[Need Help Removing A Virus[RESOLVED]]

Here's the log for step 1:

Volume in drive D has no label.

Volume Serial Number is 8DC4-AA31

Directory of D:\

06/23/2005 07:39 PM <DIR> ac3filterfi

02/18/2007 07:29 PM 78 Alfred Whitney Griswold - Wikipedia, the free encyclopedia.URL

08/08/2008 11:17 AM 25,906,688 BAIS-BSIS_Brochure.doc

12/09/2006 02:21 AM <DIR> BC5

06/01/2005 04:03 PM <DIR> BDE32

05/17/2008 02:06 AM 24,064 confirmation number for this payment.doc

02/25/2007 03:12 PM 49 DHS Services Lobby.URL

07/26/2007 05:42 PM <DIR> DivXfi

05/29/2005 11:02 AM 48,640 documents to edit and send to J.doc

02/08/2007 03:03 PM 146,612 DPNP-01-12-2003-A.pdf

04/15/2007 11:19 PM <DIR> DVDFabDecrypter_Temp

08/06/2008 05:31 PM 422,967 eStmt_2007-03-23.pdf

10/10/2006 12:36 AM <DIR> FLVplayerfi

05/21/2006 12:32 PM <DIR> Iomegazip drive

07/09/2005 09:29 PM <DIR> JetAudiofi

02/25/2007 03:13 PM 76 Mapas ambientales para comunidades saludables - HUD.URL

02/27/2007 03:44 PM 73,216 MarkApicella.doc

09/16/2006 02:03 PM <DIR> MEreader fi

10/26/2004 04:45 PM 75,776 Mesages to read imediately.doc

01/27/2007 02:19 PM 58 mike02 funny animal. The Turtle..URL

08/13/2007 09:45 PM <DIR> MOxp

09/05/2007 09:04 PM <DIR> My Documents

04/28/2005 04:46 PM 881,865 N-400.pdf

08/13/2008 09:40 AM 127,418 nursing.program.pdf

05/18/2005 12:15 AM 114 Open Media Network.url

08/27/2006 09:06 PM 3,215,844 Partida_de_Nacimiento.jpg

09/29/2008 08:09 PM <DIR> pfi

10/25/2006 01:24 AM 190 Practice Questions for the U.S. Citizenship Exam - SFPL.org.url

02/05/2005 07:44 PM <DIR> PROGRAM FILES

05/21/2008 08:34 PM 904,501 ProtoWallInstaller7.exe

01/13/2007 02:57 AM 97 RegisteredWorks - Google Search.URL

07/25/2006 09:30 AM <DIR> Shareazafi

04/13/2004 11:48 AM 165 Smithsonian Institution.url

12/22/2008 07:46 PM <DIR> Software Backup recent

09/26/2006 02:20 PM <DIR> Trillianfi

08/03/2006 05:46 PM <DIR> Unused icons

05/01/2005 10:21 PM <DIR> UT2004patch

11/17/2005 02:16 PM <DIR> Winrarfi

19 File(s) 31,828,418 bytes

19 Dir(s) 50,311,450,624 bytes free

and here's the log for step 2:

[AutoRun]

shell\open=´ò¿ª(&O)

shell\open\Command=GLXB.PIF

shell\open\Default=1

shell\explore=×ÊÔ´¹ÜÀíÆ÷(&X)

shell\explore\command=GLXB.PIF

[Need Help Removing A Virus[RESOLVED]]

Hey,

OTMoveIt cleaned up itself, no need to post a log from it.

Can you please post the following two

• c:\output.txt
  
• and the log that opens in notepad after running the above command
  

I'm a bit confused, so after going to start >> run >> cmd I have to type "output.txt" and then post the log that opens right there, correct?

[Need Help Removing A Virus[RESOLVED]]

I"m not quite sure what just happened, I chose the option to allow the computer to reboot but now that it has, the icon for OTMoveIt dissapeared, so I now I can't post the log.

[Need Help Removing A Virus[RESOLVED]]

Please re-run the Kaspersky Online Scanner, and save the log to your desktop. Please post the log in your next reply.

here's the new log:

KASPERSKY ONLINE SCANNER 7 REPORT

Thursday, January 8, 2009

Operating System: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)

Kaspersky Online Scanner 7 version: 7.0.25.0

Program database last update: Thursday, January 08, 2009 13:13:25

Records in database: 1587187

--------------------------------------------------------------------------------

Scan settings:

Scan using the following database: extended

Scan archives: yes

Scan mail databases: yes

Scan area - My Computer:

A:\

C:\

D:\

E:\

F:\

Scan statistics:

Files scanned: 68972

Threat name: 2

Infected objects: 2

Suspicious objects: 0

Duration of the scan: 01:51:26

File name / Threat name / Threats count

C:\_OTMoveIt\MovedFiles\12302008_102636\ZGH.PIF Infected: Worm.Win32.AutoRun.vzw 1

C:\_OTMoveIt\MovedFiles\12302008_102636\ZGWZ.PIF Infected: Worm.Win32.AutoRun.vmn 1

The selected area was scanned.

[I'm Trying To Setup...]

thx garmanma

[Need Help Removing A Virus[RESOLVED]]

ok thx monsterenergy22

[I'm Trying To Setup...]

I'm not sure what I"m doing wrong, here's a pic of the setup page

and some from the status page

maybe I have overlooked something important, I'll check the manuals in the link, thx shanenin

[I'm Trying To Setup...]

an old Linksys router WRT54G which is still good, but was unplugged by mistake from the outlet and now it was to be setup all over again, I followed some steps found in google but it seems to fail getting a connection, I tried calling linksys tech support but when I gave them the model router and series number they told me they don't support the WRT54G anymore and that I had to either buy a new router or pay for technical support. Has anyone setup a linksys router WRT54G from scratch before? or does someone know how to do it by any chance?

[Need Help Removing A Virus[RESOLVED]]

notepad d:\autorun.ini

for this one notepad launches but the log it's empty

dir d: > c:\output.txt

and for this one nothing happens

[Need Help Removing A Virus[RESOLVED]]

As an additional note, I can change from C:\ to D:\ in the "DOS like black box" that you get after using run >> cmd

[Need Help Removing A Virus[RESOLVED]]

If I try to access the drive I get this:

and if I right-click the drive, the first 2 options show up in gibberish:

[Need Help Removing A Virus[RESOLVED]]

Here's the OTMoveIt3 log in case that is needed:

========== PROCESSES ==========

Process explorer.exe killed successfully.

========== FILES ==========

D:\ZGH.PIF moved successfully.

D:\ZGVZ.PIF moved successfully.

D:\ZGWZ.PIF moved successfully.

========== COMMANDS ==========

File delete failed. C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF2B94.tmp scheduled to be deleted on reboot.

File delete failed. C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF8CC2.tmp scheduled to be deleted on reboot.

User's Temp folder emptied.

User's Temporary Internet Files folder emptied.

User's Internet Explorer cache folder emptied.

Local Service Temp folder emptied.

File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.

Local Service Temporary Internet Files folder emptied.

File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.

File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_540.dat scheduled to be deleted on reboot.

File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_798.dat scheduled to be deleted on reboot.

Windows Temp folder emptied.

Java cache emptied.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.

FireFox cache emptied.

Temp folders emptied.

Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12302008_102636

Files moved on Reboot...

File C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF2B94.tmp not found!

C:\DOCUME~1\Ed\LOCALS~1\Temp\~DF8CC2.tmp moved successfully.

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat moved successfully.

File C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!

C:\WINDOWS\temp\Perflib_Perfdata_540.dat moved successfully.

File C:\WINDOWS\temp\Perflib_Perfdata_798.dat not found!

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_001_ moved successfully.

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_002_ moved successfully.

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_003_ moved successfully.

C:\Documents and Settings\Ed\Local Settings\Application Data\Mozilla\Firefox\Profiles\04sr2crd.default\Cache\_CACHE_MAP_ moved successfully.

[Need Help Removing A Virus[RESOLVED]]

BTW I tried doing a Kaspersky Online Scan again, and it worked this time:

[Need Help Removing A Virus[RESOLVED]]

You should see Disk 0 and Disk 1. What does it say for each HDD?

this is what it says:

[Need Help Removing A Virus[RESOLVED]]

Have you ever had access to your D drive?

Yes, I was able to access my D drive before the virus took over both drives. I managed to get access to the C drive as mentioned in a previous post, but I still don't have access to the D drive.

[Need Help Removing A Virus[RESOLVED]]

ok I managed to recover the important files on my C drive by doing a file search and copying those folders, next I formated the C drive using the recovery partition and now I got back access to the C drive, however, I'm yet to obtain access to my D drive since the problem remains in that one.

[Need Help Removing A Virus[RESOLVED]]

well I think I found the reason for the problem I overlooked it before since I would click accept without stopping to read the message. It says that kaspersky can't run properly if there's another antivirus program running, and I'm guessing Avast it's conflicting with it. I've tried to uninstall it several times from control panel, but it says there was an error during the uninstall and the avast icon is still running on my system tray, is there any other way to uninstall the program without using control panel or from the start menu program?

[Need Help Removing A Virus[RESOLVED]]

Step 3

Please do an online scan with Kaspersky WebScanner

I highly recommend using Internet Explorer for best results!

Note: If you are using Windows Vista, open your browser by right-clicking on its icon and select 'Run as administrator' to perform this scan.

Click on the Accept button and install any components it needs.

• The program will install and then begin downloading the latest definition files.
  
• Once they are downloaded, the database will be updated.
  Please accept any ActiveX or Java notifications
  
• After the files have been updated, go to the left side of the page under the Scan section and select My Computer.
  
• This will start the program and scan your system.
  
• The scan will take a while so be patient and let it run.
  
• Once the scan is complete, click on View scan report
  
• Now, click on the Save Report as button.
  
• Save the file to your desktop.
  
• Copy and paste that information in your next post.
  

Kaspersky can't update its definitions, I tried several times in both Firefox and IE and this is what I get:

[Need Help Removing A Virus[RESOLVED]]

Extras.Txt log:

OTViewIt Extras logfile created on: 12/26/2004 11:20:04 AM - Run

OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Documents and Settings\Max\Desktop

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.5512)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

759.52 Mb Total Physical Memory | 507.52 Mb Available Physical Memory | 66.82% Memory free

1.81 Gb Paging File | 1.56 Gb Available in Paging File | 86.21% Paging File free

Paging file location(s): C:\pagefile.sys 1140 2280;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 105.78 Gb Total Space | 40.26 Gb Free Space | 38.06% Space Free | Partition Type: NTFS

Drive D: | 68.52 Gb Total Space | 46.86 Gb Free Space | 68.38% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: VALUED-3253602F

Current User Name: Max

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Whitelist: On

File Age = 30 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)

.cpl [@ = cplfile] -- C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)

.hta [@ = htafile] -- C:\WINDOWS\system32\mshta.exe (Microsoft Corporation)

.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

.inf [@ = inffile] -- C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)

.ini [@ = inifile] -- C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)

.url [@ = InternetShortcut] -- C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)

.js [@ = JSFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.jse [@ = JSEFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.reg [@ = regfile] -- C:\WINDOWS\regedit.exe (Microsoft Corporation)

.txt [@ = txtfile] -- C:\WINDOWS\system32\notepad.exe (Microsoft Corporation)

.vbe [@ = VBEFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.vbs [@ = VBSFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.wsf [@ = WSFFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

.wsh [@ = WSHFile] -- C:\WINDOWS\system32\wscript.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"AntiVirusDisableNotify"=0

"FirewallDisableNotify"=0

"UpdatesDisableNotify"=0

"AntiVirusOverride"=0

"FirewallOverride"=0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[2008/04/13 16:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

[2008/04/13 16:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation) -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[2003/06/23 16:32:54 | 01,409,024 | ---- | M] (Support.com, Inc.) -- C:\Program Files\support.com\client\bin\tgcmd.exe:*:Disabled:tgcmd Module

[2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[2006/10/27 14:16:48 | 12,813,096 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook

[2006/10/27 14:37:44 | 00,338,216 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove

[2006/10/27 14:03:04 | 01,018,664 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote

[2008/10/10 10:14:24 | 00,270,128 | ---- | M] (BitTorrent, Inc.) -- C:\Documents and Settings\Max\Desktop\utorrent.exe:*:Enabled:µTorrent

[2008/08/12 17:19:02 | 21,741,864 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype

[2008/09/26 07:52:28 | 00,208,896 | ---- | M] () -- C:\Program Files\Unreal Tournament 2004\System\UT2004.exe:*:Enabled:UT2004

========== (O18) Protocol Handlers ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]

[2006/10/26 23:48:02 | 00,222,512 | ---- | M] (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (grooveLocalGWS:{88FED34C-F0CA-4636-A375-3CB6248B04CD} (HKLM) [Local Groove Web Services Protocol])

ipp: [HKLM - No CLSID value]

[2006/10/26 18:49:48 | 01,011,488 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL ipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]

msdaipp: [HKLM - No CLSID value]

[2006/10/26 18:49:48 | 01,011,488 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]

[2006/10/26 18:49:48 | 01,011,488 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAIPP.BINDER]

[2006/10/26 12:45:02 | 00,873,216 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (ms-help:{314111c7-a502-11d2-bbca-00c04f8ec294} (HKLM) [HxProtocol Class])

[2008/08/12 17:19:02 | 01,942,864 | R--- | M] (Skype Technologies) C:\Program Files\Common Files\Skype\Skype4COM.dll (skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} (HKLM) [iEProtocolHandler Class])

========== (O18) Protocol Filters ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\] - Protocol Filters

[2006/10/26 20:41:48 | 00,044,344 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL text/xml:{807563E5-5146-11D5-A672-00B0D022E945} (HKLM) [Microsoft Office InfoPath XML Mime Filter]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{00000000-3976-4267-9F39-1DC4745090B7}"=Microsoft Learning and Research Plus Support Files

"{00203668-8170-44A0-BE44-B632FA4D780F}"=Adobe AIR

"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}"=ATI Control Panel

"{0C826C5B-B131-423A-A229-C71B3CACCD6A}"=CDDRV_Installer

"{13515135-48BB-4184-8C1F-2FAE0138E200}"=TBS WMP Plug-in

"{1D643CD7-4DD6-11D7-A4E0-000874180BB3}"=Microsoft Money 2004

"{1DBB465A-5DFC-4E3A-9A8A-15612D2386F0}"=Turbo Tax Offer

"{1EB317D8-8945-4FD6-B37F-DF470317C6AB}"=VAIO Media 2.6

"{27337663-2619-11D4-99DC-0000F49094C7}"=Memory Stick Formatter

"{3101CB58-3482-4D21-AF1A-7057FC935355}"=KhalInstallWrapper

"{315BA29D-2644-4760-B5FD-5AC04A52B8C5}"=VAIO Registration

"{3248F0A8-6813-11D6-A77B-00B0D0160070}"=Java 6 Update 7

"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP

"{369B36BE-3D64-4641-9AEA-808D436FE130}"=Microsoft Picture It! Express 7.0

"{394DC0BC-5476-4260-B52C-BDE1BDEFA958}"=Unreal Tournament 2004

"{3B24B725-D81F-442D-8CE5-2AF05A4A4CC9}"=Music Visualizer Library 1.4.00

"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}"=Logitech Registration

"{4D1D6640-CD43-4AD9-A52F-E48265DB28E0}"=VAIO BrightColor Wallpaper

"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}"=Skypeâ„¢ 3.8

"{62F33B80-6244-4A70-A233-0DA13B640364}"=OpenMG Secure Module 3.2

"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}"=PowerDVD

"{685BCC47-B8EC-45EC-BBCE-77DF2451502C}"=DVgate Plus

"{6990A2BF-D1D2-11D3-81BC-00609789C908}"=Sony Video Shared Library

"{7128C69B-8F7E-4336-8698-3FD3CDD955EC}"=VAIO Media Redistribution 2.6

"{71D6CE84-B7DC-4166-8E0D-56C1C37BFB5A}"=SonicStage 1.6.00

"{7299052b-02a4-4627-81f2-1818da5d550d}"=Microsoft Visual C++ 2005 Redistributable

"{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}"=Microsoft Works 7.0

"{77DCDCE3-2DED-62F3-8154-05E745472D07}"=Acrobat.com

"{789289CA-F73A-4A16-A331-54D498CE069F}"=Ventrilo Client

"{7A79D11B-FD82-4A5E-834F-20173515DD14}"=VAIO Media Integrated Server 2.6

"{7C2F71B2-6C73-11D6-B659-00C04F790F76}"=Click to DVD 1.3

"{88DA0A52-3372-4803-971A-ADFB961707E8}"=PictureGear Studio 2.0

"{8A708DD8-A5E6-11D4-A706-000629E95E20}"=Intel® Extreme Graphics Driver

"{8C64E145-54BA-11D6-91B1-00500462BE80}"=Microsoft Money 2004 System Pack

"{90120000-0010-0C0A-0000-0000000FF1CE}"=Microsoft Software Update for Web Folders (Spanish) 12

"{90120000-0015-0C0A-0000-0000000FF1CE}"=Microsoft Office Access MUI (Spanish) 2007

"{90120000-0016-0C0A-0000-0000000FF1CE}"=Microsoft Office Excel MUI (Spanish) 2007

"{90120000-0018-0C0A-0000-0000000FF1CE}"=Microsoft Office PowerPoint MUI (Spanish) 2007

"{90120000-0019-0C0A-0000-0000000FF1CE}"=Microsoft Office Publisher MUI (Spanish) 2007

"{90120000-001A-0C0A-0000-0000000FF1CE}"=Microsoft Office Outlook MUI (Spanish) 2007

"{90120000-001B-0C0A-0000-0000000FF1CE}"=Microsoft Office Word MUI (Spanish) 2007

"{90120000-001F-0403-0000-0000000FF1CE}"=Microsoft Office Proof (Catalan) 2007

"{90120000-001F-0409-0000-0000000FF1CE}"=Microsoft Office Proof (English) 2007

"{90120000-001F-040C-0000-0000000FF1CE}"=Microsoft Office Proof (French) 2007

"{90120000-001F-0416-0000-0000000FF1CE}"=Microsoft Office Proof (Portuguese (Brazil)) 2007

"{90120000-001F-042D-0000-0000000FF1CE}"=Microsoft Office Proof (Basque) 2007

"{90120000-001F-0456-0000-0000000FF1CE}"=Microsoft Office Proof (Galician) 2007

"{90120000-001F-0C0A-0000-0000000FF1CE}"=Microsoft Office Proof (Spanish) 2007

"{90120000-002C-0C0A-0000-0000000FF1CE}"=Microsoft Office Proofing (Spanish) 2007

"{90120000-0030-0000-0000-0000000FF1CE}"=Microsoft Office Enterprise 2007

"{90120000-0044-0C0A-0000-0000000FF1CE}"=Microsoft Office InfoPath MUI (Spanish) 2007

"{90120000-006E-0C0A-0000-0000000FF1CE}"=Microsoft Office Shared MUI (Spanish) 2007

"{90120000-00A1-0C0A-0000-0000000FF1CE}"=Microsoft Office OneNote MUI (Spanish) 2007

"{90120000-00BA-0C0A-0000-0000000FF1CE}"=Microsoft Office Groove MUI (Spanish) 2007

"{93B80FB1-7A23-11D3-B250-00105A1F4184}"=

"{AC76BA86-7AD7-1033-7B44-A90000000001}"=Adobe Reader 9

"{BEF3EFE7-5159-436D-9BF0-CCC633179EB4}"=EVGA Display Driver

"{CD7D5804-C157-48A6-AEE0-4A40A4B5C054}"=VAIO System Information

"{D0448678-1203-4158-A58F-B3D0B616BF9E}"=Sony Certificate PCH

"{DDC146FA-73E0-4FA1-A353-841EA14BF600}"=Drag'n Drop CD+DVD

"{E68B38DE-D7DD-4FB3-A453-3F03A947EA8E}"=VAIO Help and Support

"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}"=Logitech SetPoint

"{F61F2821-694C-475F-99AB-6AF2EFDF40FD}"=Quicken 2003 New User Edition

"{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}"=VAIO Survey Standalone

"7-Zip"=7-Zip 4.57

"Adobe AIR"=Adobe AIR

"Adobe Flash Player ActiveX"=Adobe Flash Player ActiveX

"Adobe Flash Player Plugin"=Adobe Flash Player Plugin

"Agere Systems Soft Modem"=Agere Systems AC'97 Modem

"a-squared Free_is1"=a-squared Free 4.0

"AT&T Worldnet Setup"=AT&T Worldnet Setup

"ATI Display Driver"=ATI Display Driver

"avast!"=avast! Antivirus

"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1"=Acrobat.com

"CutePDF Writer Installation"=CutePDF Writer 2.7

"Dropbox"=Dropbox

"DVD Decrypter"=DVD Decrypter (Remove Only)

"DVD Shrink_is1"=DVD Shrink 3.2

"DVD43_is1"=DVD43 v4.3.1

"ENTERPRISE"=Microsoft Office Enterprise 2007

"Hamachi"=Hamachi 1.0.3.0

"HijackThis"=HijackThis 2.0.2

"InstallShield_{13515135-48BB-4184-8C1F-2FAE0138E200}"=TBS WMP Plug-in

"InstallShield_{315BA29D-2644-4760-B5FD-5AC04A52B8C5}"=VAIO Registration

"InstallShield_{E68B38DE-D7DD-4FB3-A453-3F03A947EA8E}"=VAIO Help and Support

"InstallShield_{F61F2821-694C-475F-99AB-6AF2EFDF40FD}"=Quicken 2003 New User Edition

"InstallShield_{FA11D5B5-7D0A-43E8-88C4-960F97B194DE}"=VAIO Survey Standalone

"LiveReg"=LiveReg (Symantec Corporation)

"LiveUpdate"=LiveUpdate 1.80 (Symantec Corporation)

"Malwarebytes' Anti-Malware_is1"=Malwarebytes' Anti-Malware

"MoodLogic"=MoodLogic

"Mozilla Firefox (2.0.0.20)"=Mozilla Firefox (2.0.0.20)

"MSNMS"=MSN Internet Software

"Netscape (7.02)"=Netscape (7.02)

"OpenMG HotFix3.2-03-01-16-01"=OpenMG Limited Patch 3.2-03-02-21-08

"OpenMG HotFix3.2-03-01-16-02"=OpenMG Limited Patch 3.2-03-03-18-01

"OpenMG HotFix3.2-03-04-14-02"=OpenMG Limited Patch 3.2-03-04-14-02

"PeerGuardian_is1"=PeerGuardian 2.0

"PROSet"=Intel® PRO Network Adapters and Drivers

"QuickTime"=QuickTime

"Shockwave"=Shockwave

"Sony on Yahoo! Essentials"=Sony on Yahoo! Essentials

"VAIO Support"=VAIO Support

"ViewpointMediaPlayer"=Viewpoint Media Player (Remove Only)

"VLC media player"=VideoLAN VLC media player 0.8.6i

"Wdf01005"=Microsoft Kernel-Mode Driver Framework Feature Pack 1.5

"Welcome to VAIO life"=Welcome to VAIO life

"Windows XP Service Pack"=Windows XP Service Pack 3

"WinRAR archiver"=WinRAR archiver

"Xfire"=Xfire (remove only)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Google Chrome"=Google Chrome

"Octoshape add-in for Adobe Flash Player"=Octoshape add-in for Adobe Flash Player

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 12/9/2008 11:21:17 PM | Computer Name = VALUED-3253602F | Source = Application Error | ID = 1000

Description = Faulting application pg2.exe, version 1.0.6.4, faulting module ntdll.dll,

version 5.1.2600.5512, fault address 0x0001b1fa.

Error - 12/22/2008 5:16:34 PM | Computer Name = VALUED-3253602F | Source = Application Error | ID = 1000

Description = Faulting application pg2.exe, version 1.0.6.4, faulting module ntdll.dll,

version 5.1.2600.5512, fault address 0x0001b1fa.

Error - 12/24/2004 10:49:07 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/24/2004 10:49:08 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/24/2004 10:49:08 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/24/2004 10:49:11 PM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 6.0.2900.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:26:13 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:43:29 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:45:39 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/26/2004 6:49:23 AM | Computer Name = VALUED-3253602F | Source = Application Hang | ID = 1002

Description = Hanging application firefox.exe, version 1.8.20081.21709, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

[ System Events ]

Error - 12/26/2004 1:21:22 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7000

Description = The mrtRate service failed to start due to the following error: %%2

Error - 12/26/2004 1:21:22 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

Beep

Error - 12/26/2004 1:23:22 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7000

Description = The mrtRate service failed to start due to the following error: %%2

Error - 12/26/2004 1:23:24 AM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

Beep

Error - 12/26/2004 5:15:15 AM | Computer Name = VALUED-3253602F | Source = Dhcp | ID = 1000

Description = Your computer has lost the lease to its IP address 5.44.169.91 on

the Network Card with network address 7A79052CA95B.

Error - 12/26/2004 6:44:12 AM | Computer Name = VALUED-3253602F | Source = BROWSER | ID = 8032

Description = The browser service has failed to retrieve the backup list too many

times on transport \Device\NetBT_Tcpip_{6BDFFCC5-B5E0-45B6-9987-8AB8047530E1}. The

backup browser is stopping.

Error - 12/26/2004 7:17:58 AM | Computer Name = VALUED-3253602F | Source = DCOM | ID = 10010

Description = The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register

with DCOM within the required timeout.

Error - 12/26/2004 7:32:56 AM | Computer Name = VALUED-3253602F | Source = DCOM | ID = 10010

Description = The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register

with DCOM within the required timeout.

Error - 12/26/2004 3:14:09 PM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7000

Description = The mrtRate service failed to start due to the following error: %%2

Error - 12/26/2004 3:14:11 PM | Computer Name = VALUED-3253602F | Source = Service Control Manager | ID = 7026

Description = The following boot-start or system-start driver(s) failed to load:

Beep

< End of report >

[Need Help Removing A Virus[RESOLVED]]

Here are the logs:

OTViewIt.Txt log:

OTViewIt logfile created on: 12/26/2004 11:20:04 AM - Run

OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Documents and Settings\Max\Desktop

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.5512)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

759.52 Mb Total Physical Memory | 507.52 Mb Available Physical Memory | 66.82% Memory free

1.81 Gb Paging File | 1.56 Gb Available in Paging File | 86.21% Paging File free

Paging file location(s): C:\pagefile.sys 1140 2280;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 105.78 Gb Total Space | 40.26 Gb Free Space | 38.06% Space Free | Partition Type: NTFS

Drive D: | 68.52 Gb Total Space | 46.86 Gb Free Space | 68.38% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: VALUED-3253602F

Current User Name: Max

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Whitelist: On

File Age = 30 Days

========== Processes ==========

[2008/07/19 06:25:06 | 00,016,056 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

[2008/07/19 06:38:28 | 00,147,640 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe

[2008/12/17 08:32:06 | 00,419,448 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe

[2007/04/19 11:26:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe

[2008/07/19 06:38:04 | 00,250,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

[2008/07/23 06:25:45 | 00,348,344 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

[2003/04/17 16:51:36 | 00,053,248 | ---- | M] (Sony Electronics, Inc) -- C:\WINDOWS\SONYSYS\VAIO Recovery\Reminder.exe

[2002/08/20 09:29:26 | 00,040,960 | ---- | M] (Easy Systems Japan Ltd.) -- C:\WINDOWS\system32\ezSP_Px.exe

[2003/02/14 11:59:00 | 00,088,107 | ---- | M] (Agere Systems) -- C:\WINDOWS\AGRSMMSG.exe

[2008/04/13 16:12:33 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe

[2008/06/10 03:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

[2008/07/19 06:38:34 | 00,078,008 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe

[2006/10/26 23:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

[2008/09/02 16:04:37 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

[2008/05/02 01:44:08 | 00,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe

[2008/05/02 01:40:56 | 00,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe

[2008/06/10 03:27:03 | 00,329,104 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe

[2004/12/26 11:19:19 | 00,423,424 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Max\Desktop\OTViewIt.exe

========== (O23) Win32 Services ==========

[2008/12/17 08:32:06 | 00,419,448 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe -- (a2free [Auto | Running])

[2008/07/19 06:25:06 | 00,016,056 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])

[2008/07/19 06:38:28 | 00,147,640 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])

[2008/07/19 06:38:04 | 00,250,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])

[2008/07/23 06:25:45 | 00,348,344 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])

[2004/10/22 02:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])

[2008/05/02 01:42:06 | 00,121,360 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ [On_Demand | Stopped])

[2006/10/26 23:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])

[2007/04/19 11:26:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc [Auto | Running])

[2006/10/26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])

[2006/10/26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])

[2002/12/24 10:01:22 | 00,065,536 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV [On_Demand | Stopped])

[2003/07/01 17:53:48 | 00,495,705 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Music\SSSvr.exe -- (VAIOMediaPlatform-MusicServer-AppServer [On_Demand | Stopped])

[2003/06/23 19:16:38 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-MusicServer-HTTP [On_Demand | Stopped])

[2003/06/24 13:49:54 | 00,720,896 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-MusicServer-UPnP [On_Demand | Stopped])

[2003/06/30 16:35:22 | 00,925,696 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Photo\appsrv\PhotoAppSrv.exe -- (VAIOMediaPlatform-PhotoServer-AppServer [On_Demand | Stopped])

[2003/06/23 19:16:38 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-PhotoServer-HTTP [On_Demand | Stopped])

[2003/06/24 13:49:54 | 00,720,896 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-PhotoServer-UPnP [On_Demand | Stopped])

[2003/06/30 16:38:40 | 01,196,032 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe -- (VAIOMediaPlatform-VideoServer-AppServer [On_Demand | Stopped])

[2003/06/23 19:16:38 | 00,057,344 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-VideoServer-HTTP [On_Demand | Stopped])

[2003/06/24 13:49:54 | 00,720,896 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-VideoServer-UPnP [On_Demand | Stopped])

========== Driver Services ==========

[2008/07/19 06:32:15 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [system | Running])

[2002/04/01 14:15:00 | 00,004,816 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (aeaudio [On_Demand | Stopped])

[2003/02/14 11:59:00 | 01,169,792 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem [On_Demand | Running])

[2002/12/04 13:28:10 | 00,730,956 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Running])

[2008/07/19 06:37:42 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk [Auto | Running])

[2008/07/19 06:37:21 | 00,094,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])

[2008/07/19 06:33:42 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running])

[2008/07/19 06:35:18 | 00,078,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [system | Running])

[2008/07/19 06:32:36 | 00,042,912 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [system | Running])

[2003/07/06 12:23:18 | 00,587,264 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag [On_Demand | Stopped])

[2000/12/05 15:18:02 | 00,003,952 | R--- | M] (Sony Corporation) -- C:\WINDOWS\system32\drivers\DMICall.sys -- (DMICall [system | Running])

[2008/09/28 16:41:27 | 00,018,816 | ---- | M] (RIF) -- C:\WINDOWS\system32\drivers\dvd43llh.sys -- (dvd43llh [On_Demand | Running])

[2003/03/11 05:21:38 | 00,121,344 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\e1000325.sys -- (E1000 [On_Demand | Stopped])

[2003/03/04 11:56:26 | 00,145,408 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\e100b325.sys -- (E100B [On_Demand | Stopped])

[2001/08/17 04:11:02 | 00,153,631 | ---- | M] (3Com Corporation) -- C:\WINDOWS\system32\drivers\el90xnd5.sys -- (EL90X [On_Demand | Stopped])

[2008/09/16 21:26:41 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi [On_Demand | Running])

[2003/04/15 09:39:46 | 00,090,907 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmnt5.sys -- (ialm [On_Demand | Stopped])

[2008/02/29 02:12:48 | 00,020,240 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd [On_Demand | Running])

[2008/02/29 02:13:16 | 00,035,344 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt [On_Demand | Running])

[2008/02/29 02:13:24 | 00,036,880 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt [On_Demand | Running])

[2004/12/25 06:39:11 | 00,042,000 | ---- | M] (CACE Technologies) -- C:\WINDOWS\system32\drivers\npf.sys -- (npf [On_Demand | Stopped])

[2007/04/19 11:26:00 | 03,988,384 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv [On_Demand | Running])

[2002/08/29 04:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink [On_Demand | Running])

[2003/06/03 01:02:00 | 00,017,136 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\pxhelp20.sys -- (PxHelp20 [boot | Running])

[2002/06/13 11:37:16 | 00,045,568 | ---- | M] (Realtek Semiconductor Corporation) -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139 [On_Demand | Running])

[2008/04/13 10:40:48 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\sbp2port.sys -- (sbp2port [boot | Running])

[2008/04/13 08:39:15 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv [On_Demand | Stopped])

[2003/07/12 17:46:14 | 00,761,472 | ---- | M] (Sony Corporation) -- C:\WINDOWS\system32\drivers\smrt.sys -- (smrt [On_Demand | Stopped])

[2003/07/17 16:32:34 | 00,578,752 | ---- | M] (Analog Devices, Inc.) -- C:\WINDOWS\system32\drivers\smwdm.sys -- (smwdm [On_Demand | Stopped])

[2008/04/13 10:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio [On_Demand | Stopped])

[2008/04/13 10:46:20 | 00,121,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\usbvideo.sys -- (usbvideo [On_Demand | Stopped])

[2006/11/02 06:22:54 | 00,492,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\wdf01000.sys -- (Wdf01000 [On_Demand | Running])

[2003/04/15 09:40:54 | 00,113,504 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmsbw.sys -- ({6080A529-897E-4629-A488-ABA0C29B635E} [On_Demand | Stopped])

[2003/04/15 09:40:46 | 00,078,752 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\ialmkchw.sys -- ({D31A0762-0CEB-444e-ACFF-B049A1F6FE91} [On_Demand | Stopped])

========== (R ) Internet Explorer ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]

"Default_Page_URL"=http://www.sony.com/vaiopeople

"Default_Search_URL"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

"Local Page"=%SystemRoot%\system32\blank.htm

"Search Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

"Start Page"=http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]

"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]

"Local Page"=C:\WINDOWS\system32\blank.htm

"Search Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

"Start Page"=about:blank

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]

"provider"=

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]

"ProxyEnable" = 0

========== (O1) Hosts File ==========

HOSTS File = (734 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

First 25 entries...

127.0.0.1 localhost

========== (O2) BHO's ==========

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]

{18DF081C-E8AD-4283-A596-FA578C2EBDC3} (HKLM) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

{72853161-30C5-4D22-B7F9-0BBC1D38A37E} (HKLM) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) -- C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)

{FDD3B846-8D59-4ffb-8758-209B6AD74ACC} (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

========== (O3) Toolbars ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]

"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

========== (O4) Run Keys ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)

"AGRSMMSG"=AGRSMMSG.exe (Agere Systems)

"ATIModeChange"=Ati2mdxx.exe (ATI Technologies, Inc.)

"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.)

"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)

"CreateCD_Reminder"=C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe (Sony Electronics, Inc)

"dvd43"=C:\Program Files\dvd43\dvd43_tray.exe ()

"ezShieldProtector for Px"=C:\WINDOWS\System32\ezSP_Px.exe (Easy Systems Japan Ltd.)

"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" (Microsoft Corporation)

"HotKeysCmds"=C:\WINDOWS\System32\hkcmd.exe (Intel Corporation)

"IgfxTray"=C:\WINDOWS\System32\igfxtray.exe (Intel Corporation)

"Kernel and Hardware Abstraction Layer"=KHALMNPR.EXE (Logitech, Inc.)

"KernelFaultCheck"=%systemroot%\system32\dumprep 0 -k File not found

"NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)

"NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)

"nwiz"=nwiz.exe /install ()

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime (Apple Computer, Inc.)

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" (Sun Microsystems, Inc.)

"VAIO Recovery"=C:\Windows\Sonysys\VAIO Recovery\PartSeal.exe (Sony Electronics Inc)

"ZTgServerSwitch"="c:\program files\support.com\client\bin\tgcmd.exe" /server (Support.com, Inc.)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c (Google Inc.)

========== (O4) Startup Folders ==========

[2002/09/20 11:19:46 | 00,036,864 | ---- | M] (Intuit) -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Billminder.lnk = C:\Program Files\Quicken\billmind.exe

[2008/05/02 01:44:08 | 00,805,392 | ---- | M] (Logitech, Inc.) -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

[2002/09/20 11:20:06 | 00,036,864 | ---- | M] (Intuit) -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE

[2008/09/25 23:18:12 | 24,096,981 | ---- | M] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Dropbox.lnk = C:\Program Files\Dropbox\Dropbox.exe

[2007/04/09 10:23:34 | 03,036,688 | ---- | M] (Logitech / Leader Technologies) -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Product Registration.lnk = C:\Program Files\Common Files\LogiShared\eReg\SetPoint\eReg.exe

========== (O6 & O7) Current Version Policies ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run]

"explorer"=C:\WINDOWS\system32\wuauclt.exe -- [2002/08/26 19:38:10 | 00,014,376 | -HS- | M] ()

"internetnet"=C:\WINDOWS\system32\spoolsv.exe -- [2004/12/25 00:04:17 | 00,020,680 | -HS- | M] ()

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]

"NoDriveTypeAutoRun"=145

========== (O8) IE Context Menu Extensions ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]

E&xportar a Microsoft Excel: C:\Program Files\Microsoft Office\Office12\EXCEL.EXE [2006/10/27 14:07:36 | 17,891,112 | ---- | M] (Microsoft Corporation)

========== (O9) IE Extensions ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]

{08B0E5C0-4FCB-11CF-AAA5-00401C608501}: Menu: Sun Java Console -- %ProgramFiles%\Java\jre1.6.0_07\bin\npjpi160_07.dll [2008/06/10 03:27:02 | 00,132,496 | ---- | M] (Sun Microsystems, Inc.)

{2670000A-7350-4f3c-8081-5663EE0C6C49}: Button: Enviar a OneNote -- %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [2006/10/26 19:32:42 | 00,604,000 | ---- | M] (Microsoft Corporation)

{2670000A-7350-4f3c-8081-5663EE0C6C49}: Menu: &Enviar a OneNote -- %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [2006/10/26 19:32:42 | 00,604,000 | ---- | M] (Microsoft Corporation)

{92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Research -- %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [2006/10/26 19:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)

{e2e2dd38-d088-4134-82b7-f2ba38496583}: Menu: @xpsp3res.dll,-20001 -- %SystemRoot%\network diagnostic\xpnetdiag.exe [2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)

{FB5F1910-F110-11d2-BB9E-00C04F795683}: Button: Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2008/04/13 16:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)

{FB5F1910-F110-11d2-BB9E-00C04F795683}: Menu: Windows Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2008/04/13 16:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\]

CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %SystemRoot%\system32\msjava.dll [Web Browser Applet Control] -> [2003/02/28 17:26:26 | 00,947,472 | ---- | M] (Microsoft Corporation)

CmdMapping\\{2670000A-7350-4f3c-8081-5663EE0C6C49} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [Enviar a OneNote] -> [2006/10/26 19:32:42 | 00,604,000 | ---- | M] (Microsoft Corporation)

CmdMapping\\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [Research] -> [2006/10/26 19:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)

CmdMapping\\{e2e2dd38-d088-4134-82b7-f2ba38496583} [HKLM] -> %SystemRoot%\network diagnostic\xpnetdiag.exe [@xpsp3res.dll,-20001] -> [2008/04/13 10:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation)

CmdMapping\\{FB5F1910-F110-11d2-BB9E-00C04F795683} [HKLM] -> %ProgramFiles%\Messenger\msmsgs.exe [Messenger] -> [2008/04/13 16:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation)

========== (O12) Internet Explorer Plugins ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]

PluginsPage: "" = http://activex.microsoft.com/controls/find...=%s&mime=%s

PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery

========== (O13) Default Prefixes ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]

""=http://

========== (O15) Trusted Sites ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]

1 domain(s) and sub-domain(s) not assigned to a zone.

========== (O16) DPF ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]

{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab -- Java Plug-in 1.6.0_07

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}: http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab -- Reg Error: Key does not exist or could not be opened.

{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab -- Java Plug-in 1.6.0_07

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab -- Java Plug-in 1.6.0_07

DirectAnimation Java Classes: file://C:\WINDOWS\Java\classes\dajava.cab -- Reg Error: Key does not exist or could not be opened.

Microsoft XML Parser for Java: file://C:\WINDOWS\Java\classes\xmldso.cab -- Reg Error: Key does not exist or could not be opened.

========== (O17) DNS Name Servers ==========

{4DB5B532-84D7-4A97-B0E4-CE488206EBF9} (Servers: | Description: 1394 Net Adapter)

{6BDFFCC5-B5E0-45B6-9987-8AB8047530E1} (Servers: | Description: Realtek RTL8139/810x Family Fast Ethernet NIC)

{703DFCA0-31FB-4FD7-859E-94D79E9DECB3} (Servers: | Description: )

{7DC122E3-FB03-4F71-BC6D-15EE27DB6307} (Servers: | Description: 3Com 3C900TPO-based Ethernet Adapter (Generic))

{B821443B-D772-4392-A6BF-28E93BD36F8D} (Servers: | Description: )

========== (O20) HKLM Winlogon Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]

"UserInit"=C:\WINDOWS\system32\userinit.exe,

>[2008/04/13 16:12:38 | 00,026,112 | ---- | M] () -- C:\WINDOWS\system32\userinit.exe

========== (O20) Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]

igfxcui: "DllName" = igfxsrvc.dll -- C:\WINDOWS\system32\igfxsrvc.dll (Intel Corporation)

LBTWlgn: "DllName" = c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll -- c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)

========== IFEO "Debugger" Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\]

AutoRunKiller.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

Frameworkservice.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

KASARP.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

RAVTRAY.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

RsMain.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

rsnetsvr.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

RSTray.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

ScanFrm.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

SREngLdr.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

WOPTILITIES.EXE:"Debugger" = C:\WINDOWS\system32\dllcache\spoolsv.exe ()

========== Shell Execute Hooks ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" (HKLM) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

========== Safeboot Options ==========

"AlternateShell"=cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]

"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []

[2003/08/13 19:08:11 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]

AUTORUN.INF [[AutoRun] | | shell\open=´ò¿ª(&O) | | shell\open\Command=GLXB.PIF | | shell\open\Default=1 | | shell\explore=×ÊÔ´¹ÜÀíÆ÷(&X) | | shell\explore\command=GLXB.PIF | | ]

[2004/12/24 15:28:25 | 00,000,151 | -HS- | M] () -- C:\AUTORUN.INF -- [ NTFS ]

AUTORUN.INF [[AutoRun] | | shell\open=´ò¿ª(&O) | | shell\open\Command=GLXB.PIF | | shell\open\Default=1 | | shell\explore=×ÊÔ´¹ÜÀíÆ÷(&X) | | shell\explore\command=GLXB.PIF | | ]

[2004/12/24 15:28:25 | 00,000,151 | -HS- | M] () -- D:\AUTORUN.INF -- [ NTFS ]

========== MountPoints2 ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bbe7c6de-7d20-11dd-9897-000c6efd7100}\Shell\Shell00\Command]

""=G:\Start.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\Shell]

""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\Shell\AutoRun]

""=Auto&Play

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\Shell\AutoRun\command]

""=G:\LaunchU3.exe -- File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\*.tmp files]

[1 C:\WINDOWS\System32\*.tmp files]

[2 C:\WINDOWS\*.tmp files]

[2008/12/24 01:07:32 | 00,059,043 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\chetu1.PNG

[2008/12/22 16:43:24 | 00,000,678 | ---- | C] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Dropbox.lnk

[2008/12/22 16:43:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Dropbox

[2008/12/22 16:43:12 | 00,000,000 | ---D | C] -- C:\Program Files\Dropbox

[2008/12/22 13:50:24 | 14,888,263 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\Dropbox 0.6.402.exe

[2008/12/21 16:17:40 | 00,022,016 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\laspostonpermbanopinion.doc

[2008/12/19 21:52:27 | 00,062,464 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\AA LISTADO DE ITEMS DICIEMBRE 2008.doc

[2008/12/14 21:13:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Desktop\thingstothrow

[2008/12/06 01:05:10 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump

[2008/11/14 14:14:41 | 00,000,000 | -H-- | C] () -- C:\Documents and Settings\Max\My Documents\Default.rdp

[2008/11/13 22:16:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Nova Development

[2008/11/12 19:05:17 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys

[2008/11/12 19:05:03 | 01,106,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll

[2008/10/24 22:41:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\WinRAR

[2008/10/24 22:39:49 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2008/10/24 21:04:06 | 00,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys

[2008/10/24 21:04:06 | 00,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys

[2008/10/24 21:03:54 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax

[2008/10/24 21:03:54 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax

[2008/10/23 17:03:39 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll

[2008/10/23 04:36:14 | 00,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll

[2008/10/15 23:28:08 | 02,189,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe

[2008/10/15 23:28:08 | 02,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe

[2008/10/15 23:28:07 | 02,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe

[2008/10/15 23:28:07 | 02,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe

[2008/10/15 20:28:46 | 00,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys

[2008/10/15 20:28:41 | 01,846,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys

[2008/10/13 16:14:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Talkback

[2008/10/04 08:36:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DVD Shrink

[2008/10/04 08:36:15 | 00,000,000 | ---D | C] -- C:\Program Files\DVD Shrink

[2008/09/29 17:09:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\uTorrent

[2008/09/29 17:08:45 | 00,270,128 | ---- | C] (BitTorrent, Inc.) -- C:\Documents and Settings\Max\Desktop\utorrent.exe

[2008/09/29 00:06:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\dvdcss

[2008/09/28 16:41:27 | 00,018,816 | ---- | C] (RIF) -- C:\WINDOWS\System32\drivers\dvd43llh.sys

[2008/09/28 16:41:27 | 00,000,000 | ---D | C] -- C:\Program Files\dvd43

[2008/09/28 16:38:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\School Zone Preferences

[2008/09/27 13:08:59 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip

[2008/09/23 22:28:41 | 00,000,000 | ---D | C] -- C:\Program Files\DVD Decrypter

[2008/09/21 14:09:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Desktop\codeoflife's prog for admins

[2008/09/20 15:11:51 | 00,000,048 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat

[2008/09/20 15:11:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\skypePM

[2008/09/20 15:10:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Skype

[2008/09/20 15:10:11 | 00,002,257 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk

[2008/09/20 15:10:09 | 00,000,000 | ---D | C] -- C:\Program Files\Skype

[2008/09/20 15:10:09 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype

[2008/09/20 15:10:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype

[2008/09/17 08:57:32 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF

[2008/09/17 08:46:09 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR

[2008/09/17 08:45:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe

[2008/09/17 08:32:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Local Settings\Application Data\CutePDF Writer

[2008/09/17 08:29:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\My Documents\Blocs de notas de OneNote

[2008/09/17 08:26:40 | 00,087,552 | ---- | C] () -- C:\WINDOWS\System32\cpwmon2k.dll

[2008/09/17 08:26:31 | 00,000,000 | ---D | C] -- C:\Program Files\Acro Software

[2008/09/17 08:25:47 | 00,000,000 | ---D | C] -- C:\Program Files\GPLGS

[2008/09/16 21:27:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Hamachi

[2008/09/16 21:26:41 | 00,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys

[2008/09/16 21:26:40 | 00,000,632 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk

[2008/09/16 21:26:40 | 00,000,000 | ---D | C] -- C:\Program Files\Hamachi

[2008/09/12 21:58:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Xfire

[2008/09/12 21:58:19 | 00,000,638 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Xfire.lnk

[2008/09/12 21:58:17 | 00,000,000 | ---D | C] -- C:\Program Files\Xfire

[2008/09/10 18:44:33 | 00,032,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll

[2008/09/10 18:43:10 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild

[2008/09/10 18:42:34 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio

[2008/09/10 18:42:33 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER

[2008/09/10 18:37:29 | 00,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW

[2008/09/10 18:37:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Local Settings\Application Data\Microsoft Help

[2008/09/10 18:37:07 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office

[2008/09/10 18:37:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help

[2008/09/10 18:36:46 | 00,000,000 | RH-D | C] -- C:\MSOCache

[2008/09/08 00:09:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\vlc

[2008/09/08 00:09:12 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN

[2008/09/08 00:05:05 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2008/09/08 00:05:05 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk

[2008/09/08 00:05:04 | 00,042,912 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2008/09/08 00:05:03 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys

[2008/09/08 00:05:02 | 00,094,392 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr

[2008/09/08 00:05:01 | 00,094,416 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys

[2008/09/08 00:05:01 | 00,093,264 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys

[2008/09/08 00:05:01 | 00,078,416 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2008/09/08 00:05:01 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2008/09/08 00:04:45 | 01,163,960 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe

[2008/09/08 00:04:45 | 00,499,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVCP71.dll

[2008/09/08 00:04:45 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx

[2008/09/08 00:04:45 | 00,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSVCR71.dll

[2008/09/08 00:04:43 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software

[2008/09/07 13:03:32 | 00,000,000 | ---D | C] -- C:\_OTMoveIt

[2008/09/06 01:07:45 | 00,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sbp2port.sys

[2008/09/06 01:07:45 | 00,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys

[2008/09/06 00:54:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2008/09/06 00:49:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us

[2008/09/06 00:49:15 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting

[2008/09/06 00:49:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en

[2008/09/06 00:49:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\bits

[2008/09/06 00:49:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\l2schemas

[2008/09/06 00:45:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic

[2008/09/05 21:02:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Ventrilo

[2008/09/05 20:51:46 | 00,000,000 | ---D | C] -- C:\Program Files\Ventrilo

[2008/09/05 20:51:14 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard

[2008/09/04 13:46:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Malwarebytes

[2008/09/04 13:46:09 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2008/09/04 13:46:08 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2008/09/04 13:46:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2008/09/04 13:46:06 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2008/09/04 13:41:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun

[2008/09/04 13:41:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Sun

[2008/09/04 12:16:15 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll

[2008/09/04 12:16:13 | 02,174,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMVCore.dll

[2008/09/04 12:16:13 | 01,119,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe2.dll

[2008/09/04 12:16:13 | 01,001,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmoe2.dll

[2008/09/04 12:16:13 | 00,897,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmoe.dll

[2008/09/04 12:16:13 | 00,809,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmod.dll

[2008/09/04 12:16:13 | 00,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmod.dll

[2008/09/04 12:16:13 | 00,485,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmod.dll

[2008/09/04 12:16:13 | 00,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmstream.dll

[2008/09/04 12:16:13 | 00,278,559 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmv8ds32.ax

[2008/09/04 12:16:13 | 00,258,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvds32.ax

[2008/09/04 12:16:13 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe.dll

[2008/09/04 12:16:13 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpshell.dll

[2008/09/04 12:16:13 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpui.dll

[2008/09/04 12:16:13 | 00,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta

[2008/09/04 12:16:13 | 00,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css

[2008/09/04 12:16:13 | 00,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf

[2008/09/04 12:16:12 | 02,940,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmploc.dll

[2008/09/04 12:16:12 | 00,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm

[2008/09/04 12:16:12 | 00,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll

[2008/09/04 12:16:12 | 00,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpdxm.dll

[2008/09/04 12:16:12 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll

[2008/09/04 12:16:12 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav

[2008/09/04 12:16:12 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav

[2008/09/04 12:16:12 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll

[2008/09/04 12:16:12 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe

[2008/09/04 12:16:12 | 00,067,374 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm

[2008/09/04 12:16:12 | 00,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm

[2008/09/04 12:16:12 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcore.dll

[2008/09/04 12:16:12 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcd.dll

[2008/09/04 12:16:12 | 00,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js

[2008/09/04 12:16:11 | 04,874,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.dll

[2008/09/04 12:16:11 | 01,053,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMNetmgr.dll

[2008/09/04 12:16:11 | 00,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav

[2008/09/04 12:16:11 | 00,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav

[2008/09/04 12:16:11 | 00,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav

[2008/09/04 12:16:11 | 00,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav

[2008/09/04 12:16:11 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpasf.dll

[2008/09/04 12:16:11 | 00,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav

[2008/09/04 12:16:11 | 00,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav

[2008/09/04 12:16:11 | 00,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav

[2008/09/04 12:16:11 | 00,029,070 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf

[2008/09/04 12:16:11 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.ocx

[2008/09/04 12:16:10 | 00,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmoe.dll

[2008/09/04 12:16:10 | 00,408,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmod.dll

[2008/09/04 12:16:10 | 00,230,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmasf.dll

[2008/09/04 12:16:10 | 00,168,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmerror.dll

[2008/09/04 12:16:10 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidx.dll

[2008/09/04 12:16:10 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmlog.dll

[2008/09/04 12:16:10 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmps.dll

[2008/09/04 12:16:10 | 00,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf

[2008/09/04 12:16:10 | 00,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif

[2008/09/04 12:16:10 | 00,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif

[2008/09/04 12:16:10 | 00,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif

[2008/09/04 12:16:10 | 00,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif

[2008/09/04 12:16:10 | 00,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf

[2008/09/04 12:16:10 | 00,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif

[2008/09/04 12:16:10 | 00,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif

[2008/09/04 12:16:10 | 00,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif

[2008/09/04 12:16:10 | 00,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif

[2008/09/04 12:16:10 | 00,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif

[2008/09/04 12:16:09 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll

[2008/09/04 12:16:08 | 00,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll

[2008/09/04 12:16:08 | 00,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll

[2008/09/04 12:16:06 | 00,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv

[2008/09/04 12:16:06 | 00,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif

[2008/09/04 12:16:06 | 00,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif

[2008/09/04 12:16:05 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe

[2008/09/04 12:16:02 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unregmp2.exe

[2008/09/04 12:16:01 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll

[2008/09/04 12:16:01 | 00,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tspkg.dll

[2008/09/04 12:16:01 | 00,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif

[2008/09/04 12:16:01 | 00,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js

[2008/09/04 12:16:01 | 00,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif

[2008/09/04 12:16:01 | 00,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif

[2008/09/04 12:16:01 | 00,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif

[2008/09/04 12:16:01 | 00,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif

[2008/09/04 12:16:00 | 00,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif

[2008/09/04 12:16:00 | 00,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif

[2008/09/04 12:16:00 | 00,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif

[2008/09/04 12:16:00 | 00,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif

[2008/09/04 12:15:59 | 00,247,326 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\strmdll.dll

[2008/09/04 12:15:55 | 00,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm

[2008/09/04 12:15:55 | 00,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm

[2008/09/04 12:15:55 | 00,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf

[2008/09/04 12:15:54 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shmedia.dll

[2008/09/04 12:15:53 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe

[2008/09/04 12:15:53 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe

[2008/09/04 12:15:53 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_mmc.sys

[2008/09/04 12:15:51 | 00,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv

[2008/09/04 12:15:50 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll

[2008/09/04 12:15:50 | 00,066,725 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz

[2008/09/04 12:15:49 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll

[2008/09/04 12:15:48 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll

[2008/09/04 12:15:47 | 00,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagentrt.dll

[2008/09/04 12:15:47 | 00,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll

[2008/09/04 12:15:47 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll

[2008/09/04 12:15:46 | 00,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll

[2008/09/04 12:15:46 | 00,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm

[2008/09/04 12:15:46 | 00,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl

[2008/09/04 12:15:46 | 00,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl

[2008/09/04 12:15:45 | 00,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl

[2008/09/04 12:15:45 | 00,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl

[2008/09/04 12:15:45 | 00,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl

[2008/09/04 12:15:45 | 00,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl

[2008/09/04 12:15:45 | 00,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl

[2008/09/04 12:15:45 | 00,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl

[2008/09/04 12:15:45 | 00,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl

[2008/09/04 12:15:45 | 00,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl

[2008/09/04 12:15:45 | 00,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl

[2008/09/04 12:15:45 | 00,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl

[2008/09/04 12:15:45 | 00,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl

[2008/09/04 12:15:45 | 00,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl

[2008/09/04 12:15:45 | 00,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl

[2008/09/04 12:15:44 | 00,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll

[2008/09/04 12:15:41 | 00,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv

[2008/09/04 12:15:39 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll

[2008/09/04 12:15:39 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll

[2008/09/04 12:15:39 | 00,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip

[2008/09/04 12:15:39 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll

[2008/09/04 12:15:39 | 00,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip

[2008/09/04 12:15:37 | 00,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe

[2008/09/04 12:15:36 | 00,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll

[2008/09/04 12:15:36 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll

[2008/09/04 12:15:35 | 01,307,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6.dll

[2008/09/04 12:15:35 | 01,307,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll

[2008/09/04 12:15:35 | 00,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswmdm.dll

[2008/09/04 12:15:35 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll

[2008/09/04 12:15:35 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll

[2008/09/04 12:15:34 | 00,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscp.dll

[2008/09/04 12:15:34 | 00,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll

[2008/09/04 12:15:34 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll

[2008/09/04 12:15:34 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscds32.ax

[2008/09/04 12:15:33 | 00,201,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsp.dll

[2008/09/04 12:15:33 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsnsv.dll

[2008/09/04 12:15:31 | 00,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msnetobj.dll

[2008/09/04 12:15:29 | 00,004,126 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxmlc.dll

[2008/09/04 12:15:28 | 00,844,314 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdxm.ocx

[2008/09/04 12:15:27 | 00,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll

[2008/09/04 12:15:27 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm

[2008/09/04 12:15:27 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds32.ax

[2008/09/04 12:15:27 | 00,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf

[2008/09/04 12:15:27 | 00,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif

[2008/09/04 12:15:27 | 00,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif

[2008/09/04 12:15:26 | 00,384,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp4sdmod.dll

[2008/09/04 12:15:26 | 00,310,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp43dmod.dll

[2008/09/04 12:15:26 | 00,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4ds32.ax

[2008/09/04 12:15:26 | 00,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4dmod.dll

[2008/09/04 12:15:26 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe

[2008/09/04 12:15:26 | 00,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2008/09/04 12:15:25 | 00,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe

[2008/09/04 12:15:25 | 00,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll

[2008/09/04 12:15:25 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll

[2008/09/04 12:15:25 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll

[2008/09/04 12:15:25 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe

[2008/09/04 12:15:24 | 00,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv

[2008/09/04 12:15:23 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logagent.exe

[2008/09/04 12:15:23 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\laprxy.dll

[2008/09/04 12:15:20 | 00,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm

[2008/09/04 12:15:20 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kmsvc.dll

[2008/09/04 12:15:20 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll

[2008/09/04 12:15:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll

[2008/09/04 12:15:15 | 00,001,261 | ---- | C] () -- C:\WINDOWS\System32\pid.inf

[2008/09/04 12:15:11 | 00,498,742 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll

[2008/09/04 12:15:11 | 00,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll

[2008/09/04 12:15:11 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll

[2008/09/04 12:15:11 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll

[2008/09/04 12:15:11 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll

[2008/09/04 12:15:11 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll

[2008/09/04 12:15:11 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll

[2008/09/04 12:15:11 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapsvc.dll

[2008/09/04 12:15:11 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll

[2008/09/04 12:15:11 | 00,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js

[2008/09/04 12:15:10 | 00,695,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmv2clt.dll

[2008/09/04 12:15:10 | 00,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll

[2008/09/04 12:15:10 | 00,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmclien.dll

[2008/09/04 12:15:10 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3svc.dll

[2008/09/04 12:15:10 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmstor.dll

[2008/09/04 12:15:10 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll

[2008/09/04 12:15:10 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll

[2008/09/04 12:15:10 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll

[2008/09/04 12:15:10 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll

[2008/09/04 12:15:10 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll

[2008/09/04 12:15:09 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe

[2008/09/04 12:15:09 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll

[2008/09/04 12:15:09 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsntfy.dll

[2008/09/04 12:15:08 | 00,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll

[2008/09/04 12:15:07 | 00,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv

[2008/09/04 12:15:07 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll

[2008/09/04 12:15:07 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\credssp.dll

[2008/09/04 12:15:07 | 00,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css

[2008/09/04 12:15:07 | 00,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm

[2008/09/04 12:15:07 | 00,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js

[2008/09/04 12:15:06 | 00,184,959 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz

[2008/09/04 12:15:06 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cewmdm.dll

[2008/09/04 12:15:06 | 00,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif

[2008/09/04 12:15:06 | 00,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif

[2008/09/04 12:15:06 | 00,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif

[2008/09/04 12:15:06 | 00,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif

[2008/09/04 12:15:06 | 00,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif

[2008/09/04 12:15:05 | 00,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\blackbox.dll

[2008/09/04 12:15:05 | 00,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll

[2008/09/04 12:15:05 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll

[2008/09/04 12:15:05 | 00,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif

[2008/09/04 12:15:03 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asferror.dll

[2008/09/04 12:15:01 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll

[2008/09/03 20:43:53 | 00,001,017 | ---- | C] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Product Registration.lnk

[2008/09/03 20:43:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Leadertech

[2008/09/03 20:43:52 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShared

[2008/09/02 16:06:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\My Documents\Downloads

[2008/08/31 21:36:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles

[2008/08/31 14:14:36 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\HijackThis.lnk

[2008/08/31 14:05:05 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll

[2008/08/31 14:02:24 | 00,137,728 | ---- | C] () -- C:\Documents and Settings\Max\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2008/08/31 11:48:38 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Max\My Documents\HJTInstall.exe

[2008/08/31 11:44:51 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro

[2008/08/30 16:22:51 | 00,000,000 | ---D | C] -- C:\Program Files\Java

[2008/08/30 16:20:21 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Java

[2008/08/30 02:21:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Template

[2008/08/29 23:13:00 | 17,593,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

[2008/08/29 08:43:42 | 00,000,000 | ---D | C] -- C:\cg2

[2008/08/28 01:38:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Local Settings\Application Data\Identities

[2008/08/28 00:23:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\Application Data\Macromedia

[2008/08/27 23:01:22 | 00,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys

[2008/08/27 22:59:36 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2008/08/27 22:59:30 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll

[2008/08/27 22:58:48 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall

[2008/08/27 22:58:46 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$

[2008/08/27 13:02:20 | 00,042,320 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll

[2008/07/14 03:09:18 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tzchange.exe

[2008/07/07 12:26:58 | 00,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\es.dll

[2008/07/03 01:14:02 | 00,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll

[2008/06/26 00:15:30 | 00,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll

[2008/06/26 00:15:29 | 01,499,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll

[2008/06/24 08:43:16 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mscms.dll

[2008/06/23 07:09:27 | 03,067,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll

[2008/06/20 09:46:57 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsapi.dll

[2008/06/20 03:51:12 | 00,361,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys

[2008/06/20 03:40:08 | 00,138,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys

[2008/06/20 03:08:27 | 00,225,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip6.sys

[2008/05/09 15:23:42 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshom.ocx

[2008/05/09 02:53:40 | 00,430,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll

[2008/05/09 02:53:40 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrrun.dll

[2008/05/09 02:53:40 | 00,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshext.dll

[2008/05/09 02:53:39 | 00,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll

[2008/05/09 02:53:39 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrobj.dll

[2008/05/08 03:24:44 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscript.exe

[2008/05/07 01:07:23 | 00,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cscript.exe

[2008/05/06 21:12:40 | 01,288,192 | ---- | C] () -- C:\WINDOWS\System32\dllcache\quartz.dll

[2008/03/24 20:50:58 | 00,621,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswstr10.dll

[2008/03/24 20:50:58 | 00,355,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxbde40.dll

[2008/03/24 20:50:57 | 00,838,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswdat10.dll

[2008/03/24 20:50:55 | 00,264,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstext40.dll

[2008/03/24 20:50:52 | 00,559,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrepl40.dll

[2008/03/24 20:50:49 | 00,322,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd3x40.dll

[2008/03/24 20:50:47 | 00,432,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd2x40.dll

[2008/03/24 20:50:45 | 00,355,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspbde40.dll

[2008/03/24 20:50:44 | 00,219,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msltus40.dll

[2008/03/24 20:50:42 | 00,248,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjtes40.dll

[2008/03/24 20:50:42 | 00,060,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjter40.dll

[2008/03/24 20:50:40 | 00,355,112 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msjetol1.dll

[2008/03/24 20:50:34 | 01,516,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjet40.dll

[2008/03/24 20:50:30 | 00,326,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexcl40.dll

[2008/03/24 20:50:28 | 00,518,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexch40.dll

[2008/03/24 20:50:25 | 00,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll

[2008/02/29 02:13:24 | 00,036,880 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LMouFilt.Sys

[2008/02/29 02:13:16 | 00,035,344 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LHidFilt.Sys

[2008/02/29 02:12:48 | 00,020,240 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\L8042Kbd.sys

[2008/02/29 02:12:38 | 00,076,304 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\KHALMNPR.Exe

[2007/07/30 18:19:32 | 00,023,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl.mui

[2007/07/30 18:19:12 | 00,043,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll

[2007/07/30 18:19:02 | 00,023,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui

[2007/07/30 18:18:44 | 00,031,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui

[2007/07/30 18:18:14 | 00,018,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll.mui

[2007/06/22 11:34:02 | 01,419,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01005.dll

[2006/11/02 06:22:54 | 00,492,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdf01000.sys

[2006/11/02 06:22:52 | 00,032,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys

[2006/10/26 13:42:36 | 00,035,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ESN.DLL

[2006/10/26 13:10:08 | 01,190,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL

[2006/10/26 13:10:06 | 00,033,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL

[2006/10/26 12:45:04 | 00,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WISPTIS.EXE

[2006/10/26 12:45:04 | 00,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\INKED.DLL

[2006/07/24 09:50:40 | 00,047,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VBAME.DLL

[2006/07/24 09:50:40 | 00,039,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SCP32.DLL

[2006/07/24 09:50:38 | 00,125,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSSTDFMT.DLL

[2004/12/26 11:19:30 | 00,423,424 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Max\Desktop\OTViewIt.exe

[2004/12/25 17:00:10 | 00,925,696 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\votado co[2]...pps

[2004/12/25 16:47:57 | 02,079,744 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\Navidad2008.pps

[2004/12/25 16:47:03 | 00,398,336 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\Cumplea_osNavidad.pps

[2004/12/25 06:38:54 | 00,020,680 | -HS- | C] () -- C:\ZGWZ.PIF

[2004/12/24 21:39:21 | 29,775,112 | ---- | C] () -- C:\Documents and Settings\Max\Desktop\setupeng.exe

[2004/12/24 19:27:08 | 00,020,680 | -HS- | C] () -- C:\sytseem

[2004/12/24 19:03:57 | 00,000,000 | ---D | C] -- C:\Program Files\a-squared Free

[2004/12/24 19:03:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Max\My Documents\a-squared Free

[2004/12/24 18:54:49 | 12,861,144 | ---- | C] (Emsi Software GmbH ) -- C:\Documents and Settings\Max\Desktop\a2FreeSetup.exe

[2004/12/24 16:16:00 | 00,149,764 | ---- | C] () -- C:\WINDOWS\System32\drivers\pnpmem.sys

[2004/12/24 16:16:00 | 00,000,032 | ---- | C] () -- C:\WINDOWS\System32\ormsgse.axz

[2004/12/24 16:01:08 | 00,000,098 | ---- | C] () -- C:\WINDOWS\System32\B4eocaps.SRG

[2004/12/24 15:59:43 | 00,002,560 | ---- | C] () -- C:\WINDOWS\System32\gscpx32r.det

[2004/12/24 15:59:35 | 00,000,032 | ---- | C] () -- C:\WINDOWS\System32\gprmsgse.axz

[2004/12/24 15:31:52 | 00,020,680 | -HS- | C] () -- C:\ZGVZ.PIF

[2004/12/24 15:31:47 | 00,016,512 | ---- | C] () -- C:\Program Files\ccdd.pif

[2004/12/24 15:31:43 | 00,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ttmsjkm.dll

[2004/12/24 15:31:09 | 00,013,531 | ---- | C] () -- C:\WINDOWS\System32\wacbult.exe

[2004/12/24 15:31:08 | 00,240,496 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\wpcap.dll

[2004/12/24 15:31:08 | 00,088,952 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\Packet.dll

[2004/12/24 15:31:08 | 00,068,480 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\WanPacket.dll

[2004/12/24 15:31:08 | 00,042,000 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\drivers\npf.sys

[2004/12/24 15:30:37 | 00,020,680 | -HS- | C] () -- C:\WINDOWS\System32\dllcache\spoolsv.exe

[2004/12/24 15:30:19 | 00,013,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\Atieccx.sys

[2004/12/24 15:30:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\Rose

[2004/12/24 15:29:42 | 00,012,800 | ---- | C] () -- C:\WINDOWS\System32\dbwqsuio.dll

[2004/12/24 15:29:31 | 00,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wintst.dll

[2004/12/24 15:28:25 | 00,014,376 | -HS- | C] () -- C:\GLXB.PIF

[2004/12/24 15:28:25 | 00,000,151 | -HS- | C] () -- C:\AUTORUN.INF

========== Files - Modified Within 30 Days ==========

[1 C:\*.tmp files]

[1 C:\WINDOWS\System32\*.tmp files]

[2 C:\WINDOWS\*.tmp files]

[2009/01/04 21:52:08 | 00,149,764 | ---- | M] () -- C:\WINDOWS\System32\drivers\pnpmem.sys

[2008/12/24 01:07:32 | 00,059,043 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\chetu1.PNG

[2008/12/22 16:43:24 | 00,000,678 | ---- | M] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Dropbox.lnk

[2008/12/22 13:52:13 | 14,888,263 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\Dropbox 0.6.402.exe

[2008/12/21 16:17:41 | 00,022,016 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\laspostonpermbanopinion.doc

[2008/12/16 09:14:25 | 00,001,017 | ---- | M] () -- C:\Documents and Settings\Max\Start Menu\Programs\Startup\Product Registration.lnk

[2008/12/12 12:41:28 | 00,062,464 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\AA LISTADO DE ITEMS DICIEMBRE 2008.doc

[2008/12/12 09:01:00 | 03,067,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll

[2008/12/12 09:01:00 | 03,067,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll

[2008/12/11 17:52:46 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2008/12/09 15:24:37 | 17,593,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

[2008/12/03 19:52:38 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2008/12/03 19:52:34 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2008/11/14 14:14:41 | 00,000,000 | -H-- | M] () -- C:\Documents and Settings\Max\My Documents\Default.rdp

[2008/11/07 16:45:32 | 02,174,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WMVCore.dll

[2008/11/07 16:45:32 | 02,174,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMVCore.dll

[2008/11/02 12:35:36 | 00,359,948 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2008/11/02 12:35:36 | 00,314,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2008/11/02 12:35:36 | 00,041,040 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2008/10/24 03:21:09 | 00,455,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mrxsmb.sys

[2008/10/24 03:21:09 | 00,455,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys

[2008/10/23 04:36:14 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\gdi32.dll

[2008/10/23 04:36:14 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll

[2008/10/23 02:06:59 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tzchange.exe

[2008/10/16 14:13:40 | 01,809,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll

[2008/10/16 14:13:40 | 01,809,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll

[2008/10/16 14:13:40 | 00,202,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuweb.dll

[2008/10/16 14:13:40 | 00,202,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll

[2008/10/16 14:12:22 | 00,323,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll

[2008/10/16 14:12:22 | 00,323,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll

[2008/10/16 14:12:20 | 00,561,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll

[2008/10/16 14:12:20 | 00,561,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll

[2008/10/16 14:12:20 | 00,213,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl

[2008/10/16 14:12:20 | 00,213,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl

[2008/10/16 14:09:44 | 00,092,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdm.dll

[2008/10/16 14:09:44 | 00,092,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdm.dll

[2008/10/16 14:09:44 | 00,043,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll

[2008/10/16 14:09:40 | 00,031,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui

[2008/10/16 14:08:58 | 00,034,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll

[2008/10/16 14:08:58 | 00,034,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll

[2008/10/16 14:07:46 | 00,023,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl.mui

[2008/10/16 14:07:44 | 00,023,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui

[2008/10/16 14:07:14 | 00,018,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll.mui

[2008/10/15 23:47:10 | 00,279,744 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2008/10/15 17:00:11 | 00,666,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wininet.dll

[2008/10/15 17:00:11 | 00,666,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wintst.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\urlmon.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ttmsjkm.dll

[2008/10/15 17:00:11 | 00,619,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll

[2008/10/15 17:00:10 | 01,499,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shdocvw.dll

[2008/10/15 17:00:10 | 01,499,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll

[2008/10/15 08:34:24 | 00,337,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netapi32.dll

[2008/10/15 08:34:24 | 00,337,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll

[2008/10/10 10:14:24 | 00,270,128 | ---- | M] (BitTorrent, Inc.) -- C:\Documents and Settings\Max\Desktop\utorrent.exe

[2008/10/03 02:02:42 | 00,247,326 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\strmdll.dll

[2008/10/03 02:02:42 | 00,247,326 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\strmdll.dll

[2008/09/28 16:41:27 | 00,018,816 | ---- | M] (RIF) -- C:\WINDOWS\System32\drivers\dvd43llh.sys

[2008/09/20 15:11:51 | 00,000,048 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat

[2008/09/16 21:26:41 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys

[2008/09/16 21:26:40 | 00,000,632 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\hamachi.lnk

[2008/09/15 04:12:56 | 01,846,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys

[2008/09/15 04:12:56 | 01,846,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys

[2008/09/12 21:58:19 | 00,000,638 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Xfire.lnk

[2008/09/11 01:31:04 | 00,072,992 | ---- | M] () -- C:\Documents and Settings\Max\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

[2008/09/10 18:37:59 | 00,000,562 | ---- | M] () -- C:\WINDOWS\win.ini

[2008/09/09 17:14:56 | 01,307,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6.dll

[2008/09/09 17:14:56 | 01,307,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll

[2008/09/08 02:41:42 | 00,333,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\srv.sys

[2008/09/08 02:41:42 | 00,333,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys

[2008/09/08 00:05:05 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk

[2008/09/08 00:05:03 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2008/09/06 00:56:02 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2008/09/06 00:55:32 | 00,000,074 | -HS- | M] () -- C:\Documents and Settings\Max\My Documents\desktop.ini

[2008/09/06 00:45:37 | 00,250,048 | RHS- | M] () -- C:\ntldr

[2008/09/04 09:15:04 | 01,106,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3.dll

[2008/09/04 09:15:04 | 01,106,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll

[2008/08/31 14:14:36 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\HijackThis.lnk

[2008/08/31 11:48:38 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Max\My Documents\HJTInstall.exe

[2008/08/30 21:34:09 | 00,000,138 | -HS- | M] () -- C:\Documents and Settings\All Users\Documents\desktop.ini

[2008/08/27 13:02:20 | 00,042,320 | ---- | M] () -- C:\WINDOWS\System32\xfcodec.dll

[2008/08/14 02:11:02 | 02,189,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe

[2008/08/14 02:09:26 | 02,145,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe

[2008/08/14 02:09:26 | 02,145,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe

[2008/08/14 02:04:36 | 00,138,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\afd.sys

[2008/08/14 02:04:36 | 00,138,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys

[2008/08/14 01:33:16 | 02,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe

[2008/08/14 01:33:16 | 02,023,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntkrnlpa.exe

[2008/08/14 01:33:16 | 02,023,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe

[2008/07/19 06:43:08 | 01,163,960 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe

[2008/07/19 06:37:42 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2008/07/19 06:37:21 | 00,094,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys

[2008/07/19 06:35:18 | 00,078,416 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2008/07/19 06:33:42 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2008/07/19 06:32:36 | 00,042,912 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2008/07/19 06:32:15 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys

[2008/07/19 06:30:53 | 00,094,392 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr

[2008/07/07 12:26:58 | 00,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\es.dll

[2008/07/07 12:26:58 | 00,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\es.dll

[2008/06/24 08:43:16 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscms.dll

[2008/06/24 08:43:16 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mscms.dll

[2008/06/20 09:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswsock.dll

[2008/06/20 09:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswsock.dll

[2008/06/20 09:46:57 | 00,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dnsapi.dll

[2008/06/20 09:46:57 | 00,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsapi.dll

[2008/06/20 03:51:12 | 00,361,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip.sys

[2008/06/20 03:51:12 | 00,361,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys

[2008/06/20 03:08:27 | 00,225,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tcpip6.sys

[2008/06/20 03:08:27 | 00,225,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip6.sys

[2008/06/10 06:11:46 | 01,053,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WMNetmgr.dll

[2008/06/10 06:11:46 | 01,053,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMNetmgr.dll

[2008/06/10 03:11:20 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logagent.exe

[2008/06/10 03:11:20 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logagent.exe

[2008/05/09 15:23:42 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshom.ocx

[2008/05/09 15:23:42 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshom.ocx

[2008/05/09 02:53:40 | 00,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbscript.dll

[2008/05/09 02:53:40 | 00,430,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vbscript.dll

[2008/05/09 02:53:40 | 00,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scrrun.dll

[2008/05/09 02:53:40 | 00,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrrun.dll

[2008/05/09 02:53:40 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshext.dll

[2008/05/09 02:53:40 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshext.dll

[2008/05/09 02:53:39 | 00,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jscript.dll

[2008/05/09 02:53:39 | 00,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll

[2008/05/09 02:53:39 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scrobj.dll

[2008/05/09 02:53:39 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrobj.dll

[2008/05/08 06:02:52 | 00,203,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rmcast.sys

[2008/05/08 06:02:52 | 00,203,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys

[2008/05/08 03:24:44 | 00,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscript.exe

[2008/05/08 03:24:44 | 00,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wscript.exe

[2008/05/07 01:07:23 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cscript.exe

[2008/05/07 01:07:23 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cscript.exe

[2008/05/06 21:12:40 | 01,288,192 | ---- | M] () -- C:\WINDOWS\System32\quartz.dll

[2008/05/06 21:12:40 | 01,288,192 | ---- | M] () -- C:\WINDOWS\System32\dllcache\quartz.dll

[2008/05/02 01:40:08 | 00,084,496 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\KemXML.dll

[2008/05/02 01:40:02 | 00,117,264 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\KemWnd.dll

[2008/05/02 01:39:54 | 00,145,936 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\KemUtil.dll

[2008/05/02 01:39:50 | 00,170,512 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\kemutb.dll

[2008/05/01 06:33:02 | 00,331,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2008/04/14 04:42:38 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spnpinst.exe

[2008/04/14 04:42:06 | 00,985,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupapi.dll

[2008/04/14 04:41:58 | 00,423,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licdll.dll

[2008/04/13 16:25:26 | 00,001,804 | ---- | M] () -- C:\WINDOWS\System32\dcache.bin

[2008/04/13 16:16:51 | 00,329,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.exe

[2008/04/13 16:13:22 | 00,139,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpwd.sys

[2008/04/13 16:13:22 | 00,092,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpdd.dll

[2008/04/13 16:13:22 | 00,087,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll

[2008/04/13 16:13:21 | 00,021,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdtcp.sys

[2008/04/13 16:13:21 | 00,012,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsddd.dll

[2008/04/13 16:13:20 | 00,040,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\termdd.sys

[2008/04/13 16:13:20 | 00,012,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdpipe.sys

[2008/04/13 16:13:00 | 00,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drmclien.dll

[2008/04/13 16:13:00 | 00,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmclien.dll

[2008/04/13 16:12:57 | 00,695,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drmv2clt.dll

[2008/04/13 16:12:57 | 00,695,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmv2clt.dll

[2008/04/13 16:12:56 | 00,356,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscp.dll

[2008/04/13 16:12:56 | 00,356,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscp.dll

[2008/04/13 16:12:56 | 00,226,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll

[2008/04/13 16:12:55 | 00,259,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msnetobj.dll

[2008/04/13 16:12:55 | 00,259,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msnetobj.dll

[2008/04/13 16:12:45 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msh263.drv

[2008/04/13 16:12:45 | 00,265,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\h323.tsp

[2008/04/13 16:12:45 | 00,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\unimdm.tsp

[2008/04/13 16:12:45 | 00,188,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msh261.drv

[2008/04/13 16:12:45 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winspool.drv

[2008/04/13 16:12:45 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winspool.drv

[2008/04/13 16:12:45 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv

[2008/04/13 16:12:45 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\remotesp.tsp

[2008/04/13 16:12:45 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ndptsp.tsp

[2008/04/13 16:12:45 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kmddsp.tsp

[2008/04/13 16:12:45 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hidphone.tsp

[2008/04/13 16:12:45 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdmaud.drv

[2008/04/13 16:12:45 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipconf.tsp

[2008/04/13 16:12:44 | 00,679,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sstext3d.scr

[2008/04/13 16:12:44 | 00,610,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sspipes.scr

[2008/04/13 16:12:44 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmypics.scr

[2008/04/13 16:12:44 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmarque.scr

[2008/04/13 16:12:44 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssmyst.scr

[2008/04/13 16:12:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssstars.scr

[2008/04/13 16:12:43 | 00,704,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ss3dfo.scr

[2008/04/13 16:12:43 | 00,393,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssflwbox.scr

[2008/04/13 16:12:43 | 00,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logon.scr

[2008/04/13 16:12:43 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssbezier.scr

[2008/04/13 16:12:43 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scrnsave.scr

[2008/04/13 16:12:42 | 00,278,559 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmv8ds32.ax

[2008/04/13 16:12:42 | 00,278,559 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmv8ds32.ax

[2008/04/13 16:12:42 | 00,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpg4ds32.ax

[2008/04/13 16:12:42 | 00,262,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4ds32.ax

[2008/04/13 16:12:42 | 00,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvds32.ax

[2008/04/13 16:12:42 | 00,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvds32.ax

[2008/04/13 16:12:42 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msadds32.ax

[2008/04/13 16:12:42 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds32.ax

[2008/04/13 16:12:42 | 00,148,992 | ---- | M] () -- C:\WINDOWS\System32\mpg2splt.ax

[2008/04/13 16:12:42 | 00,129,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax

[2008/04/13 16:12:42 | 00,118,272 | ---- | M] () -- C:\WINDOWS\System32\mpeg2data.ax

[2008/04/13 16:12:42 | 00,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax

[2008/04/13 16:12:42 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscds32.ax

[2008/04/13 16:12:42 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msscds32.ax

[2008/04/13 16:12:42 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax

[2008/04/13 16:12:42 | 00,056,832 | ---- | M] () -- C:\WINDOWS\System32\msdvbnp.ax

[2008/04/13 16:12:42 | 00,043,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax

[2008/04/13 16:12:42 | 00,033,280 | ---- | M] () -- C:\WINDOWS\System32\psisrndr.ax

[2008/04/13 16:12:42 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbisurf.ax

[2008/04/13 16:12:42 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\format.com

[2008/04/13 16:12:42 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax

[2008/04/13 16:12:42 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax

[2008/04/13 16:12:42 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax

[2008/04/13 16:12:42 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bdaplgin.ax

[2008/04/13 16:12:42 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\more.com

[2008/04/13 16:12:42 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax

[2008/04/13 16:12:42 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tree.com

[2008/04/13 16:12:41 | 00,618,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmsys.cpl

[2008/04/13 16:12:41 | 00,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\appwiz.cpl

[2008/04/13 16:12:41 | 00,380,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\irprops.cpl

[2008/04/13 16:12:41 | 00,360,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl

[2008/04/13 16:12:41 | 00,300,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sysdm.cpl

[2008/04/13 16:12:41 | 00,257,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nusrmgr.cpl

[2008/04/13 16:12:41 | 00,165,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe

[2008/04/13 16:12:41 | 00,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hdwwiz.cpl

[2008/04/13 16:12:41 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscui.cpl

[2008/04/13 16:12:41 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\desk.cpl

[2008/04/13 16:12:41 | 00,129,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\intl.cpl

[2008/04/13 16:12:41 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.cpl

[2008/04/13 16:12:41 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\timedate.cpl

[2008/04/13 16:12:41 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\firewall.cpl

[2008/04/13 16:12:41 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\joy.cpl

[2008/04/13 16:12:41 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl

[2008/04/13 16:12:41 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccp32.cpl

[2008/04/13 16:12:41 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xcopy.exe

[2008/04/13 16:12:41 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsetup.cpl

[2008/04/13 16:12:41 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscntfy.exe

[2008/04/13 16:12:41 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpnpinst.exe

[2008/04/13 16:12:40 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe

[2008/04/13 16:12:40 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wpabaln.exe

[2008/04/13 16:12:40 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winver.exe

[2008/04/13 16:12:39 | 00,507,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winlogon.exe

[2008/04/13 16:12:39 | 00,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiaacmgr.exe

[2008/04/13 16:12:39 | 00,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\winhlp32.exe

[2008/04/13 16:12:39 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wextract.exe

[2008/04/13 16:12:38 | 00,347,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tourstart.exe

[2008/04/13 16:12:38 | 00,289,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vssvc.exe

[2008/04/13 16:12:38 | 00,208,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unregmp2.exe

[2008/04/13 16:12:38 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\utilman.exe

[2008/04/13 16:12:38 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe

[2008/04/13 16:12:38 | 00,026,112 | ---- | M] () -- C:\WINDOWS\System32\userinit.exe

[2008/04/13 16:12:38 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ups.exe

[2008/04/13 16:12:38 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnpcont.exe

[2008/04/13 16:12:38 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tracert.exe

[2008/04/13 16:12:37 | 00,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\taskmgr.exe

[2008/04/13 16:12:37 | 00,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sysocmgr.exe

[2008/04/13 16:12:37 | 00,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\telnet.exe

[2008/04/13 16:12:36 | 00,538,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe

[2008/04/13 16:12:36 | 00,131,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe

[2008/04/13 16:12:36 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smss.exe

[2008/04/13 16:12:36 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sort.exe

[2008/04/13 16:12:36 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdwxp.exe

[2008/04/13 16:12:36 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stimon.exe

[2008/04/13 16:12:36 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\svchost.exe

[2008/04/13 16:12:36 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spdwnwxp.exe

[2008/04/13 16:12:35 | 00,774,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe

[2008/04/13 16:12:35 | 00,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smlogsvc.exe

[2008/04/13 16:12:35 | 00,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shrpubw.exe

[2008/04/13 16:12:35 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sigverif.exe

[2008/04/13 16:12:35 | 00,045,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shmgrate.exe

[2008/04/13 16:12:35 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe

[2008/04/13 16:12:35 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\skeys.exe

[2008/04/13 16:12:35 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shutdown.exe

[2008/04/13 16:12:35 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smbinst.exe

[2008/04/13 16:12:34 | 00,141,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sessmgr.exe

[2008/04/13 16:12:34 | 00,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\services.exe

[2008/04/13 16:12:34 | 00,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sdbinst.exe

[2008/04/13 16:12:34 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sethc.exe

[2008/04/13 16:12:34 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\setup.exe

[2008/04/13 16:12:33 | 00,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scardsvr.exe

[2008/04/13 16:12:33 | 00,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtcshare.exe

[2008/04/13 16:12:33 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rundll32.exe

[2008/04/13 16:12:33 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsh.exe

[2008/04/13 16:12:33 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\runonce.exe

[2008/04/13 16:12:33 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rexec.exe

[2008/04/13 16:12:33 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\savedump.exe

[2008/04/13 16:12:32 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\regedit.exe

[2008/04/13 16:12:32 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe

[2008/04/13 16:12:32 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe

[2008/04/13 16:12:32 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasphone.exe

[2008/04/13 16:12:32 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\reg.exe

[2008/04/13 16:12:32 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\proquota.exe

[2008/04/13 16:12:32 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcimlby.exe

[2008/04/13 16:12:32 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcp.exe

[2008/04/13 16:12:32 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe

[2008/04/13 16:12:32 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe

[2008/04/13 16:12:32 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regsvr32.exe

[2008/04/13 16:12:32 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\proxycfg.exe

[2008/04/13 16:12:31 | 00,215,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\osk.exe

[2008/04/13 16:12:31 | 00,109,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\progman.exe

[2008/04/13 16:12:31 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\packager.exe

[2008/04/13 16:12:31 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\powercfg.exe

[2008/04/13 16:12:31 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ping.exe

[2008/04/13 16:12:31 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfmon.exe

[2008/04/13 16:12:30 | 00,420,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdm.exe

[2008/04/13 16:12:30 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.exe

[2008/04/13 16:12:30 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcad32.exe

[2008/04/13 16:12:29 | 00,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe

[2008/04/13 16:12:29 | 00,124,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\net1.exe

[2008/04/13 16:12:29 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netdde.exe

[2008/04/13 16:12:29 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netsh.exe

[2008/04/13 16:12:29 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nslookup.exe

[2008/04/13 16:12:29 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\notepad.exe

[2008/04/13 16:12:29 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe

[2008/04/13 16:12:29 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\narrator.exe

[2008/04/13 16:12:29 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\net.exe

[2008/04/13 16:12:29 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netstat.exe

[2008/04/13 16:12:29 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe

[2008/04/13 16:12:29 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nddeapir.exe

[2008/04/13 16:12:28 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe

[2008/04/13 16:12:28 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msiexec.exe

[2008/04/13 16:12:27 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe

[2008/04/13 16:12:27 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe

[2008/04/13 16:12:27 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshta.exe

[2008/04/13 16:12:27 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtc.exe

[2008/04/13 16:12:27 | 00,004,639 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2008/04/13 16:12:26 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mobsync.exe

[2008/04/13 16:12:25 | 01,414,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmc.exe

[2008/04/13 16:12:25 | 00,786,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe

[2008/04/13 16:12:25 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\makecab.exe

[2008/04/13 16:12:25 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe

[2008/04/13 16:12:25 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmsrvc.exe

[2008/04/13 16:12:24 | 00,514,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logonui.exe

[2008/04/13 16:12:24 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\locator.exe

[2008/04/13 16:12:24 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\magnify.exe

[2008/04/13 16:12:24 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\logman.exe

[2008/04/13 16:12:24 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lsass.exe

[2008/04/13 16:12:23 | 00,677,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe

[2008/04/13 16:12:23 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipv6.exe

[2008/04/13 16:12:23 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipxroute.exe

[2008/04/13 16:12:22 | 00,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imapi.exe

[2008/04/13 16:12:22 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iexpress.exe

[2008/04/13 16:12:22 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipconfig.exe

[2008/04/13 16:12:22 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe

[2008/04/13 16:12:21 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\grpconv.exe

[2008/04/13 16:12:21 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\help.exe

[2008/04/13 16:12:21 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\hh.exe

[2008/04/13 16:12:20 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fsquirt.exe

[2008/04/13 16:12:20 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ftp.exe

[2008/04/13 16:12:20 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\findstr.exe

[2008/04/13 16:12:20 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe

[2008/04/13 16:12:20 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontview.exe

[2008/04/13 16:12:20 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\faxpatch.exe

[2008/04/13 16:12:20 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\forcedos.exe

[2008/04/13 16:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

[2008/04/13 16:12:19 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eudcedit.exe

[2008/04/13 16:12:19 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\extrac32.exe

[2008/04/13 16:12:18 | 01,298,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiag.exe

[2008/04/13 16:12:18 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dwwin.exe

[2008/04/13 16:12:18 | 00,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvsetup.exe

[2008/04/13 16:12:18 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dvdupgrd.exe

[2008/04/13 16:12:18 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dumprep.exe

[2008/04/13 16:12:17 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe

[2008/04/13 16:12:17 | 00,224,768 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\dmadmin.exe

[2008/04/13 16:12:17 | 00,163,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diskpart.exe

[2008/04/13 16:12:17 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diantz.exe

[2008/04/13 16:12:17 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dplaysvr.exe

[2008/04/13 16:12:17 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnsvr.exe

[2008/04/13 16:12:17 | 00,015,872 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmremote.exe

[2008/04/13 16:12:17 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllhost.exe

[2008/04/13 16:12:16 | 00,105,472 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgntfs.exe

[2008/04/13 16:12:16 | 00,082,944 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgfat.exe

[2008/04/13 16:12:16 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ddeshare.exe

[2008/04/13 16:12:16 | 00,025,088 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\defrag.exe

[2008/04/13 16:12:16 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ctfmon.exe

[2008/04/13 16:12:16 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe

[2008/04/13 16:12:15 | 00,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmstp.exe

[2008/04/13 16:12:15 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmmon32.exe

[2008/04/13 16:12:15 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conime.exe

[2008/04/13 16:12:15 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\csrss.exe

[2008/04/13 16:12:14 | 00,389,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.exe

[2008/04/13 16:12:14 | 00,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe

[2008/04/13 16:12:14 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cleanmgr.exe

[2008/04/13 16:12:14 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clipsrv.exe

[2008/04/13 16:12:14 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmdl32.exe

[2008/04/13 16:12:14 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.exe

[2008/04/13 16:12:14 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cisvc.exe

[2008/04/13 16:12:13 | 00,580,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autofmt.exe

[2008/04/13 16:12:13 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\blastcln.exe

[2008/04/13 16:12:13 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cacls.exe

[2008/04/13 16:12:13 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autolfn.exe

[2008/04/13 16:12:12 | 00,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autoconv.exe

[2008/04/13 16:12:12 | 00,588,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\autochk.exe

[2008/04/13 16:12:12 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ahui.exe

[2008/04/13 16:12:12 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\alg.exe

[2008/04/13 16:12:12 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\at.exe

[2008/04/13 16:12:12 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\auditusr.exe

[2008/04/13 16:12:12 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\attrib.exe

[2008/04/13 16:12:12 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\atmadm.exe

[2008/04/13 16:12:12 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\actmovie.exe

[2008/04/13 16:12:11 | 00,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcsvc.dll

[2008/04/13 16:12:11 | 00,383,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcdlg.dll

[2008/04/13 16:12:11 | 00,338,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\zipfldr.dll

[2008/04/13 16:12:11 | 00,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe

[2008/04/13 16:12:11 | 00,183,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll

[2008/04/13 16:12:11 | 00,129,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprov.dll

[2008/04/13 16:12:11 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll

[2008/04/13 16:12:11 | 00,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactsrv.dll

[2008/04/13 16:12:11 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wzcsapi.dll

[2008/04/13 16:12:11 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xmlprovi.dll

[2008/04/13 16:12:11 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll

[2008/04/13 16:12:11 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauserv.dll

[2008/04/13 16:12:10 | 01,001,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvdmoe2.dll

[2008/04/13 16:12:10 | 01,001,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmoe2.dll

[2008/04/13 16:12:10 | 00,897,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmspdmoe.dll

[2008/04/13 16:12:10 | 00,897,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmoe.dll

[2008/04/13 16:12:10 | 00,809,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmvdmod.dll

[2008/04/13 16:12:10 | 00,809,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmvdmod.dll

[2008/04/13 16:12:10 | 00,303,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmstream.dll

[2008/04/13 16:12:10 | 00,303,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmstream.dll

[2008/04/13 16:12:10 | 00,264,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wow32.dll

[2008/04/13 16:12:10 | 00,108,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshbth.dll

[2008/04/13 16:12:10 | 00,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ws2_32.dll

[2008/04/13 16:12:10 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wscsvc.dll

[2008/04/13 16:12:10 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wstdecod.dll

[2008/04/13 16:12:10 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsnmp32.dll

[2008/04/13 16:12:10 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshcon.dll

[2008/04/13 16:12:10 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wsock32.dll

[2008/04/13 16:12:10 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ws2help.dll

[2008/04/13 16:12:10 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshtcpip.dll

[2008/04/13 16:12:10 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wtsapi32.dll

[2008/04/13 16:12:10 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wship6.dll

[2008/04/13 16:12:10 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wshrm.dll

[2008/04/13 16:12:09 | 04,874,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmp.dll

[2008/04/13 16:12:09 | 04,874,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.dll

[2008/04/13 16:12:09 | 01,119,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmoe2.dll

[2008/04/13 16:12:09 | 01,119,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe2.dll

[2008/04/13 16:12:09 | 00,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmod.dll

[2008/04/13 16:12:09 | 00,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmod.dll

[2008/04/13 16:12:09 | 00,670,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmadmoe.dll

[2008/04/13 16:12:09 | 00,670,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmoe.dll

[2008/04/13 16:12:09 | 00,485,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmspdmod.dll

[2008/04/13 16:12:09 | 00,485,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmspdmod.dll

[2008/04/13 16:12:09 | 00,408,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmadmod.dll

[2008/04/13 16:12:09 | 00,408,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmadmod.dll

[2008/04/13 16:12:09 | 00,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsrv.dll

[2008/04/13 16:12:09 | 00,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll

[2008/04/13 16:12:09 | 00,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpdxm.dll

[2008/04/13 16:12:09 | 00,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpdxm.dll

[2008/04/13 16:12:09 | 00,230,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmasf.dll

[2008/04/13 16:12:09 | 00,230,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmasf.dll

[2008/04/13 16:12:09 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpns.dll

[2008/04/13 16:12:09 | 00,221,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll

[2008/04/13 16:12:09 | 00,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wintrust.dll

[2008/04/13 16:12:09 | 00,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winmm.dll

[2008/04/13 16:12:09 | 00,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wldap32.dll

[2008/04/13 16:12:09 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmidx.dll

[2008/04/13 16:12:09 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidx.dll

[2008/04/13 16:12:09 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wkssvc.dll

[2008/04/13 16:12:09 | 00,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmsdmoe.dll

[2008/04/13 16:12:09 | 00,115,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmsdmoe.dll

[2008/04/13 16:12:09 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpasf.dll

[2008/04/13 16:12:09 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpasf.dll

[2008/04/13 16:12:09 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpshell.dll

[2008/04/13 16:12:09 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpshell.dll

[2008/04/13 16:12:09 | 00,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winscard.dll

[2008/04/13 16:12:09 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll

[2008/04/13 16:12:09 | 00,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlnotify.dll

[2008/04/13 16:12:09 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll

[2008/04/13 16:12:09 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsta.dll

[2008/04/13 16:12:09 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsta.dll

[2008/04/13 16:12:09 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winipsec.dll

[2008/04/13 16:12:09 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmdmlog.dll

[2008/04/13 16:12:09 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmlog.dll

[2008/04/13 16:12:09 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmdmps.dll

[2008/04/13 16:12:09 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmdmps.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpui.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpcore.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmpcd.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpui.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcore.dll

[2008/04/13 16:12:09 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpcd.dll

[2008/04/13 16:12:09 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winshfhc.dll

[2008/04/13 16:12:09 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winrnr.dll

[2008/04/13 16:12:08 | 00,727,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\userenv.dll

[2008/04/13 16:12:08 | 00,712,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecs.dll

[2008/04/13 16:12:08 | 00,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiashext.dll

[2008/04/13 16:12:08 | 00,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\user32.dll

[2008/04/13 16:12:08 | 00,463,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiadefui.dll

[2008/04/13 16:12:08 | 00,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vssapi.dll

[2008/04/13 16:12:08 | 00,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usp10.dll

[2008/04/13 16:12:08 | 00,354,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winhttp.dll

[2008/04/13 16:12:08 | 00,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll

[2008/04/13 16:12:08 | 00,333,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiaservc.dll

[2008/04/13 16:12:08 | 00,276,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\webcheck.dll

[2008/04/13 16:12:08 | 00,239,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnpui.dll

[2008/04/13 16:12:08 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uxtheme.dll

[2008/04/13 16:12:08 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uxtheme.dll

[2008/04/13 16:12:08 | 00,215,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wavemsp.dll

[2008/04/13 16:12:08 | 00,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnphost.dll

[2008/04/13 16:12:08 | 00,175,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w32time.dll

[2008/04/13 16:12:08 | 00,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\webvw.dll

[2008/04/13 16:12:08 | 00,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\upnp.dll

[2008/04/13 16:12:08 | 00,124,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiadss.dll

[2008/04/13 16:12:08 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiavideo.dll

[2008/04/13 16:12:08 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32spl.dll

[2008/04/13 16:12:08 | 00,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wiascr.dll

[2008/04/13 16:12:08 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll

[2008/04/13 16:12:08 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\webclnt.dll

[2008/04/13 16:12:08 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll

[2008/04/13 16:12:08 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vdmredir.dll

[2008/04/13 16:12:08 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdigest.dll

[2008/04/13 16:12:08 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll

[2008/04/13 16:12:08 | 00,030,749 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vbajet32.dll

[2008/04/13 16:12:08 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\verifier.dll

[2008/04/13 16:12:08 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\vdmdbg.dll

[2008/04/13 16:12:08 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\version.dll

[2008/04/13 16:12:08 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\usbmon.dll

[2008/04/13 16:12:08 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\w3ssl.dll

[2008/04/13 16:12:07 | 00,990,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\syssetup.dll

[2008/04/13 16:12:07 | 00,858,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tapi3.dll

[2008/04/13 16:12:07 | 00,713,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sxs.dll

[2008/04/13 16:12:07 | 00,385,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\themeui.dll

[2008/04/13 16:12:07 | 00,358,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\termmgr.dll

[2008/04/13 16:12:07 | 00,316,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\untfs.dll

[2008/04/13 16:12:07 | 00,295,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\termsrv.dll

[2008/04/13 16:12:07 | 00,275,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ulib.dll

[2008/04/13 16:12:07 | 00,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tapisrv.dll

[2008/04/13 16:12:07 | 00,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll

[2008/04/13 16:12:07 | 00,191,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\syncui.dll

[2008/04/13 16:12:07 | 00,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tapi32.dll

[2008/04/13 16:12:07 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srsvc.dll

[2008/04/13 16:12:07 | 00,136,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sti_ci.dll

[2008/04/13 16:12:07 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\umpnpmgr.dll

[2008/04/13 16:12:07 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stobject.dll

[2008/04/13 16:12:07 | 00,117,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\t2embed.dll

[2008/04/13 16:12:07 | 00,101,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\txflog.dll

[2008/04/13 16:12:07 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srvsvc.dll

[2008/04/13 16:12:07 | 00,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll

[2008/04/13 16:12:07 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\trkwks.dll

[2008/04/13 16:12:07 | 00,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\strmfilt.dll

[2008/04/13 16:12:07 | 00,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll

[2008/04/13 16:12:07 | 00,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\unimdmat.dll

[2008/04/13 16:12:07 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssdpsrv.dll

[2008/04/13 16:12:07 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sti.dll

[2008/04/13 16:12:07 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\srclient.dll

[2008/04/13 16:12:07 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll

[2008/04/13 16:12:07 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\twext.dll

[2008/04/13 16:12:07 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\synceng.dll

[2008/04/13 16:12:07 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll

[2008/04/13 16:12:07 | 00,050,688 | ---- | M] (Twain Working Group) -- C:\WINDOWS\twain_32.dll

[2008/04/13 16:12:07 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tspkg.dll

[2008/04/13 16:12:07 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmonui.dll

[2008/04/13 16:12:07 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmon.dll

[2008/04/13 16:12:07 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\umandlg.dll

[2008/04/13 16:12:07 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ssdpapi.dll

[2008/04/13 16:12:07 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\udhisapi.dll

[2008/04/13 16:12:07 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tcpmib.dll

[2008/04/13 16:12:07 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uniplat.dll

[2008/04/13 16:12:06 | 00,442,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlsrv32.dll

[2008/04/13 16:12:06 | 00,362,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\smlogcfg.dll

[2008/04/13 16:12:06 | 00,182,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\snmpsnap.dll

[2008/04/13 16:12:06 | 00,180,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlunirl.dll

[2008/04/13 16:12:06 | 00,098,304 | ---- | M] (Schlumberger Technology Corporation) -- C:\WINDOWS\System32\slbiop.dll

[2008/04/13 16:12:06 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spoolss.dll

[2008/04/13 16:12:06 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\slayerxp.dll

[2008/04/13 16:12:06 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\snmpapi.dll

[2008/04/13 16:12:05 | 08,461,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shell32.dll

[2008/04/13 16:12:05 | 08,461,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll

[2008/04/13 16:12:05 | 01,614,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sfcfiles.dll

[2008/04/13 16:12:05 | 00,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shlwapi.dll

[2008/04/13 16:12:05 | 00,438,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shimgvw.dll

[2008/04/13 16:12:05 | 00,314,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scesrv.dll

[2008/04/13 16:12:05 | 00,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\schedsvc.dll

[2008/04/13 16:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scecli.dll

[2008/04/13 16:12:05 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sccsccp.dll

[2008/04/13 16:12:05 | 00,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shmedia.dll

[2008/04/13 16:12:05 | 00,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shmedia.dll

[2008/04/13 16:12:05 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\schannel.dll

[2008/04/13 16:12:05 | 00,140,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sfc_os.dll

[2008/04/13 16:12:05 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shsvcs.dll

[2008/04/13 16:12:05 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shgina.dll

[2008/04/13 16:12:05 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shimeng.dll

[2008/04/13 16:12:05 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll

[2008/04/13 16:12:05 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\secur32.dll

[2008/04/13 16:12:05 | 00,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sendmail.dll

[2008/04/13 16:12:05 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sens.dll

[2008/04/13 16:12:05 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sendcmsg.dll

[2008/04/13 16:12:05 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sdhcinst.dll

[2008/04/13 16:12:05 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shscrap.dll

[2008/04/13 16:12:05 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shfolder.dll

[2008/04/13 16:12:05 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sclgntfy.dll

[2008/04/13 16:12:05 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\seclogon.dll

[2008/04/13 16:12:05 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sigtab.dll

[2008/04/13 16:12:05 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sensapi.dll

[2008/04/13 16:12:05 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\security.dll

[2008/04/13 16:12:05 | 00,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sfc.dll

[2008/04/13 16:12:04 | 00,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rpcrt4.dll

[2008/04/13 16:12:04 | 00,433,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\riched20.dll

[2008/04/13 16:12:04 | 00,415,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\samsrv.dll

[2008/04/13 16:12:04 | 00,399,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rpcss.dll

[2008/04/13 16:12:04 | 00,399,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll

[2008/04/13 16:12:04 | 00,397,824 | ---- | M] (Microsoft) -- C:\WINDOWS\System32\regwizc.dll

[2008/04/13 16:12:04 | 00,290,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll

[2008/04/13 16:12:04 | 00,270,848 | ---- | M] () -- C:\WINDOWS\System32\sbe.dll

[2008/04/13 16:12:04 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sbeio.dll

[2008/04/13 16:12:04 | 00,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsvpsp.dll

[2008/04/13 16:12:04 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\scarddlg.dll

[2008/04/13 16:12:04 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\samlib.dll

[2008/04/13 16:12:04 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\samlib.dll

[2008/04/13 16:12:04 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\remotepg.dll

[2008/04/13 16:12:04 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regsvc.dll

[2008/04/13 16:12:04 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\resutils.dll

[2008/04/13 16:12:04 | 00,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\regapi.dll

[2008/04/13 16:12:04 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll

[2008/04/13 16:12:04 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtutils.dll

[2008/04/13 16:12:04 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll

[2008/04/13 16:12:04 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rshx32.dll

[2008/04/13 16:12:04 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rtipxmib.dll

[2008/04/13 16:12:04 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll

[2008/04/13 16:12:04 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll

[2008/04/13 16:12:04 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsmps.dll

[2008/04/13 16:12:03 | 01,435,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\query.dll

[2008/04/13 16:12:03 | 00,658,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasdlg.dll

[2008/04/13 16:12:03 | 00,562,176 | ---- | M] () -- C:\WINDOWS\System32\qedit.dll

[2008/04/13 16:12:03 | 00,560,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\printui.dll

[2008/04/13 16:12:03 | 00,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgr.dll

[2008/04/13 16:12:03 | 00,386,048 | ---- | M] () -- C:\WINDOWS\System32\qdvd.dll

[2008/04/13 16:12:03 | 00,363,520 | ---- | M] () -- C:\WINDOWS\System32\psisdecd.dll

[2008/04/13 16:12:03 | 00,291,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qagentrt.dll

[2008/04/13 16:12:03 | 00,279,040 | ---- | M] () -- C:\WINDOWS\System32\qdv.dll

[2008/04/13 16:12:03 | 00,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qasf.dll

[2008/04/13 16:12:03 | 00,237,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasapi32.dll

[2008/04/13 16:12:03 | 00,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasppp.dll

[2008/04/13 16:12:03 | 00,192,512 | ---- | M] () -- C:\WINDOWS\System32\qcap.dll

[2008/04/13 16:12:03 | 00,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasmans.dll

[2008/04/13 16:12:03 | 00,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll

[2008/04/13 16:12:03 | 00,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rastls.dll

[2008/04/13 16:12:03 | 00,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll

[2008/04/13 16:12:03 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rcbdyctl.dll

[2008/04/13 16:12:03 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\psbase.dll

[2008/04/13 16:12:03 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasauto.dll

[2008/04/13 16:12:03 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\raschap.dll

[2008/04/13 16:12:03 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qutil.dll

[2008/04/13 16:12:03 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll

[2008/04/13 16:12:03 | 00,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasqec.dll

[2008/04/13 16:12:03 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasman.dll

[2008/04/13 16:12:03 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rastapi.dll

[2008/04/13 16:12:03 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll

[2008/04/13 16:12:03 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pstorec.dll

[2008/04/13 16:12:03 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pstorsvc.dll

[2008/04/13 16:12:03 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\profmap.dll

[2008/04/13 16:12:03 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\psapi.dll

[2008/04/13 16:12:03 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll

[2008/04/13 16:12:03 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\powrprof.dll

[2008/04/13 16:12:03 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rassapi.dll

[2008/04/13 16:12:03 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rasadhlp.dll

[2008/04/13 16:12:02 | 01,703,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netshell.dll

[2008/04/13 16:12:02 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ole32.dll

[2008/04/13 16:12:02 | 00,713,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\opengl32.dll

[2008/04/13 16:12:02 | 00,554,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2psvc.dll

[2008/04/13 16:12:02 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oleaut32.dll

[2008/04/13 16:12:02 | 00,488,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsmgr.dll

[2008/04/13 16:12:02 | 00,435,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmssvc.dll

[2008/04/13 16:12:02 | 00,412,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll

[2008/04/13 16:12:02 | 00,364,544 | ---- | M] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll

[2008/04/13 16:12:02 | 00,313,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgraph.dll

[2008/04/13 16:12:02 | 00,286,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\objsel.dll

[2008/04/13 16:12:02 | 00,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pdh.dll

[2008/04/13 16:12:02 | 00,278,559 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcjt32.dll

[2008/04/13 16:12:02 | 00,270,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oakley.dll

[2008/04/13 16:12:02 | 00,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbc32.dll

[2008/04/13 16:12:02 | 00,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\newdev.dll

[2008/04/13 16:12:02 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netui1.dll

[2008/04/13 16:12:02 | 00,192,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\offfilt.dll

[2008/04/13 16:12:02 | 00,179,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsdba.dll

[2008/04/13 16:12:02 | 00,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\photowiz.dll

[2008/04/13 16:12:02 | 00,153,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2p.dll

[2008/04/13 16:12:02 | 00,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbctrac.dll

[2008/04/13 16:12:02 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\onex.dll

[2008/04/13 16:12:02 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntshrui.dll

[2008/04/13 16:12:02 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nwprovau.dll

[2008/04/13 16:12:02 | 00,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcconf.dll

[2008/04/13 16:12:02 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oledlg.dll

[2008/04/13 16:12:02 | 00,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmarta.dll

[2008/04/13 16:12:02 | 00,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntmarta.dll

[2008/04/13 16:12:02 | 00,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pnetsh.dll

[2008/04/13 16:12:02 | 00,107,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oleprn.dll

[2008/04/13 16:12:02 | 00,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccp32.dll

[2008/04/13 16:12:02 | 00,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\polstore.dll

[2008/04/13 16:12:02 | 00,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\p2pgasvc.dll

[2008/04/13 16:12:02 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nlhtml.dll

[2008/04/13 16:12:02 | 00,096,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\occache.dll

[2008/04/13 16:12:02 | 00,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntprint.dll

[2008/04/13 16:12:02 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\olepro32.dll

[2008/04/13 16:12:02 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netui0.dll

[2008/04/13 16:12:02 | 00,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\olecli32.dll

[2008/04/13 16:12:02 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pautoenr.dll

[2008/04/13 16:12:02 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\osuninst.dll

[2008/04/13 16:12:02 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ocmanage.dll

[2008/04/13 16:12:02 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntdsapi.dll

[2008/04/13 16:12:02 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccu32.dll

[2008/04/13 16:12:02 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbccr32.dll

[2008/04/13 16:12:02 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pnrpnsp.dll

[2008/04/13 16:12:02 | 00,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\npptools.dll

[2008/04/13 16:12:02 | 00,054,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npptools.dll

[2008/04/13 16:12:02 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntlanman.dll

[2008/04/13 16:12:02 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntmsapi.dll

[2008/04/13 16:12:02 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfctrs.dll

[2008/04/13 16:12:02 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pngfilt.dll

[2008/04/13 16:12:02 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\olecnv32.dll

[2008/04/13 16:12:02 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pid.dll

[2008/04/13 16:12:02 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfproc.dll

[2008/04/13 16:12:02 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll

[2008/04/13 16:12:02 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfdisk.dll

[2008/04/13 16:12:02 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfos.dll

[2008/04/13 16:12:02 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcbcp.dll

[2008/04/13 16:12:02 | 00,020,511 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odtext32.dll

[2008/04/13 16:12:02 | 00,020,511 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oddbse32.dll

[2008/04/13 16:12:02 | 00,020,510 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odpdx32.dll

[2008/04/13 16:12:02 | 00,020,510 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odfox32.dll

[2008/04/13 16:12:02 | 00,020,510 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odexl32.dll

[2008/04/13 16:12:02 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\perfnet.dll

[2008/04/13 16:12:02 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbc32gt.dll

[2008/04/13 16:12:02 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pjlmon.dll

[2008/04/13 16:12:02 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntvdmd.dll

[2008/04/13 16:12:02 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll

[2008/04/13 16:12:02 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntlsapi.dll

[2008/04/13 16:12:01 | 01,428,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvidctl.dll

[2008/04/13 16:12:01 | 00,875,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netplwiz.dll

[2008/04/13 16:12:01 | 00,701,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml2.dll

[2008/04/13 16:12:01 | 00,622,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netcfgx.dll

[2008/04/13 16:12:01 | 00,506,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml.dll

[2008/04/13 16:12:01 | 00,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp60.dll

[2008/04/13 16:12:01 | 00,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msvcp60.dll

[2008/04/13 16:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netlogon.dll

[2008/04/13 16:12:01 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcrt.dll

[2008/04/13 16:12:01 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswmdm.dll

[2008/04/13 16:12:01 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswmdm.dll

[2008/04/13 16:12:01 | 00,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswebdvd.dll

[2008/04/13 16:12:01 | 00,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netman.dll

[2008/04/13 16:12:01 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll

[2008/04/13 16:12:01 | 00,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netid.dll

[2008/04/13 16:12:01 | 00,121,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvfw32.dll

[2008/04/13 16:12:01 | 00,091,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll

[2008/04/13 16:12:01 | 00,090,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mydocs.dll

[2008/04/13 16:12:01 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msw3prt.dll

[2008/04/13 16:12:01 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxclu.dll

[2008/04/13 16:12:01 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcirt.dll

[2008/04/13 16:12:01 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ncobjapi.dll

[2008/04/13 16:12:01 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll

[2008/04/13 16:12:01 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll

[2008/04/13 16:12:01 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll

[2008/04/13 16:12:01 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nddenb32.dll

[2008/04/13 16:12:01 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nddeapi.dll

[2008/04/13 16:12:01 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msyuv.dll

[2008/04/13 16:12:01 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\netrap.dll

[2008/04/13 16:12:01 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll

[2008/04/13 16:12:00 | 01,384,479 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvbvm60.dll

[2008/04/13 16:12:00 | 00,532,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll

[2008/04/13 16:12:00 | 00,290,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msnsspc.dll

[2008/04/13 16:12:00 | 00,274,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstask.dll

[2008/04/13 16:12:00 | 00,252,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll

[2008/04/13 16:12:00 | 00,201,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspmsp.dll

[2008/04/13 16:12:00 | 00,201,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsp.dll

[2008/04/13 16:12:00 | 00,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msutb.dll

[2008/04/13 16:12:00 | 00,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll

[2008/04/13 16:12:00 | 00,151,583 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjint40.dll

[2008/04/13 16:12:00 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrating.dll

[2008/04/13 16:12:00 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msorcl32.dll

[2008/04/13 16:12:00 | 00,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mssap.dll

[2008/04/13 16:12:00 | 00,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msv1_0.dll

[2008/04/13 16:12:00 | 00,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstlsapi.dll

[2008/04/13 16:12:00 | 00,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll

[2008/04/13 16:12:00 | 00,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspmsnsv.dll

[2008/04/13 16:12:00 | 00,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspmsnsv.dll

[2008/04/13 16:12:00 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspatcha.dll

[2008/04/13 16:12:00 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mslbui.dll

[2008/04/13 16:12:00 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrle32.dll

[2008/04/13 16:11:59 | 02,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msi.dll

[2008/04/13 16:11:59 | 00,997,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msgina.dll

[2008/04/13 16:11:59 | 00,956,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll

[2008/04/13 16:11:59 | 00,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msftedit.dll

[2008/04/13 16:11:59 | 00,449,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtmled.dll

[2008/04/13 16:11:59 | 00,427,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll

[2008/04/13 16:11:59 | 00,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msihnd.dll

[2008/04/13 16:11:59 | 00,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msieftp.dll

[2008/04/13 16:11:59 | 00,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll

[2008/04/13 16:11:59 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msimtf.dll

[2008/04/13 16:11:59 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdart.dll

[2008/04/13 16:11:59 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll

[2008/04/13 16:11:59 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msident.dll

[2008/04/13 16:11:59 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msgsvc.dll

[2008/04/13 16:11:59 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msisip.dll

[2008/04/13 16:11:59 | 00,014,336 | ---- | M] () -- C:\WINDOWS\System32\msdmo.dll

[2008/04/13 16:11:59 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msidle.dll

[2008/04/13 16:11:59 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msimg32.dll

[2008/04/13 16:11:58 | 00,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msctf.dll

[2008/04/13 16:11:58 | 00,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdadiag.dll

[2008/04/13 16:11:58 | 00,086,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msapsspc.dll

[2008/04/13 16:11:58 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msacm32.dll

[2008/04/13 16:11:58 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll

[2008/04/13 16:11:58 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfp.dll

[2008/04/13 16:11:58 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msasn1.dll

[2008/04/13 16:11:58 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscpxl32.dll

[2008/04/13 16:11:57 | 01,872,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcndmgr.dll

[2008/04/13 16:11:57 | 00,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mlang.dll

[2008/04/13 16:11:57 | 00,397,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll

[2008/04/13 16:11:57 | 00,384,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mp4sdmod.dll

[2008/04/13 16:11:57 | 00,384,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp4sdmod.dll

[2008/04/13 16:11:57 | 00,368,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll

[2008/04/13 16:11:57 | 00,310,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mp43dmod.dll

[2008/04/13 16:11:57 | 00,310,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mp43dmod.dll

[2008/04/13 16:11:57 | 00,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpg4dmod.dll

[2008/04/13 16:11:57 | 00,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpg4dmod.dll

[2008/04/13 16:11:57 | 00,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mobsync.dll

[2008/04/13 16:11:57 | 00,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll

[2008/04/13 16:11:57 | 00,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcbase.dll

[2008/04/13 16:11:57 | 00,153,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\modemui.dll

[2008/04/13 16:11:57 | 00,106,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll

[2008/04/13 16:11:57 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mprapi.dll

[2008/04/13 16:11:57 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcshext.dll

[2008/04/13 16:11:57 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\miglibnt.dll

[2008/04/13 16:11:57 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpr.dll

[2008/04/13 16:11:57 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mprdim.dll

[2008/04/13 16:11:57 | 00,034,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll

[2008/04/13 16:11:57 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mimefilt.dll

[2008/04/13 16:11:57 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\midimap.dll

[2008/04/13 16:11:57 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll

[2008/04/13 16:11:56 | 02,061,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstscax.dll

[2008/04/13 16:11:56 | 01,028,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42.dll

[2008/04/13 16:11:56 | 00,989,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kernel32.dll

[2008/04/13 16:11:56 | 00,927,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc40u.dll

[2008/04/13 16:11:56 | 00,728,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lsasrv.dll

[2008/04/13 16:11:56 | 00,399,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lmrt.dll

[2008/04/13 16:11:56 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\localspl.dll

[2008/04/13 16:11:56 | 00,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kerberos.dll

[2008/04/13 16:11:56 | 00,221,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\localsec.dll

[2008/04/13 16:11:56 | 00,150,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\keymgr.dll

[2008/04/13 16:11:56 | 00,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mdminst.dll

[2008/04/13 16:11:56 | 00,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\loadperf.dll

[2008/04/13 16:11:56 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mciavi32.dll

[2008/04/13 16:11:56 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kmsvc.dll

[2008/04/13 16:11:56 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll

[2008/04/13 16:11:56 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mf3216.dll

[2008/04/13 16:11:56 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll

[2008/04/13 16:11:56 | 00,035,328 | ---- | M] () -- C:\WINDOWS\System32\mciqtz32.dll

[2008/04/13 16:11:56 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mciwave.dll

[2008/04/13 16:11:56 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mciseq.dll

[2008/04/13 16:11:56 | 00,022,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfcsubs.dll

[2008/04/13 16:11:56 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lpk.dll

[2008/04/13 16:11:56 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll

[2008/04/13 16:11:56 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\linkinfo.dll

[2008/04/13 16:11:56 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll

[2008/04/13 16:11:56 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mgmtapi.dll

[2008/04/13 16:11:56 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mcastmib.dll

[2008/04/13 16:11:56 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lmhsvc.dll

[2008/04/13 16:11:56 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\localui.dll

[2008/04/13 16:11:56 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\lprhelp.dll

[2008/04/13 16:11:56 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\laprxy.dll

[2008/04/13 16:11:56 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\laprxy.dll

[2008/04/13 16:11:56 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll

[2008/04/13 16:11:55 | 00,384,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsmsnap.dll

[2008/04/13 16:11:55 | 00,349,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsecsnp.dll

[2008/04/13 16:11:55 | 00,331,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipnathlp.dll

[2008/04/13 16:11:55 | 00,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ippromon.dll

[2008/04/13 16:11:55 | 00,191,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iuengine.dll

[2008/04/13 16:11:55 | 00,183,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsecsvc.dll

[2008/04/13 16:11:55 | 00,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iprtrmgr.dll

[2008/04/13 16:11:55 | 00,163,840 | ---- | M] (America Online) -- C:\WINDOWS\System32\jgdw400.dll

[2008/04/13 16:11:55 | 00,161,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipmontr.dll

[2008/04/13 16:11:55 | 00,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\itircl.dll

[2008/04/13 16:11:55 | 00,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\initpki.dll

[2008/04/13 16:11:55 | 00,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\itss.dll

[2008/04/13 16:11:55 | 00,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\input.dll

[2008/04/13 16:11:55 | 00,096,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inseng.dll

[2008/04/13 16:11:55 | 00,094,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iphlpapi.dll

[2008/04/13 16:11:55 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll

[2008/04/13 16:11:55 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetpp.dll

[2008/04/13 16:11:55 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipv6mon.dll

[2008/04/13 16:11:55 | 00,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ixsso.dll

[2008/04/13 16:11:55 | 00,047,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iyuv_32.dll

[2008/04/13 16:11:55 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetmib1.dll

[2008/04/13 16:11:55 | 00,027,648 | ---- | M] (Johnson-Grace Company) -- C:\WINDOWS\System32\jgpl400.dll

[2008/04/13 16:11:55 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ipxwan.dll

[2008/04/13 16:11:55 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetppui.dll

[2008/04/13 16:11:54 | 00,614,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\h323msp.dll

[2008/04/13 16:11:54 | 00,344,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hnetcfg.dll

[2008/04/13 16:11:54 | 00,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hnetwiz.dll

[2008/04/13 16:11:54 | 00,323,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll

[2008/04/13 16:11:54 | 00,274,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll

[2008/04/13 16:11:54 | 00,254,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icm32.dll

[2008/04/13 16:11:54 | 00,251,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll

[2008/04/13 16:11:54 | 00,216,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieaksie.dll

[2008/04/13 16:11:54 | 00,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hotplug.dll

[2008/04/13 16:11:54 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imagehlp.dll

[2008/04/13 16:11:54 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieakeng.dll

[2008/04/13 16:11:54 | 00,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ifmon.dll

[2008/04/13 16:11:54 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\glu32.dll

[2008/04/13 16:11:54 | 00,120,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\idq.dll

[2008/04/13 16:11:54 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iasrad.dll

[2008/04/13 16:11:54 | 00,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imm32.dll

[2008/04/13 16:11:54 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll

[2008/04/13 16:11:54 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ieencode.dll

[2008/04/13 16:11:54 | 00,080,384 | ---- | M] (Radius Inc.) -- C:\WINDOWS\System32\iccvid.dll

[2008/04/13 16:11:54 | 00,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll

[2008/04/13 16:11:54 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hlink.dll

[2008/04/13 16:11:54 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll

[2008/04/13 16:11:54 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iesetup.dll

[2008/04/13 16:11:54 | 00,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iernonce.dll

[2008/04/13 16:11:54 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\htui.dll

[2008/04/13 16:11:54 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hhsetup.dll

[2008/04/13 16:11:54 | 00,036,921 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imeshare.dll

[2008/04/13 16:11:54 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imgutil.dll

[2008/04/13 16:11:54 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\httpapi.dll

[2008/04/13 16:11:54 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hid.dll

[2008/04/13 16:11:54 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll

[2008/04/13 16:11:54 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\igmpagnt.dll

[2008/04/13 16:11:54 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hccoin.dll

[2008/04/13 16:11:53 | 01,082,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\esent.dll

[2008/04/13 16:11:53 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontext.dll

[2008/04/13 16:11:53 | 00,380,445 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\expsrv.dll

[2008/04/13 16:11:53 | 00,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\filemgmt.dll

[2008/04/13 16:11:53 | 00,186,880 | ---- | M] () -- C:\WINDOWS\System32\encdec.dll

[2008/04/13 16:11:53 | 00,183,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\els.dll

[2008/04/13 16:11:53 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\exts.dll

[2008/04/13 16:11:53 | 00,087,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fldrclnr.dll

[2008/04/13 16:11:53 | 00,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fontsub.dll

[2008/04/13 16:11:53 | 00,080,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\faultrep.dll

[2008/04/13 16:11:53 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fwcfg.dll

[2008/04/13 16:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eventlog.dll

[2008/04/13 16:11:53 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\extmgr.dll

[2008/04/13 16:11:53 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ersvc.dll

[2008/04/13 16:11:53 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\feclient.dll

[2008/04/13 16:11:53 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\encapi.dll

[2008/04/13 16:11:53 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\fltlib.dll

[2008/04/13 16:11:52 | 02,113,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdiagn.dll

[2008/04/13 16:11:52 | 01,504,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\diskcopy.dll

[2008/04/13 16:11:52 | 01,293,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsound3d.dll

[2008/04/13 16:11:52 | 01,227,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dx8vb.dll

[2008/04/13 16:11:52 | 00,650,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll

[2008/04/13 16:11:52 | 00,619,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dx7vb.dll

[2008/04/13 16:11:52 | 00,498,742 | ---- | M] () -- C:\WINDOWS\System32\dxmasf.dll

[2008/04/13 16:11:52 | 00,498,742 | ---- | M] () -- C:\WINDOWS\System32\dllcache\dxmasf.dll

[2008/04/13 16:11:52 | 00,379,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpmon.dll

[2008/04/13 16:11:52 | 00,375,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnet.dll

[2008/04/13 16:11:52 | 00,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsound.dll

[2008/04/13 16:11:52 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtmsft.dll

[2008/04/13 16:11:52 | 00,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\duser.dll

[2008/04/13 16:11:52 | 00,285,184 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmdlgs.dll

[2008/04/13 16:11:52 | 00,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsquery.dll

[2008/04/13 16:11:52 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dplayx.dll

[2008/04/13 16:11:52 | 00,212,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvoice.dll

[2008/04/13 16:11:52 | 00,205,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dxtrans.dll

[2008/04/13 16:11:52 | 00,200,704 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmdskmgr.dll

[2008/04/13 16:11:52 | 00,184,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll

[2008/04/13 16:11:52 | 00,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dinput8.dll

[2008/04/13 16:11:52 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsdmo.dll

[2008/04/13 16:11:52 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmime.dll

[2008/04/13 16:11:52 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll

[2008/04/13 16:11:52 | 00,158,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dinput.dll

[2008/04/13 16:11:52 | 00,155,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dskquoui.dll

[2008/04/13 16:11:52 | 00,142,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsprop.dll

[2008/04/13 16:11:52 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3svc.dll

[2008/04/13 16:11:52 | 00,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappcfg.dll

[2008/04/13 16:11:52 | 00,116,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvvox.dll

[2008/04/13 16:11:52 | 00,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsuiext.dll

[2008/04/13 16:11:52 | 00,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmstyle.dll

[2008/04/13 16:11:52 | 00,104,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmusic.dll

[2008/04/13 16:11:52 | 00,103,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmsynth.dll

[2008/04/13 16:11:52 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll

[2008/04/13 16:11:52 | 00,092,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dskquota.dll

[2008/04/13 16:11:52 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drmstor.dll

[2008/04/13 16:11:52 | 00,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmstor.dll

[2008/04/13 16:11:52 | 00,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmscript.dll

[2008/04/13 16:11:52 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsdmoprp.dll

[2008/04/13 16:11:52 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\digest.dll

[2008/04/13 16:11:52 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmcompos.dll

[2008/04/13 16:11:52 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnhupnp.dll

[2008/04/13 16:11:52 | 00,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll

[2008/04/13 16:11:52 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll

[2008/04/13 16:11:52 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpwsockx.dll

[2008/04/13 16:11:52 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll

[2008/04/13 16:11:52 | 00,052,224 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmutil.dll

[2008/04/13 16:11:52 | 00,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dssec.dll

[2008/04/13 16:11:52 | 00,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll

[2008/04/13 16:11:52 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\docprop2.dll

[2008/04/13 16:11:52 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dnsrslvr.dll

[2008/04/13 16:11:52 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eappprxy.dll

[2008/04/13 16:11:52 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll

[2008/04/13 16:11:52 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll

[2008/04/13 16:11:52 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmloader.dll

[2008/04/13 16:11:52 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapsvc.dll

[2008/04/13 16:11:52 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dispex.dll

[2008/04/13 16:11:52 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\eapolqec.dll

[2008/04/13 16:11:52 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dmband.dll

[2008/04/13 16:11:52 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3api.dll

[2008/04/13 16:11:52 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpmodemx.dll

[2008/04/13 16:11:52 | 00,023,552 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\System32\dmserver.dll

[2008/04/13 16:11:52 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpvacm.dll

[2008/04/13 16:11:52 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dswave.dll

[2008/04/13 16:11:52 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsntfy.dll

[2008/04/13 16:11:52 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ds32gt.dll

[2008/04/13 16:11:52 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drprov.dll

[2008/04/13 16:11:52 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3dlg.dll

[2008/04/13 16:11:51 | 01,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d9.dll

[2008/04/13 16:11:51 | 01,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll

[2008/04/13 16:11:51 | 01,179,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8.dll

[2008/04/13 16:11:51 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\danim.dll

[2008/04/13 16:11:51 | 00,824,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dim700.dll

[2008/04/13 16:11:51 | 00,792,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comres.dll

[2008/04/13 16:11:51 | 00,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbghelp.dll

[2008/04/13 16:11:51 | 00,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll

[2008/04/13 16:11:51 | 00,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comctl32.dll

[2008/04/13 16:11:51 | 00,599,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\crypt32.dll

[2008/04/13 16:11:51 | 00,539,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll

[2008/04/13 16:11:51 | 00,512,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptui.dll

[2008/04/13 16:11:51 | 00,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\confmsp.dll

[2008/04/13 16:11:51 | 00,326,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cscui.dll

[2008/04/13 16:11:51 | 00,282,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\devmgr.dll

[2008/04/13 16:11:51 | 00,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ddraw.dll

[2008/04/13 16:11:51 | 00,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comdlg32.dll

[2008/04/13 16:11:51 | 00,252,928 | ---- | M] () -- C:\WINDOWS\System32\compatui.dll

[2008/04/13 16:11:51 | 00,229,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\compstui.dll

[2008/04/13 16:11:51 | 00,167,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll

[2008/04/13 16:11:51 | 00,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\datime.dll

[2008/04/13 16:11:51 | 00,163,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\credui.dll

[2008/04/13 16:11:51 | 00,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpcsvc.dll

[2008/04/13 16:11:51 | 00,124,416 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgui.dll

[2008/04/13 16:11:51 | 00,111,104 | ---- | M] (Microsoft) -- C:\WINDOWS\System32\dgnet.dll

[2008/04/13 16:11:51 | 00,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbnetlib.dll

[2008/04/13 16:11:51 | 00,101,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cscdll.dll

[2008/04/13 16:11:51 | 00,097,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll

[2008/04/13 16:11:51 | 00,074,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptdlg.dll

[2008/04/13 16:11:51 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptnet.dll

[2008/04/13 16:11:51 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptsvc.dll

[2008/04/13 16:11:51 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll

[2008/04/13 16:11:51 | 00,059,904 | ---- | M] () -- C:\WINDOWS\System32\devenum.dll

[2008/04/13 16:11:51 | 00,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dataclen.dll

[2008/04/13 16:11:51 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptext.dll

[2008/04/13 16:11:51 | 00,039,424 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\System32\dfrgsnap.dll

[2008/04/13 16:11:51 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll

[2008/04/13 16:11:51 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll

[2008/04/13 16:11:51 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cryptdll.dll

[2008/04/13 16:11:51 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\csrsrv.dll

[2008/04/13 16:11:51 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dfsshlex.dll

[2008/04/13 16:11:51 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbnmpntw.dll

[2008/04/13 16:11:51 | 00,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll

[2008/04/13 16:11:51 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ddrawex.dll

[2008/04/13 16:11:51 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\davclnt.dll

[2008/04/13 16:11:51 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsrpcn.dll

[2008/04/13 16:11:51 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\credssp.dll

[2008/04/13 16:11:51 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dciman32.dll

[2008/04/13 16:11:51 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3d8thk.dll

[2008/04/13 16:11:50 | 02,091,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdosys.dll

[2008/04/13 16:11:50 | 01,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browseui.dll

[2008/04/13 16:11:50 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll

[2008/04/13 16:11:50 | 00,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatq.dll

[2008/04/13 16:11:50 | 00,457,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\certmgr.dll

[2008/04/13 16:11:50 | 00,344,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmdial32.dll

[2008/04/13 16:11:50 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\blackbox.dll

[2008/04/13 16:11:50 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\blackbox.dll

[2008/04/13 16:11:50 | 00,233,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll

[2008/04/13 16:11:50 | 00,226,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll

[2008/04/13 16:11:50 | 00,194,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\certcli.dll

[2008/04/13 16:11:50 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll

[2008/04/13 16:11:50 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cewmdm.dll

[2008/04/13 16:11:50 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cewmdm.dll

[2008/04/13 16:11:50 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdfview.dll

[2008/04/13 16:11:50 | 00,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\capesnpn.dll

[2008/04/13 16:11:50 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cic.dll

[2008/04/13 16:11:50 | 00,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll

[2008/04/13 16:11:50 | 00,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll

[2008/04/13 16:11:50 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\avifil32.dll

[2008/04/13 16:11:50 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cabview.dll

[2008/04/13 16:11:50 | 00,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browsewm.dll

[2008/04/13 16:11:50 | 00,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.dll

[2008/04/13 16:11:50 | 00,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browser.dll

[2008/04/13 16:11:50 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ciodm.dll

[2008/04/13 16:11:50 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\authz.dll

[2008/04/13 16:11:50 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cabinet.dll

[2008/04/13 16:11:50 | 00,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\atl.dll

[2008/04/13 16:11:50 | 00,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\clusapi.dll

[2008/04/13 16:11:50 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\basesrv.dll

[2008/04/13 16:11:50 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\camocx.dll

[2008/04/13 16:11:50 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\btpanui.dll

[2008/04/13 16:11:50 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cnbjmon.dll

[2008/04/13 16:11:50 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\audiosrv.dll

[2008/04/13 16:11:50 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmutil.dll

[2008/04/13 16:11:50 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll

[2008/04/13 16:11:50 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bthserv.dll

[2008/04/13 16:11:50 | 00,030,208 | ---- | M] (Adobe Systems) -- C:\WINDOWS\System32\atmlib.dll

[2008/04/13 16:11:50 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\batmeter.dll

[2008/04/13 16:11:50 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bthci.dll

[2008/04/13 16:11:50 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bidispl.dll

[2008/04/13 16:11:50 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmcfg32.dll

[2008/04/13 16:11:50 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmsetacl.dll

[2008/04/13 16:11:50 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll

[2008/04/13 16:11:50 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll

[2008/04/13 16:11:50 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll

[2008/04/13 16:11:50 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll

[2008/04/13 16:11:49 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\apphelp.dll

[2008/04/13 16:11:49 | 00,070,656 | ---- | M] () -- C:\WINDOWS\System32\amstream.dll

[2008/04/13 16:11:49 | 00,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\asycfilt.dll

[2008/04/13 16:11:49 | 00,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\alrsvc.dll

[2008/04/13 16:11:48 | 00,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\advapi32.dll

[2008/04/13 16:11:48 | 00,263,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsnt.dll

[2008/04/13 16:11:48 | 00,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\activeds.dll

[2008/04/13 16:11:48 | 00,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsldp.dll

[2008/04/13 16:11:48 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsldpc.dll

[2008/04/13 16:11:48 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll

[2008/04/13 16:11:48 | 00,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\aclui.dll

[2008/04/13 16:11:48 | 00,100,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\6to4svc.dll

[2008/04/13 16:11:48 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\advpack.dll

[2008/04/13 16:11:48 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\actxprxy.dll

[2008/04/13 16:11:48 | 00,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\adsmsext.dll

[2008/04/13 16:11:48 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\admparse.dll

[2008/04/13 16:11:24 | 00,706,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntdll.dll

[2008/04/13 16:11:19 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmp.ocx

[2008/04/13 16:11:19 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmp.ocx

[2008/04/13 16:11:15 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmi.dll

[2008/04/13 16:11:11 | 00,756,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winntbbu.dll

[2008/04/13 16:10:58 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\tdc.ocx

[2008/04/13 16:10:56 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sysmon.ocx

[2008/04/13 16:10:50 | 00,086,016 | ---- | M] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\sl_anet.acm

[2008/04/13 16:10:50 | 00,086,016 | ---- | M] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm

[2008/04/13 16:10:31 | 00,053,279 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcji32.dll

[2008/04/13 16:10:20 | 00,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msscript.ocx

[2008/04/13 16:10:08 | 00,844,314 | ---- | M] () -- C:\WINDOWS\System32\msdxm.ocx

[2008/04/13 16:10:08 | 00,844,314 | ---- | M] () -- C:\WINDOWS\System32\dllcache\msdxm.ocx

[2008/04/13 16:10:08 | 00,004,126 | ---- | M] () -- C:\WINDOWS\System32\msdxmlc.dll

[2008/04/13 16:10:08 | 00,004,126 | ---- | M] () -- C:\WINDOWS\System32\dllcache\msdxmlc.dll

[2008/04/13 16:10:06 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msaud32.acm

[2008/04/13 16:10:06 | 00,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm

[2008/04/13 16:10:06 | 00,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msctfime.ime

[2008/04/13 16:10:06 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msadp32.acm

[2008/04/13 16:10:06 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msafd.dll

[2008/04/13 16:09:57 | 00,290,816 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\l3codeca.acm

[2008/04/13 16:09:57 | 00,290,816 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm

[2008/04/13 16:09:55 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsno.dll

[2008/04/13 16:09:55 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsmsfi.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdukx.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdno1.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnec.dll

[2008/04/13 16:09:55 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdfi1.dll

[2008/04/13 16:09:55 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinmal.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt48.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmlt47.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinben.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdinbe1.dll

[2008/04/13 16:09:55 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll

[2008/04/13 16:09:55 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmaori.dll

[2008/04/13 16:09:43 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\imaadp32.acm

[2008/04/13 16:09:40 | 00,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\icmp.dll

[2008/04/13 16:09:36 | 00,545,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\hhctrl.ocx

[2008/04/13 16:09:33 | 00,009,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\framebuf.dll

[2008/04/13 16:09:20 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnlobby.dll

[2008/04/13 16:09:19 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpnaddr.dll

[2008/04/13 16:09:14 | 00,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\daxctle.ocx

[2008/04/13 16:09:05 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgmgr32.dll

[2008/04/13 16:08:58 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\asctrls.ocx

[2008/04/13 13:00:49 | 00,103,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dpcdll.dll

[2008/04/13 11:28:39 | 00,175,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdbss.sys

[2008/04/13 11:21:00 | 00,162,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\netbt.sys

[2008/04/13 11:20:42 | 00,091,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndiswan.sys

[2008/04/13 11:20:37 | 00,182,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndis.sys

[2008/04/13 11:19:48 | 00,048,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\raspptp.sys

[2008/04/13 11:19:43 | 00,051,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rasl2tp.sys

[2008/04/13 11:19:42 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipsec.sys

[2008/04/13 11:19:41 | 00,146,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys

[2008/04/13 11:18:00 | 00,052,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\i8042prt.sys

[2008/04/13 11:17:18 | 00,083,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdmaud.sys

[2008/04/13 11:17:05 | 00,105,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mup.sys

[2008/04/13 11:16:36 | 00,141,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ks.sys

[2008/04/13 11:16:22 | 00,049,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\classpnp.sys

[2008/04/13 11:15:55 | 00,060,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sysaudio.sys

[2008/04/13 11:15:53 | 00,574,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ntfs.sys

[2008/04/13 11:15:45 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\serial.sys

[2008/04/13 11:14:29 | 00,143,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fastfat.sys

[2008/04/13 11:14:21 | 00,063,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cdfs.sys

[2008/04/13 11:00:19 | 00,030,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\modem.sys

[2008/04/13 11:00:05 | 00,019,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdi.sys

[2008/04/13 10:57:32 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\raspppoe.sys

[2008/04/13 10:57:29 | 00,040,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndproxy.sys

[2008/04/13 10:57:27 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\asyncmac.sys

[2008/04/13 10:57:27 | 00,010,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndistapi.sys

[2008/04/13 10:57:21 | 00,034,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wanarp.sys

[2008/04/13 10:57:15 | 00,152,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipnat.sys

[2008/04/13 10:57:07 | 00,020,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ipinip.sys

[2008/04/13 10:56:49 | 00,030,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys

[2008/04/13 10:56:49 | 00,030,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismp.sys

[2008/04/13 10:56:49 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023x.sys

[2008/04/13 10:56:49 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usb8023.sys

[2008/04/13 10:56:38 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\psched.sys

[2008/04/13 10:56:32 | 00,035,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msgpc.sys

[2008/04/13 10:56:06 | 00,088,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nwlnkipx.sys

[2008/04/13 10:56:02 | 00,034,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\netbios.sys

[2008/04/13 10:56:01 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tunmp.sys

[2008/04/13 10:55:58 | 00,014,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndisuio.sys

[2008/04/13 10:54:28 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irenum.sys

[2008/04/13 10:53:53 | 00,264,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\http.sys

[2008/04/13 10:53:34 | 00,036,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ip6fw.sys

[2008/04/13 10:53:23 | 00,071,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bridge.sys

[2008/04/13 10:53:09 | 00,040,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nmnt.sys

[2008/04/13 10:51:30 | 00,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atmlane.sys

[2008/04/13 10:51:25 | 00,061,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nic1394.sys

[2008/04/13 10:51:25 | 00,060,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\arp1394.sys

[2008/04/13 10:51:25 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atmarpc.sys

[2008/04/13 10:46:33 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthmodem.sys

[2008/04/13 10:46:33 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthenum.sys

[2008/04/13 10:46:32 | 00,059,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rfcomm.sys

[2008/04/13 10:46:30 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidbth.sys

[2008/04/13 10:46:29 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthusb.sys

[2008/04/13 10:46:25 | 00,085,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\nabtsfec.sys

[2008/04/13 10:46:24 | 00,019,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wstcodec.sys

[2008/04/13 10:46:23 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ccdecode.sys

[2008/04/13 10:46:23 | 00,011,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\slip.sys

[2008/04/13 10:46:22 | 00,015,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mpe.sys

[2008/04/13 10:46:22 | 00,010,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ndisip.sys

[2008/04/13 10:46:21 | 00,015,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\streamip.sys

[2008/04/13 10:46:21 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bdasup.sys

[2008/04/13 10:46:20 | 00,121,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbvideo.sys

[2008/04/13 10:46:18 | 00,061,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ohci1394.sys

[2008/04/13 10:46:18 | 00,053,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\1394bus.sys

[2008/04/13 10:46:09 | 00,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msdv.sys

[2008/04/13 10:46:07 | 00,025,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sonydcam.sys

[2008/04/13 10:45:43 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbintel.sys

[2008/04/13 10:45:41 | 00,025,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd2.sys

[2008/04/13 10:45:40 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbcamd.sys

[2008/04/13 10:45:39 | 00,032,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys

[2008/04/13 10:45:38 | 00,026,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbstor.sys

[2008/04/13 10:45:37 | 00,059,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbhub.sys

[2008/04/13 10:45:36 | 00,143,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbport.sys

[2008/04/13 10:45:35 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbehci.sys

[2008/04/13 10:45:35 | 00,020,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbuhci.sys

[2008/04/13 10:45:27 | 00,010,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidusb.sys

[2008/04/13 10:45:26 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidclass.sys

[2008/04/13 10:45:26 | 00,019,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidir.sys

[2008/04/13 10:45:22 | 00,024,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidparse.sys

[2008/04/13 10:45:15 | 00,049,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\stream.sys

[2008/04/13 10:45:14 | 00,060,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys

[2008/04/13 10:45:13 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmkaud.sys

[2008/04/13 10:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys

[2008/04/13 10:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys

[2008/04/13 10:45:09 | 00,172,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kmixer.sys

[2008/04/13 10:45:09 | 00,056,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swmidi.sys

[2008/04/13 10:45:07 | 00,006,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\splitter.sys

[2008/04/13 10:45:01 | 00,052,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dmusic.sys

[2008/04/13 10:44:59 | 00,017,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\watchdog.sys

[2008/04/13 10:44:48 | 00,799,744 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\drivers\dmboot.sys

[2008/04/13 10:44:46 | 00,153,344 | ---- | M] (Microsoft Corp., Veritas Software) -- C:\WINDOWS\System32\drivers\dmio.sys

[2008/04/13 10:44:40 | 00,081,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\videoprt.sys

[2008/04/13 10:44:40 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\vga.sys

[2008/04/13 10:43:55 | 00,014,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wacompen.sys

[2008/04/13 10:41:01 | 00,052,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\volsnap.sys

[2008/04/13 10:40:58 | 00,042,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\imapi.sys

[2008/04/13 10:40:50 | 00,014,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tape.sys

[2008/04/13 10:40:49 | 00,019,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\partmgr.sys

[2008/04/13 10:40:48 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sbp2port.sys

[2008/04/13 10:40:48 | 00,043,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys

[2008/04/13 10:40:48 | 00,011,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sfloppy.sys

[2008/04/13 10:40:48 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_mmc.sys

[2008/04/13 10:40:47 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\disk.sys

[2008/04/13 10:40:47 | 00,011,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffdisk.sys

[2008/04/13 10:40:47 | 00,011,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sffp_sd.sys

[2008/04/13 10:40:46 | 00,062,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\cdrom.sys

[2008/04/13 10:40:44 | 00,014,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\diskdump.sys

[2008/04/13 10:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\atapi.sys

[2008/04/13 10:40:30 | 00,096,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\scsiport.sys

[2008/04/13 10:40:29 | 00,024,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pciidex.sys

[2008/04/13 10:40:29 | 00,005,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\intelide.sys

[2008/04/13 10:40:27 | 00,057,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\redbook.sys

[2008/04/13 10:40:25 | 00,027,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fdc.sys

[2008/04/13 10:40:25 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\flpydisk.sys

[2008/04/13 10:40:12 | 00,015,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\serenum.sys

[2008/04/13 10:40:10 | 00,080,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\parport.sys

[2008/04/13 10:39:53 | 00,004,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swenum.sys

[2008/04/13 10:39:52 | 00,007,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mskssrv.sys

[2008/04/13 10:39:51 | 00,004,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspqm.sys

[2008/04/13 10:39:50 | 00,005,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mstee.sys

[2008/04/13 10:39:50 | 00,005,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mspclock.sys

[2008/04/13 10:39:47 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kbdclass.sys

[2008/04/13 10:39:47 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mouclass.sys

[2008/04/13 10:39:46 | 00,384,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\update.sys

[2008/04/13 10:39:46 | 00,042,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mountmgr.sys

[2008/04/13 10:38:29 | 00,071,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\dxg.sys

[2008/04/13 10:37:09 | 00,369,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec

[2008/04/13 10:36:52 | 00,073,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sr.sys

[2008/04/13 10:36:46 | 00,015,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mssmbios.sys

[2008/04/13 10:36:44 | 00,079,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sdbus.sys

[2008/04/13 10:36:44 | 00,068,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pci.sys

[2008/04/13 10:36:43 | 00,120,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\pcmcia.sys

[2008/04/13 10:36:41 | 00,063,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mf.sys

[2008/04/13 10:36:41 | 00,037,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\isapnp.sys

[2008/04/13 10:36:40 | 00,046,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gagp30kx.sys

[2008/04/13 10:36:40 | 00,044,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\uagp35.sys

[2008/04/13 10:36:40 | 00,042,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\viaagp.sys

[2008/04/13 10:36:39 | 00,044,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agpcpq.sys

[2008/04/13 10:36:38 | 00,042,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\alim1541.sys

[2008/04/13 10:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\agp440.sys

[2008/04/13 10:36:35 | 00,187,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\acpi.sys

[2008/04/13 10:36:34 | 00,005,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys

[2008/04/13 10:35:22 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\pidgen.dll

[2008/04/13 10:33:28 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fips.sys

[2008/04/13 10:32:59 | 00,129,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fltmgr.sys

[2008/04/13 10:32:51 | 00,196,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpdr.sys

[2008/04/13 10:32:44 | 00,180,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mrxdav.sys

[2008/04/13 10:32:39 | 00,030,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\npfs.sys

[2008/04/13 10:32:39 | 00,019,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msfs.sys

[2008/04/13 10:32:36 | 00,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\udfs.sys

[2008/04/13 10:31:43 | 00,092,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ksecdd.sys

[2008/04/13 10:31:35 | 00,007,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\kd1394.dll

[2008/04/13 10:31:33 | 00,037,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\amdk7.sys

[2008/04/13 10:31:32 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\amdk6.sys

[2008/04/13 10:31:32 | 00,036,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\crusoe.sys

[2008/04/13 10:31:32 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\intelppm.sys

[2008/04/13 10:31:31 | 00,042,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\p3.sys

[2008/04/13 10:31:30 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\processr.sys

[2008/04/13 10:31:28 | 00,134,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\HAL.DLL

[2008/04/13 10:30:46 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcrt40.dll

[2008/04/13 10:14:58 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll

[2008/04/13 09:39:29 | 00,438,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpob2res.dll

[2008/04/13 09:39:26 | 00,689,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll

[2008/04/13 09:39:24 | 02,897,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp2res.dll

[2008/04/13 09:39:24 | 02,897,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsp2res.dll

[2008/04/13 09:39:22 | 00,187,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp1res.dll

[2008/04/13 09:37:57 | 00,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\rsaenh.dll

[2008/04/13 09:37:57 | 00,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rsaenh.dll

[2008/04/13 09:37:57 | 00,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dssenh.dll

[2008/04/13 09:28:53 | 00,066,725 | ---- | M] () -- C:\WINDOWS\System32\dllcache\revert.wmz

[2008/04/13 09:28:21 | 02,940,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmploc.dll

[2008/04/13 09:28:21 | 02,940,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmploc.dll

[2008/04/13 09:28:15 | 00,184,959 | ---- | M] () -- C:\WINDOWS\System32\dllcache\compact.wmz

[2008/04/13 09:27:18 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll

[2008/04/13 09:27:18 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll

[2008/04/13 09:26:27 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cliconfg.rll

[2008/04/13 09:26:18 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sqlsrv32.rll

[2008/04/13 09:26:09 | 00,004,310 | ---- | M] () -- C:\WINDOWS\System32\odbcconf.rsp

[2008/04/13 09:26:07 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mscpx32r.dll

[2008/04/13 09:26:05 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcint.dll

[2008/04/13 09:26:05 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\odbcp32r.dll

[2008/04/13 09:24:16 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\simpdata.tlb

[2008/04/13 09:24:14 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msorc32r.dll

[2008/04/13 09:24:00 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msdatsrc.tlb

[2008/04/13 09:23:38 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asferror.dll

[2008/04/13 09:23:38 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\asferror.dll

[2008/04/13 09:23:24 | 00,168,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wmerror.dll

[2008/04/13 09:23:24 | 00,168,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmerror.dll

[2008/04/13 09:23:23 | 00,029,070 | ---- | M] () -- C:\WINDOWS\System32\dllcache\wmp.inf

[2008/04/13 09:21:32 | 00,733,696 | ---- | M] () -- C:\WINDOWS\System32\qedwipes.dll

[2008/04/13 09:09:30 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dsprpres.dll

[2008/04/13 09:03:24 | 00,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\browselc.dll

[2008/04/13 09:03:19 | 00,549,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shdoclc.dll

[2008/04/13 08:48:53 | 01,647,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winbrand.dll

[2008/04/13 08:45:30 | 00,216,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\moricons.dll

[2008/04/13 08:39:23 | 00,142,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\aec.sys

[2008/04/13 08:26:26 | 01,351,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.tlb

[2008/04/13 08:26:26 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtmler.dll

[2008/04/13 08:23:31 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msprivs.dll

[2008/04/13 08:22:12 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll

[2008/04/13 07:42:06 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\stdole2.tlb

[2008/04/13 07:39:43 | 00,884,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msimsg.dll

[2008/04/11 11:04:26 | 00,691,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcomm.dll

[2008/04/11 11:04:26 | 00,691,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll

[2008/03/24 20:50:58 | 00,621,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswstr10.dll

[2008/03/24 20:50:58 | 00,621,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswstr10.dll

[2008/03/24 20:50:58 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msxbde40.dll

[2008/03/24 20:50:58 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxbde40.dll

[2008/03/24 20:50:57 | 00,838,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswdat10.dll

[2008/03/24 20:50:57 | 00,838,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswdat10.dll

[2008/03/24 20:50:55 | 00,264,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstext40.dll

[2008/03/24 20:50:55 | 00,264,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstext40.dll

[2008/03/24 20:50:52 | 00,559,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrepl40.dll

[2008/03/24 20:50:52 | 00,559,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrepl40.dll

[2008/03/24 20:50:49 | 00,322,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd3x40.dll

[2008/03/24 20:50:49 | 00,322,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd3x40.dll

[2008/03/24 20:50:47 | 00,432,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msrd2x40.dll

[2008/03/24 20:50:47 | 00,432,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrd2x40.dll

[2008/03/24 20:50:45 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mspbde40.dll

[2008/03/24 20:50:45 | 00,355,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspbde40.dll

[2008/03/24 20:50:44 | 00,219,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msltus40.dll

[2008/03/24 20:50:44 | 00,219,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msltus40.dll

[2008/03/24 20:50:42 | 00,248,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjtes40.dll

[2008/03/24 20:50:42 | 00,248,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjtes40.dll

[2008/03/24 20:50:42 | 00,060,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjter40.dll

[2008/03/24 20:50:42 | 00,060,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjter40.dll

[2008/03/24 20:50:40 | 00,355,112 | ---- | M] () -- C:\WINDOWS\System32\msjetoledb40.dll

[2008/03/24 20:50:40 | 00,355,112 | ---- | M] () -- C:\WINDOWS\System32\dllcache\msjetol1.dll

[2008/03/24 20:50:34 | 01,516,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msjet40.dll

[2008/03/24 20:50:34 | 01,516,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjet40.dll

[2008/03/24 20:50:30 | 00,326,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msexcl40.dll

[2008/03/24 20:50:30 | 00,326,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexcl40.dll

[2008/03/24 20:50:28 | 00,518,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msexch40.dll

[2008/03/24 20:50:28 | 00,518,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msexch40.dll

[2008/03/24 20:50:25 | 00,554,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll

[2008/02/29 02:13:24 | 00,036,880 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LMouFilt.Sys

[2008/02/29 02:13:16 | 00,035,344 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LHidFilt.Sys

[2008/02/29 02:12:48 | 00,020,240 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\L8042Kbd.sys

[2008/02/29 02:12:38 | 00,076,304 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\KHALMNPR.Exe

[2008/01/17 08:34:01 | 00,093,264 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys

[2007/11/30 04:39:22 | 00,017,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll

[2007/09/17 00:48:10 | 00,001,261 | ---- | M] () -- C:\WINDOWS\System32\pid.inf

[2007/08/10 19:46:18 | 00,026,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe

[2007/07/12 21:33:58 | 00,087,552 | ---- | M] () -- C:\WINDOWS\System32\cpwmon2k.dll

[2007/06/25 21:58:10 | 00,067,374 | ---- | M] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm

[2007/06/22 11:34:02 | 01,419,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01005.dll

[2007/04/19 11:26:00 | 01,703,936 | ---- | M] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2007/04/19 11:26:00 | 01,626,112 | ---- | M] () -- C:\WINDOWS\System32\nwiz.exe

[2007/04/19 11:26:00 | 01,474,560 | ---- | M] () -- C:\WINDOWS\System32\nview.dll

[2007/04/19 11:26:00 | 01,339,392 | ---- | M] () -- C:\WINDOWS\System32\nvdspsch.exe

[2007/04/19 11:26:00 | 01,019,904 | ---- | M] () -- C:\WINDOWS\System32\nvwimg.dll

[2007/04/19 11:26:00 | 00,581,632 | ---- | M] () -- C:\WINDOWS\System32\nvhwvid.dll

[2007/04/19 11:26:00 | 00,466,944 | ---- | M] () -- C:\WINDOWS\System32\nvshell.dll

[2007/04/19 11:26:00 | 00,442,368 | ---- | M] () -- C:\WINDOWS\System32\nvappbar.exe

[2007/04/19 11:26:00 | 00,425,984 | ---- | M] () -- C:\WINDOWS\System32\keystone.exe

[2007/04/19 11:26:00 | 00,286,720 | ---- | M] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2007/04/19 11:26:00 | 00,212,992 | ---- | M] () -- C:\WINDOWS\System32\nvapi.dll

[2007/04/19 11:26:00 | 00,073,728 | ---- | M] () -- C:\WINDOWS\System32\nvtuicpl.cpl

[2007/04/19 11:26:00 | 00,017,056 | ---- | M] () -- C:\WINDOWS\System32\nvdisp.nvu

[2007/04/02 19:14:47 | 00,981,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mfc42u.dll

[2007/04/02 09:51:05 | 00,023,195 | ---- | M] () -- C:\WINDOWS\System32\dllcache\wmplay.chm

[2006/12/30 17:26:44 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\gpkrsrc.dll

[2006/11/02 06:22:54 | 00,492,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdf01000.sys

[2006/11/02 06:22:52 | 00,032,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdfldr.sys

[2006/10/26 18:56:10 | 00,032,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll

[2006/10/26 13:42:36 | 00,035,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ESN.DLL

[2006/10/26 13:10:08 | 01,190,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20.DLL

[2006/10/26 13:10:06 | 00,033,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\FM20ENU.DLL

[2006/10/26 12:45:04 | 00,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WISPTIS.EXE

[2006/10/26 12:45:04 | 00,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\INKED.DLL

[2006/07/24 09:50:40 | 00,047,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\VBAME.DLL

[2006/07/24 09:50:40 | 00,039,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\SCP32.DLL

[2006/07/24 09:50:38 | 00,125,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MSSTDFMT.DLL

[2005/06/24 16:05:34 | 00,016,958 | ---- | M] () -- C:\WINDOWS\System32\evga.ico

[2004/12/26 11:19:19 | 00,423,424 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Max\Desktop\OTViewIt.exe

[2004/12/26 11:14:20 | 00,088,723 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2004/12/26 11:13:52 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2004/12/26 11:13:46 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2004/12/26 11:13:44 | 79,648,7680 | -HS- | M] () -- C:\hiberfil.sys

[2004/12/26 03:30:45 | 01,576,002 | -H-- | M] () -- C:\Documents and Settings\Max\Local Settings\Application Data\IconCache.db

[2004/12/25 22:54:56 | 00,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk

[2004/12/25 17:00:15 | 00,925,696 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\votado co[2]...pps

[2004/12/25 16:59:47 | 00,000,098 | ---- | M] () -- C:\WINDOWS\System32\B4eocaps.SRG

[2004/12/25 16:48:10 | 02,079,744 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\Navidad2008.pps

[2004/12/25 16:47:04 | 00,398,336 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\Cumplea_osNavidad.pps

[2004/12/25 06:39:11 | 00,240,496 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\wpcap.dll

[2004/12/25 06:39:11 | 00,042,000 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\drivers\npf.sys

[2004/12/25 06:39:11 | 00,013,531 | ---- | M] () -- C:\WINDOWS\System32\wacbult.exe

[2004/12/25 06:39:10 | 00,088,952 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\Packet.dll

[2004/12/25 06:39:10 | 00,068,480 | ---- | M] (CACE Technologies) -- C:\WINDOWS\System32\WanPacket.dll

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\ZGWZ.PIF

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\WINDOWS\System32\spoolsv.exe

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\WINDOWS\System32\dllcache\spoolsv.exe

[2004/12/25 00:04:17 | 00,020,680 | -HS- | M] () -- C:\sytseem

[2004/12/24 21:42:56 | 29,775,112 | ---- | M] () -- C:\Documents and Settings\Max\Desktop\setupeng.exe

[2004/12/24 19:34:34 | 00,000,296 | ---- | M] () -- C:\WINDOWS\system.ini

[2004/12/24 19:33:15 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2004/12/24 18:56:08 | 12,861,144 | ---- | M] (Emsi Software GmbH ) -- C:\Documents and Settings\Max\Desktop\a2FreeSetup.exe

[2004/12/24 16:31:09 | 00,002,560 | ---- | M] () -- C:\WINDOWS\System32\gscpx32r.det

[2004/12/24 16:16:00 | 00,000,032 | ---- | M] () -- C:\WINDOWS\System32\ormsgse.axz

[2004/12/24 15:59:35 | 00,000,032 | ---- | M] () -- C:\WINDOWS\System32\gprmsgse.axz

[2004/12/24 15:41:44 | 00,137,728 | ---- | M] () -- C:\Documents and Settings\Max\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2004/12/24 15:31:53 | 00,013,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\Atieccx.sys

[2004/12/24 15:30:34 | 00,020,680 | -HS- | M] () -- C:\ZGVZ.PIF

[2004/12/24 15:30:34 | 00,020,680 | -HS- | M] () -- C:\tm.sa

[2004/12/24 15:29:42 | 00,012,800 | ---- | M] () -- C:\WINDOWS\System32\dbwqsuio.dll

[2004/12/24 15:28:25 | 00,000,151 | -HS- | M] () -- C:\AUTORUN.INF

< End of report >

[Need Help Removing A Virus[RESOLVED]]

Here's the MBAM log:

Malwarebytes' Anti-Malware 1.31

Database version: 1542

Windows 5.1.2600 Service Pack 3

12/25/2004 6:51:04 PM

mbam-log-2004-12-25 (18-51-04).txt

Scan type: Full Scan (C:\|D:\|)

Objects scanned: 118520

Time elapsed: 31 minute(s), 51 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 59

Registry Values Infected: 0

Registry Data Items Infected: 2

Folders Infected: 0

Files Infected: 3

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\Interface\{385ab8c4-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Typelib\{385ab8c5-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{285ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Trojan.BHO) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11f09afd-75ad-4e51-ab43-e09e9351ce16} (Trojan.Clicker) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\IDSCNP (Malware.Trace) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AutoRun.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwProxy.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32kui.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360rpt.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360Safe.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360tray.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Iparmor.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAV32.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPFW.EXE (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVMonXP.kxp (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVSrvXP.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVwsc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapsvc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PFW.EXE (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rav.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AntiArp.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvMonitor.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.com (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCenter.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HijackThis.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVStart.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KMailMon.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFWSvc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KRegEx.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KWatch.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mmsk.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32krn.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavStub.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RfwMain.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwsrv.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rsaupd.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\runiep.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojanDetector.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Trojanwall.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojDie.kxp (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360safebox.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\QQDoctor.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\safeboxTray.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\kissvc.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwstub.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\icesword.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ArSwp.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VPTray.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AST.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavService.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFUpd.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GuardField.exe (Security.Hijack) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VPC32.exe (Security.Hijack) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: c:\windows\system32\userinit.exe -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: system32\userinit.exe -> Quarantined and deleted successfully.

Folders Infected:

(No malicious items detected)

Files Infected:

C:\WINDOWS\Rose\pctools_20041225_7866.dll (Adware.Cinmus) -> Delete on reboot.

C:\WINDOWS\system32\d3d1caps.SRG (Stolen.Data) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\mprmsgse.axz (Adware.Cinmus) -> Quarantined and deleted successfully.

and here's the Hijacklogthis log:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 6:59:54 PM, on 12/25/2004

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\explorer.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\PROGRAM FILES\A-SQUARED FREE\a2service.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe

C:\WINDOWS\System32\ezSP_Px.exe

C:\WINDOWS\AGRSMMSG.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sony.com/vaiopeople

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.sony.com/vaiopeople

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MI1933~1\Office12\GRA8E1~1.DLL

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe

O4 - HKLM\..\Run: [CreateCD_Reminder] C:\WINDOWS\Sonysys\VAIO Recovery\reminder.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe

O4 - HKLM\..\Run: [ZTgServerSwitch] "c:\program files\support.com\client\bin\tgcmd.exe" /server

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe

O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe

O4 - HKLM\..\Run: [VAIO Recovery] C:\Windows\Sonysys\VAIO Recovery\PartSeal.exe

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [dvd43] C:\Program Files\dvd43\dvd43_tray.exe

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Max\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKLM\..\Policies\Explorer\Run: [explorer] C:\WINDOWS\system32\wuauclt.exe

O4 - HKLM\..\Policies\Explorer\Run: [internetnet] C:\WINDOWS\system32\spoolsv.exe

O4 - Startup: Dropbox.lnk = C:\Program Files\Dropbox\Dropbox.exe

O4 - Startup: Product Registration.lnk = C:\Program Files\Common Files\LogiShared\eReg\SetPoint\eReg.exe

O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe

O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE

O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MI1933~1\Office12\GR99D3~1.DLL

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\PROGRAM FILES\A-SQUARED FREE\a2service.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe

O23 - Service: VAIO Media Music Server (VAIOMediaPlatform-MusicServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Music\SSSvr.exe

O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Media Photo Server (VAIOMediaPlatform-PhotoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Photo\appsrv\PhotoAppSrv.exe

O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

O23 - Service: VAIO Media Video Server (VAIOMediaPlatform-VideoServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Video\GPVSvr.exe

O23 - Service: VAIO Media Video Server (HTTP) (VAIOMediaPlatform-VideoServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe

O23 - Service: VAIO Media Video Server (UPnP) (VAIOMediaPlatform-VideoServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe

--

End of file - 8738 bytes

[Need Help Removing A Virus[RESOLVED]]

Actually I made sure I updated MBAM before running it and posting that log, same as with Hijackthis log, but since you ask I will do it again.

Edit:

Thx for the heads up, there was actually a new update which I downloaded and now I'm proceeding with the full scan

[Need Help Removing A Virus[RESOLVED]]

As an additional detail there's a virus message at the right bottom of my screen that says:

C:\ZGWZ.PIF\[uPX] contains sample of 'Win32:Warezov-MF [Wrm]'!

D:\ZGWZ.PIF\[uPX] contains sample of 'Win32:Warezov-MF [Wrm]'!

[Need Help Removing A Virus[RESOLVED]]

I am MoNsTeReNeRgY22 and I will be assisting you with your computer problem today.

Can you please post the log from MBAM.

thx for helping, here's the MBAM log:

Malwarebytes' Anti-Malware 1.26

Database version: 1113

Windows 5.1.2600 Service Pack 3

12/25/2004 12:00:23 AM

mbam-log-2004-12-25 (00-00-13).txt

Scan type: Full Scan (C:\|D:\|)

Objects scanned: 110663

Time elapsed: 32 minute(s), 25 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 74

Registry Values Infected: 0

Registry Data Items Infected: 2

Folders Infected: 1

Files Infected: 10

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\newadpopup.toolbardetector (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\TypeLib\{de2267bd-b163-407f-9e8d-6adec771e7ab} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{0ad3ab16-6d0e-4f04-8660-fb1f36bc2dc0} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{2f685b36-c53a-4653-9231-1dae5736de45} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{50c4cdd9-22d7-49ff-ac6d-7d4d528a3ab2} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{11f09afd-75ad-4e51-ab43-e09e9351ce16} (Trojan.Clicker) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11f09afd-75ad-4e51-ab43-e09e9351ce16} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{34a12a06-48c0-420d-8f11-73552ee9631a} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{cde9eb54-a08e-4570-b748-13f5ddb5781c} (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newadpopup.toolbardetector.1 (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newszadzpopup.bqlogc (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newszadzpopup.bqlogc.1 (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newzbobomediapop.popboco (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\newzbobomediapop.popboco.1 (Trojan.Clicker) -> No action taken.

HKEY_CLASSES_ROOT\Interface\{385ab8c4-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_CLASSES_ROOT\Typelib\{385ab8c5-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_CLASSES_ROOT\CLSID\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{295ab8c6-fb22-4d17-8834-064e2ba0a6f0} (Adware.Cinmus) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\newpush (Adware.CPush) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\cpush (Adware.CPush) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\MicroPlugins (Malware.Trace) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\IDSCNP (Malware.Trace) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ContentMatch (Adware.CPush) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AutoRun.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwProxy.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32kui.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360rpt.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360Safe.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360tray.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Iparmor.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAV32.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVPFW.EXE (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVMonXP.kxp (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVSrvXP.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KVwsc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Navapsvc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PFW.EXE (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rav.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AntiArp.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvMonitor.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\avp.com (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CCenter.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\HijackThis.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVStart.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KMailMon.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KPFWSvc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KRegEx.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KWatch.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mmsk.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nod32krn.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavStub.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RfwMain.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwsrv.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Rsaupd.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\runiep.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojanDetector.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Trojanwall.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrojDie.kxp (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\360safebox.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\QQDoctor.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\safeboxTray.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\kissvc.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rfwstub.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\icesword.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ArSwp.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VPTray.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AST.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\RavService.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GFUpd.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GuardField.exe (Security.Hijack) -> No action taken.

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\acpidisk (Trojan.Agent) -> No action taken.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: c:\windows\system32\userinit.exe -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: system32\userinit.exe -> No action taken.

Folders Infected:

C:\Program Files\Common Files\PushWare (Adware.CPush) -> No action taken.

Files Infected:

C:\Program Files\Common Files\PushWare\cpush.dll (Trojan.Clicker) -> No action taken.

C:\WINDOWS\Rose\pctools_20041224_7866.dll (Adware.Cinmus) -> No action taken.

C:\WINDOWS\system32\conime.exe (Spyware.OnlineGames) -> No action taken.

C:\WINDOWS\Fonts\svchost.exe (Spyware.OnlineGames) -> No action taken.

C:\WINDOWS\Downloaded Program Files\explorer.exe (Spyware.OnlineGames) -> No action taken.

C:\Program Files\Common Files\PushWare\Uninst.exe (Adware.CPush) -> No action taken.

C:\WINDOWS\system32\d3d1caps.SRG (Stolen.Data) -> No action taken.

C:\WINDOWS\system32\drivers\beep.sys (Fake.Beep.Sys) -> No action taken.

C:\WINDOWS\system32\mprmsgse.axz (Adware.Cinmus) -> No action taken.

C:\WINDOWS\system32\drivers\acpidisk.sys (Trojan.Agent) -> No action taken.

[Need Help Removing A Virus]

ok thx for the reminder shanenin, I'll be moving it to the hijackthis subforum.