 73,728 --a------ C:\WINDOWS\system32\csseqchk.dll
2007-04-09 19:42 73,216 --a------ C:\WINDOWS\system32\avwav.dll
2007-04-09 19:42 71,552 --a------ C:\WINDOWS\system32\drivers\bridge.sys
2007-04-09 19:42 70,656 --a------ C:\WINDOWS\system32\amstream.dll
2007-04-09 19:42 7,680 --a------ C:\WINDOWS\system32\drivers\cd20xrnt.sys
2007-04-09 19:42 7,680 --a------ C:\WINDOWS\system32\ckcnv.exe
2007-04-09 19:42 7,680 --a------ C:\WINDOWS\system32\chcp.com
2007-04-09 19:42 7,168 --a------ C:\WINDOWS\system32\diskcopy.com
2007-04-09 19:42 69,584 --a------ C:\WINDOWS\system32\avicap.dll
2007-04-09 19:42 69,584 --a------ C:\WINDOWS\system\AVICAP.DLL
2007-04-09 19:42 69,120 --a------ C:\WINDOWS\system32\ciodm.dll
2007-04-09 19:42 68,608 --a------ C:\WINDOWS\system32\digest.dll
2007-04-09 19:42 68,096 --a------ C:\WINDOWS\system32\adsmsext.dll
2007-04-09 19:42 66,560 --a------ C:\WINDOWS\system32\console.dll
2007-04-09 19:42 65,024 --a------ C:\WINDOWS\system32\asycfilt.dll
2007-04-09 19:42 64,512 --a------ C:\WINDOWS\system32\acctres.dll
2007-04-09 19:42 64,000 --a------ C:\WINDOWS\system32\cleanmgr.exe
2007-04-09 19:42 64,000 --a------ C:\WINDOWS\system32\avicap32.dll
2007-04-09 19:42 63,744 --a------ C:\WINDOWS\system32\drivers\cdfs.sys
2007-04-09 19:42 63,488 --a------ C:\WINDOWS\system32\cryptnet.dll
2007-04-09 19:42 63,488 --a------ C:\WINDOWS\system32\cmstp.exe
2007-04-09 19:42 63,488 --a------ C:\WINDOWS\system32\browselc.dll
2007-04-09 19:42 625,152 --a------ C:\WINDOWS\system32\catsrvut.dll
2007-04-09 19:42 62,464 --a------ C:\WINDOWS\system32\dpnmodem.dll
2007-04-09 19:42 617,472 --a------ C:\WINDOWS\system32\comctl32.dll
2007-04-09 19:42 616,960 --a------ C:\WINDOWS\system32\advapi32.dll
2007-04-09 19:42 61,952 --a------ C:\WINDOWS\system32\dpnwsock.dll
2007-04-09 19:42 61,440 --a------ C:\WINDOWS\system32\dmcompos.dll
2007-04-09 19:42 61,440 --a------ C:\WINDOWS\system32\admparse.dll
2007-04-09 19:42 602,624 --a------ C:\WINDOWS\system32\autoconv.exe
2007-04-09 19:42 60,928 --a------ C:\WINDOWS\system32\dpnhupnp.dll
2007-04-09 19:42 60,416 --a------ C:\WINDOWS\system32\cryptsvc.dll
2007-04-09 19:42 60,416 --a------ C:\WINDOWS\system32\colbact.dll
2007-04-09 19:42 6,656 --a------ C:\WINDOWS\system32\drivers\cmdide.sys
2007-04-09 19:42 597,504 --a------ C:\WINDOWS\system32\crypt32.dll
2007-04-09 19:42 590,336 --a------ C:\WINDOWS\system32\d3dramp.dll
2007-04-09 19:42 59,904 --a------ C:\WINDOWS\system32\drivers\atmarpc.sys
2007-04-09 19:42 59,904 --a------ C:\WINDOWS\system32\devenum.dll
2007-04-09 19:42 58,880 --a------ C:\WINDOWS\system32\atl.dll
2007-04-09 19:42 57,856 --a------ C:\WINDOWS\system32\clusapi.dll
2007-04-09 19:42 57,344 --a------ C:\WINDOWS\system32\dpwsockx.dll
2007-04-09 19:42 56,960 --a------ C:\WINDOWS\system32\drivers\aic78xx.sys
2007-04-09 19:42 56,832 --a------ C:\WINDOWS\system32\authz.dll
2007-04-09 19:42 55,936 --a------ C:\WINDOWS\system32\drivers\atmlane.sys
2007-04-09 19:42 55,168 --a------ C:\WINDOWS\system32\drivers\aic78u2.sys
2007-04-09 19:42 540,160 --a------ C:\WINDOWS\system32\comuid.dll
2007-04-09 19:42 54,272 --a------ C:\WINDOWS\system32\dataclen.dll
2007-04-09 19:42 53,840 --a------ C:\WINDOWS\system32\dosx.exe
2007-04-09 19:42 53,760 --a------ C:\WINDOWS\system32\cryptext.dll
2007-04-09 19:42 53,520 --a------ C:\WINDOWS\system32\dpserial.dll
2007-04-09 19:42 52,736 --a------ C:\WINDOWS\system32\basesrv.dll
2007-04-09 19:42 512,512 --a------ C:\WINDOWS\system32\cryptui.dll
2007-04-09 19:42 51,200 --a------ C:\WINDOWS\system32\dfrgres.dll
2007-04-09 19:42 50,688 --a------ C:\WINDOWS\system32\camocx.dll
2007-04-09 19:42 50,620 --a------ C:\WINDOWS\system32\command.com
2007-04-09 19:42 5,888 --a------ C:\WINDOWS\system32\drivers\dmload.sys
2007-04-09 19:42 5,632 --a------ C:\WINDOWS\system32\cisvc.exe
2007-04-09 19:42 5,248 --a------ C:\WINDOWS\system32\drivers\aliide.sys
2007-04-09 19:42 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe
2007-04-09 19:42 5,120 --a------ C:\WINDOWS\system32\bootvrfy.exe
2007-04-09 19:42 498,688 --a------ C:\WINDOWS\system32\clbcatq.dll
2007-04-09 19:42 49,664 --a------ C:\WINDOWS\system32\drivers\classpnp.sys
2007-04-09 19:42 49,536 --a------ C:\WINDOWS\system32\drivers\cdrom.sys
2007-04-09 19:42 49,182 --a------ C:\WINDOWS\system32\clspack.exe
2007-04-09 19:42 48,128 --a------ C:\WINDOWS\system32\docprop2.dll
2007-04-09 19:42 47,616 --a------ C:\WINDOWS\system32\d3dxof.dll
2007-04-09 19:42 47,104 --a------ C:\WINDOWS\system32\cmdl32.exe
2007-04-09 19:42 46,080 --a------ C:\WINDOWS\system32\docprop.dll
2007-04-09 19:42 457,728 --a------ C:\WINDOWS\system32\certmgr.dll
2007-04-09 19:42 45,568 --a------ C:\WINDOWS\system32\dnsrslvr.dll
2007-04-09 19:42 45,083 --a------ C:\WINDOWS\system32\dispex.dll
2007-04-09 19:42 44,544 --a------ C:\WINDOWS\system32\alg.exe
2007-04-09 19:42 44,032 --a------ C:\WINDOWS\system32\dimap.dll
2007-04-09 19:42 436,224 --a------ C:\WINDOWS\system32\d3dim.dll
2007-04-09 19:42 42,768 --a------ C:\WINDOWS\system32\dpwsock.dll
2007-04-09 19:42 42,496 --a------ C:\WINDOWS\system32\audiosrv.dll
2007-04-09 19:42 4,608 --a------ C:\WINDOWS\system32\dllhst3g.exe
2007-04-09 19:42 4,608 --a------ C:\WINDOWS\system32\bootok.exe
2007-04-09 19:42 4,224 --a------ C:\WINDOWS\system32\drivers\beep.sys
2007-04-09 19:42 4,096 --a------ C:\WINDOWS\system32\actmovie.exe
2007-04-09 19:42 394,240 --a------ C:\WINDOWS\system32\diactfrm.dll
2007-04-09 19:42 39,936 --a------ C:\WINDOWS\system32\cmutil.dll
2007-04-09 19:42 39,936 --a------ C:\WINDOWS\system32\cmmon32.exe
2007-04-09 19:42 39,424 --a------ C:\WINDOWS\system32\ddeml.dll
2007-04-09 19:42 388,608 --a------ C:\WINDOWS\system32\cmd.exe
2007-04-09 19:42 38,912 --a------ C:\WINDOWS\system32\dfrgsnap.dll
2007-04-09 19:42 38,912 --a------ C:\WINDOWS\system32\cfgbkend.dll
2007-04-09 19:42 375,296 --a------ C:\WINDOWS\system32\dpnet.dll
2007-04-09 19:42 370,176 --a------ C:\WINDOWS\system32\dhcpmon.dll
2007-04-09 19:42 36,352 --a------ C:\WINDOWS\system32\drivers\disk.sys
2007-04-09 19:42 359,936 --a------ C:\WINDOWS\system32\cards.dll
2007-04-09 19:42 352,256 --a------ C:\WINDOWS\system32\drivers\atmuni.sys
2007-04-09 19:42 350,208 --a------ C:\WINDOWS\system32\d3drm.dll
2007-04-09 19:42 35,840 --a------ C:\WINDOWS\system32\dmloader.dll
2007-04-09 19:42 35,328 --a------ C:\WINDOWS\system32\dpnhpast.dll
2007-04-09 19:42 35,328 --a------ C:\WINDOWS\system32\corpol.dll
2007-04-09 19:42 345,600 --a------ C:\WINDOWS\system32\confmsp.dll
2007-04-09 19:42 343,040 --a------ C:\WINDOWS\system32\cmdial32.dll
2007-04-09 19:42 34,816 --a------ C:\WINDOWS\system32\d3dpmesh.dll
2007-04-09 19:42 34,816 --a------ C:\WINDOWS\system32\atmpvcno.dll
2007-04-09 19:42 330,752 --a------ C:\WINDOWS\system32\dmconfig.dll
2007-04-09 19:42 33,280 --a------ C:\WINDOWS\system32\cryptdll.dll
2007-04-09 19:42 33,280 --a------ C:\WINDOWS\system32\clipsrv.exe
2007-04-09 19:42 33,040 --a------ C:\WINDOWS\system32\dplay.dll
2007-04-09 19:42 326,656 --a------ C:\WINDOWS\system32\cscui.dll
2007-04-09 19:42 32,816 --a------ C:\WINDOWS\system32\commdlg.dll
2007-04-09 19:42 32,816 --a------ C:\WINDOWS\system\COMMDLG.DLL
2007-04-09 19:42 32,768 --a------ C:\WINDOWS\system32\csrsrv.dll
2007-04-09 19:42 32,768 --a------ C:\WINDOWS\system32\cnetcfg.dll
2007-04-09 19:42 31,360 --a------ C:\WINDOWS\system32\drivers\atmepvc.sys
2007-04-09 19:42 30,208 --a------ C:\WINDOWS\system32\dplaysvr.exe
2007-04-09 19:42 30,208 --a------ C:\WINDOWS\system32\ddeshare.exe
2007-04-09 19:42 30,208 --a------ C:\WINDOWS\system32\atmlib.dll
2007-04-09 19:42 30,160 --a------ C:\WINDOWS\system32\compobj.dll
2007-04-09 19:42 3,584 --a------ C:\WINDOWS\system32\dpnlobby.dll
2007-04-09 19:42 3,584 --a------ C:\WINDOWS\system32\dpnaddr.dll
2007-04-09 19:42 3,584 --a------ C:\WINDOWS\system32\comcat.dll
2007-04-09 19:42 294,912 --a------ C:\WINDOWS\system32\blackbox.dll
2007-04-09 19:42 285,696 --a------ C:\WINDOWS\system32\atmfd.dll
2007-04-09 19:42 282,624 --a------ C:\WINDOWS\system32\devmgr.dll
2007-04-09 19:42 28,672 --a------ C:\WINDOWS\system32\dmband.dll
2007-04-09 19:42 28,672 --a------ C:\WINDOWS\system32\dfsshlex.dll
2007-04-09 19:42 28,672 --a------ C:\WINDOWS\system32\dbnmpntw.dll
2007-04-09 19:42 28,672 --a------ C:\WINDOWS\system32\batmeter.dll
2007-04-09 19:42 276,992 --a------ C:\WINDOWS\system32\comdlg32.dll
2007-04-09 19:42 273,920 --a------ C:\WINDOWS\system32\dmdlgs.dll
2007-04-09 19:42 27,648 --a------ C:\WINDOWS\system32\conime.exe
2007-04-09 19:42 27,648 --a------ C:\WINDOWS\system32\ccfgnt.dll
2007-04-09 19:42 27,200 -r------- C:\WINDOWS\system32\ctl3dv2.dll
2007-04-09 19:42 27,136 --a------ C:\WINDOWS\system32\ddrawex.dll
2007-04-09 19:42 27,136 --a------ C:\WINDOWS\system32\ctl3d32.dll
2007-04-09 19:42 27,097 --a------ C:\WINDOWS\system32\country.sys
2007-04-09 19:42 266,240 --a------ C:\WINDOWS\system32\ddraw.dll
2007-04-09 19:42 263,680 --a------ C:\WINDOWS\system32\adsnt.dll
2007-04-09 19:42 26,624 --a------ C:\WINDOWS\system32\cnvfat.dll
2007-04-09 19:42 26,496 --a------ C:\WINDOWS\system32\drivers\asc.sys
2007-04-09 19:42 26,112 --a------ C:\WINDOWS\system32\adptif.dll
2007-04-09 19:42 252,928 --a------ C:\WINDOWS\system32\compatui.dll
2007-04-09 19:42 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
2007-04-09 19:42 25,600 --a------ C:\WINDOWS\system32\aaaamon.dll
2007-04-09 19:42 25,088 --a------ C:\WINDOWS\system32\defrag.exe
2007-04-09 19:42 25,088 --a------ C:\WINDOWS\system32\at.exe
2007-04-09 19:42 24,576 --a------ C:\WINDOWS\system32\dbmsvinn.dLL
2007-04-09 19:42 24,576 --a------ C:\WINDOWS\system32\dbmsrpcn.dll
2007-04-09 19:42 24,576 --a------ C:\WINDOWS\system32\davclnt.dll
2007-04-09 19:42 23,552 --a------ C:\WINDOWS\system32\drivers\ABP480N5.SYS
2007-04-09 19:42 23,552 --a------ C:\WINDOWS\system32\dpmodemx.dll
2007-04-09 19:42 23,552 --a------ C:\WINDOWS\system32\dmserver.dll
2007-04-09 19:42 229,888 --a------ C:\WINDOWS\system32\dplayx.dll
2007-04-09 19:42 229,376 --a------ C:\WINDOWS\system32\compstui.dll
2007-04-09 19:42 227,840 --a------ C:\WINDOWS\system32\avtapi.dll
2007-04-09 19:42 225,792 --a------ C:\WINDOWS\system32\catsrv.dll
2007-04-09 19:42 224,768 --a------ C:\WINDOWS\system32\dmadmin.exe
2007-04-09 19:42 22,400 --a------ C:\WINDOWS\system32\drivers\asc3350p.sys
2007-04-09 19:42 212,480 --a------ C:\WINDOWS\system32\dpvoice.dll
2007-04-09 19:42 21,504 --a------ C:\WINDOWS\system32\dpvacm.dll
2007-04-09 19:42 200,704 --a------ C:\WINDOWS\system32\dmdskmgr.dll
2007-04-09 19:42 20,634 --a------ C:\WINDOWS\system32\debug.exe
2007-04-09 19:42 20,480 --a------ C:\WINDOWS\system32\dbmsadsn.dll
2007-04-09 19:42 20,480 --a------ C:\WINDOWS\system32\cliconfg.exe
2007-04-09 19:42 20,192 --a------ C:\WINDOWS\system32\drivers\dpti2o.sys
2007-04-09 19:42 2,067,968 --a------ C:\WINDOWS\system32\cdosys.dll
2007-04-09 19:42 194,560 --a------ C:\WINDOWS\system32\certcli.dll
2007-04-09 19:42 194,048 --a------ C:\WINDOWS\system32\activeds.dll
2007-04-09 19:42 19,456 --a------ C:\WINDOWS\system32\dmocx.dll
2007-04-09 19:42 19,456 --a------ C:\WINDOWS\system32\arp.exe
2007-04-09 19:42 187,776 --a------ C:\WINDOWS\system32\drivers\acpi.sys
2007-04-09 19:42 185,344 --a------ C:\WINDOWS\system32\cmprops.dll
2007-04-09 19:42 183,808 --a------ C:\WINDOWS\system32\accwiz.exe
2007-04-09 19:42 181,760 --a------ C:\WINDOWS\system32\dinput8.dll
2007-04-09 19:42 181,248 --a------ C:\WINDOWS\system32\dmime.dll
2007-04-09 19:42 18,432 --a------ C:\WINDOWS\system32\dpnsvr.exe
2007-04-09 19:42 18,432 --a------ C:\WINDOWS\system32\dmintf.dll
2007-04-09 19:42 18,432 --a------ C:\WINDOWS\system32\deskperf.dll
2007-04-09 19:42 18,432 --a------ C:\WINDOWS\system32\cacls.exe
2007-04-09 19:42 179,584 --a------ C:\WINDOWS\system32\drivers\dac2w2k.sys
2007-04-09 19:42 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll
2007-04-09 19:42 175,616 --a------ C:\WINDOWS\system32\adsldp.dll
2007-04-09 19:42 17,920 --a------ C:\WINDOWS\system32\diskperf.exe
2007-04-09 19:42 17,408 --a------ C:\WINDOWS\system32\compact.exe
2007-04-09 19:42 17,408 --a------ C:\WINDOWS\system32\bidispl.dll
2007-04-09 19:42 17,408 --a------ C:\WINDOWS\system32\alrsvc.dll
2007-04-09 19:42 164,864 --a------ C:\WINDOWS\system32\cewmdm.dll
2007-04-09 19:42 163,840 --a------ C:\WINDOWS\system32\diskpart.exe
2007-04-09 19:42 163,840 --a------ C:\WINDOWS\system32\credui.dll
2007-04-09 19:42 163,328 --a------ C:\WINDOWS\system32\ciadmin.dll
2007-04-09 19:42 16,896 --a------ C:\WINDOWS\system32\deskmon.dll
2007-04-09 19:42 16,896 --a------ C:\WINDOWS\system32\cfgmgr32.dll
2007-04-09 19:42 16,384 --a------ C:\WINDOWS\system32\deskadp.dll
2007-04-09 19:42 16,384 --a------ C:\WINDOWS\system32\avmeter.dll
2007-04-09 19:42 159,232 --a------ C:\WINDOWS\system32\dinput.dll
2007-04-09 19:42 153,344 --a------ C:\WINDOWS\system32\drivers\dmio.sys
2007-04-09 19:42 152,064 --a------ C:\WINDOWS\system32\datime.dll
2007-04-09 19:42 15,872 --a------ C:\WINDOWS\system32\dmremote.exe
2007-04-09 19:42 15,872 --a------ C:\WINDOWS\system32\comp.exe
2007-04-09 19:42 15,872 --a------ C:\WINDOWS\system32\cmcfg32.dll
2007-04-09 19:42 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll
2007-04-09 19:42 15,360 --a------ C:\WINDOWS\system32\ctfmon.exe
2007-04-09 19:42 149,019 --a------ C:\WINDOWS\system32\crtdll.dll
2007-04-09 19:42 147,456 --a------ C:\WINDOWS\system32\comsnap.dll
2007-04-09 19:42 143,360 --a------ C:\WINDOWS\system32\adsldpc.dll
2007-04-09 19:42 142,848 --a------ C:\WINDOWS\system32\capesnpn.dll
2007-04-09 19:42 14,976 --a------ C:\WINDOWS\system32\drivers\cpqarray.sys
2007-04-09 19:42 14,848 --a------ C:\WINDOWS\system32\drivers\asc3550.sys
2007-04-09 19:42 14,720 --a------ C:\WINDOWS\system32\drivers\dac960nt.sys
2007-04-09 19:42 14,336 --a------ C:\WINDOWS\system32\drivers\asyncmac.sys
2007-04-09 19:42 14,336 --a------ C:\WINDOWS\system32\cmpbk32.dll
2007-04-09 19:42 14,208 --a------ C:\WINDOWS\system32\drivers\diskdump.sys
2007-04-09 19:42 138,496 --a------ C:\WINDOWS\system32\drivers\afd.sys
2007-04-09 19:42 13,952 --a------ C:\WINDOWS\system32\drivers\cbidf2k.sys
2007-04-09 19:42 13,824 --a------ C:\WINDOWS\system32\convert.exe
2007-04-09 19:42 13,312 --a------ C:\WINDOWS\system32\atkctrs.dll
2007-04-09 19:42 129,536 --a------ C:\WINDOWS\system32\acledit.dll
2007-04-09 19:42 126,976 --a------ C:\WINDOWS\system32\apphelp.dll
2007-04-09 19:42 123,904 --a------ C:\WINDOWS\system32\dfrgui.dll
2007-04-09 19:42 12,800 --a------ C:\WINDOWS\system32\drivers\aha154x.sys
2007-04-09 19:42 12,498 --a------ C:\WINDOWS\system32\append.exe
2007-04-09 19:42 12,288 --a------ C:\WINDOWS\system32\bootvid.dll
2007-04-09 19:42 12,032 --a------ C:\WINDOWS\system32\drivers\amsint.sys
2007-04-09 19:42 118,784 --a------ C:\WINDOWS\system32\dmdskres.dll
2007-04-09 19:42 116,736 --a------ C:\WINDOWS\system32\dpvvox.dll
2007-04-09 19:42 114,688 --a------ C:\WINDOWS\system32\calc.exe
2007-04-09 19:42 114,688 --a------ C:\WINDOWS\system32\aclui.dll
2007-04-09 19:42 111,104 --a------ C:\WINDOWS\system32\dgnet.dll
2007-04-09 19:42 110,592 --a------ C:\WINDOWS\system32\dbnetlib.dll
2007-04-09 19:42 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
2007-04-09 19:42 11,776 --a------ C:\WINDOWS\system32\chkdsk.exe
2007-04-09 19:42 11,648 --a------ C:\WINDOWS\system32\drivers\acpiec.sys
2007-04-09 19:42 11,264 --a------ C:\WINDOWS\system32\chkntfs.exe
2007-04-09 19:42 11,264 --a------ C:\WINDOWS\system32\autolfn.exe
2007-04-09 19:42 11,264 --a------ C:\WINDOWS\system32\attrib.exe
2007-04-09 19:42 11,264 --a------ C:\WINDOWS\system32\atrace.dll
2007-04-09 19:42 11,264 --a------ C:\WINDOWS\system32\atmadm.exe
2007-04-09 19:42 109,568 --a------ C:\WINDOWS\system32\cic.dll
2007-04-09 19:42 109,456 --a------ C:\WINDOWS\system32\avifile.dll
2007-04-09 19:42 109,456 --a------ C:\WINDOWS\system\AVIFILE.DLL
2007-04-09 19:42 105,984 --a------ C:\WINDOWS\system32\dmstyle.dll
2007-04-09 19:42 104,448 --a------ C:\WINDOWS\system32\dmusic.dll
2007-04-09 19:42 103,424 --a------ C:\WINDOWS\system32\dmsynth.dll
2007-04-09 19:42 102,912 --a------ C:\WINDOWS\system32\clipbrd.exe
2007-04-09 19:42 102,912 --a------ C:\WINDOWS\system32\apcups.dll
2007-04-09 19:42 101,888 --a------ C:\WINDOWS\system32\drivers\adpu160m.sys
2007-04-09 19:42 101,888 --a------ C:\WINDOWS\system32\cscdll.dll
2007-04-09 19:42 101,888 --a------ C:\WINDOWS\system32\actxprxy.dll
2007-04-09 19:42 100,352 --a------ C:\WINDOWS\system32\6to4svc.dll
2007-04-09 19:42 10,752 --a------ C:\WINDOWS\system32\doskey.exe
2007-04-09 19:42 10,752 --a------ C:\WINDOWS\system32\clb.dll
2007-04-09 19:42 1,788 --a------ C:\WINDOWS\system32\dcache.bin
2007-04-09 19:42 1,501,696 --a------ C:\WINDOWS\system32\diskcopy.dll
2007-04-09 19:42 1,267,200 --a------ C:\WINDOWS\system32\comsvcs.dll
2007-04-09 19:42 1,179,648 --a------ C:\WINDOWS\system32\d3d8.dll
2007-04-09 19:42 <DIR> dr------- C:\Program Files
2007-04-09 19:42 <DIR> d-------- C:\WINDOWS\I386
2007-04-09 19:41 <DIR> dr------- C:\WINDOWS\Offline Web Pages
2007-04-09 19:41 <DIR> dr------- C:\DOCUME~1\ALLUSE~1\Documents
2007-04-09 19:40 <DIR> dr-hsc--- C:\WINDOWS\system32\dllcache
2007-04-09 19:39 <DIR> d-------- C:\WINDOWS\CACHE
2007-04-09 19:39 <DIR> d-------- C:\My old Disk Structure -- 07-04-09 1139AM
2007-04-09 13:02 <DIR> d--hs---- C:\RECYCLER
2007-04-09 12:59 1,572,864 --ah----- C:\DOCUME~1\NEILD~1\NTUSER.DAT
2007-04-09 12:59 <DIR> d-------- C:\DOCUME~1\NEILD~1\WINDOWS
2007-04-09 12:58 618,496 --a------ C:\DOCUME~1\SPECIA~1\NTUSER.DAT
2007-04-09 12:58 <DIR> d-------- C:\DOCUME~1\SPECIA~1\WINDOWS
2007-04-09 12:57 <DIR> d-------- C:\DOCUME~1\DEFAUL~1\WINDOWS
2007-04-09 12:55 <DIR> d--hs---- C:\System Volume Information
2007-04-09 12:54 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys
2007-04-09 12:54 59,264 --a------ C:\WINDOWS\system32\drivers\USBAUDIO.sys
2007-04-09 12:54 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2007-04-09 12:54 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
2007-04-09 12:53 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2007-04-09 05:59 <DIR> d-------- C:\My old Disk Structure -- 07-04-08 0959PM
2007-03-15 15:46 57,344 --a------ C:\WINDOWS\uni_eh10.exe


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2007-04-10 08:38 -------- d-------- C:\Program Files\messenger
2007-04-10 08:38 -------- d-------- C:\Program Files\messenger
2007-04-09 23:56 -------- d-------- C:\Program Files\movie maker
2007-04-09 23:56 -------- d-------- C:\Program Files\movie maker
2007-04-09 23:51 -------- d-------- C:\Program Files\windows nt
2007-04-09 23:51 -------- d-------- C:\Program Files\windows nt
2007-04-09 22:57 -------- d-------- C:\Program Files\online services
2007-04-09 22:57 -------- d-------- C:\Program Files\online services
2007-04-09 22:57 -------- d-------- C:\Program Files\msn gaming zone
2007-04-09 22:57 -------- d-------- C:\Program Files\msn gaming zone
2007-04-09 22:11 -------- d--h----- C:\Program Files\installshield installation information
2007-04-09 22:11 -------- d--h----- C:\Program Files\installshield installation information
2007-04-09 19:51 60 --a------ C:\WINDOWS\system32\sysdrv.dat


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\System32\\NVMCTRAY.DLL,NvTaskbarInit"
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.1128.5462\\GoogleToolbarNotifier.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"SiSUSBRG"="C:\\WINDOWS\\SiSUSBrg.exe"
"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\System32\\NvCpl.dll,NvStartup"
"nwiz"="nwiz.exe /install"
"SoundMan"="SOUNDMAN.EXE"
"NeroCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
"AVG7_CC"="C:\\PROGRA~1\\Grisoft\\AVG7\\avgcc.exe /STARTUP"
"Logitech Utility"="Logi_MwX.Exe"
"Zone Labs Client"="C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe"
"LifeCam"="\"C:\\Program Files\\Microsoft LifeCam\\LifeExp.exe\""
"VX3000"="C:\\WINDOWS\\vVX3000.exe"
"a-squared"="\"C:\\Program Files\\a-squared Anti-Malware\\a2guard.exe\""
"THGuard"="\"C:\\Program Files\\TrojanHunter 4.6\\THGuard.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.6.0_01\\bin\\jusched.exe\""
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0
Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0
Notification Packages REG_MULTI_SZ scecli\0\0

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0
HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0



********************************************************************

catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006
http://www.gmer.net

scanning hidden processes ...

scanning hidden services ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

********************************************************************

Completion time: 07-04-11 0:38:52
C:\ComboFix-quarantined-files.txt ... 07-04-11 00:38


Will provide HJT in seperate post:
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

hjt log now

Unread postby neildush » April 10th, 2007, 8:18 pm

Logfile of HijackThis v1.99.1
Scan saved at 01:25:20, on 11/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\vVX3000.exe
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Microsoft Works\WksSb.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkCalRem.exe
C:\Program Files\Microsoft Works\MSWorks.exe
C:\Program Files\Microsoft Works\wkgdcach.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: 0 - {8BC64626-ADC8-4E9F-689B-A91D1B5D5760} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {EAB009A4-744E-409A-A60D-A6AD0B713F34} - C:\Program Files\Online Services\nipybalo.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 4.6\THGuard.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156297066
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156286962
O17 - HKLM\System\CCS\Services\Tcpip\..\{9378AC09-ACA3-47F9-85D0-7916189DB920}: NameServer = 4.2.2.1,4.2.2.2
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Unread postby Vino Rosso » April 11th, 2007, 5:52 am

Hi

1 - A few questions
  1. There are a lot of files created in the last 30 days. Have you recently done an install/repair-install of Windows?
  2. Do you recognise 'Online Services' as something you have installed?
  3. Is Level3 Communications your ISP?
2 - Upload Files To Jotti
I'd like to be certain about the content of some files.
Please visit this link http://virusscan.jotti.org/
Click the Browse... button
Navigate to the following file on your PC:
  • C:\Program Files\Online Services\nipybalo.dll
Click Open
Please reply back with the results from Jotti.

Please repeat the above for the following files:
  • C:\WINDOWS\uni_eh10.exe
  • C:\WINDOWS\system32\VchReg.dll
Please reply back with the results for all three files.

Please reply in your next post to:
  • the above questions
  • The Jotti results
Thanks
Vino
User avatar
Vino Rosso
Admin/Teacher Emeritus
 
Posts: 9024
Joined: April 24th, 2006, 8:36 am
Location: Gloria Jean's in Murray St. Mall (I wish!)

hi vino

Unread postby neildush » April 11th, 2007, 6:23 am

Hi Vino,

thank you for your help.

1. I have just done a system restore on my computer. The problem got so bad that i thought that if i did a complete system restore the problem would go away - which it didn't. at the time i never knew about this forum. At least I have removed a lot of stuff of my computer i didn't need and have backed up all my files onto an external drive which i had been meaning to do for a while! :D Would this need to be check too?

2. I do not recognise online services as something i have installed.
i have basically just installed the recovery cd that came with my computer, all the anti-virus and spyware software that was recommended by this forum and adobe PDF reader.

3. my ISP is blueyonder, now virgin media. i do not know what level 3 communications is.

on another note: i have got a few folder called: my old disk structure, these are impossible to delete for some reason.

i will not be able to reply to this email until much later this evening so please be patient.

once again i would like to thank you for your kind help. :)
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Re: hi vino

Unread postby Vino Rosso » April 11th, 2007, 7:19 am

neildush wrote:At least I have removed a lot of stuff of my computer i didn't need and have backed up all my files onto an external drive which i had been meaning to do for a while! :D Would this need to be check too?

Yes, you should scan the contents of your external drive with your antivirus program.

neildush wrote:on another note: i have got a few folder called: my old disk structure, these are impossible to delete for some reason.

This folder is created to store your previous Windows and file settings. It is protected which is why you'll find it difficult to delete.

neildush wrote:i will not be able to reply to this email until much later this evening so please be patient.

OK :thumbright:
User avatar
Vino Rosso
Admin/Teacher Emeritus
 
Posts: 9024
Joined: April 24th, 2006, 8:36 am
Location: Gloria Jean's in Murray St. Mall (I wish!)

jotti results

Unread postby neildush » April 11th, 2007, 6:45 pm

Hi Vino

Here are my scan results:

C:\Program Files\Online Services\nipybalo.dll


Scan taken on 11 Apr 2007 22:34:15 (GMT) AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing

C:\WINDOWS\uni_eh10.exe

Scan taken on 11 Apr 2007 22:36:46 (GMT) AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found Trojan.VB-470 Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing


C:\WINDOWS\system32\VchReg.dll

Scan taken on 11 Apr 2007 22:42:02 (GMT) AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing

Looks like a Trojan was found in the second scan.

cheers,

Neil
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Unread postby Vino Rosso » April 12th, 2007, 6:25 am

Hi Neil

OK, here are the next steps:

1 - Disable AVG Anti-Spyware Guard
Please disable AVG Anti-Spyware temporarily, as it may hinder the removal of some HijackThis entries.
Open AVG-AS by double-clicking the icon in the system tray.
In the 'Your security status' section, toggle the Guard realtime protection 'off' by clicking 'active' which will then change the protection status to 'inactive'.
When you reboot, AVG-AS will prompt you as to whether you would like to "Restart the guard?".
Reply 'No' and set it to 'inactive' for the duration of your cleanup. Once your computer has been cleansed of malware you can re-enable the guard.

2 - Disable TrojanHunter Guard
Disable TrojanHunter Guard by right clicking on the icon in your System Tray.
Make sure that the program, TrojanHunter itself, is also closed/not running.
TrojanHunter Guard should be on again when you restart your computer.

3 - Run HijackThis Scan and Fix
Start HijackThis and click Do a system scan only
Tick the following entries, if present:
O2 - BHO: 0 - {8BC64626-ADC8-4E9F-689B-A91D1B5D5760} - (no file)
O17 - HKLM\System\CCS\Services\Tcpip\..\{9378AC09-ACA3-47F9-85D0-7916189DB920}: NameServer = 4.2.2.1,4.2.2.2


Close all windows except HijackThis
Click Fix Checked in HijackThis.

4 - Delete suspect files/folders
Using Windows Explorer, browse for the following file and delete as instructed

If you cannot see this file, you may have to reveal hidden files as follows:
In Windows Explorer, select Tools > Folder Options > View
Set 'Hidden files and folders' to Show hidden files and folders
Untick Hide protected operating system files.
OK
Instructions can also be found >here<.
** These files are hidden to stop something important being removed accidentally. It is advisable to hide them again after fixing your computer. **

C:\WINDOWS\uni_eh10.exe <=== This file only

5 - Clean Out Temporary Files
Download ATF Cleaner by Atribune © from >here<
This is a stand-alone program that does not need to be installed. Save it to a convenient location and make a shortcut on your desktop. Using this program will remove temporary files, temporary internet files and cookies from your system, which will mean that any scans will run faster.
  • Make sure that all browser windows are closed
  • Double-click the shortcut on your desktop to run the program.
  • Under Main, choose Select All
  • UNtick Prefetch
  • Click Empty Selected
  • If you use Firefox browser,
    • Click Firefox at the top and choose Select All
    • Click on Empty Selected
    • NOTE: If you would like to keep any saved passwords, please untick that option.
  • If you use Opera browser,
    • Click Opera at the top and choose Select All
    • Click on Empty Selected
    • NOTE: If you would like to keep any saved passwords, please untick that option.
  • Click Exit to close.
6 - Scan With AVG Anti-Spyware
Start AVG Anti-Spyware and allow it to update itself. If you are unsure whether it has done so, please do the following:
  • Click the Update icon at the top and under Manual Update click the Start update button.
  • The program will either update or inform you that no update was available.
You will need to change the following settings:
  • Click the Shield icon at the top and under Resident shield is... click active. This should now change to inactive. NB - It may already show inactive from earlier actions.
  • Click the Update icon and untick the automatic update option.
  • Click the Scanner icon at the top and then click the Settings Tab.
  • Under How to act? click Recommended actions and select Quarantine from the menu.
You can now close AVG Anti-Spyware. Do not scan yet.

You will need to reboot your computer into Safe Mode for the next steps. It would be a good idea for you to print these instructions, as you will not have access to the internet.

Important: If you have an always on connection to the internet, physically disconnect that connection until you are finished with Safe Mode and have rebooted back into normal mode.

7 - Boot to Safe Mode and Scan
  • Restart your computer.
  • Continually tap the F8 button as your computer is booting (a menu appears).
  • Use up-arrow key to select Safe Mode and press Enter.
Close all open windows and then start AVG Anti-Spyware
  • Click on Scanner on the toolbar.
  • Click on the Settings tab.
    • Under How to act? - make sure that Quarantine is selected.
    • Under How to scan? - All checkboxes should be ticked.
    • Under Possibly unwanted software - All checkboxes should be ticked.
    • Under Reports - Select Automatically generate report after every scan and uncheck Only if threats were found.
    • Under What to scan? - Select Scan every file.
  • Click on the Scan tab.
  • Click on Complete System Scan to start the scan process.
  • Let the program scan your computer.
  • When the scan has finished, follow the instructions below:
    • Make sure that Set all elements to: shows Quarantine
    • Important: Click on the Apply all Actions button (*** This must done before saving the report ***)
    • When the program has finished, it will display the message All actions have been applied.
    • Then click the Save Scan Report button.
    • Click the Save Report as button.
    • Save the report to your Desktop.
  • Right-click the AVG Tray Icon and select Exit.
Reboot in Normal Mode.

8 - Check on status
After you have completed the above, please reboot and provide:
  1. the AVG Anti-Spyware Scan report
  2. a new HijackThis log
  3. and a description of how your PC is behaving - what problems are you now experiencing?
Remember, if you can, it's worth printing these instructions out before you start.

Good Luck
Vino
User avatar
Vino Rosso
Admin/Teacher Emeritus
 
Posts: 9024
Joined: April 24th, 2006, 8:36 am
Location: Gloria Jean's in Murray St. Mall (I wish!)

ta for reply

Unread postby neildush » April 12th, 2007, 6:36 am

Hi Vino,

I will be able to do this at 19:00 GMT. Sorry for delay - I'm at work, computer is at home. Will do asap. I am based in UK, you must be in Oz right?

Neil
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Re: ta for reply

Unread postby Vino Rosso » April 12th, 2007, 6:50 am

Neil wrote:Hi Vino,

I will be able to do this at 19:00 GMT. Sorry for delay - I'm at work, computer is at home. Will do asap.

No problem Neil, thanks for letting me know. I'll be away 18:00 to 22:00 BST tonight.

Neil wrote:I am based in UK, you must be in Oz right?

No, if you look at my 'location' you'll see the words "I wish!" :)
User avatar
Vino Rosso
Admin/Teacher Emeritus
 
Posts: 9024
Joined: April 24th, 2006, 8:36 am
Location: Gloria Jean's in Murray St. Mall (I wish!)

reports

Unread postby neildush » April 13th, 2007, 3:57 am

Logfile of HijackThis v1.99.1
Scan saved at 09:01:34, on 13/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\vVX3000.exe
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\PROGRA~1\Grisoft\AVG7\avgw.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {EAB009A4-744E-409A-A60D-A6AD0B713F34} - C:\Program Files\Online Services\nipybalo.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 4.6\THGuard.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156297066
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156286962
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 08:43:59 13/04/2007

+ Scan result:



I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008542.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008541.dll -> Adware.ZQuest : Cleaned with backup (quarantined).
I:\Software\Adobe software\Adobe_Photoshop_CS2_CS2_serial_number.rar/install.exe -> Downloader.Adload.az : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008540.exe -> Downloader.Agent.ac : Cleaned with backup (quarantined).
C:\WINDOWS\system32\drivers\core.sys -> Rootkit.Agent.eq : Cleaned with backup (quarantined).
I:\Software\Graphic software\Quark Express 6.0.zip/Quark.XPress.v6.build.1341._FOR_WINDOWS_WITH.SERIAL/QuarkXPress60 Win 1341/Serial + Crack/Quark.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\Software\Graphic software\Quark Express 6.0.zip/Quark.XPress.v6.build.1341._FOR_WINDOWS_WITH.SERIAL/QuarkXPress60 Win 1341/Serial + Crack/Quark1.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\Software\Unknown\Quark Express 6.0.zip/Quark.XPress.v6.build.1341._FOR_WINDOWS_WITH.SERIAL/QuarkXPress60 Win 1341/Serial + Crack/Quark.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\Software\Unknown\Quark Express 6.0.zip/Quark.XPress.v6.build.1341._FOR_WINDOWS_WITH.SERIAL/QuarkXPress60 Win 1341/Serial + Crack/Quark1.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008528.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008529.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008530.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008531.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008532.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008533.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008534.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008535.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008536.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008537.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008538.exe -> Trojan.Feutel.av : Cleaned with backup (quarantined).
I:\System Volume Information\_restore{A750E427-8BD5-422D-9FC7-E4CCEA371408}\RP27\A0008539.exe -> Trojan.Proxcrak.A : Cleaned with backup (quarantined).
I:\Software\Adobe software\adobephotoshopelementsv4.0keygencore.zip/keygen.exe -> Trojan.Small.fyd : Cleaned with backup (quarantined).


::Report end

Computer seems ok.

Speak soon,

Neil
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Unread postby Vino Rosso » April 13th, 2007, 8:53 am

Hi Neil

Things are looking better.

Your Java and Adobe Reader is up to date :)

Let's run one more scan to tidy things up. Note that this scan can take a while to run.

1 - Kaspersky Online Scan
With the exception of your browser, keep ALL programs closed
Please do an online scan with >Kaspersky Online Scanner<. You will be prompted to install an ActiveX component from Kaspersky, Click Yes.
Note for Internet Explorer 7 users: If at any time you have trouble with the accept button of the licence, click on the Zoom tool located at the right bottom of the IE window and set the zoom to 75%. Once the licence accepted, reset to 100%.
  • The program will launch and then start to download the latest definition files.
  • Once the scanner is installed and the definitions downloaded, click Next.
  • Now click on Scan Settings
  • In the scan settings make sure that the following are selected:
    o Scan using the following Anti-Virus database:
    + Extended (If available otherwise Standard)
    o Scan Options:
    + Scan Archives
    + Scan Mail Bases
  • Click OK
  • Now under select a target to scan select My Computer
  • The scan will take a while so be patient and let it run. Please do not use your computer while the scan is running. Once the scan is complete it will display if your system has been infected.
  • Now click on the Save as Text button
  • Save the file to your desktop.
  • Copy and paste that information in your next post.
Thanks
Vino
User avatar
Vino Rosso
Admin/Teacher Emeritus
 
Posts: 9024
Joined: April 24th, 2006, 8:36 am
Location: Gloria Jean's in Murray St. Mall (I wish!)
Advertisement
Register to Remove

Next

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 290 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware