|
Probleme mit W32/Virut.AX(Win XP) Moin, tjoar... also ich fang am besten mal von vorne an: Ich hab seit letzter Woche wieder Internet. Der Anbieter is Alice. Und offenbar ist es bei denen normal das man nur ein Modem bekommt und sich dann über eine Software direkt mit dem PC einwählt. Am ersten Tag wieder am Netz hab ich nach ca. 15 minuten dann auch gleich die ersten Virusmeldungen vom Antivir bekommen. Die Dateien hiesen irgendwas mit "asr_*.exe" (* = 5 Zahlen, einmal auch 5 Buchstaben), und sitzt immer im System32 Ordner. Habe erst gedacht das könnte irgendwie mit der Einwahlsoftware zu tun haben (hatte das schon mal das Antivir mir ungefärliche Dateien gemeldet hat, wenn ich aber diese Heuristik höher gesaetzt hab war der ganz ruhig), als aber nach ein paar Minuten/Stunden sich das System nach und nach verabschiedet hat (erst das Internet, dann die Darstellung vom Desktop und auch die Soundkarte), hab ich das dann doch etwas ernster genommen. Also runtergefahren, alle Festplatten abgeklemmt die nicht C: heissen, Windows-CD eingelegt, Formatiert und neu Installiert. Hatte dann auch den Tag ruhe. Am nächsten Tag dann die andere Platten wiederangeschlossen und nach ein Paar Stunden hab ich dann wieder die Virusmeldung bekommen aber wieder im System32 Ordner. Hab gerade noch Antivir durchlaufen lasen und der hat auch nur 2 neue "asr_*.exe" gefunden. Ist das jetz Wirklich ein Virus oder nur Kompatibilitätsprobleme? Wo kommen die Dinger her? Was machen sie sonst noch? Und wie werde ich die wieder los? (Ohne Formatieren) :headbang: mfg ReapeR PS: Während ich das geschreiben hab bekam ich wieder ne Warnung, diesmal war es aber nicht "W32/Virut.AX" sondern "TR/Dropper.Gen", aber die Datei hies trotzdem "asr_34865.exe".. bekomme langsam angst :eek: |
Zitat:
Bitte routinemäßig einen Vollscan mit malwarebytes machen und Log posten. Scann auch alle ext. Datenträger. Denk daran, dass Malwarebytes vor jedem Scan manuell aktualisiert werden muss! Danach OTL: Systemscan mit OTL Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
|
Nein sind keine externen HDDs... nur ein MP3-Player (hab den vosichtshalber mal angeschlossen) und sonst alles Intern. Werd dann jetz mal die Logs posten, muss aber dafür neue dinger auf machen, weil das sonst zu lang is... #4 - Malewarebytes (Nach dem der durchgelaufen ist und ich die betroffenen Dateien hab löschen lassen immer noch Probleme) #5 - OLT Pt.1 #6 - OLT PT.2 #7 - Extras |
Malwarebytes' Anti-Malware 1.46 Malwarebytes Database version: 5098 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.13 12.11.2010 15:13:28 mbam-log-2010-11-12 (15-13-28).txt Scan type: Full scan (C:\|D:\|E:\|G:\|H:\|I:\|J:\|) Objects scanned: 529328 Time elapsed: 1 hour(s), 42 minute(s), 25 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 1 Registry Data Items Infected: 2 Folders Infected: 0 Files Infected: 7 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\tcp/ip netbios helper (Trojan.Dropper) -> No action taken. Registry Data Items Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. Folders Infected: (No malicious items detected) Files Infected: C:\Documents and Settings\ReapeR\Application Data\LmHosts.exe (Trojan.Dropper) -> No action taken. C:\System Volume Information\_restore{4D8D9809-85BF-45F8-B59A-3B14DF2C7B5E}\RP14\A0001654.exe (Trojan.Dropper) -> No action taken. C:\WINDOWS\system32\asr_48836.exe (Virus.Virut) -> No action taken. |
OTL logfile created on: 12.11.2010 21:28:52 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\ReapeR\Desktop Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000407 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 86,00% Memory free 5,00 Gb Paging File | 5,00 Gb Available in Paging File | 93,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 58,79 Gb Total Space | 49,65 Gb Free Space | 84,45% Space Free | Partition Type: NTFS Drive D: | 37,90 Gb Total Space | 0,39 Gb Free Space | 1,04% Space Free | Partition Type: NTFS Drive E: | 182,78 Gb Total Space | 0,92 Gb Free Space | 0,51% Space Free | Partition Type: NTFS Unable to calculate disk information. Drive G: | 931,50 Gb Total Space | 615,22 Gb Free Space | 66,05% Space Free | Partition Type: NTFS Drive H: | 298,08 Gb Total Space | 148,35 Gb Free Space | 49,77% Space Free | Partition Type: NTFS Drive I: | 465,76 Gb Total Space | 24,37 Gb Free Space | 5,23% Space Free | Partition Type: NTFS Computer Name: REAPER-DESK | User Name: ReapeR | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2010.11.10 16:23:17 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ReapeR\Desktop\OTL.exe PRC - [2010.11.09 01:10:38 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010.11.09 01:10:38 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010.11.09 01:10:38 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2010.11.08 19:50:49 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010.02.18 12:49:40 | 000,357,448 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe PRC - [2010.02.18 12:47:34 | 003,203,144 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe PRC - [2010.01.14 21:10:53 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2008.04.14 12:30:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008.02.01 05:35:06 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\sttray.exe PRC - [2008.02.01 05:35:05 | 000,094,208 | ---- | M] (SigmaTel, Inc.) -- C:\Program Files\SigmaTel\C-Major Audio\WDM\stacsv.exe PRC - [2008.01.24 19:59:52 | 002,981,328 | ---- | M] (Hansenet) -- C:\Program Files\Alice Software\AliceEinwahl.exe ========== Modules (SafeList) ========== MOD - [2010.11.10 16:23:17 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ReapeR\Desktop\OTL.exe ========== Win32 Services (SafeList) ========== SRV - [2010.11.09 01:10:38 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010.11.09 01:10:38 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2008.02.01 05:35:05 | 000,094,208 | ---- | M] (SigmaTel, Inc.) [Auto | Running] -- C:\Program Files\SigmaTel\C-Major Audio\WDM\stacsv.exe -- (STacSV) ========== Driver Services (SafeList) ========== DRV - [2010.11.09 01:10:38 | 000,126,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010.11.09 01:10:38 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009.11.23 17:37:18 | 000,014,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LGVirHid.sys -- (LGVirHid) DRV - [2009.11.23 17:37:08 | 000,019,720 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LGBusEnum.sys -- (LGBusEnum) DRV - [2009.05.11 11:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009.05.11 09:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2008.08.21 09:22:40 | 003,299,840 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2008.04.14 12:30:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2008.02.01 05:36:29 | 000,254,872 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R) DRV - [2008.02.01 05:35:05 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) DRV - [2008.02.01 05:35:04 | 000,054,272 | ---- | M] (Sonic Focus, Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfng32.sys -- (sfng32) DRV - [2007.03.13 13:05:30 | 000,044,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HECI.sys -- (HECI) Intel(R) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.update: false FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.1 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.1 FF - prefs.js..network.proxy.type: 0 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.11.08 19:50:56 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.11.08 19:50:56 | 000,000,000 | ---D | M] [2010.11.07 20:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ReapeR\Application Data\Mozilla\Extensions [2010.11.12 21:13:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ReapeR\Application Data\Mozilla\Firefox\Profiles\0kcnnpyl.default\extensions [2010.11.07 22:58:36 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\ReapeR\Application Data\Mozilla\Firefox\Profiles\0kcnnpyl.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2010.11.12 19:03:22 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\ReapeR\Application Data\Mozilla\Firefox\Profiles\0kcnnpyl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010.11.12 21:13:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010.11.07 21:43:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010.11.08 00:22:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010.09.15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010.07.12 21:03:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2010.11.08 19:50:52 | 000,001,392 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom-de.xml [2010.11.08 19:50:52 | 000,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-de.xml [2010.11.08 19:50:52 | 000,006,805 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\leo_ende_de.xml [2010.11.08 19:50:52 | 000,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-de.xml [2010.11.08 19:50:52 | 000,001,105 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-de.xml O1 HOSTS File: ([2008.04.14 12:30:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx () O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.) O4 - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.) O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\sttray.exe (SigmaTel, Inc.) O4 - HKLM..\Run: [UserFaultCheck] File not found O4 - HKCU..\Run: [Meebo Notifier] C:\Documents and Settings\ReapeR\Local Settings\Application Data\Meebo\Meebo Notifier\MeeboNotifier.exe (Meebo, Inc.) O4 - Startup: C:\Documents and Settings\ReapeR\Start Menu\Programs\Startup\Alice-Einwahl.lnk = C:\Program Files\Alice Software\AliceEinwahl.exe (Hansenet) O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop WallPaper: C:\Documents and Settings\ReapeR\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\ReapeR\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O27 - HKLM IFEO\dotnet3.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnet3[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnet3[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3_ia64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3_ia64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3_ia64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3_x64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3_x64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3_x64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx30SP1setup.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx30SP1setup[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx30SP1setup[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx35.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx35[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx35[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx35setup.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx35setup[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx35setup[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3setup.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3setup[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\dotnetfx3setup[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_ia64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_ia64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_ia64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_x64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_x64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_x64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_x86.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_x86[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP1_x86[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_ia64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_ia64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_ia64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_x64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_x64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_x64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_x86.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_x86[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx20SP2_x86[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx30SP1_x64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx30SP1_x64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx30SP1_x64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx30SP1_x86.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx30SP1_x86[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx30SP1_x86[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_ia64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_ia64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_ia64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_x64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_x64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_x64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_x86.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_x86[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx35_x86[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx64.exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx64[1].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O27 - HKLM IFEO\NetFx64[2].exe: Debugger - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\DotNetFxInstallBlock.exe (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010.11.07 19:31:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010.07.08 20:00:46 | 000,000,000 | ---D | M] - G:\Autorun -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010.11.12 15:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\My Documents\StarCraft II [2010.11.12 15:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Blizzard Entertainment [2010.11.12 13:28:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Malwarebytes [2010.11.12 13:28:29 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010.11.12 13:28:27 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010.11.12 13:28:27 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010.11.12 13:28:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2010.11.11 22:20:57 | 000,000,000 | ---D | C] -- C:\Program Files\DotAzilla [2010.11.11 21:54:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\TS3Client [2010.11.10 21:33:30 | 000,000,000 | ---D | C] -- C:\dokumente und einstellungen [2010.11.10 19:21:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment [2010.11.10 18:59:02 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client [2010.11.10 18:51:28 | 013,326,816 | ---- | C] (TeamSpeak Systems GmbH) -- C:\Documents and Settings\ReapeR\Desktop\TeamSpeak3-Client-win32-3.0.0-beta36.exe [2010.11.10 18:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\teamspeak2 [2010.11.10 18:19:39 | 000,034,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\lhacm.acm [2010.11.10 18:19:34 | 000,000,000 | ---D | C] -- C:\Program Files\Teamspeak2_RC2 [2010.11.10 16:25:05 | 006,153,648 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\ReapeR\Desktop\mbam-setup.exe [2010.11.10 16:23:06 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\ReapeR\Desktop\OTL.exe [2010.11.10 14:53:16 | 000,000,000 | ---D | C] -- C:\Program Files\XMedia Recode [2010.11.10 02:05:49 | 000,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys [2010.11.09 22:46:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Meebo [2010.11.09 22:46:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\Meebo [2010.11.09 22:44:26 | 001,276,392 | ---- | C] (Meebo, Inc.) -- C:\Documents and Settings\ReapeR\Desktop\MeeboNotifierSetup-Beta.exe [2010.11.09 22:35:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Miranda [2010.11.09 22:34:38 | 000,000,000 | ---D | C] -- C:\Program Files\Miranda IM [2010.11.09 06:48:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\.thumbnails [2010.11.09 06:48:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\My Documents\gegl-0.0 [2010.11.09 06:48:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\.gimp-2.6 [2010.11.09 06:47:07 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0 [2010.11.09 06:44:31 | 000,000,000 | ---D | C] -- C:\Program Files\Paint.NET [2010.11.09 06:44:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\Paint.NET [2010.11.09 06:43:32 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010.11.09 06:43:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\assembly [2010.11.09 06:43:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010.11.09 06:42:39 | 000,000,000 | RH-D | C] -- C:\AHCache [2010.11.09 06:41:05 | 020,240,744 | ---- | C] (The GIMP Team ) -- C:\Documents and Settings\ReapeR\Desktop\gimp-2.6.11-i686-setup.exe [2010.11.09 06:38:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\vlc [2010.11.09 01:18:01 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll [2010.11.09 01:18:00 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll [2010.11.09 01:17:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010.11.09 01:17:53 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010.11.09 01:17:44 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll [2010.11.09 01:17:44 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll [2010.11.09 01:17:44 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll [2010.11.09 01:17:44 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll [2010.11.09 01:17:44 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll [2010.11.09 01:17:44 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe [2010.11.09 01:17:44 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe [2010.11.09 01:17:44 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe [2010.11.09 01:17:44 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [2010.11.09 01:17:44 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [2010.11.09 01:17:43 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll [2010.11.09 01:17:43 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll [2010.11.09 01:17:42 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010.11.09 01:17:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Winamp [2010.11.09 01:16:07 | 011,802,480 | ---- | C] (Nullsoft, Inc.) -- C:\Documents and Settings\ReapeR\Desktop\winamp5581_full_emusic-7plus_de-de.exe [2010.11.09 01:10:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Avira [2010.11.08 23:14:56 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2010.11.08 16:54:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData [2010.11.08 00:22:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010.11.08 00:22:20 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010.11.08 00:22:20 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010.11.08 00:22:20 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010.11.07 22:58:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\dwhelper [2010.11.07 21:43:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2010.11.07 21:43:00 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010.11.07 21:42:59 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2010.11.07 21:42:51 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010.11.07 21:42:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Sun [2010.11.07 20:25:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Profiles [2010.11.07 20:25:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\My Documents\My eBooks [2010.11.07 20:25:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\InterTrust [2010.11.07 20:25:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2010.11.07 20:25:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010.11.07 20:25:17 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010.11.07 20:24:55 | 000,328,704 | ---- | C] (InstallShield Software Corporation ) -- C:\WINDOWS\IsUn0407.exe [2010.11.07 20:23:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Macromedia [2010.11.07 20:23:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Adobe [2010.11.07 20:16:59 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys [2010.11.07 20:16:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\My Documents\Downloads [2010.11.07 20:16:12 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2010.11.07 20:16:12 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbui.dll [2010.11.07 20:15:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\Mozilla [2010.11.07 20:15:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Mozilla [2010.11.07 20:15:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music [2010.11.07 20:15:13 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010.11.07 20:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010.11.07 20:15:10 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2010.11.07 20:15:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2010.11.07 20:15:09 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2010.11.07 20:15:08 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll [2010.11.07 20:15:08 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl [2010.11.07 20:15:08 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2010.11.07 20:15:08 | 000,000,000 | R--D | C] -- C:\Program Files [2010.11.07 20:15:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010.11.07 20:15:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010.11.07 20:15:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010.11.07 20:15:01 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll [2010.11.07 20:15:01 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll [2010.11.07 20:15:01 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll [2010.11.07 20:15:00 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll [2010.11.07 20:15:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll [2010.11.07 20:15:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll [2010.11.07 20:14:57 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2010.11.07 20:14:57 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2010.11.07 20:14:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2010.11.07 20:14:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2010.11.07 20:14:57 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2010.11.07 20:14:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2010.11.07 20:14:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2010.11.07 20:14:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2010.11.07 20:14:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2010.11.07 20:14:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2010.11.07 20:14:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2010.11.07 20:14:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2010.11.07 20:14:56 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2010.11.07 20:14:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2010.11.07 20:14:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2010.11.07 20:14:53 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2010.11.07 20:14:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2010.11.07 20:14:53 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2010.11.07 20:14:53 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2010.11.07 20:14:53 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2010.11.07 20:14:53 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2010.11.07 20:14:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2010.11.07 20:14:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2010.11.07 20:14:53 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2010.11.07 20:14:53 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2010.11.07 20:14:53 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2010.11.07 20:14:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2010.11.07 20:14:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2010.11.07 20:14:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2010.11.07 20:14:52 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2010.11.07 20:14:52 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2010.11.07 20:14:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2010.11.07 20:14:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2010.11.07 20:14:52 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2010.11.07 20:14:52 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2010.11.07 20:14:52 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2010.11.07 20:14:52 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2010.11.07 20:14:51 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2010.11.07 20:14:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2010.11.07 20:14:50 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2010.11.07 20:14:50 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2010.11.07 20:14:50 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2010.11.07 20:14:50 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2010.11.07 20:14:50 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll [2010.11.07 20:14:50 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2010.11.07 20:14:50 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2010.11.07 20:14:50 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2010.11.07 20:14:50 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2010.11.07 20:14:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2010.11.07 20:14:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2010.11.07 20:14:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll [2010.11.07 20:14:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2010.11.07 20:14:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2010.11.07 20:14:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2010.11.07 20:14:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2010.11.07 20:14:50 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2010.11.07 20:14:50 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll [2010.11.07 20:14:50 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2010.11.07 20:14:50 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2010.11.07 20:14:50 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll [2010.11.07 20:14:50 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2010.11.07 20:14:49 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2010.11.07 20:14:49 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2010.11.07 20:14:49 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2010.11.07 20:14:49 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2010.11.07 20:14:44 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2010.11.07 20:14:44 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2010.11.07 20:14:44 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2010.11.07 20:14:44 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2010.11.07 20:14:44 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2010.11.07 20:14:44 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2010.11.07 20:14:44 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010.11.07 20:14:44 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2010.11.07 20:14:44 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2010.11.07 20:14:44 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2010.11.07 20:14:43 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2010.11.07 20:14:43 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2010.11.07 20:14:43 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2010.11.07 20:14:43 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2010.11.07 20:14:43 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2010.11.07 20:14:43 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2010.11.07 20:14:43 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2010.11.07 20:14:43 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2010.11.07 20:14:43 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2010.11.07 20:14:43 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2010.11.07 20:14:42 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2010.11.07 20:14:42 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2010.11.07 20:14:42 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2010.11.07 20:14:42 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2010.11.07 20:14:42 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2010.11.07 20:14:42 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2010.11.07 20:14:42 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2010.11.07 20:14:41 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2010.11.07 20:14:41 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2010.11.07 20:14:41 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2010.11.07 20:14:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2010.11.07 20:14:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2010.11.07 20:14:41 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys [2010.11.07 20:14:41 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2010.11.07 20:14:40 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV [2010.11.07 20:14:40 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2010.11.07 20:14:40 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2010.11.07 20:14:40 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll [2010.11.07 20:14:40 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2010.11.07 20:14:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu [2010.11.07 20:14:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents [2010.11.07 20:14:32 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates [2010.11.07 20:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites [2010.11.07 20:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop [2010.11.07 20:14:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010.11.07 20:14:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010.11.07 20:14:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2010.11.07 20:14:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data [2010.11.07 20:13:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010.11.07 20:09:10 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010.11.07 20:08:24 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010.11.07 20:08:24 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010.11.07 20:08:24 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010.11.07 20:08:24 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010.11.07 20:08:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010.11.07 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010.11.07 20:07:44 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010.11.07 20:07:43 | 000,126,856 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010.11.07 20:07:43 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010.11.07 20:07:43 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010.11.07 20:07:43 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010.11.07 20:07:43 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2010.11.07 20:07:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira [2010.11.07 20:06:45 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010.11.07 20:05:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\Logitech [2010.11.07 20:05:12 | 000,014,856 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\LGVirHid.sys [2010.11.07 20:05:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Logitech [2010.11.07 20:05:08 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech [2010.11.07 20:02:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Hansenet [2010.11.07 20:02:01 | 000,000,000 | ---D | C] -- C:\Program Files\Alice Software [2010.11.07 19:56:18 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2010.11.07 19:56:17 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2010.11.07 19:56:16 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2010.11.07 19:56:15 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2010.11.07 19:56:14 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2010.11.07 19:56:13 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2010.11.07 19:56:12 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2010.11.07 19:53:04 | 000,307,200 | R--- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll [2010.11.07 19:53:03 | 000,425,984 | R--- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIDEMGX.dll [2010.11.07 19:52:43 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2010.11.07 19:48:45 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2010.11.07 19:45:38 | 005,398,528 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\IDTSG.cpl [2010.11.07 19:45:38 | 002,187,264 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\stlang.dll [2010.11.07 19:45:38 | 000,405,504 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\sttray.exe [2010.11.07 19:45:38 | 000,094,208 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\stacsv.exe [2010.11.07 19:45:37 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2010.11.07 19:45:37 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2010.11.07 19:45:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2010.11.07 19:45:37 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2010.11.07 19:45:36 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2010.11.07 19:45:36 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2010.11.07 19:45:36 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2010.11.07 19:45:36 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2010.11.07 19:45:32 | 000,144,896 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\staco.dll [2010.11.07 19:45:30 | 001,222,840 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\drivers\sthda.sys [2010.11.07 19:45:30 | 000,270,336 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\stacapi.dll [2010.11.07 19:45:30 | 000,054,272 | ---- | C] (Sonic Focus, Inc) -- C:\WINDOWS\System32\drivers\sfng32.sys [2010.11.07 19:45:22 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010.11.07 19:45:22 | 000,000,000 | ---D | C] -- C:\Program Files\SigmaTel [2010.11.07 19:45:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010.11.07 19:44:52 | 000,254,872 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e1e5132.sys [2010.11.07 19:44:52 | 000,179,048 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\e1000msg.dll [2010.11.07 19:44:52 | 000,154,496 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\Prounstl.exe [2010.11.07 19:44:52 | 000,066,424 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicEtCoE.dll [2010.11.07 19:44:52 | 000,062,840 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicInstE.dll [2010.11.07 19:44:52 | 000,028,536 | R--- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicCo.dll [2010.11.07 19:44:26 | 000,044,672 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\HECI.sys [2010.11.07 19:44:25 | 000,912,152 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\heciudlg.exe [2010.11.07 19:44:25 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2010.11.07 19:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\Intel Desktop Board [2010.11.07 19:41:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010.11.07 19:41:53 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2010.11.07 19:41:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010.11.07 19:41:49 | 000,000,000 | ---D | C] -- C:\Intel [2010.11.07 19:40:17 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010.11.07 19:40:11 | 000,000,000 | ---D | C] -- C:\TempEI4 [2010.11.07 19:36:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Application Data\Identities [2010.11.07 19:36:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ReapeR\My Documents\My Pictures [2010.11.07 19:36:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ReapeR\My Documents\My Music [2010.11.07 19:36:43 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010.11.07 19:36:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\Microsoft [2010.11.07 19:36:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\ReapeR\Application Data\Microsoft [2010.11.07 19:36:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\ReapeR\SendTo [2010.11.07 19:36:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\ReapeR\Recent [2010.11.07 19:36:39 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\ReapeR\Application Data [2010.11.07 19:36:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ReapeR\Start Menu [2010.11.07 19:36:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ReapeR\My Documents [2010.11.07 19:36:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\ReapeR\Favorites [2010.11.07 19:36:39 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\ReapeR\Cookies [2010.11.07 19:36:39 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\ReapeR\Templates [2010.11.07 19:36:39 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\ReapeR\PrintHood [2010.11.07 19:36:39 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\ReapeR\NetHood [2010.11.07 19:36:39 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\ReapeR\Local Settings [2010.11.07 19:36:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ReapeR\Desktop [2010.11.07 19:35:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010.11.07 19:35:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010.11.07 19:35:49 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010.11.07 19:35:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2010.11.07 19:35:48 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2010.11.07 19:35:36 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2010.11.07 19:35:36 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2010.11.07 19:33:33 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2010.11.07 19:33:33 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2010.11.07 19:33:33 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2010.11.07 19:33:33 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2010.11.07 19:33:32 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2010.11.07 19:33:32 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2010.11.07 19:33:32 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2010.11.07 19:33:32 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2010.11.07 19:33:32 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2010.11.07 19:33:32 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2010.11.07 19:33:32 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2010.11.07 19:33:31 | 000,364,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2010.11.07 19:33:31 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2010.11.07 19:33:31 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2010.11.07 19:33:31 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2010.11.07 19:33:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2010.11.07 19:33:31 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2010.11.07 19:33:30 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2010.11.07 19:33:30 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2010.11.07 19:33:30 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2010.11.07 19:33:29 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2010.11.07 19:33:29 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2010.11.07 19:33:29 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2010.11.07 19:33:29 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2010.11.07 19:33:28 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2010.11.07 19:33:28 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2010.11.07 19:33:28 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2010.11.07 19:33:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2010.11.07 19:33:28 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2010.11.07 19:33:28 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2010.11.07 19:33:28 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2010.11.07 19:33:27 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2010.11.07 19:33:27 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2010.11.07 19:33:27 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2010.11.07 19:33:27 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2010.11.07 19:33:26 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2010.11.07 19:33:26 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2010.11.07 19:33:25 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2010.11.07 19:33:25 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2010.11.07 19:33:25 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2010.11.07 19:33:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2010.11.07 19:33:25 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2010.11.07 19:33:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2010.11.07 19:33:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2010.11.07 19:33:24 | 000,456,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2010.11.07 19:33:24 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2010.11.07 19:33:24 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2010.11.07 19:33:24 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2010.11.07 19:33:24 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll [2010.11.07 19:33:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2010.11.07 19:33:23 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2010.11.07 19:33:23 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2010.11.07 19:33:23 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2010.11.07 19:33:23 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2010.11.07 19:33:23 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2010.11.07 19:33:23 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2010.11.07 19:33:23 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2010.11.07 19:33:23 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2010.11.07 19:33:23 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2010.11.07 19:33:23 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2010.11.07 19:33:23 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2010.11.07 19:33:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2010.11.07 19:33:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2010.11.07 19:33:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2010.11.07 19:33:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2010.11.07 19:33:22 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2010.11.07 19:33:22 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2010.11.07 19:33:21 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll [2010.11.07 19:33:21 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2010.11.07 19:33:20 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010.11.07 19:33:20 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010.11.07 19:33:20 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2010.11.07 19:33:20 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010.11.07 19:33:20 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2010.11.07 19:33:20 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll [2010.11.07 19:33:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2010.11.07 19:33:19 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2010.11.07 19:33:19 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2010.11.07 19:33:19 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2010.11.07 19:33:18 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2010.11.07 19:33:18 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2010.11.07 19:33:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2010.11.07 19:33:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2010.11.07 19:33:17 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2010.11.07 19:33:17 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2010.11.07 19:33:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2010.11.07 19:33:17 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2010.11.07 19:33:16 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2010.11.07 19:33:16 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2010.11.07 19:33:16 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2010.11.07 19:33:16 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2010.11.07 19:33:15 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2010.11.07 19:33:15 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2010.11.07 19:33:15 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2010.11.07 19:33:15 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2010.11.07 19:33:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2010.11.07 19:33:15 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2010.11.07 19:33:15 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2010.11.07 19:33:14 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2010.11.07 19:33:13 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2010.11.07 19:33:13 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2010.11.07 19:33:12 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2010.11.07 19:33:12 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2010.11.07 19:33:11 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe [2010.11.07 19:33:10 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2010.11.07 19:33:10 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2010.11.07 19:33:08 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2010.11.07 19:33:08 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2010.11.07 19:33:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2010.11.07 19:33:07 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2010.11.07 19:33:07 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2010.11.07 19:33:07 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2010.11.07 19:33:06 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2010.11.07 19:33:06 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2010.11.07 19:33:06 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2010.11.07 19:33:06 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2010.11.07 19:33:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2010.11.07 19:33:06 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2010.11.07 19:33:05 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2010.11.07 19:33:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2010.11.07 19:33:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2010.11.07 19:33:04 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2010.11.07 19:33:04 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2010.11.07 19:33:04 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2010.11.07 19:33:04 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2010.11.07 19:33:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2010.11.07 19:33:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2010.11.07 19:33:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2010.11.07 19:33:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2010.11.07 19:33:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2010.11.07 19:33:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2010.11.07 19:33:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2010.11.07 19:33:04 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2010.11.07 19:33:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2010.11.07 19:33:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2010.11.07 19:33:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2010.11.07 19:33:03 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2010.11.07 19:33:02 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2010.11.07 19:33:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2010.11.07 19:33:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2010.11.07 19:33:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2010.11.07 19:33:02 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2010.11.07 19:33:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2010.11.07 19:33:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2010.11.07 19:33:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2010.11.07 19:33:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2010.11.07 19:33:02 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2010.11.07 19:33:02 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2010.11.07 19:33:02 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2010.11.07 19:33:01 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2010.11.07 19:33:01 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2010.11.07 19:33:01 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2010.11.07 19:33:01 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2010.11.07 19:33:01 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2010.11.07 19:33:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2010.11.07 19:33:01 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2010.11.07 19:33:00 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2010.11.07 19:33:00 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2010.11.07 19:33:00 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2010.11.07 19:33:00 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2010.11.07 19:33:00 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2010.11.07 19:32:59 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2010.11.07 19:32:59 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2010.11.07 19:32:59 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2010.11.07 19:32:59 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2010.11.07 19:32:59 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2010.11.07 19:32:59 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2010.11.07 19:32:59 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2010.11.07 19:32:59 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2010.11.07 19:32:58 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2010.11.07 19:32:58 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2010.11.07 19:32:58 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2010.11.07 19:32:58 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2010.11.07 19:32:58 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2010.11.07 19:32:57 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2010.11.07 19:32:57 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2010.11.07 19:32:57 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2010.11.07 19:32:57 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2010.11.07 19:32:57 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2010.11.07 19:32:57 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2010.11.07 19:32:57 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2010.11.07 19:32:57 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2010.11.07 19:32:56 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2010.11.07 19:32:56 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2010.11.07 19:32:56 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2010.11.07 19:32:56 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2010.11.07 19:32:56 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2010.11.07 19:32:52 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2010.11.07 19:32:43 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2010.11.07 19:32:43 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2010.11.07 19:32:43 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2010.11.07 19:32:43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2010.11.07 19:32:42 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2010.11.07 19:32:42 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2010.11.07 19:32:42 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2010.11.07 19:32:41 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2010.11.07 19:32:41 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2010.11.07 19:32:41 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2010.11.07 19:32:41 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2010.11.07 19:32:41 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2010.11.07 19:32:41 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2010.11.07 19:32:41 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2010.11.07 19:32:40 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2010.11.07 19:32:40 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2010.11.07 19:32:40 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2010.11.07 19:32:40 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2010.11.07 19:32:40 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2010.11.07 19:32:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2010.11.07 19:32:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2010.11.07 19:32:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2010.11.07 19:32:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2010.11.07 19:32:40 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2010.11.07 19:32:40 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2010.11.07 19:32:39 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2010.11.07 19:32:39 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2010.11.07 19:32:39 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2010.11.07 19:32:39 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2010.11.07 19:32:39 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2010.11.07 19:32:39 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2010.11.07 19:32:39 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2010.11.07 19:32:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2010.11.07 19:32:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2010.11.07 19:32:38 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll [2010.11.07 19:32:38 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2010.11.07 19:32:38 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2010.11.07 19:32:38 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2010.11.07 19:32:38 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2010.11.07 19:32:38 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2010.11.07 19:32:37 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2010.11.07 19:32:37 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2010.11.07 19:32:37 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2010.11.07 19:32:37 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2010.11.07 19:32:37 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2010.11.07 19:32:37 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2010.11.07 19:32:37 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2010.11.07 19:32:36 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll [2010.11.07 19:32:34 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2010.11.07 19:32:34 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2010.11.07 19:32:34 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2010.11.07 19:32:33 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2010.11.07 19:32:33 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2010.11.07 19:32:33 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2010.11.07 19:32:33 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2010.11.07 19:32:33 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2010.11.07 19:32:32 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2010.11.07 19:32:32 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2010.11.07 19:32:32 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2010.11.07 19:32:32 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2010.11.07 19:32:32 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2010.11.07 19:32:31 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2010.11.07 19:32:31 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2010.11.07 19:32:31 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2010.11.07 19:32:31 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2010.11.07 19:32:31 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2010.11.07 19:32:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2010.11.07 19:32:30 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2010.11.07 19:32:29 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2010.11.07 19:32:29 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010.11.07 19:32:29 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2010.11.07 19:32:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2010.11.07 19:32:24 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2010.11.07 19:32:23 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2010.11.07 19:32:23 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2010.11.07 19:32:23 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2010.11.07 19:32:23 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2010.11.07 19:32:23 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2010.11.07 19:32:23 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2010.11.07 19:32:22 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2010.11.07 19:32:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2010.11.07 19:32:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2010.11.07 19:32:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2010.11.07 19:32:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2010.11.07 19:32:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2010.11.07 19:32:22 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2010.11.07 19:32:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2010.11.07 19:32:21 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2010.11.07 19:32:21 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2010.11.07 19:32:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2010.11.07 19:32:19 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2010.11.07 19:32:19 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2010.11.07 19:32:19 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2010.11.07 19:32:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2010.11.07 19:32:18 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll [2010.11.07 19:32:18 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll [2010.11.07 19:32:18 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2010.11.07 19:32:18 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2010.11.07 19:32:16 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2010.11.07 19:32:16 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2010.11.07 19:32:15 | 000,829,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2010.11.07 19:32:15 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2010.11.07 19:32:15 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2010.11.07 19:32:15 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2010.11.07 19:32:15 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2010.11.07 19:32:15 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2010.11.07 19:32:15 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2010.11.07 19:32:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2010.11.07 19:32:15 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2010.11.07 19:32:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2010.11.07 19:32:14 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2010.11.07 19:32:14 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2010.11.07 19:32:14 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2010.11.07 19:32:14 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2010.11.07 19:32:14 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2010.11.07 19:32:14 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2010.11.07 19:32:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2010.11.07 19:32:13 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2010.11.07 19:32:13 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2010.11.07 19:32:13 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2010.11.07 19:32:13 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2010.11.07 19:32:13 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2010.11.07 19:32:13 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2010.11.07 19:32:13 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2010.11.07 19:32:13 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2010.11.07 19:32:13 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2010.11.07 19:32:13 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2010.11.07 19:32:13 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2010.11.07 19:32:12 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2010.11.07 19:32:12 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2010.11.07 19:32:12 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2010.11.07 19:32:12 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2010.11.07 19:32:12 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2010.11.07 19:32:12 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2010.11.07 19:32:12 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2010.11.07 19:32:12 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2010.11.07 19:32:11 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2010.11.07 19:32:11 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2010.11.07 19:32:10 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll |
[2010.11.07 19:32:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010.11.07 19:32:09 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010.11.07 19:32:09 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010.11.07 19:31:53 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2010.11.07 19:31:53 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2010.11.07 19:31:53 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll [2010.11.07 19:31:53 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2010.11.07 19:31:53 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe [2010.11.07 19:31:52 | 006,066,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2010.11.07 19:31:52 | 002,455,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat [2010.11.07 19:31:52 | 000,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui [2010.11.07 19:31:52 | 000,383,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll [2010.11.07 19:31:44 | 000,022,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2010.11.07 19:31:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010.11.07 19:31:36 | 000,017,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2010.11.07 19:31:35 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010.11.07 19:31:11 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2010.11.07 19:30:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010.11.07 19:30:20 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010.11.07 19:29:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010.11.07 19:29:51 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2010.11.07 19:29:51 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2010.11.07 19:29:51 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2010.11.07 19:29:51 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2010.11.07 19:29:50 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2010.11.07 19:29:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2010.11.07 19:29:42 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2010.11.07 19:29:41 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2010.11.07 19:29:41 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2010.11.07 19:29:40 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2010.11.07 19:29:40 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2010.11.07 19:29:40 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2010.11.07 19:29:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2010.11.07 19:29:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2010.11.07 19:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010.11.07 19:29:36 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2010.11.07 19:29:36 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2010.11.07 19:29:36 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2010.11.07 19:29:36 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2010.11.07 19:29:36 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2010.11.07 19:29:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2010.11.07 19:29:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2010.11.07 19:29:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2010.11.07 19:29:36 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010.11.07 19:29:35 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2010.11.07 19:29:35 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2010.11.07 19:29:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010.11.07 19:29:31 | 000,726,078 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll [2010.11.07 19:29:31 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll [2010.11.07 19:29:30 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll [2010.11.07 19:29:30 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll [2010.11.07 19:29:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010.11.07 19:29:29 | 001,669,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2010.11.07 19:29:29 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2010.11.07 19:29:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010.11.07 19:29:28 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2010.11.07 19:29:28 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2010.11.07 19:29:27 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2010.11.07 19:29:27 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2010.11.07 19:29:27 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll [2010.11.07 19:29:26 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2010.11.07 19:29:26 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2010.11.07 19:29:26 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2010.11.07 19:29:26 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll [2010.11.07 19:29:26 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2010.11.07 19:29:26 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2010.11.07 19:29:26 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2010.11.07 19:29:26 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2010.11.07 19:29:26 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll [2010.11.07 19:29:26 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2010.11.07 19:29:25 | 001,135,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2010.11.07 19:29:25 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2010.11.07 19:29:25 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2010.11.07 19:29:25 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2010.11.07 19:29:25 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe [2010.11.07 19:29:25 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2010.11.07 19:29:25 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2010.11.07 19:29:25 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2010.11.07 19:29:25 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2010.11.07 19:29:25 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll [2010.11.07 19:29:25 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2010.11.07 19:29:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx4.dll [2010.11.07 19:29:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2010.11.07 19:29:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll [2010.11.07 19:29:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2010.11.07 19:29:24 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll [2010.11.07 19:29:24 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2010.11.07 19:29:24 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll [2010.11.07 19:29:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll [2010.11.07 19:29:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll [2010.11.07 19:29:22 | 004,256,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll [2010.11.07 19:29:22 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll [2010.11.07 19:29:21 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll [2010.11.07 19:29:21 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll [2010.11.07 19:29:21 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll [2010.11.07 19:29:21 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll [2010.11.07 19:29:20 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2010.11.07 19:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010.11.07 19:29:05 | 000,565,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll [2010.11.07 19:29:05 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll [2010.11.07 19:29:05 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe [2010.11.07 19:29:05 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll [2010.11.07 19:29:05 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe [2010.11.07 19:29:05 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll [2010.11.07 19:29:05 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll [2010.11.07 19:29:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe [2010.11.07 19:29:02 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2010.11.07 19:29:02 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll [2010.11.07 19:29:02 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2010.11.07 19:29:02 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll [2010.11.07 19:29:01 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll [2010.11.07 19:29:01 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2010.11.07 19:29:01 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll [2010.11.07 19:29:01 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2010.11.07 19:29:01 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll [2010.11.07 19:29:01 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll [2010.11.07 19:28:59 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe [2010.11.07 19:28:59 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe [2010.11.07 19:28:58 | 000,769,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe [2010.11.07 19:28:58 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2010.11.07 19:28:57 | 000,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe [2010.11.07 19:28:57 | 000,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys [2010.11.07 19:28:57 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe [2010.11.07 19:28:57 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe [2010.11.07 19:28:57 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll [2010.11.07 19:28:56 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2010.11.07 19:28:56 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll [2010.11.07 19:28:56 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll [2010.11.07 19:28:56 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2010.11.07 19:28:56 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll [2010.11.07 19:28:56 | 000,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys [2010.11.07 19:28:56 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll [2010.11.07 19:28:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010.11.07 19:28:55 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll [2010.11.07 19:28:55 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2010.11.07 19:28:55 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll [2010.11.07 19:28:55 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll [2010.11.07 19:28:55 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2010.11.07 19:28:55 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll [2010.11.07 19:28:55 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe [2010.11.07 19:28:55 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2010.11.07 19:28:55 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll [2010.11.07 19:28:55 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2010.11.07 19:28:55 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll [2010.11.07 19:28:54 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll [2010.11.07 19:28:54 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll [2010.11.07 19:28:54 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll [2010.11.07 19:28:54 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll [2010.11.07 19:28:54 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll [2010.11.07 19:28:54 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll [2010.11.07 19:28:53 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll [2010.11.07 19:28:53 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll [2010.11.07 19:28:53 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll [2010.11.07 19:28:53 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll [2010.11.07 19:28:53 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll [2010.11.07 19:28:53 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll [2010.11.07 19:28:53 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll [2010.11.07 19:28:52 | 001,032,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe [2010.11.07 19:28:52 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2010.11.07 19:28:52 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll [2010.11.07 19:28:52 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2010.11.07 19:28:52 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll [2010.11.07 19:28:52 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010.11.07 19:28:51 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll [2010.11.07 19:28:51 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll [2010.11.07 19:28:51 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll [2010.11.07 19:28:51 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll [2010.11.07 19:28:51 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2010.11.07 19:28:51 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll [2010.11.07 19:28:51 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2010.11.07 19:28:51 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll [2010.11.07 19:28:51 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe [2010.11.07 19:28:50 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2010.11.07 19:28:50 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll [2010.11.07 19:28:50 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe [2010.11.07 19:28:49 | 002,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll [2010.11.07 19:28:49 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll [2010.11.07 19:28:49 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe [2010.11.07 19:28:49 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe [2010.11.07 19:28:49 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll [2010.11.07 19:28:49 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010.11.07 19:28:48 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll [2010.11.07 19:28:48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2010.11.07 19:28:48 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll [2010.11.07 19:28:48 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2010.11.07 19:28:48 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll [2010.11.07 19:28:48 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2010.11.07 19:28:48 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll [2010.11.07 19:28:48 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2010.11.07 19:28:48 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe [2010.11.07 19:28:47 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2010.11.07 19:28:47 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll [2010.11.07 19:28:47 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll [2010.11.07 19:28:46 | 000,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll [2010.11.07 19:28:46 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe [2010.11.07 19:28:46 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll [2010.11.07 19:28:46 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe [2010.11.07 19:28:46 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll [2010.11.07 19:28:46 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll [2010.11.07 19:28:46 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe [2010.11.07 19:28:46 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe [2010.11.07 19:28:45 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll [2010.11.07 19:28:45 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll [2010.11.07 19:28:45 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll [2010.11.07 19:28:45 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll [2010.11.07 19:28:45 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll [2010.11.07 19:28:45 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll [2010.11.07 19:28:44 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll [2010.11.07 19:28:44 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll [2010.11.07 19:28:44 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2010.11.07 19:28:44 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2010.11.07 19:28:44 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll [2010.11.07 19:28:44 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll [2010.11.07 19:28:44 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll [2010.11.07 19:28:44 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll [2010.11.07 19:28:44 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll [2010.11.07 19:28:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll [2010.11.07 19:28:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll [2010.11.07 19:28:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll [2010.11.07 19:28:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll [2010.11.07 19:28:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll [2010.11.07 19:28:43 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2010.11.07 19:28:43 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2010.11.07 19:28:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll [2010.11.07 19:28:43 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2010.11.07 19:28:43 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2010.11.07 19:28:43 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2010.11.07 19:28:43 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2010.11.07 19:28:43 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2010.11.07 19:28:43 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll [2010.11.07 19:28:43 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll [2010.11.07 19:28:43 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll [2010.11.07 19:28:42 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2010.11.07 19:28:42 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll [2010.11.07 19:28:42 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll [2010.11.07 19:28:42 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2010.11.07 19:28:42 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll [2010.11.07 19:28:42 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll [2010.11.07 19:28:42 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll [2010.11.07 19:28:42 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll [2010.11.07 19:28:42 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll [2010.11.07 19:28:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll [2010.11.07 19:28:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll [2010.11.07 19:28:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll [2010.11.07 19:28:41 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2010.11.07 19:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010.11.07 19:28:40 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2010.11.07 19:28:40 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe [2010.11.07 19:28:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures [2010.11.07 19:28:39 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010.11.07 19:28:09 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010.11.07 19:28:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010.11.07 19:27:55 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services [2010.11.07 19:27:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010.11.07 19:27:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010.11.07 19:27:38 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2010.11.07 19:27:38 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2010.11.07 19:27:38 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2010.11.07 19:27:38 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010.11.07 19:27:37 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2010.11.07 19:27:37 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2010.11.07 19:27:37 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2010.11.07 19:27:37 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2010.11.07 19:27:37 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2010.11.07 19:27:37 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2010.11.07 19:27:37 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2010.11.07 19:27:37 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2010.11.07 19:27:37 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2010.11.07 19:27:37 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2010.11.07 19:27:36 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2010.11.07 19:27:36 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2010.11.07 19:27:36 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2010.11.07 19:27:36 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2010.11.07 19:27:36 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2010.11.07 19:27:36 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2010.11.07 19:27:36 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2010.11.07 19:27:35 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2010.11.07 19:27:35 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2010.11.07 19:27:35 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2010.11.07 19:27:35 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2010.11.07 19:27:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2010.11.07 19:27:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2010.11.07 19:27:35 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010.11.07 19:27:24 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2010.11.07 19:27:24 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2010.11.07 19:27:24 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2010.11.07 19:27:24 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2010.11.07 19:27:24 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2010.11.07 19:27:24 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2010.11.07 19:27:24 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2010.11.07 19:27:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2010.11.07 19:27:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2010.11.07 19:27:24 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2010.11.07 19:27:23 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2010.11.07 19:27:23 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2010.11.07 19:27:17 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2010.11.07 19:27:17 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2010.11.07 19:27:16 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2010.11.07 19:27:16 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2010.11.07 19:27:16 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2010.11.07 19:27:16 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2010.11.07 19:27:16 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2010.11.07 19:27:16 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2010.11.07 19:27:15 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2010.11.07 19:27:15 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2010.11.07 19:27:15 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2010.11.07 19:27:15 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2010.11.07 19:27:15 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2010.11.07 19:27:15 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2010.11.07 19:27:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2010.11.07 19:27:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2010.11.07 19:27:15 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2010.11.07 19:27:15 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2010.11.07 19:27:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2010.11.07 19:27:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2010.11.07 19:27:14 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2010.11.07 19:27:14 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2010.11.07 19:27:14 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2010.11.07 19:27:14 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2010.11.07 19:27:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2010.11.07 19:27:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2010.11.07 19:27:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2010.11.07 19:27:14 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2010.11.07 19:27:14 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2010.11.07 19:27:14 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2010.11.07 19:27:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2010.11.07 19:27:14 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2010.11.07 19:27:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2010.11.07 19:27:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2010.11.07 19:27:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2010.11.07 19:27:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2010.11.07 19:27:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2010.11.07 19:27:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2010.11.07 19:27:14 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2010.11.07 19:27:14 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2010.11.07 19:27:13 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2010.11.07 19:27:13 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2010.11.07 19:27:13 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2010.11.07 19:27:12 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2010.11.07 19:27:09 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2010.11.07 19:27:09 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2010.11.07 19:27:09 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2010.11.07 19:27:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2010.11.07 19:27:09 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2010.11.07 19:27:09 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2010.11.07 19:27:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2010.11.07 19:27:09 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2010.11.07 19:27:09 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2010.11.07 19:27:08 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2010.11.07 19:27:08 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2010.11.07 19:27:08 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2010.11.07 19:27:08 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2010.11.07 19:27:08 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2010.11.07 19:27:08 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2010.11.07 19:27:08 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2010.11.07 19:26:54 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010.11.07 19:26:54 | 000,000,000 | ---D | C] -- C:\Program Files\MSN [2010.11.07 19:26:53 | 000,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2010.11.07 19:26:53 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe [2010.11.07 19:26:53 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2010.11.07 19:26:53 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2010.11.07 19:26:53 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe [2010.11.07 19:26:53 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2010.11.07 19:26:53 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2010.11.07 19:26:53 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl [2010.11.07 19:26:53 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2010.11.07 19:26:52 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe [2010.11.07 19:26:52 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2010.11.07 19:26:52 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe [2010.11.07 19:26:52 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2010.11.07 19:26:52 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2010.11.07 19:26:52 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe [2010.11.07 19:26:52 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2010.11.07 19:26:52 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010.11.07 19:26:51 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2010.11.07 19:26:51 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2010.11.07 19:26:51 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll [2010.11.07 19:26:51 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys [2010.11.07 19:26:51 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys [2010.11.07 19:26:50 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2010.11.07 19:26:50 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll [2010.11.07 19:26:50 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll [2010.11.07 19:26:50 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2010.11.07 19:26:50 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2010.11.07 19:26:50 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll [2010.11.07 19:26:49 | 002,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2010.11.07 19:26:49 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2010.11.07 19:26:49 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2010.11.07 19:26:49 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll [2010.11.07 19:26:49 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe [2010.11.07 19:26:49 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2010.11.07 19:26:49 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe [2010.11.07 19:26:49 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll [2010.11.07 19:26:49 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2010.11.07 19:26:49 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe [2010.11.07 19:26:48 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll [2010.11.07 19:26:48 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2010.11.07 19:26:48 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2010.11.07 19:26:48 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2010.11.07 19:26:48 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll [2010.11.07 19:26:48 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2010.11.07 19:26:48 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe [2010.11.07 19:26:48 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll [2010.11.07 19:26:48 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2010.11.07 19:26:48 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2010.11.07 19:26:48 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll [2010.11.07 19:26:48 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2010.11.07 19:26:48 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe [2010.11.07 19:26:48 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll [2010.11.07 19:26:48 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll [2010.11.07 19:26:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010.11.07 19:26:47 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2010.11.07 19:26:47 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2010.11.07 19:26:47 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2010.11.07 19:26:47 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll [2010.11.07 19:26:47 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2010.11.07 19:26:47 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2010.11.07 19:26:47 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2010.11.07 19:26:47 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2010.11.07 19:26:47 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2010.11.07 19:26:47 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll [2010.11.07 19:26:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe [2010.11.07 19:26:46 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll [2010.11.07 19:26:46 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2010.11.07 19:26:46 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll [2010.11.07 19:26:46 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2010.11.07 19:26:46 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll [2010.11.07 19:26:46 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe [2010.11.07 19:26:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe [2010.11.07 19:26:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2010.11.07 19:26:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe [2010.11.07 19:26:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2010.11.07 19:26:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll [2010.11.07 19:26:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010.11.07 19:26:45 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll [2010.11.07 19:26:45 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll [2010.11.07 19:26:45 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll [2010.11.07 19:26:45 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll [2010.11.07 19:26:45 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll [2010.11.07 19:26:45 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2010.11.07 19:26:45 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll [2010.11.07 19:26:45 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2010.11.07 19:26:45 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll [2010.11.07 19:26:45 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2010.11.07 19:26:45 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll [2010.11.07 19:26:45 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2010.11.07 19:26:45 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2010.11.07 19:26:45 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll [2010.11.07 19:26:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll [2010.11.07 19:26:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2010.11.07 19:26:44 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll [2010.11.07 19:26:44 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll [2010.11.07 19:26:44 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll [2010.11.07 19:26:44 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2010.11.07 19:26:44 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll [2010.11.07 19:26:44 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll [2010.11.07 19:26:44 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2010.11.07 19:26:42 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll [2010.11.07 19:26:42 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll [2010.11.07 19:26:42 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll [2010.11.07 19:26:42 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll [2010.11.07 19:26:42 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll [2010.11.07 19:26:42 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll [2010.11.07 19:26:41 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe [2010.11.07 19:26:41 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll [2010.11.07 19:26:41 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe [2010.11.07 19:26:41 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll [2010.11.07 19:26:41 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll [2010.11.07 19:26:41 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll [2010.11.07 19:26:41 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe [2010.11.07 19:26:41 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll [2010.11.07 19:26:41 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll [2010.11.07 19:26:41 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll [2010.11.07 19:26:40 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll [2010.11.07 19:26:40 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll [2010.11.07 19:26:40 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll [2010.11.07 19:26:40 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll [2010.11.07 19:26:40 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll [2010.11.07 19:26:40 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll [2010.11.07 19:26:40 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe [2010.11.07 19:26:40 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll [2010.11.07 19:26:40 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll [2010.11.07 19:26:40 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll [2010.11.07 19:26:39 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll [2010.11.07 19:26:39 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll [2010.11.07 19:26:39 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll [2010.11.07 19:26:39 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll [2010.11.07 19:26:39 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll [2010.11.07 19:26:39 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe [2010.11.07 19:26:38 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll [2010.11.07 19:26:38 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll [2010.11.07 19:26:38 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll [2010.11.07 19:26:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll [2010.11.07 19:26:38 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe [2010.11.07 19:26:37 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll [2010.11.07 19:26:36 | 001,358,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll [2010.11.07 19:26:36 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2010.11.07 19:26:36 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll [2010.11.07 19:26:36 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2010.11.07 19:26:36 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll [2010.11.07 19:26:35 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll [2010.11.07 19:26:35 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2010.11.07 19:26:35 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2010.11.07 19:26:35 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll [2010.11.07 19:26:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010.11.12 21:26:10 | 001,310,720 | -H-- | M] () -- C:\Documents and Settings\ReapeR\NTUSER.DAT [2010.11.12 21:26:08 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010.11.12 21:25:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010.11.12 21:25:49 | 000,044,964 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap [2010.11.12 21:24:45 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\ReapeR\ntuser.ini [2010.11.12 21:24:35 | 006,904,520 | -H-- | M] () -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\IconCache.db [2010.11.12 20:14:46 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_xcdhv [2010.11.12 17:36:25 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_uiink [2010.11.12 17:25:04 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_hfmdc [2010.11.12 17:20:08 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_ongmd [2010.11.12 16:33:03 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_vwkst [2010.11.12 15:48:53 | 000,000,530 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\StarCraft II.lnk [2010.11.12 15:44:43 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\DotAzilla.lnk [2010.11.12 15:27:08 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_zxjzu [2010.11.12 15:04:46 | 000,000,079 | ---- | M] () -- C:\WINDOWS\System32\asr_wzqeo [2010.11.12 13:35:25 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010.11.12 13:28:31 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010.11.12 00:37:30 | 000,081,586 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(6).jpg [2010.11.12 00:31:33 | 000,061,695 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(5).jpg [2010.11.12 00:24:28 | 000,045,232 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(4).jpg [2010.11.12 00:18:23 | 000,077,009 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(3).jpg [2010.11.12 00:04:53 | 000,064,576 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(2).jpg [2010.11.11 22:20:57 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\DotAzilla.lnk [2010.11.11 22:20:44 | 001,047,893 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\DotAzilla_Setup.exe [2010.11.11 15:43:47 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_xgnqd [2010.11.11 15:19:02 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_sbgwg [2010.11.11 15:00:10 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_yoaki [2010.11.11 14:48:47 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_qcadj [2010.11.10 18:59:04 | 000,000,837 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk [2010.11.10 18:51:48 | 013,326,816 | ---- | M] (TeamSpeak Systems GmbH) -- C:\Documents and Settings\ReapeR\Desktop\TeamSpeak3-Client-win32-3.0.0-beta36.exe [2010.11.10 18:19:39 | 000,034,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lhacm.acm [2010.11.10 18:19:35 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\Teamspeak 2 RC2.lnk [2010.11.10 16:25:12 | 006,153,648 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\ReapeR\Desktop\mbam-setup.exe [2010.11.10 16:23:17 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ReapeR\Desktop\OTL.exe [2010.11.10 15:11:10 | 000,000,082 | ---- | M] () -- C:\WINDOWS\System32\asr_qlxsdv [2010.11.10 15:06:04 | 000,121,936 | ---- | M] () -- C:\WINDOWS\System32\asr_driabj.exe [2010.11.10 15:01:08 | 000,000,082 | ---- | M] () -- C:\WINDOWS\System32\asr_kpfecr [2010.11.10 14:53:16 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\XMedia Recode.lnk [2010.11.09 22:46:38 | 000,001,235 | ---- | M] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Meebo Notifier.lnk [2010.11.09 22:44:26 | 001,276,392 | ---- | M] (Meebo, Inc.) -- C:\Documents and Settings\ReapeR\Desktop\MeeboNotifierSetup-Beta.exe [2010.11.09 22:34:38 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Miranda IM.lnk [2010.11.09 22:34:26 | 003,102,770 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\miranda-im-v0.9.10-unicode.exe [2010.11.09 21:37:11 | 000,000,490 | ---- | M] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to Frozen Throne.lnk [2010.11.09 21:28:28 | 000,091,088 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010.11.09 06:48:45 | 000,000,844 | ---- | M] () -- C:\Documents and Settings\ReapeR\.recently-used.xbel [2010.11.09 06:47:19 | 000,000,810 | ---- | M] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\GIMP 2.lnk [2010.11.09 06:44:43 | 000,000,818 | ---- | M] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Paint.NET.lnk [2010.11.09 06:44:43 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Paint.NET.lnk [2010.11.09 06:44:06 | 000,012,328 | ---- | M] () -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2010.11.09 06:43:53 | 000,428,426 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010.11.09 06:43:53 | 000,390,230 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010.11.09 06:43:53 | 000,049,334 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010.11.09 06:41:32 | 020,240,744 | ---- | M] (The GIMP Team ) -- C:\Documents and Settings\ReapeR\Desktop\gimp-2.6.11-i686-setup.exe [2010.11.09 06:40:17 | 003,657,529 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\Paint.NET.3.5.5.Install.zip [2010.11.09 01:18:04 | 000,000,672 | ---- | M] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk [2010.11.09 01:16:07 | 011,802,480 | ---- | M] (Nullsoft, Inc.) -- C:\Documents and Settings\ReapeR\Desktop\winamp5581_full_emusic-7plus_de-de.exe [2010.11.09 01:10:38 | 000,126,856 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010.11.09 01:10:38 | 000,060,936 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010.11.08 23:15:18 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk [2010.11.08 23:14:25 | 000,026,681 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\111028.jpg [2010.11.08 22:02:56 | 019,657,194 | ---- | M] () -- C:\Documents and Settings\ReapeR\Desktop\vlc-1.1.4-win32.exe [2010.11.08 21:07:55 | 000,000,080 | ---- | M] () -- C:\WINDOWS\System32\asr_zeqoi [2010.11.08 16:39:08 | 000,000,078 | ---- | M] () -- C:\WINDOWS\System32\asr_qxydb [2010.11.08 16:36:34 | 000,000,078 | ---- | M] () -- C:\WINDOWS\System32\asr_znprt [2010.11.08 15:27:15 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010.11.07 20:20:46 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010.11.07 20:20:09 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010.11.07 20:15:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010.11.07 20:15:20 | 000,000,597 | ---- | M] () -- C:\Documents and Settings\ReapeR\Start Menu\Programs\Startup\Alice-Einwahl.lnk [2010.11.07 19:55:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin [2010.11.07 19:35:39 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010.11.07 19:33:43 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010.11.07 19:31:24 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010.11.07 19:31:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010.11.07 19:31:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010.11.07 19:31:24 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010.11.07 19:31:24 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010.11.07 19:31:24 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010.11.07 19:31:23 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini [2010.11.07 19:31:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010.11.07 19:31:19 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010.11.07 19:31:19 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010.11.07 19:31:11 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010.11.07 19:30:27 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010.11.07 19:30:27 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010.11.07 19:28:20 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010.11.07 19:28:07 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010.11.07 19:28:07 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010.11.07 19:23:51 | 000,000,211 | -HS- | M] () -- C:\boot.ini [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2010.11.12 20:14:46 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_xcdhv [2010.11.12 17:36:25 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_uiink [2010.11.12 17:25:04 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_hfmdc [2010.11.12 17:20:08 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_ongmd [2010.11.12 16:33:03 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_vwkst [2010.11.12 15:44:43 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\DotAzilla.lnk [2010.11.12 15:39:31 | 000,000,530 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\StarCraft II.lnk [2010.11.12 15:27:08 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_zxjzu [2010.11.12 15:04:46 | 000,000,079 | ---- | C] () -- C:\WINDOWS\System32\asr_wzqeo [2010.11.12 13:28:31 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010.11.12 00:37:30 | 000,081,586 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(6).jpg [2010.11.12 00:31:33 | 000,061,695 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(5).jpg [2010.11.12 00:24:27 | 000,045,232 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(4).jpg [2010.11.12 00:18:23 | 000,077,009 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(3).jpg [2010.11.12 00:04:53 | 000,064,576 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\sp-studio(2).jpg [2010.11.11 22:20:57 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\DotAzilla.lnk [2010.11.11 22:20:43 | 001,047,893 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\DotAzilla_Setup.exe [2010.11.11 15:43:47 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_xgnqd [2010.11.11 15:19:02 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_sbgwg [2010.11.11 15:00:10 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_yoaki [2010.11.11 14:48:47 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_qcadj [2010.11.10 18:59:04 | 000,000,837 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk [2010.11.10 18:19:35 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\Teamspeak 2 RC2.lnk [2010.11.10 15:11:10 | 000,000,082 | ---- | C] () -- C:\WINDOWS\System32\asr_qlxsdv [2010.11.10 15:01:08 | 000,121,936 | ---- | C] () -- C:\WINDOWS\System32\asr_driabj.exe [2010.11.10 15:01:08 | 000,000,082 | ---- | C] () -- C:\WINDOWS\System32\asr_kpfecr [2010.11.10 14:53:16 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\XMedia Recode.lnk [2010.11.10 00:55:56 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010.11.09 22:46:38 | 000,001,235 | ---- | C] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Meebo Notifier.lnk [2010.11.09 22:34:38 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Miranda IM.lnk [2010.11.09 22:34:23 | 003,102,770 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\miranda-im-v0.9.10-unicode.exe [2010.11.09 21:37:11 | 000,000,490 | ---- | C] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Shortcut to Frozen Throne.lnk [2010.11.09 06:48:45 | 000,000,844 | ---- | C] () -- C:\Documents and Settings\ReapeR\.recently-used.xbel [2010.11.09 06:47:19 | 000,000,810 | ---- | C] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\GIMP 2.lnk [2010.11.09 06:44:43 | 000,000,818 | ---- | C] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Paint.NET.lnk [2010.11.09 06:44:43 | 000,000,812 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Paint.NET.lnk [2010.11.09 06:43:50 | 000,041,136 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat [2010.11.09 06:40:14 | 003,657,529 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\Paint.NET.3.5.5.Install.zip [2010.11.09 01:18:04 | 000,000,672 | ---- | C] () -- C:\Documents and Settings\ReapeR\Application Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk [2010.11.08 23:15:18 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\VLC media player.lnk [2010.11.08 23:14:25 | 000,026,681 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\111028.jpg [2010.11.08 21:56:45 | 019,657,194 | ---- | C] () -- C:\Documents and Settings\ReapeR\Desktop\vlc-1.1.4-win32.exe [2010.11.08 21:07:55 | 000,000,080 | ---- | C] () -- C:\WINDOWS\System32\asr_zeqoi [2010.11.08 16:39:08 | 000,000,078 | ---- | C] () -- C:\WINDOWS\System32\asr_qxydb [2010.11.08 16:36:34 | 000,000,078 | ---- | C] () -- C:\WINDOWS\System32\asr_znprt [2010.11.07 20:20:46 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010.11.07 20:15:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010.11.07 20:15:20 | 000,000,597 | ---- | C] () -- C:\Documents and Settings\ReapeR\Start Menu\Programs\Startup\Alice-Einwahl.lnk [2010.11.07 20:15:13 | 000,428,426 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010.11.07 20:15:12 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010.11.07 20:15:09 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010.11.07 20:15:09 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010.11.07 20:15:09 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010.11.07 20:15:09 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010.11.07 20:15:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010.11.07 20:15:00 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010.11.07 20:14:57 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010.11.07 20:14:57 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010.11.07 20:14:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010.11.07 20:14:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010.11.07 20:14:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010.11.07 20:14:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010.11.07 20:14:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010.11.07 20:14:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010.11.07 20:14:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010.11.07 20:14:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010.11.07 20:14:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010.11.07 20:14:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010.11.07 20:14:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010.11.07 20:14:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010.11.07 20:14:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010.11.07 20:14:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010.11.07 20:14:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010.11.07 20:14:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010.11.07 20:14:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010.11.07 20:14:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010.11.07 20:14:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010.11.07 20:14:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010.11.07 20:14:51 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010.11.07 20:14:51 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010.11.07 20:14:51 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010.11.07 20:14:51 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010.11.07 20:14:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010.11.07 20:14:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010.11.07 20:14:49 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls [2010.11.07 20:14:49 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls [2010.11.07 20:14:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010.11.07 20:14:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010.11.07 20:14:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010.11.07 20:14:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010.11.07 20:14:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010.11.07 20:14:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010.11.07 20:14:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010.11.07 20:14:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010.11.07 20:14:41 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010.11.07 20:14:32 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini [2010.11.07 20:14:30 | 002,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010.11.07 20:14:30 | 001,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010.11.07 20:14:30 | 001,088,840 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT [2010.11.07 20:14:30 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010.11.07 20:14:30 | 000,522,220 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010.11.07 20:14:30 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010.11.07 20:14:30 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010.11.07 20:14:30 | 000,112,918 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010.11.07 20:14:30 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010.11.07 20:14:30 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010.11.07 20:14:30 | 000,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010.11.07 20:14:30 | 000,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat [2010.11.07 20:14:30 | 000,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010.11.07 20:14:30 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat [2010.11.07 20:14:30 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010.11.07 20:14:30 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010.11.07 20:14:30 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010.11.07 20:14:30 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010.11.07 20:14:30 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010.11.07 20:14:30 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010.11.07 20:13:48 | 000,091,088 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010.11.07 20:12:47 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010.11.07 20:12:43 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010.11.07 19:55:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2010.11.07 19:53:07 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe [2010.11.07 19:53:04 | 000,014,144 | R--- | C] () -- C:\WINDOWS\atiogl.xml [2010.11.07 19:53:03 | 000,007,167 | R--- | C] () -- C:\WINDOWS\System32\atifglpf.xml [2010.11.07 19:53:00 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2010.11.07 19:52:59 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat [2010.11.07 19:52:59 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2010.11.07 19:52:59 | 000,174,818 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2010.11.07 19:44:56 | 000,001,904 | ---- | C] () -- C:\WINDOWS\System32\SetupBD.din [2010.11.07 19:44:52 | 000,002,889 | R--- | C] () -- C:\WINDOWS\System32\e1e5132.din [2010.11.07 19:42:53 | 006,904,520 | -H-- | C] () -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\IconCache.db [2010.11.07 19:37:08 | 000,012,328 | ---- | C] () -- C:\Documents and Settings\ReapeR\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2010.11.07 19:36:41 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\ReapeR\ntuser.ini [2010.11.07 19:36:40 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\ReapeR\ntuser.dat.LOG [2010.11.07 19:36:40 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\ReapeR\Application Data\desktop.ini [2010.11.07 19:36:39 | 001,310,720 | -H-- | C] () -- C:\Documents and Settings\ReapeR\NTUSER.DAT [2010.11.07 19:35:50 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT [2010.11.07 19:35:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010.11.07 19:33:43 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010.11.07 19:33:36 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010.11.07 19:33:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010.11.07 19:33:17 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010.11.07 19:33:16 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010.11.07 19:33:06 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010.11.07 19:33:05 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010.11.07 19:33:00 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010.11.07 19:32:59 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010.11.07 19:32:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010.11.07 19:32:47 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010.11.07 19:32:42 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010.11.07 19:32:39 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010.11.07 19:32:32 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010.11.07 19:32:29 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010.11.07 19:32:29 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010.11.07 19:32:29 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010.11.07 19:32:29 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010.11.07 19:32:28 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010.11.07 19:32:28 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010.11.07 19:32:28 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010.11.07 19:32:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010.11.07 19:32:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010.11.07 19:32:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010.11.07 19:32:26 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010.11.07 19:32:26 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010.11.07 19:32:26 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010.11.07 19:32:26 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010.11.07 19:32:26 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010.11.07 19:32:26 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010.11.07 19:32:26 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010.11.07 19:32:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010.11.07 19:32:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010.11.07 19:32:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010.11.07 19:32:25 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010.11.07 19:32:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010.11.07 19:32:24 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010.11.07 19:32:24 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010.11.07 19:32:24 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010.11.07 19:32:24 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010.11.07 19:32:24 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010.11.07 19:32:24 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010.11.07 19:31:24 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010.11.07 19:31:24 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010.11.07 19:31:24 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010.11.07 19:31:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010.11.07 19:31:24 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010.11.07 19:31:24 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010.11.07 19:31:19 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010.11.07 19:31:19 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010.11.07 19:31:19 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010.11.07 19:30:27 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010.11.07 19:30:27 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010.11.07 19:30:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010.11.07 19:30:08 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010.11.07 19:29:48 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010.11.07 19:29:48 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010.11.07 19:29:42 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010.11.07 19:28:59 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010.11.07 19:28:20 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010.11.07 19:28:07 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010.11.07 19:28:07 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010.11.07 19:27:18 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp [2010.11.07 19:27:18 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp [2010.11.07 19:27:18 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp [2010.11.07 19:27:18 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp [2010.11.07 19:27:18 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp [2010.11.07 19:27:18 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2010.11.07 19:27:18 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp [2010.11.07 19:27:18 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp [2010.11.07 19:27:18 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp [2010.11.07 19:27:18 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2010.11.07 19:27:17 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010.11.07 19:27:17 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010.11.07 19:27:17 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010.11.07 19:27:17 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010.11.07 19:27:17 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010.11.07 19:27:17 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010.11.07 19:27:17 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp [2010.11.07 19:27:16 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010.11.07 19:27:16 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010.11.07 19:27:15 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010.11.07 19:27:14 | 000,013,223 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010.11.07 19:27:14 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010.11.07 19:27:13 | 000,001,931 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010.11.07 19:27:13 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010.11.07 19:27:07 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2008.07.12 23:39:40 | 001,288,192 | ---- | C] () -- C:\WINDOWS\System32\quartz.dll [2008.04.14 12:30:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2008.04.14 12:30:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2008.04.14 12:30:00 | 000,562,176 | ---- | C] () -- C:\WINDOWS\System32\qedit.dll [2008.04.14 12:30:00 | 000,498,742 | ---- | C] () -- C:\WINDOWS\System32\dxmasf.dll [2008.04.14 12:30:00 | 000,386,048 | ---- | C] () -- C:\WINDOWS\System32\qdvd.dll [2008.04.14 12:30:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2008.04.14 12:30:00 | 000,279,040 | ---- | C] () -- C:\WINDOWS\System32\qdv.dll [2008.04.14 12:30:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2008.04.14 12:30:00 | 000,252,928 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2008.04.14 12:30:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2008.04.14 12:30:00 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\qcap.dll [2008.04.14 12:30:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2008.04.14 12:30:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2008.04.14 12:30:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2008.04.14 12:30:00 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\devenum.dll [2008.04.14 12:30:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2008.04.14 12:30:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2008.04.14 12:30:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2008.04.14 12:30:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2008.04.14 12:30:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2008.04.14 12:30:00 | 000,035,328 | ---- | C] () -- C:\WINDOWS\System32\mciqtz32.dll [2008.04.14 12:30:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2008.04.14 12:30:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2008.04.14 12:30:00 | 000,033,840 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2008.04.14 12:30:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2008.04.14 12:30:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2008.04.14 12:30:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2008.04.14 12:30:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2008.04.14 12:30:00 | 000,027,866 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2008.04.14 12:30:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2008.04.14 12:30:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2008.04.14 12:30:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2008.04.14 12:30:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2008.04.14 12:30:00 | 000,012,082 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2008.04.14 12:30:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2008.04.14 12:30:00 | 000,010,110 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2008.04.14 12:30:00 | 000,009,029 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2008.04.14 12:30:00 | 000,006,877 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2008.04.14 12:30:00 | 000,004,768 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2008.04.14 12:30:00 | 000,004,126 | ---- | C] () -- C:\WINDOWS\System32\msdxmlc.dll [2008.04.14 12:30:00 | 000,003,458 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2008.04.14 12:30:00 | 000,002,891 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2008.04.14 12:30:00 | 000,002,732 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2008.04.14 12:30:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2008.04.14 12:30:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2008.04.14 12:30:00 | 000,001,152 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2008.04.14 12:30:00 | 000,000,507 | ---- | C] () -- C:\WINDOWS\win.ini [2008.04.14 12:30:00 | 000,000,343 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2008.04.14 12:30:00 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini [2001.08.18 07:06:28 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll ========== LOP Check ========== [2010.11.07 20:02:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ReapeR\Application Data\Hansenet [2010.11.07 20:25:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ReapeR\Application Data\InterTrust [2010.11.09 22:46:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ReapeR\Application Data\Meebo [2010.11.09 22:35:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ReapeR\Application Data\Miranda [2010.11.11 22:29:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\ReapeR\Application Data\TS3Client ========== Purity Check ========== < End of report > |
OTL EXTRAS Logfile: Code: OTL Extras logfile created on: 12.11.2010 21:28:52 - Run 1 |
(unnötiger Post... sry) |
Files Infected: 7 Files Infected: C:\Documents and Settings\ReapeR\Application Data\LmHosts.exe (Trojan.Dropper) -> No action taken. C:\System Volume Information\_restore{4D8D9809-85BF-45F8-B59A-3B14DF2C7B5E}\RP14\A0001654.exe (Trojan.Dropper) -> No action taken. C:\WINDOWS\system32\asr_48836.exe (Virus.Virut) -> No action taken. Was soll denn das werden? Wenn das Tool sieben infizierte Dateien zählt, warum sind nur drei aufgelistet? Komm nicht auf die Idee, die Logs zu manipulieren! :mad: |
ich hab nix manipuliert Oo... vll nicht alles kopiert oO... ich weiss es nicht -_-... ich mach n neuen... |
Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5113 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.13 14.11.2010 18:18:17 mbam-log-2010-11-14 (18-18-17).txt Scan type: Full scan (C:\|D:\|E:\|G:\|H:\|I:\|) Objects scanned: 531942 Time elapsed: 1 hour(s), 35 minute(s), 47 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 2 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\System Volume Information\_restore{4D8D9809-85BF-45F8-B59A-3B14DF2C7B5E}\RP14\A0001655.exe (Virus.Virut) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{4D8D9809-85BF-45F8-B59A-3B14DF2C7B5E}\RP14\A0001656.exe (Virus.Virut) -> Quarantined and deleted successfully. hier ist der neue... hab beim letzten vergessen zu scrollen ... sry |
Nein poste bitte das alte Log vollständig! |
das hab ich nicht mehr T_T |
Findest Du das nicht ein bisschen auffällig...?!? Sei einfach ehrlich und man wird Dir hier im Forum entgegen kommen. Hier will niemand etwas böses von Dir, man will Dir helfen. Wenn Du Dinge versteckst und verheimlichst dann kann hier niemand was machen. |
kann sein das du das auffälllig findest... aber ich hab das wirklich nicht mehr... und ich hab auch nix manipuliert... T_T... |
Schau bei Malwarebytes im Reiter Logdateien nach. Da sind alle Logs. |
danke :) Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 5098 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.13 12.11.2010 15:14:44 mbam-log-2010-11-12 (15-14-44).txt Scan type: Full scan (C:\|D:\|E:\|G:\|H:\|I:\|J:\|) Objects scanned: 529328 Time elapsed: 1 hour(s), 42 minute(s), 25 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 1 Registry Data Items Infected: 2 Folders Infected: 0 Files Infected: 7 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\tcp/ip netbios helper (Trojan.Dropper) -> Quarantined and deleted successfully. Registry Data Items Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Folders Infected: (No malicious items detected) Files Infected: C:\Documents and Settings\ReapeR\Application Data\LmHosts.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{4D8D9809-85BF-45F8-B59A-3B14DF2C7B5E}\RP14\A0001654.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\WINDOWS\system32\asr_48836.exe (Virus.Virut) -> Quarantined and deleted successfully. C:\WINDOWS\system32\asr_72844.exe (Virus.Virut) -> Quarantined and deleted successfully. D:\Sortiert\Cracks\fff-ea144.exe (Trojan.Orsam) -> Quarantined and deleted successfully. H:\Klaus\Games\COD4 stuff\rzr-cod4.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully. I:\recovery\Image\keygens\fff-ea144.exe (Trojan.Orsam) -> Quarantined and deleted successfully. |
Da haben wirs schon... FFF ist eine Gruppe, die Keygens verteilt. Ich hab eben mal nur ein Keygen (185 KB) bei Virustotal von denen gecheckt - man siehe da, Malware! :O Ich habe nur 10 Minuten im Internet gesucht und von denen was gefunden. Vielleicht ist es verlockend, aber in über 90% der Fällen ist da Malware drin. Klick hier um den Virustotal Bericht zu dem Keygen zu sehen So sah der den ich bei virustotal gecheckt habe aus: http://insanityd.in.ohost.de/FFF.jpg Ich hoffe, das ist eine Lehre für Dich und Du wirst sowas nie wieder anfassen... Das nur von meiner Seite als guten Tipp... Der Ehrliche gewinnt immer. Und hat weniger Malware. |
naja... den keygen hab ich mindestens 1 jahr... und den hab ich auch ewig nicht mehr genutzt. das der net ganz koscher is weiss ich auch ;). aber Virus.Virut is das ding was immer wieder auftaucht und den bin ich auch noch nicht los, aber nach einem suchlauf von antivir dauert es ein bischen bis der sich wieder bemerkbar macht :/ auf die virustotal seite komme ich garnicht drauf da bekomm ich von alice ein "fehler 500" :headbang: mfg xReapeRx |
Nach deutschem Gesetz ist das verboten, egal wie lange Du es schon drauf hast... Code: D:\Sortiert\Cracks\fff-ea144.exe (Trojan.Orsam) -> Quarantined and deleted successfully.Hier im Bord dürfen wir Dir nichtmehr weiterhelfen, weil wir damit nichts zu tun haben wollen. Wir können Dir lediglich beim neuaufsetzen des PCs behilflich sein... |
Zitat:
naja gut dann werd ich selber mal schauen was ich da machen kann, selber aufsetzen bekomm ich schon hin. hab ich ja auch schon aber der Virus war danach halt immernoch da. mfg xReapeRx |
Ob ich Dir glaube oder nicht spielt keine Rolle, wir haben hier eben Regeln an die sich jeder halten muss. Wenn Du schonmal neuaufgesetzt hast, der Virus danach aber immernoch da war, dann hast Du es nicht 100% hinbekommen... |
ok... kann ich den mehr machen als formatieren? Oo |
Hast Du wirklich richtig formatiert? Lies Dir das durch: Neuaufsetzen des Systems Denk daran, keine ausführbaren Dateien mitzunehmen, Du hast einen Virus.Virut.AX, also einen Dateiinfizierer. |
hmm... hab alles so gemacht wie das in dem tutorial oder wie ihr das nennt steht... hmm... also nicht auf c:. da installiere ich direkt programme von den quellen (chip.de, usw... also nicht "irgendwo" ausm netz). Dateiinfizierer... wenn ich den auf d: ausführe, schreibt der dann trotzdem auf c:??? ich dachte immer Viren tummeln sich nur auf der Systempartition O.o mfg xReapeRx |
So kann man das nicht sagen, Malware ist sehr vielfältig. Es gibt Schädlinge, die nur auf einer Partition bleiben, aber auch Schädlinge die im ganzen System sind. Am besten ist es einfach nur Bilder oder Musik (also nicht ausführbare Dateien) zu behalten. Natürlich ist dann das aktuell halten des Systems im Nachhinein sehr wichtig. Und: Nie wieder Keygens oder ähnliches benutzen. Versprochen? |
:) :) :) :) alles klar danke :dankeschoen: das reicht mir schon... hatte shcon angst um meine daten x) werde dann mal alle meine platten plätten... hoffe das mein rechner das noch bis zu nächsten WE schafft... werde vorher keine zeit haben :( edit: ja natürlich versprochen... keygens.. achja.. die gute alte jugend mit den guten alten lanpartys xD mfg und viele dank xReapeRx |
Bedanke Dich nicht bei mir sondern bei den ganzen vielen richtigen Helfern hier im Board, die sich den ganzen Tag bemühen Malware von wildfremden Menschen PC's zu löschen. Das sind die wirklichen Helden, die leider viel zu wenig Aufmerksamkeit bekommen. |
ja stimmt :) ... aber um ehrlich zu sein... mir wär ein bischen mehr aufmerksamkeit für die *piep* die diese *piep* programme schreiben lieber ... naja... solange es kampfhunde, killerspiele, leute mit migrationshintergrund und andere "probleme" gibt wird man so ein board und solche menschen wie euch wohl auch noch ne weile brauchen :) mfg xReapeRx |
Zitat:
(Weswegen ich ja hier die Ausbildung mache). |
ui was philosophisches... denke mal du meinst sinngemäss das das gute und schöne nur dadurch existenz erlangt das wir es am schlechten und unvollkemenen messen könner oder ;)? naja... stimmt schon im grossen und ganzen. aber die technik hat im allgemeinen genug eigene probleme, da brauch ich net irgendwelche hirngef***** vollidioten die das mutwillig und ohne auch nur den geringsten nutzen, ausser vll der schadenfreude (welche sich in grenzen halten dürfte da man schadenfreude nur richtig auskosten kann wenn man den leidtragenden kennt...) mit zusätzlichen problemen beaufschlagen >_< |
Die meisten Malwareschreiber wollen ja Profit schlagen. Botnetze werden zB an Firmen vermietet, um Werbung zu versenden usw... Lass einfach die Finger von Keygens, Cracks oder ähnlichem und halte den PC aktuell und Du hast ne große Chance nichtmehr hierher zu müssen. ^^ |
Zu keygens, cracks usw. hab ich meine eigene Meinung aber die lasse ich jetzt mal außen vor. ;) Zum TO: Virut ist ein polymorpher Fileinfector, das heisst er infiziert ausführbare Dateien im System. Da du ja schon einmal neuaufgesetzt hast und Virut danach wieder da war, gehe ich davon aus daß du eine infizierte ausführbare Datei gesichert hast und dir dadurch dein System neu verseucht hast. Wenn du dein System wieder neu machst sichere absolut keine ausführbare Datei oder Dateien die ausführbaren Code enthalten (.exe, .scr, .zip/rar usw.). Bilder, Textdokumente und Videos sind kein Problem. Gruß Acid :kaffee: |
Zitat:
Edit: Acid hat sich aber deutlich besser ausgedrückt, Du solltest auf keinen Fall ausführbare Dateien sichern. |
der artikel ist wirklich interessant, auch wenn ich das meiste davon nicht verstehe xD aber geholfen hat das glaub ich trotzdem. ich hab eine paar dateien mit der endung .htm auf einer festplatte... lasse gerade antivir durchlaufen und hab dem gesagt der soll mal speziell .htm, .html, .php2 und .asp dateien durchsuchen... keine ahnung ob der das normalerweise auch macht |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 08:42 Uhr. |
Copyright ©2000-2025, Trojaner-Board