lashaun84
-
Content Count
34 -
Joined
-
Last visited
Content Type
Profiles
Forums
Calendar
Posts posted by lashaun84
-
-
i completed this in internet explorer but here is the url
-
windows media player and in firefox even when i try to do im on my yahoo account it goes very slow i have to wait for it to catch up with the writing other than that everything has been moving pretty fast
-
it's running a bit faster but when i try to play video clips it doesn't work right like it's spaced starting and stopping i don't know what that has to do with the way it's running but i want it to go without the starting and stopping
-
__c0013A16.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0019544.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00210E4.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0023CC6.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0025964.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c002A68A.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c002F1E4.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0034F69.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0042D21.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0044C2B.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c004AF7B.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c004C291.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0051F8F.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0052589.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c005670D.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0058519.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0059AEE.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c005E189.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0061FB5.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0065744.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0068A40.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c006961B.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c006FE92.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c007592E.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c007D907.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0086EC0.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c008D81A.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c008E442.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00912FE.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0094E24.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c0096412.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c009AF9A.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c009CFE2.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c009E490.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c009EE1C.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00A024E.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00A481B.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00A4916.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00A5BC1.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00A6853.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00AA101.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00AA59C.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00B4731.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00B7984.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00BB0C4.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00BBF55.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00BE2B5.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00C3440.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00C4CC1.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00C7EFE.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00C9254.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00CA6E4.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00D7B79.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00DB189.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00DB1B2.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00DF600.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00E6129.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00E65D1.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00E8841.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00EA9A1.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00F38C4.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00F3964.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00F4BC0.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00F6B82.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00F7A7A.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
__c00FF2EC.dat;C:\!FixIEDef;Probably Trojan.Packed.338;;
SSC.exe\data005;C:\aolextras\SSC.exe;Probably BACKDOOR.Trojan;;
SSC.exe;C:\aolextras;Archive contains infected objects;Moved.;
ComboFix.exe/data002\32788R22FWJFW\FIND3M.bat;C:\Documents and Settings\Owner\Desktop\ComboFix.exe/data002;Probably BATCH.Virus;;
data002;C:\Documents and Settings\Owner\Desktop;Archive contains infected objects;;
ComboFix.exe;C:\Documents and Settings\Owner\Desktop;Container contains infected objects;Moved.;
SDFix.exe\SDFix\apps\Process.exe;C:\Documents and Settings\Owner\Desktop\Extra Files\SDFix.exe;Tool.Prockill;;
SDFix.exe;C:\Documents and Settings\Owner\Desktop\Extra Files;Archive contains infected objects;Moved.;
win32.exe;C:\Documents and Settings\Owner\Desktop\Extra Files;Trojan.Packed.375;Deleted.;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data003;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.4;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data008;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MWS.75;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data009;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.7;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data010;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MWS.82;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data011;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.Websearch.7;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data012;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.Websearch.35;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data013;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MWS.74;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data014;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MWS.76;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data015;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.14;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data016;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.11;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data020;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.8;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data021;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.10;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data022;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.Msearch;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data023;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.9;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data025;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MWS;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data028;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.15;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data031;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.MyWebSearch.12;;
IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe\data032;C:\Documents and Settings\Owner\My Documents\IWONSetup2.3.50.45.ZLfox000.exe/data001/mwsSetup.CommonCodebase.exe;Adware.Websearch.8;;
mwsSetup.CommonCodebase.exe;C:\Documents and Settings\Owner\My Documents;Container contains infected objects;;
data001;C:\Documents and Settings\Owner\My Documents;Archive contains infected objects;;
IWONSetup2.3.50.45.ZLfox000.exe;C:\Documents and Settings\Owner\My Documents;Container contains infected objects;Moved.;
aolcinst.exe\core.cab\GTDOWNAO_106.ocx;C:\Program Files\Common Files\aolback\Comps\coach\aolcinst.exe;Adware.Gdown;;
aolcinst.exe;C:\Program Files\Common Files\aolback\Comps\coach;Archive contains infected objects;Moved.;
TSSetup.exe\data002;C:\Program Files\Common Files\aolback\Comps\tpspd\TSSetup.exe;Probably DLOADER.Trojan;;
TSSetup.exe;C:\Program Files\Common Files\aolback\Comps\tpspd;Archive contains infected objects;Moved.;
13.tmp.vir;C:\Qoobox\Quarantine\C;Trojan.Proxy.2684;Deleted.;
3.tmp.vir;C:\Qoobox\Quarantine\C;Trojan.Proxy.2684;Deleted.;
3A.tmp.vir;C:\Qoobox\Quarantine\C;Trojan.Proxy.2684;Deleted.;
rnqcp.exe.vir;C:\Qoobox\Quarantine\C;Trojan.DownLoad.28462;Deleted.;
a.zip.vir\Setup.exe;C:\Qoobox\Quarantine\C\WINDOWS\Fonts\a.zip.vir;Trojan.DownLoad.6032;;
a.zip.vir;C:\Qoobox\Quarantine\C\WINDOWS\Fonts;Archive contains infected objects;Moved.;
dpnlobby32.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.DownLoad.28458;Deleted.;
kjepncko.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Packed.375;Deleted.;
ndqnvhgv.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Juan.78;Deleted.;
qigkdfeq.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Packed.375;Deleted.;
rukcng.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Juan.78;Deleted.;
sjiznr.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Juan.78;Deleted.;
tqtraqcu.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Juan.78;Deleted.;
wkzrha.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Packed.375;Deleted.;
zdnvjq.dll.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Trojan.Packed.375;Deleted.;
__c0021000.dat.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Probably Trojan.Packed.338;;
__c0044400.dat.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Probably Trojan.Packed.338;;
__c008D31A.dat.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32;Probably Trojan.Packed.338;;
ndis.sys.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers;Trojan.NtRootKit.2670;Deleted.;
39.music.mp3.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Trojan.WMALoader;Cured.;
41.crack.zip.vir\crack/CORE10k.EXE;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\41.crack.zip.vir;Trojan.MulDrop.23338;;
41.crack.zip.vir\crack/crack.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\41.crack.zip.vir;Trojan.MulDrop.23338;;
41.crack.zip.vir\setup.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\41.crack.zip.vir;Trojan.MulDrop.23338;;
41.crack.zip.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Archive contains infected objects;Moved.;
42.keymaker.zip.vir\keygen/keygen.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\42.keymaker.zip.vir;Trojan.MulDrop.23338;;
42.keymaker.zip.vir\setup.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\42.keymaker.zip.vir;Trojan.MulDrop.23338;;
42.keymaker.zip.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Archive contains infected objects;Moved.;
43.setup.zip.vir\crack/patch.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\43.setup.zip.vir;Trojan.MulDrop.23338;;
43.setup.zip.vir\setup.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\43.setup.zip.vir;Trojan.MulDrop.23338;;
43.setup.zip.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Archive contains infected objects;Moved.;
44.unpack.zip.vir\self_extracting_archive.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\44.unpack.zip.vir;Trojan.MulDrop.23338;;
44.unpack.zip.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Archive contains infected objects;Moved.;
45.keygen.zip.vir\keygen/keygen.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\45.keygen.zip.vir;Trojan.MulDrop.23338;;
45.keygen.zip.vir\setup.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\45.keygen.zip.vir;Trojan.MulDrop.23338;;
45.keygen.zip.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Archive contains infected objects;Moved.;
46.serial.zip.vir\serial/serial.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\46.serial.zip.vir;Trojan.MulDrop.23338;;
46.serial.zip.vir\setup.exe;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\46.serial.zip.vir;Trojan.MulDrop.23338;;
46.serial.zip.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Archive contains infected objects;Moved.;
47.music.snd.vir;C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest;Trojan.WMALoader;Cured.;
Process.exe;C:\SDFix\apps;Tool.Prockill;;
A0048100.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP109;Trojan.Proxy.2684;Deleted.;
A0048121.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP110;Trojan.Proxy.2684;Deleted.;
A0050142.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP112;Trojan.Proxy.2684;Deleted.;
A0053528.exe\SDFix\apps\Process.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP122\A0053528.exe;Tool.Prockill;;
A0053528.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP122;Archive contains infected objects;Moved.;
A0053557.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP122;Tool.Prockill;;
A0054788.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP127;Probably BATCH.Virus;;
A0054844.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP127;Probably BATCH.Virus;;
A0054900.exe/data002\32788R22FWJFW\c.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054900.exe/data002;Probably BATCH.Virus;;
A0054900.exe/data002\32788R22FWJFW\psexec.cfexe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054900.exe/data002;Program.PsExec.171;;
data002;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128;Archive contains infected objects;;
A0054900.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128;Container contains infected objects;Moved.;
A0054937.sys;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128;Trojan.NtRootKit.2670;Deleted.;
A0054938.sys;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128;Trojan.NtRootKit.2670;Deleted.;
A0055158.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129;Probably BATCH.Virus;;
A0065309.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140;Trojan.Packed.2463;Incurable.Moved.;
A0065310.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140;Trojan.Packed.2463;Incurable.Moved.;
A0065313.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140;Trojan.DownLoad.32521;Deleted.;
A0065314.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140;Trojan.Siggen.2321;Deleted.;
A0065325.exe\data005;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141\A0065325.exe;Probably BACKDOOR.Trojan;;
A0065325.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141;Archive contains infected objects;Moved.;
A0065326.exe/data002\32788R22FWJFW\FIND3M.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141\A0065326.exe/data002;Probably BATCH.Virus;;
data002;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141;Archive contains infected objects;;
A0065326.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141;Container contains infected objects;Moved.;
A0065327.exe\SDFix\apps\Process.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141\A0065327.exe;Tool.Prockill;;
A0065327.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141;Archive contains infected objects;Moved.;
A0065328.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141;Trojan.Packed.375;Deleted.;
A0065329.exe\core.cab\GTDOWNAO_106.ocx;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141\A0065329.exe;Adware.Gdown;;
A0065329.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141;Archive contains infected objects;Moved.;
A0065330.exe\data002;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141\A0065330.exe;Probably DLOADER.Trojan;;
A0065330.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP141;Archive contains infected objects;Moved.;
A0022381.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP62;Probably BATCH.Virus;;
A0022454.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63;Tool.Prockill;;
A0022613.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63;Probably BATCH.Virus;;
A0022630.exe/data002\32788R22FWJFW\c.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63\A0022630.exe/data002;Probably BATCH.Virus;;
A0022630.exe/data002\32788R22FWJFW\psexec.cfexe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63\A0022630.exe/data002;Program.PsExec.171;;
data002;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63;Archive contains infected objects;;
A0022630.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63;Container contains infected objects;Moved.;
A0022638.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63;Probably BATCH.Virus;;
A0022714.bat;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP64;Probably BATCH.Virus;;
A0022730.EXE;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP64;Program.PsExec.170;;
A0024310.dll;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Virtumod.based.27;Incurable.Moved.;
A0024311.dll;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Virtumod.based.27;Incurable.Moved.;
A0024321.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.DownLoad.32521;Deleted.;
A0025310.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.DownLoad.32229;Deleted.;
A0025314.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Packed.255;Deleted.;
A0025332.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Packed.375;Deleted.;
A0025353.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Packed.2450;Deleted.;
A0025606.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Fakealert.4154;Deleted.;
A0025648.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Win32.Virut.56;Cured.;
A0025651.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Packed.2450;Deleted.;
A0025703.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83;Trojan.Siggen.2321;Deleted.;
A0025738.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025742.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025743.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025744.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025745.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025746.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025747.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025748.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025749.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025750.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025751.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025752.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025753.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025754.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025755.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025756.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025757.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025758.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025759.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025760.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025761.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025762.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025763.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025766.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025766.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Siggen.2321;Deleted.;
A0025767.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025768.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025769.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025770.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025771.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025772.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025773.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025774.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025775.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025776.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025777.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025778.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025779.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025780.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025781.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025782.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025783.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025784.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025785.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025786.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025787.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025788.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025789.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025790.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025791.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025792.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025793.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025794.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025795.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025796.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025797.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025798.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025799.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025799.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Packed.2450;Deleted.;
A0025800.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025801.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025802.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025802.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025803.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025804.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025805.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025806.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025807.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025808.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025809.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025810.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025811.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025812.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025813.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025814.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025815.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025816.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025817.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025818.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025819.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025820.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025821.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025822.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025823.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025824.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025825.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025826.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025827.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025828.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025829.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025830.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025831.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025832.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025833.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025834.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025835.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025836.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025837.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025838.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025839.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025840.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025841.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025842.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025843.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025844.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025844.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Fakealert.4154;Deleted.;
A0025845.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025846.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025847.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025848.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025849.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025850.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025851.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025852.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025853.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025854.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025855.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025856.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025857.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025858.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025859.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025860.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025861.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025862.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025863.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025864.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025865.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025866.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025867.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025868.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025869.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025870.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025871.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025872.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025873.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025874.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025875.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025876.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025877.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025878.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025879.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025880.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025881.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025882.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025883.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025884.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025885.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025886.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025887.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025888.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025889.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025890.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025891.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025892.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025893.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025894.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025895.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025896.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025897.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025898.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025899.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025900.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025901.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025902.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025903.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025904.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025905.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025906.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025907.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025908.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025909.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025910.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025911.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025912.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025913.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025914.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025915.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025916.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025917.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025918.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025919.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025920.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025921.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025922.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025923.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025924.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025925.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025926.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025927.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025928.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025929.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025930.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025931.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025932.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025933.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025934.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025935.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025936.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025937.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025938.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025939.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025940.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025941.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025942.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025943.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025944.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025945.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025946.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025947.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025948.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025949.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025950.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025951.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025952.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025953.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025954.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025955.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025956.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025957.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025958.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025959.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025960.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025961.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025962.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025963.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025964.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025965.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025966.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025967.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025968.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025969.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025970.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025971.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025972.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025973.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025974.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025975.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025976.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025977.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025978.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025979.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025980.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025981.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025982.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025983.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025984.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025985.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025986.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025987.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025988.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025989.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025990.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025991.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025992.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025993.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025994.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025995.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025996.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025997.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025998.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0025999.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026000.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026001.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026002.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026003.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026004.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026005.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026006.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026007.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026008.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026009.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026010.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026011.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026012.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026013.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026014.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026015.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026016.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026017.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026018.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026019.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026020.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026021.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026022.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026023.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026024.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026025.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026026.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026027.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026028.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026029.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026030.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026031.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026032.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026033.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026034.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026035.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026036.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026037.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026038.scr;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026039.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026040.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026041.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026042.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026043.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026044.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026045.EXE;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026046.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026047.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026048.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026049.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026050.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026051.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026052.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026053.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026054.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026055.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026056.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026057.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026058.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026059.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026060.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026061.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026062.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026063.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026064.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026065.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026066.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026067.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026068.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026069.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026070.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026071.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026072.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026073.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026074.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026075.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026076.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026077.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026078.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026079.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026081.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026082.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026086.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026087.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026089.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026090.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026091.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026092.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026093.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026094.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026095.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026096.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026096.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Packed.2450;Deleted.;
A0026097.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026098.EXE;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026099.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026100.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026101.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026102.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026103.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026104.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026105.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026106.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026107.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026108.EXE;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026109.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026110.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026111.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026112.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026113.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026114.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026115.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026116.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026117.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026117.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Packed.375;Deleted.;
A0026118.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026119.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026120.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026122.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026123.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026124.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026125.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026126.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026127.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026127.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Packed.255;Deleted.;
A0026129.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026131.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026131.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.DownLoad.32229;Deleted.;
A0026132.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026133.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026134.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026135.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026136.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026137.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026138.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026143.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026143.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;BackDoor.BlackHole.3301;Deleted.;
A0026144.sys;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Click.25631;Deleted.;
A0026145.sys;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.NtRootKit.2785;Deleted.;
A0026146.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026147.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.PWS.Wsgame.11064;Deleted.;
A0026148.dll;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.PWS.Wsgame.11009;Deleted.;
A0026149.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026150.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026152.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026153.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026153.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.DownLoad.32229;Deleted.;
A0026156.dll;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;BackDoor.Zapinit;Cured.;
A0026162.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Trojan.Packed.2450;Deleted.;
A0026258.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026259.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026260.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026261.exe;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;Win32.Virut.56;Cured.;
A0026262.DLL;C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84;BackDoor.Zapinit;Cured.;
DIGIFAST.0XE;C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\Application Data\digifast;Trojan.Siggen.2321;Deleted.;
NIDLE.0XE;C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\Application Data\nidle;Trojan.DownLoad.32521;Deleted.;
nidle.ex_;C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\Application Data\nidle;Trojan.DownLoad.32521;Deleted.;
sdrgfcvbf.dll;C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\system32;Trojan.DownLoad.36191;Deleted.;
d4dhv2gu.exe;C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp;Trojan.Packed.2463;Incurable.Moved.;
J1ICNS6S.0XE;C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp;Trojan.Packed.2463;Incurable.Moved.;
KSCS4O5AYB.0XE;C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp;Trojan.Packed.2463;Incurable.Moved.;
ml2i872r.exe;C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp;Trojan.Packed.2463;Incurable.Moved.;
-
;*******************************************************************************
*********************************************************************************
*******************
ANALYSIS: 2009-06-04 15:42:57
PROTECTIONS: 0
MALWARE: 52
SUSPECTS: 22
;*******************************************************************************
*********************************************************************************
*******************
PROTECTIONS
Description Version Active Updated
;===============================================================================
=================================================================================
===================
;===============================================================================
=================================================================================
===================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===============================================================================
=================================================================================
===================
00003729 spyware/conducent-timesink Spyware No 0 Yes No hkey_current_user\software\timesink, inc.
00003729 spyware/conducent-timesink Spyware No 0 Yes No hkey_local_machine\software\timesink, inc.
00003729 spyware/conducent-timesink Spyware No 0 Yes No c:\program files\timesink
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\WINDOWS\system32\config\systemprofile\Cookies\system@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\WINDOWS\system32\config\systemprofile\Cookies\system@atdmt[1].txt
00560149 W32/P2PWorm.Y.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\dpnlobby32.dll.vir
00560149 W32/P2PWorm.Y.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\_dpnlobby32_.dll.zip[dpnlobby32.dll]
00569747 Spyware/Virtumonde Spyware No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\qigkdfeq.dll.vir
00569747 Spyware/Virtumonde Spyware No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\wkzrha.dll.vir
00590315 Rootkit/Agent.LNB HackTools No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025677.sys
00590315 Rootkit/Agent.LNB HackTools No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP101\A0047869.sys
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\45.keygen.zip.vir[setup.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\46.serial.zip.vir[setup.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\45.keygen.zip.vir[keygen/keygen.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\44.unpack.zip.vir[self_extracting_archive.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\41.crack.zip.vir[crack/CORE10k.EXE]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\41.crack.zip.vir[crack/crack.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\41.crack.zip.vir[setup.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\42.keymaker.zip.vir[keygen/keygen.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\43.setup.zip.vir[setup.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\43.setup.zip.vir[crack/patch.exe]
00610370 W32/P2PWorm.AB.worm Virus/Worm No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\46.serial.zip.vir[serial/serial.exe]
00625332 Spyware/Virtumonde Spyware No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\__c008D31A.dat.vir
00625332 Spyware/Virtumonde Spyware No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\___c002917C_.dat.zip[__c002917C.dat]
00625332 Spyware/Virtumonde Spyware No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\__c0044400.dat.vir
00625332 Spyware/Virtumonde Spyware No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\__c0021000.dat.vir
00654615 Trj/Spammer.ALU Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025310.exe
00656624 Trj/Downloader.VOV Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\Application Data\nidle\NIDLE.0XE
00656624 Trj/Downloader.VOV Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0024321.exe
00656624 Trj/Downloader.VOV Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140\A0065313.exe
00656624 Trj/Downloader.VOV Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\Application Data\nidle\nidle.ex_
00674120 Adware/SystemSecurity Adware No 0 Yes No C:\Documents and Settings\All Users\Application Data\1447988137\1331176861.exe
00702406 Trj/Downloader.VRN Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025309.exe
00702406 Trj/Downloader.VRN Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP124\A0054733.exe
00702417 Trj/Clicker.ANV Virus/Trojan No 1 Yes No C:\Documents and Settings\Owner\Application Data\Messenger\Sys\mu.dll
00702417 Trj/Clicker.ANV Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP73\A0023126.dll
00702417 Trj/Clicker.ANV Virus/Trojan No 1 Yes No C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\MsgUpdate.dll
00702417 Trj/Clicker.ANV Virus/Trojan No 1 No No C:\WINDOWS\system32\kt\conf02091b.exe[MsgUpdate.dll]
00702417 Trj/Clicker.ANV Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP73\A0023123.dll
00715171 Trj/Downloader.VQL Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025606.exe
00715171 Trj/Downloader.VQL Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0025844.exe
00716215 Adware/VapSup Adware No 0 Yes No C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\Aud32\msgasst.dll
00716322 Trj/BHO.DR Virus/Trojan No 0 Yes No C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\Aud32\msgutil.dll
00721305 W32/Sality.AO Virus No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025648.exe
00737304 Rootkit/Lineage.KSS Virus No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026145.sys
00739483 Trj/Downloader.VSS Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140\A0065314.exe
00739483 Trj/Downloader.VSS Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\Application Data\digifast\DIGIFAST.0XE
00739483 Trj/Downloader.VSS Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025703.exe
00814651 Trj/Downloader.VUF Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\13.tmp.vir
00814912 Trj/Downloader.VUF Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\system32\KJSDIOWQ8OIKF.0LL
00814912 Trj/Downloader.VUF Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140\A0065311.dll
00814917 Trj/Downloader.VUF Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp\J1ICNS6S.0XE
00814917 Trj/Downloader.VUF Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140\A0065310.exe
00814917 Trj/Downloader.VUF Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140\A0065309.exe
00814917 Trj/Downloader.VUF Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp\KSCS4O5AYB.0XE
00892791 JS/Sality.AO Virus No 0 Yes No C:\Program Files\Mozilla Firefox\res\hiddenWindow.html
00892791 JS/Sality.AO Virus No 0 Yes No C:\WINDOWS\Help\migwiz.htm
00892791 JS/Sality.AO Virus No 0 Yes No C:\Program Files\NetMeeting\netmeet.htm
00892791 JS/Sality.AO Virus No 0 Yes No C:\WINDOWS\Help\ixqlang.htm
00892791 JS/Sality.AO Virus No 0 Yes No C:\Program Files\Yahoo! Games\Emerald City Confidential\readme.htm
00892791 JS/Sality.AO Virus No 0 Yes No C:\WINDOWS\Help\ciadmin.htm
00915568 Adware/Suurch Adware No 1 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\LOCALS~1\Temp\570833324.0XE
00915568 Adware/Suurch Adware No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140\A0065312.exe
00915574 Trj/Downloader.VWJ Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp\mvtmymxi.exe
00915574 Trj/Downloader.VWJ Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp\ur40dz.exe
00915749 JS/Sality.AO Virus No 0 Yes No C:\WINDOWS\Help\ciquery.htm
00926642 Trj/Dropper.AIE Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026143.exe
00926821 Generic Trojan Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026162.exe
00931441 Bck/Gh0stRat.D Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026141.dll
00948556 W32/Protector.A Virus No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\ndis.sys.vir
00948556 W32/Protector.A Virus No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054938.sys
00948556 W32/Protector.A Virus No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054937.sys
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP64\A0022730.EXE
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055121.sys
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054944.sys
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054918.sys
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP64\A0022707.sys
02906063 Bck/VB.ABN Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\Fonts\a.zip.vir[setup.exe]
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\system32\sdrgfcvbf.dll
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\rukcng.dll.vir
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\3A.tmp.vir
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp\d4dhv2gu.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\tqtraqcu.dll.vir
03074964 Trj/CI.A Virus/Trojan No 0 No No C:\WINDOWS\system32\kt\conf02091b.exe[bHOInstaller.exe]
03491464 W32/Patched.D Virus No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026156.dll
03491464 W32/Patched.D Virus No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026262.DLL
04853766 Generic Trojan Virus/Trojan No 0 Yes No C:\!FixIEDef\1.tmp
04881591 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\GroupPolicyManifest\42.keymaker.zip.vir[setup.exe]
04946060 Generic Trojan Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\kjepncko.dll.vir
04946060 Generic Trojan Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\zdnvjq.dll.vir
04966615 Generic Trojan Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\ndqnvhgv.dll.vir
04966615 Generic Trojan Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\WINDOWS\system32\sjiznr.dll.vir
04980826 Trj/Zlob.KH Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025566.exe
04980826 Trj/Zlob.KH Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP140\A0065308.exe
05066600 Generic Trojan Virus/Trojan No 0 Yes No C:\Qoobox\Quarantine\C\rnqcp.exe.vir
05342462 Generic Trojan Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026147.exe
05347963 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025651.exe
05355088 Generic Trojan Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025314.exe
05374530 Trj/Sinowal.DW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026159.exe
05388521 Trj/Zlob.KH Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026154.exe
05391596 Trj/Agent.DPE Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025316.exe
05400339 Generic Trojan Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP83\A0025353.exe
05402331 Trj/Zlob.KH Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026148.dll
05404008 Adware/AccesMembre Adware No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026144.sys
05404064 W32/Socks.E.worm Virus/Worm No 0 Yes No C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP84\A0026263.dll
05449092 Generic Trojan Virus/Trojan No 0 Yes No C:\_OTMoveIt\MovedFiles\05142009_185305\WINDOWS\temp\ml2i872r.exe
;===============================================================================
=================================================================================
===================
SUSPECTS
Sent Location )
;===============================================================================
=================================================================================
===================
Yes C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\phuninst.dll )
Yes C:\Documents and Settings\Owner\Desktop\ComboFix.exe[32788R22FWJFW\n.com] )
Yes C:\Documents and Settings\Owner\Desktop\ComboFix.exe[32788R22FWJFW\NirCmd.cfexe] )
Yes C:\Documents and Settings\Owner\Desktop\Extra Files\win32.exe )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054925.exe )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054995.com )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054997.com )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055035.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055035.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055076.com )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055078.com )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055101.exe )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055170.com )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP129\A0055172.com )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP128\A0054900.exe )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP63\A0022630.exe )
Yes C:\System Volume Information\_restore{823EAC99-234A-4B06-BBF6-5E5CB6289D1D}\RP73\A0023125.dll )
Yes C:\WINDOWS\NIRCMD.exe )
Yes C:\WINDOWS\system32\kt\conf02091b.exe[phuninst.dll] )
Yes C:\WINDOWS\system32\hsfiun3487dll )
Yes C:\WINDOWS\system32\kt\conf02091b.exe[igfxSys.dll] )
Yes C:\_OTMoveIt\MovedFiles\05142009_185305\Documents and Settings\Owner\Application Data\Messenger\Drivers\IgfxSys.dll
;===============================================================================
=================================================================================
===================
VULNERABILITIES
Id Severity Description )
;===============================================================================
=================================================================================
===================
184380 MEDIUM MS08-002 )
184379 MEDIUM MS08-001 )
182048 HIGH MS07-069 )
182046 HIGH MS07-067 )
182043 HIGH MS07-064 )
179553 HIGH MS07-061 )
176382 HIGH MS07-057 )
176383 HIGH MS07-058 )
170911 HIGH MS07-050 )
170907 HIGH MS07-046 )
170906 HIGH MS07-045 )
170904 HIGH MS07-043 )
164915 HIGH MS07-035 )
164913 HIGH MS07-033 )
164911 HIGH MS07-031 )
160623 HIGH MS07-027 )
157262 HIGH MS07-022 )
157261 HIGH MS07-021 )
157260 HIGH MS07-020 )
157259 HIGH MS07-019 )
156477 HIGH MS07-017 )
150253 HIGH MS07-016 )
150249 HIGH MS07-013 )
150248 HIGH MS07-012 )
150247 HIGH MS07-011 )
150243 HIGH MS07-008 )
150242 HIGH MS07-007 )
150241 MEDIUM MS07-006 )
141034 HIGH MS06-076 )
141033 MEDIUM MS06-075 )
141030 HIGH MS06-072 )
137571 HIGH MS06-070 )
137568 HIGH MS06-067 )
133387 MEDIUM MS06-065 )
133386 MEDIUM MS06-064 )
133385 MEDIUM MS06-063 )
133379 HIGH MS06-057 )
131654 HIGH MS06-055 )
129977 MEDIUM MS06-053 )
129976 MEDIUM MS06-052 )
126093 HIGH MS06-051 )
126092 MEDIUM MS06-050 )
126087 HIGH MS06-046 )
126086 MEDIUM MS06-045 )
126083 HIGH MS06-042 )
126082 HIGH MS06-041 )
126081 HIGH MS06-040 )
123421 HIGH MS06-036 )
123420 HIGH MS06-035 )
120825 MEDIUM MS06-032 )
120823 MEDIUM MS06-030 )
120818 HIGH MS06-025 )
120815 HIGH MS06-022 )
120814 HIGH MS06-021 )
117384 MEDIUM MS06-018 )
114666 HIGH MS06-015 )
114664 HIGH MS06-013 )
108744 MEDIUM MS06-008 )
108743 MEDIUM MS06-007 )
108742 MEDIUM MS06-006 )
104567 HIGH MS06-002 )
104237 HIGH MS06-001 )
96574 HIGH MS05-053 )
93395 HIGH MS05-051 )
93394 HIGH MS05-050 )
93454 MEDIUM MS05-049 )
;===============================================================================
=================================================================================
===================
-
i have tried to do the system scan on more than one occasion it will not complete what should i do. I have left my computer on overnight trying to complete the system scan i have yet to recieve a log stating what is wrong. PLEASE HELP!!!!
-
ComboFix 09-05-17.08 - Owner 18/05/2009 15:53.6 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.254.124 [GMT -4:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Owner\Desktop\CFScript.txt
FILE ::
C:\10.tmp
C:\11.tmp
C:\12.tmp
C:\13.tmp
C:\14.tmp
C:\15.tmp
C:\16.tmp
C:\17.tmp
C:\18.tmp
C:\19.tmp
C:\1A.tmp
C:\1B.tmp
C:\1C.tmp
C:\1D.tmp
C:\2B.tmp
C:\3.tmp
C:\3A.tmp
C:\3B.tmp
C:\3C.tmp
C:\3D.tmp
C:\3E.tmp
C:\3F.tmp
C:\4.tmp
C:\40.tmp
C:\41.tmp
C:\42.tmp
C:\43.tmp
C:\44.tmp
C:\45.tmp
C:\46.tmp
C:\47.tmp
C:\48.tmp
C:\49.tmp
C:\4A.tmp
C:\4B.tmp
C:\5.tmp
C:\6.tmp
C:\7.tmp
C:\8.tmp
C:\9.tmp
C:\A.tmp
C:\B.tmp
C:\C.tmp
C:\D.tmp
C:\E.tmp
C:\F.tmp
c:\windows\iun6002.exe
c:\windows\system32\10.tmp
c:\windows\system32\11.tmp
c:\windows\system32\12.tmp
c:\windows\system32\13.tmp
c:\windows\system32\14.tmp
c:\windows\system32\15.tmp
c:\windows\system32\16.tmp
c:\windows\system32\17.tmp
c:\windows\system32\18.tmp
c:\windows\system32\19.tmp
c:\windows\system32\1A.tmp
c:\windows\system32\1B.tmp
c:\windows\system32\1C.tmp
c:\windows\system32\1D.tmp
c:\windows\system32\1E.tmp
c:\windows\system32\1F.tmp
c:\windows\system32\20.tmp
c:\windows\system32\21.tmp
c:\windows\system32\22.tmp
c:\windows\system32\23.tmp
c:\windows\system32\25.tmp
c:\windows\system32\26.tmp
c:\windows\system32\27.tmp
c:\windows\system32\28.tmp
c:\windows\system32\2A.tmp
c:\windows\system32\2D.tmp
c:\windows\system32\nuvameje.dll.vir
c:\windows\system32\vbzip10.dll
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\10.tmp
C:\11.tmp
C:\12.tmp
C:\13.tmp
C:\14.tmp
C:\15.tmp
C:\16.tmp
C:\17.tmp
C:\18.tmp
C:\19.tmp
C:\1A.tmp
C:\1B.tmp
C:\1C.tmp
C:\1D.tmp
C:\2B.tmp
C:\3.tmp
C:\3A.tmp
C:\3B.tmp
C:\3C.tmp
C:\3D.tmp
C:\3E.tmp
C:\3F.tmp
C:\4.tmp
C:\40.tmp
C:\41.tmp
C:\42.tmp
C:\43.tmp
C:\44.tmp
C:\45.tmp
C:\46.tmp
C:\47.tmp
C:\48.tmp
C:\49.tmp
C:\4A.tmp
C:\4B.tmp
C:\5.tmp
C:\6.tmp
C:\7.tmp
C:\8.tmp
C:\9.tmp
C:\A.tmp
C:\B.tmp
C:\C.tmp
C:\D.tmp
C:\E.tmp
C:\F.tmp
c:\windows\iun6002.exe
c:\windows\system32\10.tmp
c:\windows\system32\11.tmp
c:\windows\system32\12.tmp
c:\windows\system32\13.tmp
c:\windows\system32\14.tmp
c:\windows\system32\15.tmp
c:\windows\system32\16.tmp
c:\windows\system32\17.tmp
c:\windows\system32\18.tmp
c:\windows\system32\19.tmp
c:\windows\system32\1A.tmp
c:\windows\system32\1B.tmp
c:\windows\system32\1C.tmp
c:\windows\system32\1D.tmp
c:\windows\system32\1E.tmp
c:\windows\system32\1F.tmp
c:\windows\system32\20.tmp
c:\windows\system32\21.tmp
c:\windows\system32\22.tmp
c:\windows\system32\23.tmp
c:\windows\system32\25.tmp
c:\windows\system32\26.tmp
c:\windows\system32\27.tmp
c:\windows\system32\28.tmp
c:\windows\system32\2A.tmp
c:\windows\system32\2D.tmp
c:\windows\system32\ntos.exe
c:\windows\system32\nuvameje.dll.vir
c:\windows\system32\vbzip10.dll
.
((((((((((((((((((((((((( Files Created from 2009-04-18 to 2009-05-18 )))))))))))))))))))))))))))))))
.
2009-05-14 22:53 . 2009-05-14 22:53 -------- d-----w C:\_OTMoveIt
2009-05-05 22:26 . 2009-05-10 21:56 -------- d-----w c:\program files\Windows Media Connect 2
2009-05-05 22:21 . 2009-05-05 23:57 -------- d-----w c:\windows\system32\drivers\UMDF
2009-05-01 09:10 . 2009-05-01 09:10 -------- d-s---w c:\windows\system32\config\systemprofile\UserData
2009-04-23 21:39 . 2009-04-23 21:39 -------- d-----w c:\windows\data_0001810hapfp
2009-04-23 21:07 . 2009-04-23 21:50 -------- d-----w c:\program files\Tetris
2009-04-21 23:32 . 2009-04-21 23:32 -------- d-----w c:\program files\Selectsoft
2009-04-20 19:59 . 2009-05-05 22:21 -------- d-----w c:\windows\system32\LogFiles
2009-04-20 19:14 . 2009-04-20 19:14 -------- d-----w c:\windows\system32\config\systemprofile\Local Settings\Application Data\Musicmatch
2009-04-20 19:13 . 2009-04-20 19:13 -------- d-----w c:\documents and settings\LocalService\Local Settings\Application Data\Musicmatch
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-17 02:17 . 2001-08-18 12:00 182912 ----a-w c:\windows\system32\drivers\ndis.sys
2009-05-09 23:37 . 2008-06-29 21:10 -------- d-----w c:\program files\Yahoo! Games
2009-05-01 09:07 . 2009-05-01 09:07 0 ----a-w C:\39.tmp
2009-04-30 09:06 . 2009-04-30 09:06 38 ----a-w C:\2A.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\29.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\28.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\27.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\26.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\25.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\24.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\23.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\22.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\21.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\20.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\1F.tmp
2009-04-30 09:06 . 2009-04-30 09:06 54784 ----a-w C:\1E.tmp
2009-04-13 21:44 . 2009-01-06 00:46 -------- d-----w c:\program files\ANI
2009-04-13 21:44 . 2008-06-16 18:41 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-13 21:42 . 2009-04-13 21:42 -------- d-----w c:\program files\D-Link
2009-04-13 21:12 . 2008-06-16 18:41 -------- d-----w c:\program files\Common Files\InstallShield
2009-04-08 09:21 . 2009-04-08 09:21 0 ----a-w c:\windows\system32\2C.tmp
2009-04-04 13:14 . 2009-04-04 13:14 -------- d-----w c:\program files\MSECache
2009-03-24 22:33 . 2008-06-18 15:29 64368 ----a-w c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-03-23 20:04 . 2009-03-22 22:21 114 ----a-w c:\windows\de04ch5.dat
2009-03-22 22:46 . 2009-03-19 20:00 -------- d-----w c:\program files\Family Feud Dream Home
2009-03-22 22:20 . 2009-03-22 22:20 -------- d-----w c:\program files\detest5
2009-03-22 21:29 . 2009-03-22 21:29 -------- d-----w c:\program files\Common Files\SWF Studio
2009-03-22 21:29 . 2009-03-22 21:29 -------- d-----w c:\program files\KAZ Typing Test
2009-03-20 22:14 . 2009-03-20 22:14 81 ----a-w C:\CTX.DAT
2009-03-20 22:03 . 2009-01-25 16:00 410984 ----a-w c:\windows\system32\deploytk.dll
2009-03-20 22:03 . 2008-06-18 17:05 -------- d-----w c:\program files\Java
2009-03-06 14:44 . 2001-08-18 12:00 283648 ----a-w c:\windows\system32\pdh.dll
2009-02-20 08:30 . 2009-02-19 17:01 81920 ------w c:\windows\system32\ieencode.dll
2009-02-20 08:30 . 2001-08-18 12:00 659456 ----a-w c:\windows\system32\wininet.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-05-17_02.35.04 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-05-18 20:04 . 2009-05-18 20:04 16384 c:\windows\temp\Perflib_Perfdata_610.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-08-04 1667584]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MMTray"="c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" [2006-01-19 110592]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-06-17 98304]
"IgfxTray"="c:\windows\System32\igfxtray.exe" [2002-06-19 155648]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2002-06-19 114688]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-07-11 180269]
"MimBoot"="c:\progra~1\MUSICM~1\MUSICM~1\mimboot.exe" [2006-01-19 11776]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-06-16 221184]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-20 148888]
"D-Link AirPlus G"="c:\program files\D-Link\AirPlus G\AirGCFG.exe" [2007-04-14 1556480]
"ANIWZCS2Service"="c:\program files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2007-01-19 49152]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
--- Other Services/Drivers In Memory ---
*Deregistered* - AFD
*Deregistered* - ALG
*Deregistered* - ANIO
*Deregistered* - ANIWZCSdService
*Deregistered* - AudioSrv
*Deregistered* - audstub
*Deregistered* - Beep
*Deregistered* - BITS
*Deregistered* - Browser
*Deregistered* - Cdfs
*Deregistered* - CryptSvc
*Deregistered* - DcomLaunch
*Deregistered* - Dhcp
*Deregistered* - Dnscache
*Deregistered* - ERSvc
*Deregistered* - EventSystem
*Deregistered* - Fallback
*Deregistered* - FastUserSwitchingCompatibility
*Deregistered* - Fips
*Deregistered* - FltMgr
*Deregistered* - Fsks
*Deregistered* - Ftdisk
*Deregistered* - Gpc
*Deregistered* - helpsvc
*Deregistered* - HTTP
*Deregistered* - HTTPFilter
*Deregistered* - IpNat
*Deregistered* - IPSec
*Deregistered* - JavaQuickStarterService
*Deregistered* - K56
*Deregistered* - KSecDD
*Deregistered* - lanmanserver
*Deregistered* - lanmanworkstation
*Deregistered* - LmHosts
*Deregistered* - MDM
*Deregistered* - mdmxsdk
*Deregistered* - mnmdd
*Deregistered* - Mouclass
*Deregistered* - MountMgr
*Deregistered* - MRxDAV
*Deregistered* - MRxSmb
*Deregistered* - Msfs
*Deregistered* - mssmbios
*Deregistered* - Mup
*Deregistered* - NDIS
*Deregistered* - NdisTapi
*Deregistered* - Ndisuio
*Deregistered* - NdisWan
*Deregistered* - NDProxy
*Deregistered* - NetBIOS
*Deregistered* - NetBT
*Deregistered* - Netman
*Deregistered* - Nla
*Deregistered* - Npfs
*Deregistered* - Ntfs
*Deregistered* - Null
*Deregistered* - OMCI
*Deregistered* - PartMgr
*Deregistered* - ParVdm
*Deregistered* - Pcmcia
*Deregistered* - PolicyAgent
*Deregistered* - PptpMiniport
*Deregistered* - ProtectedStorage
*Deregistered* - PSched
*Deregistered* - RasAcd
*Deregistered* - Rasl2tp
*Deregistered* - RasMan
*Deregistered* - RasPppoe
*Deregistered* - Raspti
*Deregistered* - Rdbss
*Deregistered* - RDPCDD
*Deregistered* - RpcSs
*Deregistered* - SamSs
*Deregistered* - Schedule
*Deregistered* - seclogon
*Deregistered* - SENS
*Deregistered* - ShellHWDetection
*Deregistered* - SoftFax
*Deregistered* - Spooler
*Deregistered* - sr
*Deregistered* - srservice
*Deregistered* - Srv
*Deregistered* - SSDPSRV
*Deregistered* - swenum
*Deregistered* - TapiSrv
*Deregistered* - Tcpip
*Deregistered* - TermDD
*Deregistered* - TermService
*Deregistered* - Themes
*Deregistered* - Tones
*Deregistered* - TrkWks
*Deregistered* - Update
*Deregistered* - V124
*Deregistered* - VgaSave
*Deregistered* - VolSnap
*Deregistered* - W32Time
*Deregistered* - Wanarp
*Deregistered* - WebClient
*Deregistered* - winmgmt
*Deregistered* - WS2IFSL
*Deregistered* - wuauserv
*Deregistered* - WudfPf
*Deregistered* - WudfSvc
*Deregistered* - WZCSVC
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com
mWindow Title = Microsoft Internet Explorer
IE: &AOL Toolbar search - c:\program files\AOL Toolbar\toolbar.dll/SEARCH.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: musicmatch.com\online
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\
FF - plugin: c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\extensions\[email protected]\platform\WINNT_x86-msvc\plugins\npmnqmp071101000055.dll
FF - plugin: c:\program files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-18 16:04
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'explorer.exe'(2632)
c:\windows\system32\msi.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\wscntfy.exe
c:\progra~1\MUSICM~1\MUSICM~1\MMDiag.exe
c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
.
**************************************************************************
.
Completion time: 2009-05-18 16:18 - machine was rebooted
ComboFix-quarantined-files.txt 2009-05-18 20:18
ComboFix2.txt 2009-05-17 02:48
ComboFix3.txt 2009-03-18 22:53
ComboFix4.txt 2009-03-18 21:44
ComboFix5.txt 2009-05-18 19:50
Pre-Run: 19,993,059,328 bytes free
Post-Run: 19,978,661,888 bytes free
394 --- E O F --- 2009-05-13 22:08
-
ComboFix 09-05-16.05 - Owner 16/05/2009 22:18.5 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.254.114 [GMT -4:00]
Running from: c:\documents and settings\Owner\desktop\ComboFix.exe
Command switches used :: /KillAll
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Owner\Local Settings\Temporary Internet Files\CPV.stt
c:\documents and settings\Owner\Local Settings\Temporary Internet Files\fbk.sts
c:\program files\Jcore
c:\program files\WWShow
c:\recycler\S-1-5-21-436374069-1364589140-1801674531-500\INFO2
c:\windows\IE4 Error Log.txt
c:\windows\Install.txt
c:\windows\mqcd.dbt
c:\windows\system32\Install.txt
c:\windows\system32\ntos.exe
c:\windows\system32\wsnpoem
c:\windows\system32\wsnpoem\audio.dll
c:\windows\system32\wsnpoem\video.dll
Infected copy of c:\windows\system32\drivers\ndis.sys was found and disinfected
Restored copy from - The cat ate it
.
((((((((((((((((((((((((( Files Created from 2009-04-17 to 2009-05-17 )))))))))))))))))))))))))))))))
.
2009-05-14 22:53 . 2009-05-14 22:53 -------- d-----w C:\_OTMoveIt
2009-05-05 22:26 . 2009-05-10 21:56 -------- d-----w c:\program files\Windows Media Connect 2
2009-05-05 22:21 . 2009-05-05 23:57 -------- d-----w c:\windows\system32\drivers\UMDF
2009-05-01 09:10 . 2009-05-01 09:10 -------- d-s---w c:\windows\system32\config\systemprofile\UserData
2009-04-23 21:39 . 2009-04-23 21:39 -------- d-----w c:\windows\data_0001810hapfp
2009-04-23 21:07 . 2009-04-23 21:50 -------- d-----w c:\program files\Tetris
2009-04-21 23:32 . 2009-04-21 23:32 -------- d-----w c:\program files\Selectsoft
2009-04-20 19:59 . 2009-05-05 22:21 -------- d-----w c:\windows\system32\LogFiles
2009-04-20 19:14 . 2009-04-20 19:14 -------- d-----w c:\windows\system32\config\systemprofile\Local Settings\Application Data\Musicmatch
2009-04-20 19:13 . 2009-04-20 19:13 -------- d-----w c:\documents and settings\LocalService\Local Settings\Application Data\Musicmatch
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-17 02:17 . 2001-08-18 12:00 182912 ----a-w c:\windows\system32\drivers\ndis.sys
2009-05-09 23:37 . 2008-06-29 21:10 -------- d-----w c:\program files\Yahoo! Games
2009-05-04 21:14 . 2009-05-04 21:14 0 ----a-w C:\4B.tmp
2009-05-04 21:14 . 2009-05-04 21:14 0 ----a-w C:\4A.tmp
2009-05-04 21:14 . 2009-05-04 21:14 0 ----a-w C:\49.tmp
2009-05-04 21:14 . 2009-05-04 21:14 0 ----a-w C:\48.tmp
2009-05-04 21:14 . 2009-05-04 21:14 0 ----a-w C:\12.tmp
2009-05-03 23:06 . 2009-05-03 23:06 0 ----a-w C:\47.tmp
2009-05-03 23:06 . 2009-05-03 23:06 0 ----a-w C:\46.tmp
2009-05-03 23:06 . 2009-05-03 23:06 0 ----a-w C:\45.tmp
2009-05-03 23:06 . 2009-05-03 23:06 0 ----a-w C:\44.tmp
2009-05-03 23:05 . 2009-05-03 23:05 38 ----a-w C:\3E.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\43.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\42.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\41.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\40.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\3F.tmp
2009-05-03 23:05 . 2009-05-03 23:05 51712 ----a-w C:\3A.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\3D.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\3C.tmp
2009-05-03 23:05 . 2009-05-03 23:05 0 ----a-w C:\3B.tmp
2009-04-30 09:06 . 2009-04-30 09:06 0 ----a-w C:\2B.tmp
2009-04-23 19:58 . 2009-04-23 19:58 38 ----a-w C:\1D.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\1C.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\1B.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\1A.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\19.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\18.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\17.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\16.tmp
2009-04-23 19:58 . 2009-04-23 19:58 0 ----a-w C:\15.tmp
2009-04-23 19:58 . 2009-04-23 19:58 38 ----a-w C:\14.tmp
2009-04-23 19:58 . 2009-04-23 19:58 54784 ----a-w C:\13.tmp
2009-04-20 19:10 . 2009-04-20 19:10 38 ----a-w C:\10.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\11.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\F.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\A.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\9.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\8.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\7.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\6.tmp
2009-04-20 19:10 . 2009-04-20 19:10 0 ----a-w C:\5.tmp
2009-04-20 19:10 . 2009-04-20 19:10 38 ----a-w C:\4.tmp
2009-04-20 19:10 . 2009-04-20 19:10 52736 ----a-w C:\3.tmp
2009-04-18 12:09 . 2009-04-18 12:09 0 ----a-w C:\E.tmp
2009-04-18 12:08 . 2009-04-18 12:08 0 ----a-w C:\D.tmp
2009-04-18 12:08 . 2009-04-18 12:08 0 ----a-w C:\C.tmp
2009-04-18 12:08 . 2009-04-18 12:08 0 ----a-w C:\B.tmp
2009-04-13 21:44 . 2009-01-06 00:46 -------- d-----w c:\program files\ANI
2009-04-13 21:44 . 2008-06-16 18:41 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-13 21:42 . 2009-04-13 21:42 -------- d-----w c:\program files\D-Link
2009-04-13 21:12 . 2008-06-16 18:41 -------- d-----w c:\program files\Common Files\InstallShield
2009-04-08 09:22 . 2009-04-08 09:22 0 ----a-w c:\windows\system32\2D.tmp
2009-04-08 09:21 . 2009-04-08 09:21 0 ----a-w c:\windows\system32\2C.tmp
2009-04-08 09:20 . 2009-04-08 09:20 0 ----a-w c:\windows\system32\2A.tmp
2009-04-08 09:20 . 2009-04-08 09:20 0 ----a-w c:\windows\system32\28.tmp
2009-04-08 09:19 . 2009-04-08 09:19 0 ----a-w c:\windows\system32\27.tmp
2009-04-08 09:19 . 2009-04-08 09:19 0 ----a-w c:\windows\system32\26.tmp
2009-04-08 09:19 . 2009-04-08 09:19 0 ----a-w c:\windows\system32\25.tmp
2009-04-08 09:19 . 2009-04-08 09:19 0 ----a-w c:\windows\system32\23.tmp
2009-04-08 09:18 . 2009-04-08 09:18 0 ----a-w c:\windows\system32\22.tmp
2009-04-08 09:18 . 2009-04-08 09:18 0 ----a-w c:\windows\system32\21.tmp
2009-04-08 09:18 . 2009-04-08 09:18 0 ----a-w c:\windows\system32\20.tmp
2009-04-08 09:18 . 2009-04-08 09:18 0 ----a-w c:\windows\system32\1F.tmp
2009-04-08 09:17 . 2009-04-08 09:17 0 ----a-w c:\windows\system32\1E.tmp
2009-04-08 09:17 . 2009-04-08 09:17 0 ----a-w c:\windows\system32\1D.tmp
2009-04-08 09:17 . 2009-04-08 09:17 0 ----a-w c:\windows\system32\1C.tmp
2009-04-08 00:05 . 2009-04-08 00:05 0 ----a-w c:\windows\system32\1B.tmp
2009-04-07 23:56 . 2009-04-07 23:56 0 ----a-w c:\windows\system32\1A.tmp
2009-04-07 23:55 . 2009-04-07 23:55 0 ----a-w c:\windows\system32\19.tmp
2009-04-07 23:55 . 2009-04-07 23:55 0 ----a-w c:\windows\system32\18.tmp
2009-04-07 23:42 . 2009-04-07 23:42 0 ----a-w c:\windows\system32\17.tmp
2009-04-07 23:42 . 2009-04-07 23:42 0 ----a-w c:\windows\system32\16.tmp
2009-04-07 23:27 . 2009-04-07 23:27 0 ----a-w c:\windows\system32\15.tmp
2009-04-07 23:27 . 2009-04-07 23:27 0 ----a-w c:\windows\system32\14.tmp
2009-04-07 22:36 . 2009-04-07 22:36 0 ----a-w c:\windows\system32\13.tmp
2009-04-07 22:13 . 2009-04-07 22:13 0 ----a-w c:\windows\system32\12.tmp
2009-04-07 22:05 . 2009-04-07 22:05 0 ----a-w c:\windows\system32\11.tmp
2009-04-07 21:56 . 2009-04-07 21:56 0 ----a-w c:\windows\system32\10.tmp
2009-04-06 20:41 . 2009-01-06 20:41 84992 --sha-w c:\windows\system32\nuvameje.dll.vir
2009-04-04 13:14 . 2009-04-04 13:14 -------- d-----w c:\program files\MSECache
2009-03-24 22:33 . 2008-06-18 15:29 64368 ----a-w c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-03-23 20:04 . 2009-03-22 22:21 114 ----a-w c:\windows\de04ch5.dat
2009-03-22 22:46 . 2009-03-19 20:00 -------- d-----w c:\program files\Family Feud Dream Home
2009-03-22 22:20 . 2009-03-22 22:20 -------- d-----w c:\program files\detest5
2009-03-22 21:29 . 2009-03-22 21:29 -------- d-----w c:\program files\Common Files\SWF Studio
2009-03-22 21:29 . 2009-03-22 21:29 -------- d-----w c:\program files\KAZ Typing Test
2009-03-22 21:28 . 2009-03-22 21:29 737280 ----a-w c:\windows\iun6002.exe
2009-03-20 22:14 . 2009-03-20 22:14 81 ----a-w C:\CTX.DAT
2009-03-20 22:03 . 2009-01-25 16:00 410984 ----a-w c:\windows\system32\deploytk.dll
2009-03-20 22:03 . 2008-06-18 17:05 -------- d-----w c:\program files\Java
2009-03-17 16:19 . 2009-03-17 16:19 147456 ----a-w c:\windows\system32\vbzip10.dll
2009-03-06 14:44 . 2001-08-18 12:00 283648 ----a-w c:\windows\system32\pdh.dll
2009-02-20 08:30 . 2009-02-19 17:01 81920 ------w c:\windows\system32\ieencode.dll
2009-02-20 08:30 . 2001-08-18 12:00 659456 ----a-w c:\windows\system32\wininet.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-08-04 1667584]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MMTray"="c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" [2006-01-19 110592]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-06-17 98304]
"IgfxTray"="c:\windows\System32\igfxtray.exe" [2002-06-19 155648]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2002-06-19 114688]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-07-11 180269]
"MimBoot"="c:\progra~1\MUSICM~1\MUSICM~1\mimboot.exe" [2006-01-19 11776]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-06-16 221184]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-20 148888]
"D-Link AirPlus G"="c:\program files\D-Link\AirPlus G\AirGCFG.exe" [2007-04-14 1556480]
"ANIWZCS2Service"="c:\program files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2007-01-19 49152]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
--- Other Services/Drivers In Memory ---
*Deregistered* - AFD
*Deregistered* - ALG
*Deregistered* - ANIO
*Deregistered* - ANIWZCSdService
*Deregistered* - AudioSrv
*Deregistered* - audstub
*Deregistered* - Beep
*Deregistered* - BITS
*Deregistered* - Browser
*Deregistered* - Cdfs
*Deregistered* - CryptSvc
*Deregistered* - DcomLaunch
*Deregistered* - Dhcp
*Deregistered* - Dnscache
*Deregistered* - ERSvc
*Deregistered* - EventSystem
*Deregistered* - Fallback
*Deregistered* - FastUserSwitchingCompatibility
*Deregistered* - Fips
*Deregistered* - FltMgr
*Deregistered* - Fsks
*Deregistered* - Ftdisk
*Deregistered* - Gpc
*Deregistered* - helpsvc
*Deregistered* - HTTP
*Deregistered* - HTTPFilter
*Deregistered* - IpNat
*Deregistered* - IPSec
*Deregistered* - JavaQuickStarterService
*Deregistered* - K56
*Deregistered* - KSecDD
*Deregistered* - lanmanserver
*Deregistered* - lanmanworkstation
*Deregistered* - LmHosts
*Deregistered* - MDM
*Deregistered* - mdmxsdk
*Deregistered* - mnmdd
*Deregistered* - Mouclass
*Deregistered* - MountMgr
*Deregistered* - MRxDAV
*Deregistered* - MRxSmb
*Deregistered* - Msfs
*Deregistered* - mssmbios
*Deregistered* - Mup
*Deregistered* - NDIS
*Deregistered* - NdisTapi
*Deregistered* - Ndisuio
*Deregistered* - NdisWan
*Deregistered* - NDProxy
*Deregistered* - NetBIOS
*Deregistered* - NetBT
*Deregistered* - Netman
*Deregistered* - Nla
*Deregistered* - Npfs
*Deregistered* - Ntfs
*Deregistered* - Null
*Deregistered* - OMCI
*Deregistered* - ParVdm
*Deregistered* - PolicyAgent
*Deregistered* - PptpMiniport
*Deregistered* - ProtectedStorage
*Deregistered* - PSched
*Deregistered* - RasAcd
*Deregistered* - Rasl2tp
*Deregistered* - RasMan
*Deregistered* - RasPppoe
*Deregistered* - Raspti
*Deregistered* - Rdbss
*Deregistered* - RDPCDD
*Deregistered* - RpcSs
*Deregistered* - SamSs
*Deregistered* - Schedule
*Deregistered* - seclogon
*Deregistered* - SENS
*Deregistered* - ShellHWDetection
*Deregistered* - SoftFax
*Deregistered* - Spooler
*Deregistered* - sr
*Deregistered* - srservice
*Deregistered* - Srv
*Deregistered* - SSDPSRV
*Deregistered* - swenum
*Deregistered* - TapiSrv
*Deregistered* - Tcpip
*Deregistered* - TermDD
*Deregistered* - TermService
*Deregistered* - Themes
*Deregistered* - Tones
*Deregistered* - TrkWks
*Deregistered* - Update
*Deregistered* - V124
*Deregistered* - VgaSave
*Deregistered* - VolSnap
*Deregistered* - W32Time
*Deregistered* - Wanarp
*Deregistered* - WebClient
*Deregistered* - winmgmt
*Deregistered* - WS2IFSL
*Deregistered* - wuauserv
*Deregistered* - WudfPf
*Deregistered* - WudfSvc
*Deregistered* - WZCSVC
.
Contents of the 'Scheduled Tasks' folder
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com
mWindow Title = Microsoft Internet Explorer
IE: &AOL Toolbar search - c:\program files\AOL Toolbar\toolbar.dll/SEARCH.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: musicmatch.com\online
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\
FF - plugin: c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\extensions\[email protected]\platform\WINNT_x86-msvc\plugins\npmnqmp071101000055.dll
FF - plugin: c:\program files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-16 22:34
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'explorer.exe'(3428)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\msi.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\wscntfy.exe
c:\progra~1\MUSICM~1\MUSICM~1\MMDiag.exe
c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
.
**************************************************************************
.
Completion time: 2009-05-17 22:48 - machine was rebooted
ComboFix-quarantined-files.txt 2009-05-17 02:48
ComboFix2.txt 2009-03-18 22:53
ComboFix3.txt 2009-03-18 21:44
ComboFix4.txt 2009-02-20 23:39
ComboFix5.txt 2009-05-17 02:08
Pre-Run: 20,198,514,688 bytes free
Post-Run: 20,208,234,496 bytes free
314 --- E O F --- 2009-05-13 22:08
I was told to write this down and to reboot computer
c:/windows/system32/ntos.exe
HIJACK THIS LOG
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:50:15 PM, on 16/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file://C:\Program Files\The Hidden Object Show Season 2\Images\stg_drm.ocx
O16 - DPF: {21BB8360-F943-447E-98F3-3C22345375A7} (CPlayFirstChocolatieControl Object) - http://zone.msn.com/bingame/choc/default/C...eb.1.0.0.15.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213917412731
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1213962550419
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file://C:\Program Files\Elizabeth Find, MD - Diagnosis Mystery\Images\armhelper.ocx
O16 - DPF: {E9B80D94-D8BC-43DE-9138-75605A8D9666} (CPlayFirstWeddingDasControl Object) - http://zone.msn.com/bingame/wedd/default/W...sh.1.0.0.50.cab
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 5000 bytes
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:32:16 PM, on 16/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\TEMP\BN1.tmp
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\wudfhost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSTEM32\Userinit.exe,C:\WINDOWS\system32\ntos.exe,
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file://C:\Program Files\The Hidden Object Show Season 2\Images\stg_drm.ocx
O16 - DPF: {21BB8360-F943-447E-98F3-3C22345375A7} (CPlayFirstChocolatieControl Object) - http://zone.msn.com/bingame/choc/default/C...eb.1.0.0.15.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213917412731
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1213962550419
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file://C:\Program Files\Elizabeth Find, MD - Diagnosis Mystery\Images\armhelper.ocx
O16 - DPF: {E9B80D94-D8BC-43DE-9138-75605A8D9666} (CPlayFirstWeddingDasControl Object) - http://zone.msn.com/bingame/wedd/default/W...sh.1.0.0.50.cab
O20 - AppInit_DLLs: bvqtzn.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 5682 bytes
-
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
File move failed. C:\WINDOWS\system32\ntos.exe scheduled to be moved on reboot.
File/Folder C:\WINDOWS\system32\sdrgfcvbf.dll not found.
File/Folder C:\Documents and Settings\Owner\Application Data\nidle not found.
File/Folder C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\IgfxSys.dll not found.
File/Folder C:\DOCUME~1\Owner\LOCALS~1\Temp\570833324.exe not found.
File/Folder C:\WINDOWS\TEMP\j1icns6s.exe not found.
File/Folder C:\WINDOWS\TEMP\1604645086.exe not found.
File/Folder C:\WINDOWS\TEMP\mvtmymxi.exe not found.
File/Folder C:\WINDOWS\system32\kjsdiowq8oikf.dll (file missing) not found.
File/Folder C:\WINDOWS\system32\sdrgfcvbf.dll not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\Owner\LOCALS~1\Temp\etilqs_hSix2IeqiWY9FO9zs2Bc scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Owner\LOCALS~1\Temp\JET19EB.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_f8.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05162009_165957
Files moved on Reboot...
File move failed. C:\WINDOWS\system32\ntos.exe scheduled to be moved on reboot.
File C:\DOCUME~1\Owner\LOCALS~1\Temp\etilqs_hSix2IeqiWY9FO9zs2Bc not found!
File C:\DOCUME~1\Owner\LOCALS~1\Temp\JET19EB.tmp not found!
File C:\WINDOWS\temp\Perflib_Perfdata_f8.dat not found!
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\XUL.mfl moved successfully.
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:59:28 PM, on 15/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\TEMP\BN2.tmp
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\ntos.exe,
O2 - BHO: C:\WINDOWS\system32\sdrgfcvbf.dll - {C2BA40A1-74F3-42BD-F434-12345A2C8953} - C:\WINDOWS\system32\sdrgfcvbf.dll (file missing)
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [nidle] "C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe" 61A847B5BBF72813329B385772FF01F0B3E35B6638993F4661AA4EBD86D67C56389B284534F310
O4 - HKCU\..\Run: [igfxSys] rundll32.exe "C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\IgfxSys.dll",StartProtector
O4 - HKCU\..\Run: [Diagnostic Manager] C:\DOCUME~1\Owner\LOCALS~1\Temp\570833324.exe
O4 - HKUS\S-1-5-18\..\Run: [] C:\WINDOWS\TEMP\j1icns6s.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Windows Resurections] C:\WINDOWS\TEMP\j1icns6s.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Diagnostic Manager] C:\WINDOWS\TEMP\1604645086.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [uidenhiufgsduiazghs] C:\WINDOWS\TEMP\mvtmymxi.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] C:\WINDOWS\TEMP\j1icns6s.exe (User 'Default user')
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file://C:\Program Files\The Hidden Object Show Season 2\Images\stg_drm.ocx
O16 - DPF: {21BB8360-F943-447E-98F3-3C22345375A7} (CPlayFirstChocolatieControl Object) - http://zone.msn.com/bingame/choc/default/C...eb.1.0.0.15.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213917412731
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1213962550419
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file://C:\Program Files\Elizabeth Find, MD - Diagnosis Mystery\Images\armhelper.ocx
O16 - DPF: {E9B80D94-D8BC-43DE-9138-75605A8D9666} (CPlayFirstWeddingDasControl Object) - http://zone.msn.com/bingame/wedd/default/W...sh.1.0.0.50.cab
O20 - AppInit_DLLs: bvqtzn.dll
O22 - SharedTaskScheduler: jso8joigm409gopgmrlgd - {B2BA40A2-74F0-42BD-F434-12345A2C8953} - C:\WINDOWS\system32\kjsdiowq8oikf.dll (file missing)
O22 - SharedTaskScheduler: sdfsefsfdvdubgiungfuyd - {C2BA40A1-74F3-42BD-F434-12345A2C8953} - C:\WINDOWS\system32\sdrgfcvbf.dll (file missing)
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 7085 bytes
-
========== PROCESSES ==========
Process explorer.exe killed successfully.
Error: Unable to interpret <:registry> in the current context!
Error: Unable to interpret <HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}> in the current context!
Error: Unable to interpret <HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\nidle> in the current context!
Error: Unable to interpret <HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\IgfxSys> in the current context!
Error: Unable to interpret <HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\DigiFast> in the current context!
Error: Unable to interpret <HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Diagnostic Manager> in the current context!
Error: Unable to interpret <HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\\{B2BA40A2-74F0-42BD-F434-12345A2C8953}> in the current context!
Error: Unable to interpret <HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\\{C2BA40A1-74F3-42BD-F434-12345A2C8953}> in the current context!
========== FILES ==========
File/Folder C:\WINDOWS\system32\ntos.exe not found.
C:\WINDOWS\SoftwareDistribution\Download\351c39c58af1240d8e8a02f54010533a\BIT32.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\5addd6f775e0368f244f62c739d66dd4\BIT58.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\Download\7ab777f7de3e6e633438f06ba30269aa\BIT46.tmp moved successfully.
C:\WINDOWS\temp\d4dhv2gu.exe moved successfully.
C:\WINDOWS\temp\j1icns6s.exe moved successfully.
C:\WINDOWS\temp\kscs4o5ayb.exe moved successfully.
C:\WINDOWS\temp\ml2i872r.exe moved successfully.
C:\WINDOWS\temp\mvtmymxi.exe moved successfully.
C:\WINDOWS\temp\ur40dz.exe moved successfully.
C:\Documents and Settings\Owner\Application Data\nidle moved successfully.
File/Folder C:\WINDOWS\system32\wsnpoem not found.
Folder move failed. C:\Documents and Settings\Owner\Application Data\digifast scheduled to be moved on reboot.
C:\WINDOWS\system32\kjsdiowq8oikf.dll NOT unregistered.
C:\WINDOWS\system32\kjsdiowq8oikf.dll moved successfully.
DllUnregisterServer procedure not found in C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\IgfxSys.dll
C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\IgfxSys.dll NOT unregistered.
C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\IgfxSys.dll moved successfully.
C:\WINDOWS\system32\sdrgfcvbf.dll NOT unregistered.
C:\WINDOWS\system32\sdrgfcvbf.dll moved successfully.
File/Folder C:\WINDOWS\system32\kjsdiowq8oikf.dl not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\Owner\LOCALS~1\Temp\570833324.exe scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Owner\LOCALS~1\Temp\etilqs_73qu9UsfOT7SUVkjivy9 scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Owner\LOCALS~1\Temp\JET6613.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_614.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\urlclassifier3.sqlite-journal scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05142009_185305
Files moved on Reboot...
C:\Documents and Settings\Owner\Application Data\digifast moved successfully.
C:\DOCUME~1\Owner\LOCALS~1\Temp\570833324.exe moved successfully.
File C:\DOCUME~1\Owner\LOCALS~1\Temp\etilqs_73qu9UsfOT7SUVkjivy9 not found!
File C:\DOCUME~1\Owner\LOCALS~1\Temp\JET6613.tmp not found!
File C:\WINDOWS\temp\Perflib_Perfdata_614.dat not found!
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\urlclassifier3.sqlite moved successfully.
File C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\urlclassifier3.sqlite-journal not found!
C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\XUL.mfl moved successfully.
-
GMER 1.0.15.14972 - http://www.gmer.net
Rootkit scan 2009-05-13 15:04:34
Windows 5.1.2600 Service Pack 2
---- Kernel code sections - GMER 1.0.15 ----
? C:\DOCUME~1\Owner\LOCALS~1\Temp\catchme.sys The system cannot find the file specified. !
---- User code sections - GMER 1.0.15 ----
? C:\WINDOWS\System32\svchost.exe[3896] image checksum mismatch; time/date stamp mismatch; unknown module: urlmon.dllunknown module: OLEAUT32.dll
---- User IAT/EAT - GMER 1.0.15 ----
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00814416
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 008143A8
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0081436A
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00814337
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00814A7E
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00814A23
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0081471E
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 008149F7
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00814A23
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00814A4F
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00814A7E
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0081471E
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00814A23
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00814A7E
IAT C:\WINDOWS\system32\wscntfy.exe[184] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00814416
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe[308] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Common Files\Real\Update_OB\realsched.exe[316] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\QuickTime\qttask.exe[488] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 007B4416
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 007B43A8
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 007B436A
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 007B4337
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 007B471E
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 007B4A23
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 007B4A7E
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\System32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 007B4416
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 007B4A7E
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 007B4A23
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 007B471E
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 007B49F7
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 007B4A23
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 007B4A4F
IAT C:\WINDOWS\System32\alg.exe[588] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 007B4A7E
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\services.exe [ntdll.dll!NtQueryDirectoryFile] 00F14416
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00F14416
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 00F143A8
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 00F1436A
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00F14337
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 00F1471E
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00F14A23
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00F14A7E
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00F14A7E
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00F14A23
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 00F1471E
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 00F149F7
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00F14A23
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00F14A4F
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00F14A7E
IAT C:\WINDOWS\system32\services.exe[684] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00F14416
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00C24416
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 00C243A8
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 00C2436A
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00C24337
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\LSASRV.dll [ntdll.dll!LdrLoadDll] 00C243A8
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00C24416
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SAMSRV.dll [ntdll.dll!LdrLoadDll] 00C243A8
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SAMSRV.dll [ntdll.dll!LdrGetProcedureAddress] 00C2436A
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 00C2471E
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00C24A23
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00C24A7E
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00C24A7E
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00C24A23
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 00C2471E
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 00C249F7
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00C24A23
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00C24A4F
IAT C:\WINDOWS\system32\lsass.exe[700] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00C24A7E
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe[704] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\D-Link\AirPlus G\AirGCFG.exe[840] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\system32\svchost.exe[848] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00B94337
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00764416
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 007643A8
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0076436A
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00764337
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0076471E
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00764A23
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00764A7E
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00764A7E
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00764A23
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0076471E
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 007649F7
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00764A23
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00764A4F
IAT C:\WINDOWS\system32\svchost.exe[904] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00764A7E
IAT C:\WINDOWS\system32\svchost.exe[904] @ c:\windows\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00764416
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 012D4416
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 012D43A8
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 012D436A
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 012D4337
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 012D471E
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 012D4A23
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 012D4A7E
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 012D4A7E
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 012D4A23
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 012D471E
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 012D49F7
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 012D4A23
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 012D4A4F
IAT C:\WINDOWS\System32\svchost.exe[944] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 012D4A7E
IAT C:\WINDOWS\System32\svchost.exe[944] @ c:\windows\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 012D4416
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 009E4416
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 009E43A8
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 009E436A
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 009E4337
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 009E471E
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 009E4A23
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 009E4A7E
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 009E4A7E
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 009E4A23
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 009E471E
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 009E49F7
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 009E4A23
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 009E4A4F
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 009E4A7E
IAT C:\WINDOWS\system32\svchost.exe[980] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 009E4416
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\MMDiag.exe[1012] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00624416
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 006243A8
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0062436A
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00624337
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0062471E
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00624A23
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00624A7E
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00624A7E
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00624A23
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0062471E
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 006249F7
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00624A23
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00624A4F
IAT C:\WINDOWS\System32\svchost.exe[1104] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00624A7E
IAT C:\WINDOWS\System32\svchost.exe[1104] @ c:\windows\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00624416
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe[1124] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00404416
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 004043A8
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0040436A
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00404337
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0040471E
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0040471E
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 004049F7
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00404A4F
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\WINDOWS\System32\svchost.exe[1140] @ C:\WINDOWS\System32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00404416
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 006A4416
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 006A43A8
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 006A436A
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 006A4337
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 006A471E
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 006A4A23
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 006A4A7E
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 006A4A7E
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 006A4A23
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 006A471E
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 006A49F7
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 006A4A23
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 006A4A4F
IAT C:\WINDOWS\system32\svchost.exe[1160] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 006A4A7E
IAT C:\WINDOWS\system32\svchost.exe[1160] @ c:\windows\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 006A4416
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\Java\jre6\bin\jusched.exe[1256] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00084416
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 000843A8
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0008436A
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00084337
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0008471E
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00084A23
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00084A7E
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 000849F7
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00084A23
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00084A4F
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00084A7E
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00084A7E
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00084A23
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0008471E
IAT C:\WINDOWS\system32\wuauclt.exe[1292] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00084416
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 009E4416
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 009E43A8
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 009E436A
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 009E4337
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 009E471E
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 009E4A23
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 009E4A7E
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 009E4A7E
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 009E4A23
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 009E471E
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 009E49F7
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 009E4A23
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 009E4A4F
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 009E4A7E
IAT C:\WINDOWS\system32\spoolsv.exe[1404] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 009E4416
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe[1444] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00084416
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 000843A8
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0008436A
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00084337
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0008471E
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00084A23
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00084A7E
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00084A7E
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00084A23
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0008471E
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 000849F7
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00084A23
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00084A4F
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00084A7E
IAT C:\WINDOWS\system32\ctfmon.exe[1452] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00084416
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00624416
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 006243A8
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0062436A
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00624337
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0062471E
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00624A23
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00624A7E
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00624A7E
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00624A23
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0062471E
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 006249F7
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00624A23
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00624A4F
IAT C:\WINDOWS\System32\svchost.exe[1484] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00624A7E
IAT C:\WINDOWS\System32\svchost.exe[1484] @ c:\windows\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00624416
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00DB4416
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 00DB43A8
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 00DB436A
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00DB4337
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00DB4416
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 00DB471E
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00DB4A23
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00DB4A7E
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 00DB49F7
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00DB4A23
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00DB4A4F
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00DB4A7E
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00DB4A7E
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00DB4A23
IAT C:\Program Files\Java\jre6\bin\jqs.exe[1556] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 00DB471E
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 003C4416
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 003C43A8
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 003C436A
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 003C4337
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 003C471E
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 003C4A23
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 003C4A7E
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 003C4A7E
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 003C4A23
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 003C471E
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 003C49F7
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 003C4A23
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 003C4A4F
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 003C4A7E
IAT C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE[1592] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 003C4416
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe[1644] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe[1692] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00404416
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 004043A8
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0040436A
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00404337
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0040471E
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0040471E
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 004049F7
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00404A4F
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\WINDOWS\system32\rundll32.exe[1848] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00404416
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00404416
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 004043A8
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0040436A
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00404337
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00404416
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0040471E
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 004049F7
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00404A4F
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00404A7E
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00404A23
IAT C:\Program Files\Messenger\msmsgs.exe[1888] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 0040471E
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\WINDOWS\System32\hkcmd.exe[1956] @ C:\WINDOWS\System32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe[1960] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\Explorer.EXE [uSER32.dll!GetMessageW] 00D54A23
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\Explorer.EXE [uSER32.dll!PeekMessageW] 00D54A7E
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00D54416
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 00D543A8
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 00D5436A
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00D54337
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 00D549F7
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00D54A23
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00D54A4F
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00D54A7E
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!PeekMessageW] 00D54A7E
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetMessageW] 00D54A23
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\SHELL32.dll [uSER32.dll!GetClipboardData] 00D5471E
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 00D5471E
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00D54A23
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00D54A7E
IAT C:\WINDOWS\Explorer.EXE[2004] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00D54416
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrLoadDll] 001343A8
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!LdrGetProcedureAddress] 0013436A
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateThread] 00134337
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\shell32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageA] 001349F7
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageA] 00134A4F
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\SHLWAPI.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetClipboardData] 0013471E
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!GetMessageW] 00134A23
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\ole32.dll [uSER32.dll!PeekMessageW] 00134A7E
IAT C:\Documents and Settings\Owner\Desktop\gmer\gmer.exe[3564] @ C:\WINDOWS\system32\WS2HELP.dll [ntdll.dll!NtQueryDirectoryFile] 00134416
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!RegQueryValueExW] [77DD6C07] C:\WINDOWS\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!SetSecurityDescriptorDacl] [77DD7832] C:\WINDOWS\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!SetEntriesInAclW] [77DDE927] C:\WINDOWS\system32\ADVAPI32.dll (Advanced Windows 32 Base API/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!SetSecurityDescriptorGroup] 00000000
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!SetSecurityDescriptorOwner] [7C80E94F] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!InitializeSecurityDescriptor] [7C90FF2D] C:\WINDOWS\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!GetTokenInformation] [7C9174E9] C:\WINDOWS\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!OpenProcessToken] [7C80EA2B] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!OpenThreadToken] [7C80C068] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!SetServiceStatus] [7C80978A] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!RegisterServiceCtrlHandlerW] [7C80A0E4] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!RegCloseKey] [7C809A19] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!RegOpenKeyExW] [7C809C08] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ADVAPI32.dll!StartServiceCtrlDispatcherW] [7C810647] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!WideCharToMultiByte] [7C80BDC6] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!lstrlenW] [7C830D94] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LocalFree] [7C809B57] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetCurrentProcess] [7C80180E] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetCurrentThread] [7C810B9E] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetProcAddress] [7C801A24] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LoadLibraryExW] [7C90FE21] C:\WINDOWS\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LCMapStringW] [7C831EF5] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!FreeLibrary] [7C860B1F] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!lstrcpyW] [7C835E12] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!ExpandEnvironmentStringsW] [7C802442] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!lstrcmpiW] [7C801E16] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!ExitProcess] [7C802520] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetCommandLineW] [7C830A01] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!InitializeCriticalSection] [7C8092B8] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetProcessHeap] [7C80BE11] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!SetErrorMode] [7C9010E0] C:\WINDOWS\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!SetUnhandledExceptionFilter] [7C901000] C:\WINDOWS\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!RegisterWaitForSingleObject] [7C809F01] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!InterlockedCompareExchange] [7C809740] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LoadLibraryA] [7C8098FB] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!QueryPerformanceCounter] [7C81CE13] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetTickCount] [7C91137A] C:\WINDOWS\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetCurrentThreadId] [7C801625] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetCurrentProcessId] [7C834D89] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!GetSystemTimeAsFileTime] [7C80ABD1] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!TerminateProcess] [7C809E11] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!UnhandledExceptionFilter] [7C809E89] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!LocalAlloc] [7C9100C4] C:\WINDOWS\system32\ntdll.dll (NT Layer DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!lstrcmpW] [7C809776] C:\WINDOWS\system32\kernel32.dll (Windows NT BASE API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [KERNEL32.dll!DelayLoadFailureHook] 00000000
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!NtQuerySecurityObject] [771248C0] C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlFreeHeap] [7712503F] C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!NtOpenKey] [77125010] C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!wcscat] [771250DE] C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!wcscpy] [77124920] C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlAllocateHeap] [77124B59] C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlCompareUnicodeString] [7714C780] C:\WINDOWS\system32\OLEAUT32.dll (Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlInitUnicodeString] 00000000
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlInitializeSid] [77F72240] C:\WINDOWS\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlLengthRequiredSid] [77F8C41E] C:\WINDOWS\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlSubAuthoritySid] [77F6818C] C:\WINDOWS\system32\SHLWAPI.dll (Shell Light-weight Utility Library/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!NtClose] 00000000
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlSubAuthorityCountSid] [77D6FE82] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlGetDaclSecurityDescriptor] [77D4EEF7] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlQueryInformationAcl] [77D4DB62] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlGetAce] [77D4BD8E] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlImageNtHeader] [77D48A58] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!wcslen] [77D4D935] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlUnhandledExceptionFilter] [77D6F7A8] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [ntdll.dll!RtlCopySid] [77D6E083] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcServerUnregisterIfEx] [77D85B10] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcMgmtWaitServerListen] [77D6EDC3] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcMgmtSetServerStackSize] [77D4B7DB] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcServerUnregisterIf] [77D4FDAE] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcServerListen] [77D48F75] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcServerUseProtseqEpW] [77D4EEE5] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcServerRegisterIf] [77D6FCB2] C:\WINDOWS\system32\USER32.dll (Windows XP USER API Client DLL/Microsoft Corporation)
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!I_RpcMapWin32Status] 00000000
IAT C:\WINDOWS\System32\svchost.exe[3896] @ C:\WINDOWS\System32\svchost.exe [RPCRT4.dll!RpcMgmtStopServerListening] [771B7138] C:\WINDOWS\system32\WININET.dll (Internet Extensions for Win32/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
Device \Driver\NDIS \Device\Ndis [81A8D982] NDIS.sys[.reloc]
---- Files - GMER 1.0.15 ----
File C:\WINDOWS\SoftwareDistribution\Download\e9500597a78495f397efb821e37bf356\ndis.sys (size mismatch) 182656/182912 bytes executable
File C:\WINDOWS\system32\dllcache\ndis.sys (size mismatch) 213376/182912 bytes executable
File C:\WINDOWS\system32\drivers\ndis.sys (size mismatch) 213376/182912 bytes executable
File C:\WINDOWS\system32\ntos.exe 191488 bytes executable
File C:\WINDOWS\system32\wsnpoem 0 bytes
File C:\WINDOWS\system32\wsnpoem\audio.dll 0 bytes
File C:\WINDOWS\system32\wsnpoem\video.dll 36086 bytes
File C:\WINDOWS\$NtServicePackUninstall$\ndis.sys (size mismatch) 161536/182912 bytes executable
---- EOF - GMER 1.0.15 ----
-
Checking Files :
No Trojan Files Found
Removing Temp Files
ADS Check :
Final Check :
catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-12 18:45:56
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden services & system hive ...
scanning hidden registry entries ...
scanning hidden files ...
C:\WINDOWS\system32\ntos.exe 191488 bytes executable
C:\WINDOWS\system32\wsnpoem
C:\WINDOWS\system32\wsnpoem\audio.dll 0 bytes
C:\WINDOWS\system32\wsnpoem\video.dll 36086 bytes
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 4
Remaining Services :
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
Remaining Files :
Files with Hidden Attributes :
Mon 16 Jun 2008 5,237 A..H. --- "C:\TEMP\t4.bak"
Tue 17 Jun 2008 8,941 A..H. --- "C:\TEMP\t4.bak1"
Tue 17 Jun 2008 9,458 A..H. --- "C:\TEMP\t4.bak2"
Sat 23 Aug 2008 6,464 A..H. --- "C:\TEMP\t4.bak3"
Mon 20 Apr 2009 15,001 ...H. --- "C:\WINDOWS\temp\d4dhv2gu.exe"
Fri 1 May 2009 15,001 ...H. --- "C:\WINDOWS\temp\j1icns6s.exe"
Thu 30 Apr 2009 15,001 ...H. --- "C:\WINDOWS\temp\kscs4o5ayb.exe"
Thu 23 Apr 2009 15,001 ...H. --- "C:\WINDOWS\temp\ml2i872r.exe"
Mon 4 May 2009 15,001 ...H. --- "C:\WINDOWS\temp\mvtmymxi.exe"
Sun 3 May 2009 15,001 ...H. --- "C:\WINDOWS\temp\ur40dz.exe"
Fri 11 Jul 2008 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Thu 12 Mar 2009 158,426 ...H. --- "C:\Program Files\Yahoo! Games\Finders Keepers\Uninstall.exe"
Tue 5 May 2009 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Sat 20 Dec 2008 7,478,208 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\351c39c58af1240d8e8a02f54010533a\BIT32.tmp"
Fri 20 Jun 2008 8,723,064 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\5addd6f775e0368f244f62c739d66dd4\BIT58.tmp"
Fri 17 Oct 2008 7,281,784 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\7ab777f7de3e6e633438f06ba30269aa\BIT46.tmp"
Fri 2 May 2008 3,493,888 A..H. --- "C:\Documents and Settings\Owner\Application Data\U3\temp\Launchpad Removal.exe"
Finished!
-
HJT logs belong in the Malware section. -tt75-
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:08:33 PM, on 10/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe
C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\1522232968.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\ntos.exe,
O2 - BHO: C:\WINDOWS\system32\kjsdiowq8oikf.dll - {B2BA40A2-74F0-42BD-F434-12345A2C8953} - C:\WINDOWS\system32\kjsdiowq8oikf.dll
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [MP10_EnsureFileVer] C:\WINDOWS\inf\unregmp2.exe /EnsureFileVersions
O4 - HKLM\..\RunOnce: [KB926239] rundll32.exe apphelp.dll,ShimFlushCache
O4 - HKLM\..\RunOnce: [WMC_RebootCheck] C:\WINDOWS\inf\unregmp2.exe /FixUps
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [nidle] "C:\Documents and Settings\Owner\Application Data\nidle\nidle.exe" 61A847B5BBF72813329B385772FF01F0B3E35B6638993F4661AA4EBD86D67C56389B284534F310
O4 - HKCU\..\Run: [igfxSys] rundll32.exe "C:\Documents and Settings\Owner\Application Data\Messenger\Drivers\IgfxSys.dll",StartProtector
O4 - HKCU\..\Run: [DigiFast] C:\Documents and Settings\Owner\Application Data\digifast\digifast.exe
O4 - HKCU\..\Run: [sfKg6wIPuSpdc] C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\vdmwm.exe
O4 - HKCU\..\Run: [Diagnostic Manager] C:\DOCUME~1\Owner\LOCALS~1\Temp\1522232968.exe
O4 - HKCU\..\RunOnce: [WMC_WMPDBExport] C:\Program Files\Windows Media Player\wmdbexport.exe
O4 - HKUS\S-1-5-18\..\Run: [] C:\WINDOWS\TEMP\j1icns6s.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Windows Resurections] C:\WINDOWS\TEMP\j1icns6s.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Diagnostic Manager] C:\WINDOWS\TEMP\3119620228.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [uidenhiufgsduiazghs] C:\WINDOWS\TEMP\mvtmymxi.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] C:\WINDOWS\TEMP\j1icns6s.exe (User 'Default user')
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file://C:\Program Files\The Hidden Object Show Season 2\Images\stg_drm.ocx
O16 - DPF: {21BB8360-F943-447E-98F3-3C22345375A7} (CPlayFirstChocolatieControl Object) - http://zone.msn.com/bingame/choc/default/C...eb.1.0.0.15.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213917412731
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1213962550419
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file://C:\Program Files\Elizabeth Find, MD - Diagnosis Mystery\Images\armhelper.ocx
O16 - DPF: {E9B80D94-D8BC-43DE-9138-75605A8D9666} (CPlayFirstWeddingDasControl Object) - http://zone.msn.com/bingame/wedd/default/W...sh.1.0.0.50.cab
O20 - AppInit_DLLs: bvqtzn.dll
O22 - SharedTaskScheduler: jso8joigm409gopgmrlgd - {B2BA40A2-74F0-42BD-F434-12345A2C8953} - C:\WINDOWS\system32\kjsdiowq8oikf.dll
O22 - SharedTaskScheduler: sdfsefsfdvdubgiungfuyd - {C2BA40A1-74F3-42BD-F434-12345A2C8953} - C:\WINDOWS\system32\sdrgfcvbf.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 7561 bytes
-
how do i get my computer to run faster
-
sorry couldn't get back with you yesterday my wireless connection was running slow, so far so good no problems when i restarted.
-
So far, so good haven't restarted the computer yet so don't know if the effects will take place now or later. We'll be in touch if something changes.
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:21:57 PM, on 23/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {21BB8360-F943-447E-98F3-3C22345375A7} (CPlayFirstChocolatieControl Object) - http://zone.msn.com/bingame/choc/default/C...eb.1.0.0.15.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213917412731
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1213962550419
O16 - DPF: {E9B80D94-D8BC-43DE-9138-75605A8D9666} (CPlayFirstWeddingDasControl Object) - http://zone.msn.com/bingame/wedd/default/W...sh.1.0.0.50.cab
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4547 bytes
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:24:23 PM, on 22/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://adserving.cpxinteractive.com/iframe...a4-000b6aa2a5f8
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [1331176861] "C:\Documents and Settings\All Users\Application Data\1447988137\1331176861.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {21BB8360-F943-447E-98F3-3C22345375A7} (CPlayFirstChocolatieControl Object) - http://zone.msn.com/bingame/choc/default/C...eb.1.0.0.15.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213917412731
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1213962550419
O16 - DPF: {E9B80D94-D8BC-43DE-9138-75605A8D9666} (CPlayFirstWeddingDasControl Object) - http://zone.msn.com/bingame/wedd/default/W...sh.1.0.0.50.cab
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 5198 bytes
-
ComboFix 09-02-15.01 - Owner 2009-02-20 18:28:04.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.254.104 [GMT -5:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Owner\Desktop\CFScript.txt
* Created a new restore point
FILE ::
C:\-856197470
C:\rnqcp.exe
c:\windows\system32\0085.zip
c:\windows\system32\0121mixed.bin
c:\windows\system32\10b.zip
c:\windows\system32\139backup.bin
c:\windows\system32\147base.bin
c:\windows\system32\297backup.bin
c:\windows\system32\apswymby.ini
c:\windows\system32\avica.dll
c:\windows\system32\cookies284.zip
c:\windows\system32\data009C.bin
c:\windows\system32\drivers\krnchtju.sys
c:\windows\system32\images142.zip
c:\windows\system32\kwqdiddg.ini
c:\windows\system32\sxjyuonm.ini
c:\windows\system32\uninstall7d.zip
c:\windows\system32\user275.zip
c:\windows\system32\vehykqla.ini
c:\windows\system32\wsnpgnil.ini
c:\windows\system32\yaceoerc.ini
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\rnqcp.exe
c:\windows\system32\0085.zip
c:\windows\system32\0121mixed.bin
c:\windows\system32\10b.zip
c:\windows\system32\139backup.bin
c:\windows\system32\147base.bin
c:\windows\system32\297backup.bin
c:\windows\system32\apswymby.ini
c:\windows\system32\avica.dll
c:\windows\system32\cookies284.zip
c:\windows\system32\data009C.bin
c:\windows\system32\drivers\krnchtju.sys
c:\windows\system32\images142.zip
c:\windows\system32\kwqdiddg.ini
c:\windows\system32\sxjyuonm.ini
c:\windows\system32\uninstall7d.zip
c:\windows\system32\user275.zip
c:\windows\system32\vehykqla.ini
c:\windows\system32\wsnpgnil.ini
c:\windows\system32\yaceoerc.ini
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_KRNCHTJU
-------\Service_krnchtju
((((((((((((((((((((((((( Files Created from 2009-01-20 to 2009-02-20 )))))))))))))))))))))))))))))))
.
2009-02-20 18:09 . 2009-02-20 18:09 <DIR> d-------- c:\windows\system32\CatRoot_bak
2009-02-20 18:00 . 2009-02-20 18:06 <DIR> d--h----- c:\windows\$hf_mig$
2009-02-19 12:04 . 2004-08-04 00:56 221,184 --a------ c:\windows\system32\wmpns.dll
2009-02-19 12:01 . 2009-02-19 12:01 <DIR> d-------- c:\windows\provisioning
2009-02-19 11:57 . 2009-02-19 11:57 <DIR> d-------- c:\windows\ServicePackFiles
2009-02-19 11:54 . 2004-08-04 00:56 2,897,920 --------- c:\windows\system32\xpsp2res.dll
2009-02-19 11:51 . 2005-02-24 22:35 22,752 --a------ c:\windows\system32\spupdsvc.exe
2009-02-19 11:51 . 2004-07-17 11:40 19,528 --a------ c:\windows\002394_.tmp
2009-02-19 11:45 . 2009-02-19 11:45 <DIR> d-------- c:\windows\EHome
2009-02-18 23:02 . 2009-02-18 23:02 <DIR> d-------- c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-02-17 18:22 . 2009-02-17 18:47 <DIR> d-------- C:\SDFix
2009-02-17 08:39 . 2009-02-17 08:39 <DIR> d-------- c:\program files\Trend Micro
2009-02-15 18:27 . 2009-02-15 18:27 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-02-15 18:27 . 2009-02-15 18:27 <DIR> d-------- c:\documents and settings\Owner\Application Data\Malwarebytes
2009-02-15 18:27 . 2009-02-15 18:27 <DIR> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-02-15 18:27 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-15 18:27 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-02-15 17:51 . 2009-02-15 17:51 <DIR> d-------- c:\documents and settings\Administrator.DEEANDSHAUN
2009-02-11 13:24 . 2009-02-17 18:28 <DIR> d-------- c:\windows\ERUNT
2009-02-11 13:24 . 2009-02-11 13:24 <DIR> d-------- C:\ERDNT
2009-02-11 13:16 . 2009-02-11 15:26 <DIR> d-------- C:\!FixIEDef
2009-02-10 11:29 . 2009-02-10 11:29 <DIR> d-------- c:\documents and settings\All Users\Application Data\ESET
2009-02-06 10:35 . 2005-08-27 03:38 1,435,272 --a------ c:\windows\system32\Flash8.ocx
2009-02-06 10:35 . 2002-03-04 13:27 1,140,472 --a------ c:\windows\system32\IGUltraGrid20.ocx
2009-02-06 10:35 . 2003-11-19 14:59 512,688 --a------ c:\windows\system32\XceedCry.dll
2009-02-06 10:35 . 2004-03-09 00:00 131,856 --a------ c:\windows\system32\MSADODC.ocx
2009-02-06 10:35 . 1999-01-26 20:36 11,012 --a------ c:\windows\system32\threadapi.tlb
2009-02-05 19:30 . 2009-02-05 19:53 <DIR> d-------- c:\windows\Internet Logs
2009-02-05 19:28 . 2009-02-09 08:47 <DIR> d-------- c:\windows\system32\ZoneLabs
2009-02-05 19:28 . 2009-02-05 19:28 <DIR> d-------- c:\program files\Zone Labs
2009-02-05 09:33 . 2009-02-05 09:33 18,060 --a------ c:\windows\system32\data013F.pk2
2009-02-05 09:32 . 2009-02-05 09:32 18,148 --a------ c:\windows\system32\data011B.pkd
2009-02-05 09:26 . 2009-02-05 11:14 7,680 --a------ c:\windows\system32\rasha.exe
2009-02-03 16:40 . 2009-02-05 11:35 <DIR> d-------- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-01-27 12:38 . 2009-01-27 12:38 <DIR> d-------- c:\program files\ParetoLogic
2009-01-27 12:38 . 2009-01-27 12:38 <DIR> d-------- c:\program files\Common Files\ParetoLogic
2009-01-27 12:38 . 2009-01-27 12:38 <DIR> d-------- c:\documents and settings\All Users\Application Data\ParetoLogic
2009-01-27 12:38 . 2009-01-27 12:38 <DIR> d-------- c:\documents and settings\All Users\Application Data\DriverCure
2009-01-27 12:36 . 2009-01-27 12:36 <DIR> d-------- c:\documents and settings\All Users\Application Data\Downloaded Installations
2009-01-27 12:10 . 2009-01-27 12:10 <DIR> d-------- c:\documents and settings\Owner\Application Data\Uniblue
2009-01-27 11:32 . 2009-01-27 11:32 <DIR> d-------- c:\documents and settings\Dee\Application Data\PC Tools
2009-01-27 10:46 . 2009-01-27 10:46 <DIR> d-------- c:\documents and settings\Administrator
2009-01-26 14:07 . 2009-01-26 14:07 <DIR> d-------- c:\documents and settings\Owner\Application Data\MSN6
2009-01-26 14:07 . 2009-01-26 14:07 <DIR> d-------- c:\documents and settings\All Users\Application Data\MSN6
2009-01-26 11:04 . 2009-01-26 11:04 <DIR> d-------- c:\documents and settings\Owner\Application Data\RegTool
2009-01-25 18:04 . 2009-01-25 18:04 <DIR> d-------- c:\program files\Common Files\PC Tools
2009-01-25 11:21 . 2009-01-25 18:24 <DIR> d-------- c:\documents and settings\All Users\Application Data\1447988137
2009-01-25 11:03 . 2009-01-25 11:03 45 --a------ c:\windows\system32\RPVersion.ini
2009-01-25 11:00 . 2009-01-25 11:00 410,984 --a------ c:\windows\system32\deploytk.dll
2009-01-22 11:59 . 2009-02-18 10:03 54,156 --ah----- c:\windows\QTFont.qfn
2009-01-22 11:59 . 2009-01-22 11:59 1,409 --a------ c:\windows\QTFont.for
2009-01-20 18:51 . 2009-01-20 18:51 <DIR> d-------- c:\documents and settings\Owner\.realobjects
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-11 00:49 --------- d-----w c:\program files\Morpheus
2009-02-10 15:32 --------- d-----w c:\documents and settings\Owner\Application Data\LimeWire
2009-02-06 00:33 30,208 ----a-w c:\windows\Internet Logs\xDB4.tmp
2009-02-06 00:33 12,288 ----a-w c:\windows\Internet Logs\xDB5.tmp
2009-02-06 00:30 29,184 ----a-w c:\windows\Internet Logs\xDB2.tmp
2009-02-06 00:30 12,800 ----a-w c:\windows\Internet Logs\xDB3.tmp
2009-01-27 17:41 --------- d-----w c:\program files\DivX
2009-01-27 16:32 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP
2009-01-25 17:40 --------- d-----w c:\documents and settings\All Users\Application Data\Zylom
2009-01-25 15:59 --------- d-----w c:\program files\Java
2009-01-22 15:10 --------- d-----w c:\program files\Yahoo! Games
2009-01-14 20:32 --------- d-----w c:\documents and settings\Owner\Application Data\Move Networks
2009-01-11 14:28 --------- d-----w c:\program files\Common Files\AOL
2009-01-11 14:27 2,560 ----a-w c:\windows\_MSRSTRT.EXE
2009-01-11 14:26 --------- d-----w c:\documents and settings\All Users\Application Data\AOL
2009-01-11 14:25 --------- d-----w c:\documents and settings\Owner\Application Data\AOL
2009-01-11 03:59 --------- d-----w c:\program files\eGames
2009-01-11 03:58 --------- d-----w c:\program files\Shockwave.com
2009-01-10 22:15 --------- d-----w c:\documents and settings\Owner\Application Data\Mind Control Software
2009-01-07 23:08 --------- d-----w c:\documents and settings\All Users\Application Data\PopCap
2009-01-06 00:54 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-06 00:54 --------- d-----w c:\program files\ANI
2009-01-06 00:54 --------- d-----w c:\documents and settings\All Users\Application Data\InstallShield
2009-01-06 00:53 --------- d-----w c:\program files\D-Link
2009-01-06 00:50 --------- d-----w c:\program files\Viva Media
2009-01-06 00:42 --------- d-----w c:\program files\Common Files\InstallShield
2009-01-04 23:04 --------- d-----w c:\program files\iXi Tools
2008-12-29 21:29 --------- d-----w c:\documents and settings\All Users\Application Data\Sandlot Games
2008-12-29 16:39 --------- d-----w c:\documents and settings\Owner\Application Data\Gaijin Ent
2008-12-29 16:28 --------- d-----w c:\program files\Viva Media Best Buy
.
((((((((((((((((((((((((((((( SnapShot@2009-02-17_11.32.56.15 )))))))))))))))))))))))))))))))))))))))))
.
- 2001-08-18 12:00:00 1,229,312 ----a-w c:\windows\AppPatch\AcGenral.dll
+ 2004-08-04 05:56:42 1,852,416 ----a-w c:\windows\AppPatch\acgenral.dll
- 2001-08-18 12:00:00 370,688 ----a-w c:\windows\AppPatch\AcLayers.dll
+ 2004-08-04 05:56:42 450,048 ----a-w c:\windows\AppPatch\aclayers.dll
- 2001-08-18 12:00:00 45,568 ----a-w c:\windows\AppPatch\AcLua.dll
+ 2004-08-04 05:56:42 137,728 ----a-w c:\windows\AppPatch\aclua.dll
- 2001-08-18 12:00:00 204,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
+ 2004-08-04 05:56:42 244,736 ----a-w c:\windows\AppPatch\acspecfc.dll
- 2001-08-18 12:00:00 105,472 ----a-w c:\windows\AppPatch\AcXtrnal.dll
+ 2004-08-04 05:56:42 116,224 ----a-w c:\windows\AppPatch\acxtrnal.dll
+ 2008-08-07 20:27:04 163,328 ----a-w c:\windows\ERUNT\SDFIX\ERDNT.EXE
+ 2009-02-17 23:28:54 405,504 ----a-w c:\windows\ERUNT\SDFIX\Users\00000001\NTUSER.DAT
+ 2009-02-17 23:28:54 8,192 ----a-w c:\windows\ERUNT\SDFIX\Users\00000002\UsrClass.dat
+ 2008-08-07 20:27:04 163,328 ----a-w c:\windows\ERUNT\SDFIX_First_Run\ERDNT.EXE
+ 2009-02-17 23:28:43 405,504 ----a-w c:\windows\ERUNT\SDFIX_First_Run\Users\00000001\NTUSER.DAT
+ 2009-02-17 23:28:43 8,192 ----a-w c:\windows\ERUNT\SDFIX_First_Run\Users\00000002\UsrClass.dat
- 2001-08-18 12:00:00 1,000,960 ----a-w c:\windows\explorer.exe
+ 2004-08-04 05:56:50 1,032,192 ----a-w c:\windows\explorer.exe
- 2001-08-18 12:00:00 32,256 ----a-w c:\windows\Help\sniffpol.dll
+ 2004-08-04 05:56:46 34,816 ----a-w c:\windows\Help\sniffpol.dll
- 2001-08-18 12:00:00 30,720 ----a-w c:\windows\Help\sstub.dll
+ 2004-08-04 05:56:46 33,280 ----a-w c:\windows\Help\sstub.dll
- 2001-08-18 12:00:00 262,656 ----a-w c:\windows\Help\tshoot.dll
+ 2004-08-04 05:56:48 279,040 ----a-w c:\windows\Help\tshoot.dll
- 2002-09-22 00:13:26 10,752 ----a-w c:\windows\hh.exe
+ 2004-08-04 05:56:52 10,752 ----a-w c:\windows\hh.exe
- 2001-08-18 12:00:00 238,592 ----a-w c:\windows\ime\mscandui.dll
+ 2004-08-04 05:56:44 220,160 ----a-w c:\windows\ime\mscandui.dll
- 2001-08-18 12:00:00 160,768 ----a-w c:\windows\ime\SOFTKBD.DLL
+ 2004-08-04 05:56:46 130,048 ----a-w c:\windows\ime\softkbd.dll
+ 2004-08-04 05:56:30 62,976 ------w c:\windows\ime\spgrmr.dll
- 2001-08-18 12:00:00 256,000 ----a-w c:\windows\ime\SPTIP.dll
+ 2004-08-04 05:56:46 250,880 ----a-w c:\windows\ime\sptip.dll
+ 2004-03-11 19:53:40 170,688 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\ACCWIZ.DLL
+ 2003-07-14 22:43:20 87,616 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\ADDRPARS.DLL
+ 2003-07-14 22:57:34 38,968 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\AUTHZAX.DLL
+ 2003-07-14 22:53:06 94,768 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\AW.DLL
+ 2003-07-14 22:53:24 60,984 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\BLNMGR.DLL
+ 2003-07-14 22:53:22 46,144 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\BLNMGRPS.DLL
+ 2004-03-11 20:00:14 351,936 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\CDLMSO.DLL
+ 2003-07-15 07:18:12 47,160 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\DFUICOM.EXE
+ 2003-07-25 22:57:20 75,832 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\DLGSETP.DLL
+ 2003-07-14 22:56:54 14,904 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\DSITF.DLL
+ 2003-07-14 22:57:14 98,360 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\DSSM.EXE
+ 2003-11-10 16:52:54 39,952 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\DWDCW20.DLL
+ 2003-11-10 16:52:54 34,832 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\DWTRIG20.EXE
+ 2004-05-22 11:57:40 132,296 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\ENVELOPE.DLL
+ 2004-05-18 22:58:40 10,080,960 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\EXCEL.EXE
+ 2003-07-14 22:41:44 13,368 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FINDER.EXE
+ 2004-03-11 20:13:14 1,146,320 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FM20.DLL
+ 2002-10-07 13:49:36 192,573 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FORM.DLL
+ 2004-05-22 12:36:24 1,952,960 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FPCUTL.DLL
+ 2004-06-23 21:53:40 187,072 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FPDTC.DLL
+ 2003-07-14 22:40:12 179,768 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FPERSON.DLL
+ 2003-07-14 22:40:12 165,944 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FPLACE.DLL
+ 2004-04-28 04:19:36 1,159,368 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FPSRVUTL.DLL
+ 2004-05-22 12:36:18 800,960 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\FPWEC.DLL
+ 2004-06-23 21:11:38 2,140,352 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\GRAPH.EXE
+ 2004-03-12 16:36:22 87,240 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\IEAWSDC.DLL
+ 2004-03-22 20:20:24 161,472 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\IETAG.DLL
+ 2003-07-23 22:32:32 121,400 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\IMPMAIL.DLL
+ 2004-05-27 20:05:44 7,067,848 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\INFOPATH.EXE
+ 2003-07-14 22:45:14 58,944 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\INLAUNCH.DLL
+ 2004-03-22 20:17:04 765,680 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MDIGRAPH.DLL
+ 2003-06-18 21:31:10 252,928 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MDIINK.DLL
+ 2004-03-22 20:17:06 24,816 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MDIMON.DLL
+ 2004-03-22 20:17:08 25,840 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MDIPPR.DLL
+ 2004-03-22 20:17:10 42,224 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MDIUI.DLL
+ 2003-06-18 21:31:34 443,904 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MDIVWCTL.DLL
+ 2003-07-14 22:46:08 176,696 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MIMEDIR.DLL
+ 2004-04-19 15:43:00 471,752 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MODHELP.DLL
+ 2004-05-18 22:47:26 6,631,624 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSACCESS.EXE
+ 2003-07-15 07:13:58 130,112 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSAEXP30.DLL
+ 2003-07-14 22:57:14 124,480 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSB1CORE.DLL
+ 2003-07-14 23:12:22 47,872 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSB1XTOR.DLL
+ 2003-07-14 22:58:04 230,968 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSCDM.DLL
+ 2004-02-23 20:36:48 115,400 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSCONV97.DLL
+ 2002-12-17 23:08:50 359,600 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSDMENG.DLL
+ 2002-12-17 23:08:54 1,383,592 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSDMINE.DLL
+ 2003-07-14 22:56:14 40,504 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSE7.EXE
+ 2003-07-14 22:51:44 87,104 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSENCODE.DLL
+ 2003-07-15 07:14:00 139,328 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSJSPP40.DLL
+ 2002-04-09 20:14:36 187,560 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSMDUN80.DLL
+ 2003-07-14 22:52:52 17,464 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSMH.DLL
+ 2004-06-17 05:49:12 12,216,512 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSO.DLL
+ 2003-07-14 22:57:16 120,888 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOAUTH.DLL
+ 2004-03-11 20:02:44 107,200 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOCF.DLL
+ 2004-03-11 20:00:10 128,192 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOCFU.DLL
+ 2003-07-14 22:52:52 27,704 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSODCW.DLL
+ 2003-07-14 22:44:06 25,144 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOEURO.DLL
+ 2003-07-14 22:52:56 55,360 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOHTMED.EXE
+ 2002-12-17 23:09:24 2,071,752 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOLAP80.DLL
+ 2003-07-14 22:56:16 54,328 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOMSE.DLL
+ 2003-07-11 06:15:48 1,292,872 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSONSEXT.DLL
+ 2003-07-15 07:18:52 376,888 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSORUN.DLL
+ 2003-07-14 22:52:54 28,224 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOSTYLE.DLL
+ 2003-07-14 22:52:52 35,896 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOSV.DLL
+ 2003-07-14 22:53:00 55,872 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOSVABW.DLL
+ 2003-07-14 22:53:20 39,488 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOSVFBR.DLL
+ 2003-07-14 22:46:16 42,040 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOXEV.DLL
+ 2003-07-14 22:45:12 55,360 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOXMLED.EXE
+ 2003-07-14 22:45:12 39,488 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSOXMLMF.DLL
+ 2003-06-18 21:31:24 1,033,216 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSPCORE.DLL
+ 2003-06-18 21:31:54 788,480 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSPFILT.DLL
+ 2003-06-18 21:31:50 16,384 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSPGIMME.DLL
+ 2003-06-19 20:05:52 128,104 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSPSCAN.EXE
+ 2004-03-22 20:53:44 5,684,928 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSPUB.EXE
+ 2003-06-19 20:05:50 364,648 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSPVIEW.EXE
+ 2003-07-14 23:02:42 637,496 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSQRY32.EXE
+ 2003-07-14 22:52:58 41,528 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSSH.DLL
+ 2004-06-23 21:15:50 627,912 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSTORDB.EXE
+ 2004-06-23 21:15:26 125,632 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSTORE.EXE
+ 2004-06-23 21:15:54 484,040 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSTORES.DLL
+ 2003-07-14 23:00:54 145,984 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\MSWEBCAP.DLL
+ 2003-07-14 22:57:10 56,888 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\NAME.DLL
+ 2003-07-14 22:56:52 13,888 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\NPOFFICE.DLL
+ 2003-06-18 21:31:58 6,144 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OCRPS.DLL
+ 2003-07-15 07:14:26 283,696 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OIS.EXE
+ 2004-04-28 04:03:58 830,144 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OISAPP.DLL
+ 2003-07-15 07:14:26 27,192 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OISCTRL.DLL
+ 2003-07-15 07:14:26 242,240 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OISGRAPH.DLL
+ 2003-07-14 23:05:24 1,054,264 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OMFC.DLL
+ 2003-07-14 23:05:24 1,054,264 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OMFC.DLL_0002
+ 2004-03-11 19:55:52 96,960 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OSA.EXE
+ 2004-03-11 20:01:22 25,288 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLACCT.DLL
+ 2003-07-14 22:44:34 102,968 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLCTL.DLL
+ 2004-01-23 19:14:06 1,948,343 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLFLTR.DAT
+ 2003-07-08 15:48:00 115,288 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLFLTR.DLL
+ 2004-06-10 18:41:08 7,568,072 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLLIB.DLL
+ 2003-07-14 22:44:32 88,128 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLMIME.DLL
+ 2004-04-28 04:10:48 196,296 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLOOK.EXE
+ 2004-06-10 18:39:42 140,992 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLPH.DLL
+ 2003-07-14 22:43:18 64,056 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLRPC.DLL
+ 2003-07-14 22:43:16 49,208 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OUTLWAB.DLL
+ 2004-04-23 05:30:56 7,334,592 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OWC10.DLL
+ 2004-03-22 20:58:02 8,140,480 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\OWC11.DLL
+ 2004-06-23 21:02:14 6,137,544 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\POWERPNT.EXE
+ 2003-07-15 07:18:54 430,136 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PP4X322.DLL
+ 2003-07-15 07:18:44 93,752 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PP7X32.DLL
+ 2003-09-08 15:20:42 1,782,840 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PPTVIEW.EXE
+ 2004-02-23 20:16:58 130,240 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PRTF9.DLL
+ 2002-10-07 14:11:00 167,997 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PSOM.DLL
+ 2004-03-11 20:02:26 605,376 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PTXT9.DLL
+ 2004-03-11 20:00:40 555,720 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PUBCONV.DLL
+ 2003-07-14 22:40:16 51,256 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\PUBTRAP.DLL
+ 2003-07-14 22:42:26 37,432 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\RECALL.DLL
+ 2003-05-08 21:54:00 77,824 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\REFEDIT.DLL
+ 2003-07-14 22:57:08 40,512 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\REFIEBAR.DLL
+ 2002-10-07 13:49:42 81,984 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\REVERSE.DLL
+ 2004-03-11 20:01:54 74,936 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\RM.DLL
+ 2003-07-21 15:46:38 390,712 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\RTFHTML.DLL
+ 2003-07-14 22:57:18 349,248 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\SELFCERT.EXE
+ 2003-07-14 22:44:16 66,616 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\SENDTO.DLL
+ 2003-07-14 22:57:08 58,944 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\SEQCHK10.DLL
+ 2004-03-11 20:13:36 373,448 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\SETLANG.EXE
+ 2003-07-14 22:53:14 11,848 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\SMARTTAGINSTALL.EXE
+ 2004-03-22 20:31:30 444,608 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\SOA.DLL
+ 2003-08-03 14:52:32 2,808,376 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\STSLIST.DLL
+ 2002-10-07 13:53:04 106,561 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\THOCRAPI.DLL
+ 2003-07-14 23:00:22 99,904 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TRANSMGR.DLL
+ 2002-10-07 13:50:44 241,729 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TWCUTCHR.DLL
+ 2002-10-07 13:51:04 180,289 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TWCUTLIN.DLL
+ 2002-10-07 13:51:14 147,520 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TWLAY32.DLL
+ 2002-10-07 13:51:20 102,467 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TWORIENT.DLL
+ 2002-10-07 13:50:04 118,847 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TWRECE.DLL
+ 2002-10-07 13:49:56 81,983 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TWRECS.DLL
+ 2002-10-07 13:51:44 221,252 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\TWSTRUCT.DLL
+ 2003-07-14 22:57:40 59,960 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\UNBIND.EXE
+ 2004-05-24 20:45:10 2,482,176 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\VBE6.DLL
+ 2004-06-10 18:29:52 12,047,560 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\WINWORD.EXE
+ 2002-10-07 14:03:34 1,794,113 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\XIMAGE3B.DLL
+ 2003-04-30 15:52:32 1,581,120 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\XPAGE3C.DLL
+ 2003-01-17 18:03:34 59,466 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.6361\XSCAN32.DAT
+ 2007-03-23 00:07:56 91,488 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\ADDRPARS.DLL
+ 2007-03-23 00:07:54 80,224 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\DLGSETP.DLL
+ 2007-04-19 18:53:52 137,568 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\ENVELOPE.DLL
+ 2007-05-31 18:41:06 10,352,472 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\EXCEL.EXE
+ 2007-04-19 19:09:30 167,256 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\IETAG.DLL
+ 2007-04-19 18:53:52 127,328 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\IMPMAIL.DLL
+ 2007-04-19 18:54:04 183,136 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\MIMEDIR.DLL
+ 2007-06-18 22:16:32 12,259,160 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\MSO.DLL
+ 2007-05-10 18:35:04 6,747,480 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\MSPUB.EXE
+ 2007-05-31 18:43:46 7,613,280 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\OUTLLIB.DLL
+ 2007-04-19 18:53:44 106,336 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\OUTLMIME.DLL
+ 2007-05-31 18:42:14 200,032 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\OUTLOOK.EXE
+ 2007-04-19 18:53:56 149,856 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\OUTLPH.DLL
+ 2007-04-19 18:53:24 69,984 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\OUTLRPC.DLL
+ 2007-05-31 18:35:22 6,420,320 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\POWERPNT.EXE
+ 2007-05-31 18:35:46 133,976 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\PRTF9.DLL
+ 2007-05-31 18:36:08 612,184 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\PTXT9.DLL
+ 2007-05-10 18:34:48 562,528 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\PUBCONV.DLL
+ 2007-03-23 00:07:10 41,824 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\RECALL.DLL
+ 2007-03-23 00:07:54 78,168 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\RM.DLL
+ 2007-03-23 00:22:02 103,264 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\TRANSMGR.DLL
+ 2007-05-09 22:19:48 2,585,936 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\VBE6.DLL
+ 2007-05-31 18:37:40 12,310,368 ----a-r c:\windows\Installer\$PatchCache$\Managed\9040110900063D11C8EF10054038389C\11.0.8173\WINWORD.EXE
- 2008-06-16 21:27:09 593,920 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2009-02-19 00:01:14 593,920 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\accicons.exe
- 2008-06-16 21:27:09 12,288 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2009-02-19 00:01:14 12,288 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2008-06-16 21:27:09 86,016 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2009-02-19 00:01:14 86,016 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2008-06-16 21:27:08 135,168 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2009-02-19 00:01:14 135,168 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-06-16 21:27:09 11,264 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2009-02-19 00:01:14 11,264 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-06-16 21:27:09 27,136 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2009-02-19 00:01:14 27,136 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2008-06-16 21:27:09 4,096 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2009-02-19 00:01:14 4,096 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2008-06-16 21:27:09 794,624 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2009-02-19 00:01:14 794,624 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-06-16 21:27:09 249,856 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2009-02-19 00:01:14 249,856 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2008-06-16 21:27:09 61,440 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2009-02-19 00:01:14 61,440 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-06-16 21:27:09 23,040 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2009-02-19 00:01:15 23,040 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2008-06-16 21:27:08 286,720 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2009-02-19 00:01:14 286,720 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-06-16 21:27:08 409,600 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2009-02-19 00:01:14 409,600 ----a-r c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2001-08-18 12:00:00 22,016 ----a-w c:\windows\msagent\agentanm.dll
+ 2004-08-04 05:56:42 24,064 ----a-w c:\windows\msagent\agentanm.dll
- 2001-08-18 12:00:00 204,288 ----a-w c:\windows\msagent\agentctl.dll
+ 2004-08-04 05:56:42 214,016 ----a-w c:\windows\msagent\agentctl.dll
- 2001-08-18 12:00:00 35,840 ----a-w c:\windows\msagent\agentdp2.dll
+ 2004-08-04 05:56:42 41,984 ----a-w c:\windows\msagent\agentdp2.dll
- 2001-08-18 12:00:00 50,688 ----a-w c:\windows\msagent\agentdpv.dll
+ 2004-08-04 05:56:42 58,880 ----a-w c:\windows\msagent\agentdpv.dll
- 2001-08-18 12:00:00 44,032 ----a-w c:\windows\msagent\agentmpx.dll
+ 2004-08-04 05:56:42 49,152 ----a-w c:\windows\msagent\agentmpx.dll
- 2001-08-18 12:00:00 21,504 ----a-w c:\windows\msagent\agentpsh.dll
+ 2004-08-04 05:56:42 24,064 ----a-w c:\windows\msagent\agentpsh.dll
- 2001-08-18 12:00:00 39,936 ----a-w c:\windows\msagent\agentsr.dll
+ 2004-08-04 05:56:42 44,032 ----a-w c:\windows\msagent\agentsr.dll
- 2001-08-18 12:00:00 235,008 ----a-w c:\windows\msagent\agentsvr.exe
+ 2004-08-04 05:56:48 256,512 ----a-w c:\windows\msagent\agentsvr.exe
- 2001-08-18 12:00:00 21,504 ----a-w c:\windows\msagent\agtintl.dll
+ 2004-08-04 05:56:42 24,064 ----a-w c:\windows\msagent\agtintl.dll
- 2001-08-18 12:00:00 36,352 ----a-w c:\windows\msagent\mslwvtts.dll
+ 2004-08-04 05:56:44 39,936 ----a-w c:\windows\msagent\mslwvtts.dll
- 2001-08-18 12:00:00 66,048 ----a-w c:\windows\NOTEPAD.EXE
+ 2004-08-04 05:56:56 69,120 ----a-w c:\windows\notepad.exe
- 2001-08-18 12:00:00 692,224 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\HelpCtr.exe
+ 2004-08-04 05:56:50 768,512 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\helpctr.exe
- 2001-08-18 12:00:00 694,272 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\HelpSvc.exe
+ 2004-08-04 05:56:52 743,936 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\helpsvc.exe
+ 2004-08-04 05:56:52 18,944 ------w c:\windows\PCHEALTH\HELPCTR\Binaries\hscupd.exe
- 2001-08-18 12:00:00 145,408 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\msconfig.exe
+ 2004-08-04 05:56:54 158,208 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\msconfig.exe
- 2001-08-18 12:00:00 348,160 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\msinfo.dll
+ 2004-08-04 05:56:44 376,320 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\msinfo.dll
- 2001-08-18 12:00:00 97,792 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\pchshell.dll
+ 2004-08-04 05:56:46 102,400 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\pchshell.dll
- 2001-08-18 12:00:00 29,184 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\pchsvc.dll
+ 2004-08-04 05:56:46 38,912 ----a-w c:\windows\PCHEALTH\HELPCTR\Binaries\pchsvc.dll
- 2008-06-17 19:47:10 9,258 ----a-w c:\windows\PCHEALTH\HELPCTR\Config\Cntstore.bin
+ 2009-02-19 17:04:59 9,492 ----a-w c:\windows\PCHEALTH\HELPCTR\Config\Cntstore.bin
- 2008-06-17 19:47:25 71,627 ----a-w c:\windows\PCHEALTH\HELPCTR\OfflineCache\index.dat
+ 2009-02-19 17:07:10 77,423 ----a-w c:\windows\PCHEALTH\HELPCTR\OfflineCache\index.dat
- 2008-06-17 19:47:25 2,884 ----a-w c:\windows\PCHEALTH\HELPCTR\PackageStore\SkuStore.bin
+ 2009-02-19 17:07:10 3,190 ----a-w c:\windows\PCHEALTH\HELPCTR\PackageStore\SkuStore.bin
- 2001-08-18 12:00:00 138,752 ----a-w c:\windows\PCHEALTH\UploadLB\Binaries\UploadM.exe
+ 2004-08-04 05:56:58 150,528 ----a-w c:\windows\PCHEALTH\UploadLB\Binaries\uploadm.exe
+ 2004-08-04 05:56:46 151,552 ------w c:\windows\peernet\sqldb20.dll
+ 2004-08-04 05:56:46 462,848 ------w c:\windows\peernet\sqlqp20.dll
+ 2004-08-04 05:56:46 110,592 ------w c:\windows\peernet\sqlse20.dll
- 2001-08-18 12:00:00 134,144 ----a-w c:\windows\regedit.exe
+ 2004-08-04 05:56:56 146,432 ----a-w c:\windows\regedit.exe
+ 2004-08-04 04:10:08 53,248 ------w c:\windows\ServicePackFiles\i386\1394bus.sys
+ 2004-08-04 04:00:04 12,288 ------w c:\windows\ServicePackFiles\i386\4mmdat.sys
+ 2004-08-04 04:10:12 48,128 ------w c:\windows\ServicePackFiles\i386\61883.sys
+ 2004-08-04 05:56:42 100,352 ------w c:\windows\ServicePackFiles\i386\6to4svc.dll
+ 2004-08-04 03:32:22 231,552 ------w c:\windows\ServicePackFiles\i386\ac97ali.sys
+ 2004-08-04 03:32:32 84,480 ------w c:\windows\ServicePackFiles\i386\ac97via.sys
+ 2004-08-04 05:56:48 183,808 ------w c:\windows\ServicePackFiles\i386\accwiz.exe
+ 2004-08-04 05:56:42 1,852,416 ------w c:\windows\ServicePackFiles\i386\acgenral.dll
+ 2004-08-04 05:56:42 450,048 ------w c:\windows\ServicePackFiles\i386\aclayers.dll
+ 2004-08-04 05:56:42 137,728 ------w c:\windows\ServicePackFiles\i386\aclua.dll
+ 2004-08-04 05:56:42 114,688 ------w c:\windows\ServicePackFiles\i386\aclui.dll
+ 2004-08-04 04:07:38 187,776 ------w c:\windows\ServicePackFiles\i386\acpi.sys
+ 2004-08-04 05:56:42 244,736 ------w c:\windows\ServicePackFiles\i386\acspecfc.dll
+ 2004-08-04 05:56:42 194,048 ------w c:\windows\ServicePackFiles\i386\activeds.dll
+ 2004-08-04 05:56:48 4,096 ------w c:\windows\ServicePackFiles\i386\actmovie.exe
+ 2004-08-04 05:56:42 101,888 ------w c:\windows\ServicePackFiles\i386\actxprxy.dll
+ 2004-08-04 05:56:42 116,224 ------w c:\windows\ServicePackFiles\i386\acxtrnal.dll
+ 2004-08-04 05:56:42 20,540 ------w c:\windows\ServicePackFiles\i386\admin.dll
+ 2004-08-04 05:56:48 16,439 ------w c:\windows\ServicePackFiles\i386\admin.exe
+ 2004-08-04 03:32:24 10,880 ------w c:\windows\ServicePackFiles\i386\admjoy.sys
+ 2004-08-04 05:56:42 61,440 ------w c:\windows\ServicePackFiles\i386\admparse.dll
+ 2004-08-04 05:56:42 175,616 ------w c:\windows\ServicePackFiles\i386\adsldp.dll
+ 2004-08-04 05:56:42 143,360 ------w c:\windows\ServicePackFiles\i386\adsldpc.dll
+ 2004-08-04 05:56:42 68,096 ------w c:\windows\ServicePackFiles\i386\adsmsext.dll
+ 2004-08-04 05:56:42 263,680 ------w c:\windows\ServicePackFiles\i386\adsnt.dll
+ 2004-08-04 05:56:42 4,255 ------w c:\windows\ServicePackFiles\i386\adv01nt5.dll
+ 2004-08-04 05:56:42 3,967 ------w c:\windows\ServicePackFiles\i386\adv02nt5.dll
+ 2004-08-04 05:56:42 3,615 ------w c:\windows\ServicePackFiles\i386\adv05nt5.dll
+ 2004-08-04 05:56:42 3,647 ------w c:\windows\ServicePackFiles\i386\adv07nt5.dll
+ 2004-08-04 05:56:42 3,135 ------w c:\windows\ServicePackFiles\i386\adv08nt5.dll
+ 2004-08-04 05:56:42 3,711 ------w c:\windows\ServicePackFiles\i386\adv09nt5.dll
+ 2004-08-04 05:56:42 3,775 ------w c:\windows\ServicePackFiles\i386\adv11nt5.dll
+ 2004-08-04 05:56:42 616,960 ------w c:\windows\ServicePackFiles\i386\advapi32.dll
+ 2004-08-04 05:56:42 99,840 ------w c:\windows\ServicePackFiles\i386\advpack.dll
+ 2004-08-04 03:39:38 142,464 ------w c:\windows\ServicePackFiles\i386\aec.sys
+ 2004-08-04 04:14:16 138,496 ------w c:\windows\ServicePackFiles\i386\afd.sys
+ 2004-08-04 05:56:42 24,064 ------w c:\windows\ServicePackFiles\i386\agentanm.dll
+ 2004-08-04 05:56:42 214,016 ------w c:\windows\ServicePackFiles\i386\agentctl.dll
+ 2004-08-04 05:56:42 41,984 ------w c:\windows\ServicePackFiles\i386\agentdp2.dll
+ 2004-08-04 05:56:42 58,880 ------w c:\windows\ServicePackFiles\i386\agentdpv.dll
+ 2004-08-04 05:56:42 49,152 ------w c:\windows\ServicePackFiles\i386\agentmpx.dll
+ 2004-08-04 05:56:42 24,064 ------w c:\windows\ServicePackFiles\i386\agentpsh.dll
+ 2004-08-04 05:56:42 44,032 ------w c:\windows\ServicePackFiles\i386\agentsr.dll
+ 2004-08-04 05:56:48 256,512 ------w c:\windows\ServicePackFiles\i386\agentsvr.exe
+ 2004-08-04 04:07:42 42,368 ------w c:\windows\ServicePackFiles\i386\agp440.sys
+ 2004-08-04 04:07:44 44,928 ------w c:\windows\ServicePackFiles\i386\agpcpq.sys
+ 2004-08-04 05:56:42 24,064 ------w c:\windows\ServicePackFiles\i386\agtintl.dll
+ 2004-08-04 05:56:48 98,304 ------w c:\windows\ServicePackFiles\i386\ahui.exe
+ 2004-08-04 05:56:48 44,544 ------w c:\windows\ServicePackFiles\i386\alg.exe
+ 2004-08-04 04:07:42 42,752 ------w c:\windows\ServicePackFiles\i386\alim1541.sys
+ 2004-08-04 05:56:42 17,408 ------w c:\windows\ServicePackFiles\i386\alrsvc.dll
+ 2004-08-04 04:07:44 43,008 ------w c:\windows\ServicePackFiles\i386\amdagp.sys
+ 2004-08-04 03:59:20 36,992 ------w c:\windows\ServicePackFiles\i386\amdk6.sys
+ 2004-08-04 03:59:22 37,376 ------w c:\windows\ServicePackFiles\i386\amdk7.sys
+ 2004-08-04 05:56:42 70,656 ------w c:\windows\ServicePackFiles\i386\amstream.dll
+ 2004-08-04 03:31:20 36,224 ------w c:\windows\ServicePackFiles\i386\an983.sys
+ 2004-08-04 05:56:42 126,976 ------w c:\windows\ServicePackFiles\i386\apphelp.dll
+ 2004-08-04 05:56:42 331,264 ------w c:\windows\ServicePackFiles\i386\aqueue.dll
+ 2004-08-04 03:58:30 60,800 ------w c:\windows\ServicePackFiles\i386\arp1394.sys
+ 2004-08-04 05:56:00 8,192 ------w c:\windows\ServicePackFiles\i386\asferror.dll
+ 2004-08-04 05:56:42 65,024 ------w c:\windows\ServicePackFiles\i386\asycfilt.dll
+ 2004-08-04 04:05:04 14,336 ------w c:\windows\ServicePackFiles\i386\asyncmac.sys
+ 2004-08-04 05:56:48 25,088 ------w c:\windows\ServicePackFiles\i386\at.exe
+ 2004-08-04 03:59:44 95,360 ------w c:\windows\ServicePackFiles\i386\atapi.sys
+ 2004-08-04 03:29:30 56,623 ------w c:\windows\ServicePackFiles\i386\ati1btxx.sys
+ 2004-08-04 03:29:30 11,615 ------w c:\windows\ServicePackFiles\i386\ati1mdxx.sys
+ 2004-08-04 03:29:30 12,047 ------w c:\windows\ServicePackFiles\i386\ati1pdxx.sys
+ 2004-08-04 03:29:32 30,671 ------w c:\windows\ServicePackFiles\i386\ati1raxx.sys
+ 2004-08-04 03:29:32 63,663 ------w c:\windows\ServicePackFiles\i386\ati1rvxx.sys
+ 2004-08-04 03:29:32 26,367 ------w c:\windows\ServicePackFiles\i386\ati1snxx.sys
+ 2004-08-04 03:29:32 21,343 ------w c:\windows\ServicePackFiles\i386\ati1ttxx.sys
+ 2004-08-04 03:29:32 36,463 ------w c:\windows\ServicePackFiles\i386\ati1tuxx.sys
+ 2004-08-04 03:29:32 29,455 ------w c:\windows\ServicePackFiles\i386\ati1xbxx.sys
+ 2004-08-04 03:29:32 34,735 ------w c:\windows\ServicePackFiles\i386\ati1xsxx.sys
+ 2004-08-04 05:56:42 229,376 ------w c:\windows\ServicePackFiles\i386\ati2cqag.dll
+ 2004-08-04 05:56:42 377,984 ------w c:\windows\ServicePackFiles\i386\ati2dvaa.dll
+ 2004-08-04 05:56:42 201,728 ------w c:\windows\ServicePackFiles\i386\ati2dvag.dll
+ 2004-08-04 03:29:28 327,040 ------w c:\windows\ServicePackFiles\i386\ati2mtaa.sys
+ 2004-08-04 03:29:28 701,440 ------w c:\windows\ServicePackFiles\i386\ati2mtag.sys
+ 2004-08-04 05:56:42 870,784 ------w c:\windows\ServicePackFiles\i386\ati3d1ag.dll
+ 2004-08-04 05:56:42 1,057,760 ------w c:\windows\ServicePackFiles\i386\ati3d2ag.dll
+ 2004-08-04 05:56:42 1,888,992 ------w c:\windows\ServicePackFiles\i386\ati3duag.dll
+ 2004-08-04 03:29:28 57,856 ------w c:\windows\ServicePackFiles\i386\atinbtxx.sys
+ 2004-08-04 03:29:30 13,824 ------w c:\windows\ServicePackFiles\i386\atinmdxx.sys
+ 2004-08-04 03:29:30 14,336 ------w c:\windows\ServicePackFiles\i386\atinpdxx.sys
+ 2004-08-04 03:29:30 52,224 ------w c:\windows\ServicePackFiles\i386\atinraxx.sys
+ 2004-08-04 03:29:32 104,960 ------w c:\windows\ServicePackFiles\i386\atinrvxx.sys
+ 2004-08-04 03:29:32 28,672 ------w c:\windows\ServicePackFiles\i386\atinsnxx.sys
+ 2004-08-04 03:29:32 13,824 ------w c:\windows\ServicePackFiles\i386\atinttxx.sys
+ 2004-08-04 03:29:32 73,216 ------w c:\windows\ServicePackFiles\i386\atintuxx.sys
+ 2004-08-04 03:29:32 31,744 ------w c:\windows\ServicePackFiles\i386\atinxbxx.sys
+ 2004-08-04 03:29:32 63,488 ------w c:\windows\ServicePackFiles\i386\atinxsxx.sys
+ 2004-08-04 05:56:42 32,768 ------w c:\windows\ServicePackFiles\i386\ativtmxx.dll
+ 2004-08-04 05:56:42 516,768 ------w c:\windows\ServicePackFiles\i386\ativvaxx.dll
+ 2004-08-04 05:56:42 58,880 ------w c:\windows\ServicePackFiles\i386\atl.dll
+ 2004-08-04 05:56:48 11,264 ------w c:\windows\ServicePackFiles\i386\atmadm.exe
+ 2004-08-04 03:58:32 59,904 ------w c:\windows\ServicePackFiles\i386\atmarpc.sys
+ 2004-08-04 05:56:00 285,696 ------w c:\windows\ServicePackFiles\i386\atmfd.dll
+ 2004-08-04 03:58:36 55,936 ------w c:\windows\ServicePackFiles\i386\atmlane.sys
+ 2004-08-04 05:56:42 30,208 ------w c:\windows\ServicePackFiles\i386\atmlib.dll
+ 2004-08-04 05:56:42 21,183 ------w c:\windows\ServicePackFiles\i386\atv01nt5.dll
+ 2004-08-04 05:56:42 11,359 ------w c:\windows\ServicePackFiles\i386\atv02nt5.dll
+ 2004-08-04 05:56:42 25,471 ------w c:\windows\ServicePackFiles\i386\atv04nt5.dll
+ 2004-08-04 05:56:42 14,143 ------w c:\windows\ServicePackFiles\i386\atv06nt5.dll
+ 2004-08-04 05:56:42 17,279 ------w c:\windows\ServicePackFiles\i386\atv10nt5.dll
+ 2004-08-04 05:56:42 42,496 ------w c:\windows\ServicePackFiles\i386\audiosrv.dll
+ 2004-08-04 05:56:48 14,336 ------w c:\windows\ServicePackFiles\i386\auditusr.exe
+ 2004-08-04 05:56:42 20,540 ------w c:\windows\ServicePackFiles\i386\author.dll
+ 2004-08-04 05:56:48 16,439 ------w c:\windows\ServicePackFiles\i386\author.exe
+ 2004-08-04 05:56:42 56,832 ------w c:\windows\ServicePackFiles\i386\authz.dll
+ 2004-08-04 05:56:48 588,800 ------w c:\windows\ServicePackFiles\i386\autochk.exe
+ 2004-08-04 05:56:48 602,624 ------w c:\windows\ServicePackFiles\i386\autoconv.exe
+ 2004-08-04 05:56:48 580,608 ------w c:\windows\ServicePackFiles\i386\autofmt.exe
+ 2004-08-04 05:56:48 11,264 ------w c:\windows\ServicePackFiles\i386\autolfn.exe
+ 2004-08-04 04:10:12 38,912 ------w c:\windows\ServicePackFiles\i386\avc.sys
+ 2004-08-04 04:10:00 13,696 ------w c:\windows\ServicePackFiles\i386\avcstrm.sys
+ 2004-08-04 05:56:42 84,992 ------w c:\windows\ServicePackFiles\i386\avifil32.dll
+ 2004-08-04 05:56:42 52,736 ------w c:\windows\ServicePackFiles\i386\basesrv.dll
+ 2004-08-04 05:56:42 28,672 ------w c:\windows\ServicePackFiles\i386\batmeter.dll
+ 2004-08-04 05:56:42 8,704 ------w c:\windows\ServicePackFiles\i386\batt.dll
+ 2004-08-04 04:10:14 11,776 ------w c:\windows\ServicePackFiles\i386\bdasup.sys
+ 2004-08-04 05:56:42 17,408 ------w c:\windows\ServicePackFiles\i386\bidispl.dll
+ 2004-08-04 05:56:42 8,192 ------w c:\windows\ServicePackFiles\i386\bitsprx2.dll
+ 2004-08-04 05:56:42 7,168 ------w c:\windows\ServicePackFiles\i386\bitsprx3.dll
+ 2004-08-04 05:56:42 286,208 ------w c:\windows\ServicePackFiles\i386\blackbox.dll
+ 2004-08-04 05:56:48 71,680 ------w c:\windows\ServicePackFiles\i386\blastcln.exe
+ 2004-08-04 03:59:58 71,552 ------w c:\windows\ServicePackFiles\i386\bridge.sys
+ 2004-08-04 05:56:00 63,488 ------w c:\windows\ServicePackFiles\i386\browselc.dll
+ 2004-08-04 05:56:42 77,312 ------w c:\windows\ServicePackFiles\i386\browser.dll
+ 2004-08-04 05:56:42 1,016,832 ------w c:\windows\ServicePackFiles\i386\browseui.dll
+ 2004-08-04 05:56:42 78,336 ------w c:\windows\ServicePackFiles\i386\browsewm.dll
+ 2004-08-04 05:56:42 20,992 ------w c:\windows\ServicePackFiles\i386\bthci.dll
+ 2004-08-04 04:10:40 17,024 ------w c:\windows\ServicePackFiles\i386\bthenum.sys
+ 2004-08-04 04:10:40 38,016 ------w c:\windows\ServicePackFiles\i386\bthmodem.sys
+ 2004-08-04 03:58:40 100,992 ------w c:\windows\ServicePackFiles\i386\bthpan.sys
+ 2004-08-04 04:10:38 274,304 ------w c:\windows\ServicePackFiles\i386\bthport.sys
+ 2004-08-04 04:10:38 35,456 ------w c:\windows\ServicePackFiles\i386\bthprint.sys
+ 2004-08-04 05:56:42 30,208 ------w c:\windows\ServicePackFiles\i386\bthserv.dll
+ 2004-08-04 04:10:36 18,944 ------w c:\windows\ServicePackFiles\i386\bthusb.sys
+ 2004-08-04 05:56:42 50,688 ------w c:\windows\ServicePackFiles\i386\btpanui.dll
+ 2004-08-04 05:56:42 59,904 ------w c:\windows\ServicePackFiles\i386\cabinet.dll
+ 2004-08-04 05:56:42 84,480 ------w c:\windows\ServicePackFiles\i386\cabview.dll
+ 2004-08-04 05:56:42 385,024 ------w c:\windows\ServicePackFiles\i386\callcont.dll
+ 2004-08-04 05:56:42 50,688 ------w c:\windows\ServicePackFiles\i386\camocx.dll
+ 2004-08-04 05:56:42 229,888 ------w c:\windows\ServicePackFiles\i386\catsrv.dll
+ 2004-08-04 05:56:42 85,504 ------w c:\windows\ServicePackFiles\i386\catsrvps.dll
+ 2004-08-04 05:56:42 628,224 ------w c:\windows\ServicePackFiles\i386\catsrvut.dll
+ 2004-08-04 04:10:18 17,024 ------w c:\windows\ServicePackFiles\i386\ccdecode.sys
+ 2004-08-04 04:14:12 63,744 ------w c:\windows\ServicePackFiles\i386\cdfs.sys
+ 2004-08-04 05:56:42 150,528 ------w c:\windows\ServicePackFiles\i386\cdfview.dll
+ 2004-08-04 05:56:42 66,560 ------w c:\windows\ServicePackFiles\i386\cdm.dll
+ 2004-08-04 05:56:42 2,067,968 ------w c:\windows\ServicePackFiles\i386\cdosys.dll
+ 2004-08-04 03:59:54 49,536 ------w c:\windows\ServicePackFiles\i386\cdrom.sys
+ 2004-08-04 05:56:42 194,560 ------w c:\windows\ServicePackFiles\i386\certcli.dll
+ 2004-08-04 05:56:42 457,728 ------w c:\windows\ServicePackFiles\i386\certmgr.dll
+ 2004-08-04 05:56:42 159,232 ------w c:\windows\ServicePackFiles\i386\cewmdm.dll
+ 2004-08-04 05:56:42 38,912 ------w c:\windows\ServicePackFiles\i386\cfgbkend.dll
+ 2004-08-04 05:56:02 16,896 ------w c:\windows\ServicePackFiles\i386\cfgmgr32.dll
+ 2004-08-04 05:56:48 188,480 ------w c:\windows\ServicePackFiles\i386\cfgwiz.exe
+ 2004-08-04 05:56:42 15,423 ------w c:\windows\ServicePackFiles\i386\ch7xxnt5.dll
+ 2004-08-04 04:00:14 8,192 ------w c:\windows\ServicePackFiles\i386\changer.sys
+ 2004-08-04 05:56:42 1,352,192 ------w c:\windows\ServicePackFiles\i386\cimwin32.dll
+ 2004-08-04 05:56:42 69,120 ------w c:\windows\ServicePackFiles\i386\ciodm.dll
+ 2004-08-04 05:56:48 5,632 ------w c:\windows\ServicePackFiles\i386\cisvc.exe
+ 2004-08-04 04:14:28 49,664 ------w c:\windows\ServicePackFiles\i386\classpnp.sys
+ 2004-08-04 05:56:42 110,080 ------w c:\windows\ServicePackFiles\i386\clbcatex.dll
+ 2004-08-04 05:56:42 501,248 ------w c:\windows\ServicePackFiles\i386\clbcatq.dll
+ 2004-08-04 05:56:48 64,000 ------w c:\windows\ServicePackFiles\i386\cleanmgr.exe
+ 2004-08-04 05:56:42 77,824 ------w c:\windows\ServicePackFiles\i386\cliconfg.dll
+ 2004-08-04 05:56:48 20,480 ------w c:\windows\ServicePackFiles\i386\cliconfg.exe
+ 2004-08-04 05:56:48 102,912 ------w c:\windows\ServicePackFiles\i386\clipbrd.exe
+ 2004-08-04 05:56:48 33,280 ------w c:\windows\ServicePackFiles\i386\clipsrv.exe
+ 2004-08-04 05:56:42 57,856 ------w c:\windows\ServicePackFiles\i386\clusapi.dll
+ 2004-08-04 04:07:40 14,080 ------w c:\windows\ServicePackFiles\i386\cmbatt.sys
+ 2004-08-04 05:56:42 15,872 ------w c:\windows\ServicePackFiles\i386\cmcfg32.dll
+ 2004-08-04 05:56:50 388,608 ------w c:\windows\ServicePackFiles\i386\cmd.exe
+ 2004-08-04 05:56:42 343,040 ------w c:\windows\ServicePackFiles\i386\cmdial32.dll
+ 2004-08-04 05:56:50 47,104 ------w c:\windows\ServicePackFiles\i386\cmdl32.exe
+ 2004-08-04 05:56:50 39,936 ------w c:\windows\ServicePackFiles\i386\cmmon32.exe
+ 2004-08-04 05:56:42 185,344 ------w c:\windows\ServicePackFiles\i386\cmprops.dll
+ 2004-08-04 05:56:42 13,824 ------w c:\windows\ServicePackFiles\i386\cmsetacl.dll
+ 2004-08-04 05:56:50 63,488 ------w c:\windows\ServicePackFiles\i386\cmstp.exe
+ 2004-08-04 05:56:42 39,936 ------w c:\windows\ServicePackFiles\i386\cmutil.dll
+ 2004-08-04 05:56:42 47,104 ------w c:\windows\ServicePackFiles\i386\cnbjmon.dll
+ 2004-08-04 05:56:42 79,360 ------w c:\windows\ServicePackFiles\i386\cnbjmon2.dll
+ 2004-08-04 05:56:42 62,464 ------w c:\windows\ServicePackFiles\i386\colbact.dll
+ 2004-08-04 05:56:42 195,584 ------w c:\windows\ServicePackFiles\i386\comadmin.dll
+ 2004-08-04 05:56:42 611,328 ------w c:\windows\ServicePackFiles\i386\comctl32.dll
+ 2004-08-04 05:56:42 276,992 ------w c:\windows\ServicePackFiles\i386\comdlg32.dll
+ 2004-08-04 05:56:42 252,928 ------w c:\windows\ServicePackFiles\i386\compatui.dll
+ 2004-08-04 05:56:42 229,376 ------w c:\windows\ServicePackFiles\i386\compstui.dll
+ 2004-08-04 05:56:50 9,728 ------w c:\windows\ServicePackFiles\i386\comrepl.exe
+ 2004-08-04 05:56:42 792,064 ------w c:\windows\ServicePackFiles\i386\comres.dll
+ 2004-08-04 05:56:42 1,251,840 ------w c:\windows\ServicePackFiles\i386\comsvcs.dll
+ 2004-08-04 05:56:42 540,160 ------w c:\windows\ServicePackFiles\i386\comuid.dll
+ 2004-08-04 05:56:50 1,032,192 ------w c:\windows\ServicePackFiles\i386\conf.exe
+ 2004-08-04 05:56:42 45,056 ------w c:\windows\ServicePackFiles\i386\confmrsl.dll
+ 2004-08-04 05:56:50 27,648 ------w c:\windows\ServicePackFiles\i386\conime.exe
+ 2004-08-04 05:56:42 35,328 ------w c:\windows\ServicePackFiles\i386\corpol.dll
+ 2004-08-04 05:56:42 163,840 ------w c:\windows\ServicePackFiles\i386\credui.dll
+ 2004-08-04 03:59:22 36,480 ------w c:\windows\ServicePackFiles\i386\crusoe.sys
+ 2004-08-04 05:56:42 597,504 ------w c:\windows\ServicePackFiles\i386\crypt32.dll
+ 2004-08-04 05:56:42 74,752 ------w c:\windows\ServicePackFiles\i386\cryptdlg.dll
+ 2004-08-04 05:56:42 33,280 ------w c:\windows\ServicePackFiles\i386\cryptdll.dll
+ 2004-08-04 05:56:42 53,760 ------w c:\windows\ServicePackFiles\i386\cryptext.dll
+ 2004-08-04 05:56:42 63,488 ------w c:\windows\ServicePackFiles\i386\cryptnet.dll
+ 2004-08-04 05:56:42 60,416 ------w c:\windows\ServicePackFiles\i386\cryptsvc.dll
+ 2004-08-04 05:56:42 512,512 ------w c:\windows\ServicePackFiles\i386\cryptui.dll
+ 2004-08-04 05:56:42 101,888 ------w c:\windows\ServicePackFiles\i386\cscdll.dll
+ 2004-08-04 05:56:50 98,304 ------w c:\windows\ServicePackFiles\i386\cscript.exe
+ 2004-08-04 05:56:42 326,656 ------w c:\windows\ServicePackFiles\i386\cscui.dll
+ 2004-08-04 05:56:42 32,768 ------w c:\windows\ServicePackFiles\i386\csrsrv.dll
+ 2004-08-04 05:56:50 6,144 ------w c:\windows\ServicePackFiles\i386\csrss.exe
+ 2004-08-04 05:56:50 15,360 ------w c:\windows\ServicePackFiles\i386\ctfmon.exe
+ 2004-08-04 05:56:42 249,856 ------w c:\windows\ServicePackFiles\i386\ctmasetp.dll
+ 2004-08-04 05:56:42 28,672 ------w c:\windows\ServicePackFiles\i386\custsat.dll
+ 2004-08-04 03:32:26 48,640 ------w c:\windows\ServicePackFiles\i386\cwrwdm.sys
+ 2004-08-04 05:56:42 1,179,648 ------w c:\windows\ServicePackFiles\i386\d3d8.dll
+ 2004-08-04 05:56:42 8,192 ------w c:\windows\ServicePackFiles\i386\d3d8thk.dll
+ 2004-08-04 05:56:42 1,689,088 ------w c:\windows\ServicePackFiles\i386\d3d9.dll
+ 2004-08-04 05:56:42 825,344 ------w c:\windows\ServicePackFiles\i386\d3dim700.dll
+ 2004-08-04 05:56:42 1,053,696 ------w c:\windows\ServicePackFiles\i386\danim.dll
+ 2004-08-04 05:56:44 561,179 ------w c:\windows\ServicePackFiles\i386\dao360.dll
+ 2004-08-04 05:56:44 54,272 ------w c:\windows\ServicePackFiles\i386\dataclen.dll
+ 2004-08-04 05:56:44 24,576 ------w c:\windows\ServicePackFiles\i386\davclnt.dll
+ 2004-08-04 05:56:44 640,000 ------w c:\windows\ServicePackFiles\i386\dbghelp.dll
+ 2004-08-04 05:56:44 24,576 ------w c:\windows\ServicePackFiles\i386\dbmsrpcn.dll
+ 2004-08-04 05:56:44 110,592 ------w c:\windows\ServicePackFiles\i386\dbnetlib.dll
+ 2004-08-04 05:56:44 28,672 ------w c:\windows\ServicePackFiles\i386\dbnmpntw.dll
+ 2004-08-04 06:07:22 1,788 ------w c:\windows\ServicePackFiles\i386\dcache.bin
+ 2004-08-04 05:56:44 40,960 ------w c:\windows\ServicePackFiles\i386\dcap32.dll
+ 2004-08-04 05:56:44 8,704 ------w c:\windows\ServicePackFiles\i386\dciman32.dll
+ 2004-08-04 05:56:50 30,208 ------w c:\windows\ServicePackFiles\i386\ddeshare.exe
+ 2004-08-04 05:56:44 266,240 ------w c:\windows\ServicePackFiles\i386\ddraw.dll
+ 2004-08-04 05:56:44 27,136 ------w c:\windows\ServicePackFiles\i386\ddrawex.dll
+ 2004-08-04 05:56:50 25,088 ------w c:\windows\ServicePackFiles\i386\defrag.exe
+ 2004-08-04 05:56:44 59,904 ------w c:\windows\ServicePackFiles\i386\devenum.dll
+ 2004-08-04 05:56:44 282,624 ------w c:\windows\ServicePackFiles\i386\devmgr.dll
+ 2004-08-04 05:56:50 82,432 ------w c:\windows\ServicePackFiles\i386\dfrgfat.exe
+ 2004-08-04 05:56:50 104,960 ------w c:\windows\ServicePackFiles\i386\dfrgntfs.exe
+ 2004-08-04 05:56:44 38,912 ------w c:\windows\ServicePackFiles\i386\dfrgsnap.dll
+ 2004-08-04 05:56:44 123,904 ------w c:\windows\ServicePackFiles\i386\dfrgui.dll
+ 2004-08-04 05:56:44 28,672 ------w c:\windows\ServicePackFiles\i386\dfsshlex.dll
+ 2004-08-04 05:56:44 111,104 ------w c:\windows\ServicePackFiles\i386\dgnet.dll
+ 2004-08-04 05:56:44 111,104 ------w c:\windows\ServicePackFiles\i386\dhcpcsvc.dll
+ 2004-08-04 05:56:50 539,136 ------w c:\windows\ServicePackFiles\i386\dialer.exe
+ 2004-08-04 05:56:50 85,504 ------w c:\windows\ServicePackFiles\i386\diantz.exe
+ 2004-08-04 05:56:44 68,608 ------w c:\windows\ServicePackFiles\i386\digest.dll
+ 2004-08-04 05:56:44 159,232 ------w c:\windows\ServicePackFiles\i386\dinput.dll
+ 2004-08-04 05:56:44 181,760 ------w c:\windows\ServicePackFiles\i386\dinput8.dll
+ 2004-08-04 05:56:44 81,408 ------w c:\windows\ServicePackFiles\i386\directdb.dll
+ 2004-08-04 03:59:56 36,352 ------w c:\windows\ServicePackFiles\i386\disk.sys
+ 2004-08-04 03:59:54 14,208 ------w c:\windows\ServicePackFiles\i386\diskdump.sys
+ 2004-08-04 05:56:50 163,840 ------w c:\windows\ServicePackFiles\i386\diskpart.exe
+ 2004-08-04 05:56:50 294,912 ------w c:\windows\ServicePackFiles\i386\dlimport.exe
+ 2004-08-04 05:56:50 5,120 ------w c:\windows\ServicePackFiles\i386\dllhost.exe
+ 2004-08-04 04:00:06 8,320 ------w c:\windows\ServicePackFiles\i386\dlttape.sys
+ 2004-08-04 05:56:50 224,768 ------w c:\windows\ServicePackFiles\i386\dmadmin.exe
+ 2004-08-04 05:56:44 28,672 ------w c:\windows\ServicePackFiles\i386\dmband.dll
+ 2004-08-04 04:07:18 799,744 ------w c:\windows\ServicePackFiles\i386\dmboot.sys
+ 2004-08-04 05:56:44 61,440 ------w c:\windows\ServicePackFiles\i386\dmcompos.dll
+ 2004-08-04 05:56:44 200,704 ------w c:\windows\ServicePackFiles\i386\dmdskmgr.dll
+ 2004-08-04 05:56:44 181,248 ------w c:\windows\ServicePackFiles\i386\dmime.dll
+ 2004-08-04 04:07:18 153,344 ------w c:\windows\ServicePackFiles\i386\dmio.sys
+ 2004-08-04 05:56:44 35,840 ------w c:\windows\ServicePackFiles\i386\dmloader.dll
+ 2004-08-04 05:56:50 15,872 ------w c:\windows\ServicePackFiles\i386\dmremote.exe
+ 2004-08-04 05:56:44 82,432 ------w c:\windows\ServicePackFiles\i386\dmscript.dll
+ 2004-08-04 05:56:44 23,552 ------w c:\windows\ServicePackFiles\i386\dmserver.dll
+ 2004-08-04 05:56:44 105,984 ------w c:\windows\ServicePackFiles\i386\dmstyle.dll
+ 2004-08-04 05:56:44 103,424 ------w c:\windows\ServicePackFiles\i386\dmsynth.dll
+ 2004-08-04 05:56:44 104,448 ------w c:\windows\ServicePackFiles\i386\dmusic.dll
+ 2004-08-04 04:07:40 52,864 ------w c:\windows\ServicePackFiles\i386\dmusic.sys
+ 2004-08-04 05:56:44 52,224 ------w c:\windows\ServicePackFiles\i386\dmutil.dll
+ 2004-08-04 05:56:44 148,480 ------w c:\windows\ServicePackFiles\i386\dnsapi.dll
+ 2004-08-04 05:56:44 45,568 ------w c:\windows\ServicePackFiles\i386\dnsrslvr.dll
+ 2004-08-04 05:56:44 48,128 ------w c:\windows\ServicePackFiles\i386\docprop2.dll
+ 2004-08-04 03:51:22 53,840 ------w c:\windows\ServicePackFiles\i386\dosx.exe
+ 2004-08-04 03:58:30 207,360 ------w c:\windows\ServicePackFiles\i386\dot4.sys
+ 2004-08-04 04:13:54 97,280 ------w c:\windows\ServicePackFiles\i386\dpcdll.dll
+ 2004-08-04 05:56:50 30,208 ------w c:\windows\ServicePackFiles\i386\dplaysvr.exe
+ 2004-08-04 05:56:44 229,888 ------w c:\windows\ServicePackFiles\i386\dplayx.dll
+ 2004-08-04 05:56:44 23,552 ------w c:\windows\ServicePackFiles\i386\dpmodemx.dll
+ 2004-08-04 05:56:04 3,584 ------w c:\windows\ServicePackFiles\i386\dpnaddr.dll
+ 2004-08-04 05:56:44 375,296 ------w c:\windows\ServicePackFiles\i386\dpnet.dll
+ 2004-08-04 05:56:44 35,328 ------w c:\windows\ServicePackFiles\i386\dpnhpast.dll
+ 2004-08-04 05:56:44 60,928 ------w c:\windows\ServicePackFiles\i386\dpnhupnp.dll
+ 2004-08-04 05:56:04 3,584 ------w c:\windows\ServicePackFiles\i386\dpnlobby.dll
+ 2004-08-04 05:56:50 18,432 ------w c:\windows\ServicePackFiles\i386\dpnsvr.exe
+ 2004-08-04 05:56:44 21,504 ------w c:\windows\ServicePackFiles\i386\dpvacm.dll
+ 2004-08-04 05:56:44 212,480 ------w c:\windows\ServicePackFiles\i386\dpvoice.dll
+ 2004-08-04 05:56:50 83,456 ------w c:\windows\ServicePackFiles\i386\dpvsetup.exe
+ 2004-08-04 05:56:44 116,736 ------w c:\windows\ServicePackFiles\i386\dpvvox.dll
+ 2004-08-04 05:56:44 57,344 ------w c:\windows\ServicePackFiles\i386\dpwsockx.dll
+ 2004-08-04 05:57:06 299,520 ------w c:\windows\ServicePackFiles\i386\drmclien.dll
+ 2004-08-04 04:08:00 60,288 ------w c:\windows\ServicePackFiles\i386\drmk.sys
+ 2004-08-04 04:07:58 2,944 ------w c:\windows\ServicePackFiles\i386\drmkaud.sys
+ 2004-08-04 05:56:44 87,040 ------w c:\windows\ServicePackFiles\i386\drmstor.dll
+ 2004-08-04 05:57:04 695,296 ------w c:\windows\ServicePackFiles\i386\drmv2clt.dll
+ 2004-08-04 05:56:44 14,336 ------w c:\windows\ServicePackFiles\i386\drprov.dll
+ 2004-07-17 16:36:44 4,656 ------w c:\windows\ServicePackFiles\i386\ds16gt.dll
+ 2004-08-04 05:56:44 16,384 ------w c:\windows\ServicePackFiles\i386\ds32gt.dll
+ 2004-08-04 05:56:44 181,760 ------w c:\windows\ServicePackFiles\i386\dsdmo.dll
+ 2004-08-04 05:56:44 71,680 ------w c:\windows\ServicePackFiles\i386\dsdmoprp.dll
+ 2004-08-04 05:56:44 92,672 ------w c:\windows\ServicePackFiles\i386\dskquota.dll
+ 2004-08-04 05:56:44 367,616 ------w c:\windows\ServicePackFiles\i386\dsound.dll
+ 2004-08-04 05:56:44 1,294,336 ------w c:\windows\ServicePackFiles\i386\dsound3d.dll
+ 2004-08-04 05:56:44 142,336 ------w c:\windows\ServicePackFiles\i386\dsprop.dll
+ 2004-08-04 05:56:06 4,096 ------w c:\windows\ServicePackFiles\i386\dsprpres.dll
+ 2004-08-04 05:56:44 239,104 ------w c:\windows\ServicePackFiles\i386\dsquery.dll
+ 2004-08-04 05:56:44 51,200 ------w c:\windows\ServicePackFiles\i386\dssec.dll
+ 2004-08-04 03:31:44 137,216 ------w c:\windows\ServicePackFiles\i386\dssenh.dll
+ 2004-08-04 05:56:44 113,152 ------w c:\windows\ServicePackFiles\i386\dsuiext.dll
+ 2004-08-04 05:56:44 19,456 ------w c:\windows\ServicePackFiles\i386\dswave.dll
+ 2004-08-04 05:56:50 10,752 ------w c:\windows\ServicePackFiles\i386\dumprep.exe
+ 2004-08-04 05:56:44 304,128 ------w c:\windows\ServicePackFiles\i386\duser.dll
+ 2004-08-04 05:56:50 17,920 ------w c:\windows\ServicePackFiles\i386\dvdupgrd.exe
+ 2004-08-04 05:56:50 180,224 ------w c:\windows\ServicePackFiles\i386\dwwin.exe
+ 2004-08-04 05:56:44 619,008 ------w c:\windows\ServicePackFiles\i386\dx7vb.dll
+ 2004-08-04 05:56:44 1,227,264 ------w c:\windows\ServicePackFiles\i386\dx8vb.dll
+ 2004-08-04 05:56:50 1,298,432 ------w c:\windows\ServicePackFiles\i386\dxdiag.exe
+ 2004-08-04 05:56:44 2,113,536 ------w c:\windows\ServicePackFiles\i386\dxdiagn.dll
+ 2004-08-04 04:00:56 71,040 ------w c:\windows\ServicePackFiles\i386\dxg.sys
+ 2004-08-04 05:56:44 498,205 ------w c:\windows\ServicePackFiles\i386\dxmasf.dll
+ 2004-08-04 05:56:44 357,888 ------w c:\windows\ServicePackFiles\i386\dxtmsft.dll
+ 2004-08-04 05:56:44 201,728 ------w c:\windows\ServicePackFiles\i386\dxtrans.dll
+ 2004-08-04 05:56:44 183,296 ------w c:\windows\ServicePackFiles\i386\els.dll
+ 2004-08-04 05:56:44 20,480 ------w c:\windows\ServicePackFiles\i386\encapi.dll
+ 2004-08-04 05:56:44 186,368 ------w c:\windows\ServicePackFiles\i386\encdec.dll
+ 2004-08-04 05:56:06 40,960 ------w c:\windows\ServicePackFiles\i386\ep9res.dll
+ 2004-07-17 16:39:36 120,320 ------w c:\windows\ServicePackFiles\i386\epcl5res.dll
+ 2004-08-04 05:56:44 23,040 ------w c:\windows\ServicePackFiles\i386\ersvc.dll
+ 2004-08-04 05:56:44 243,200 ------w c:\windows\ServicePackFiles\i386\es.dll
+ 2004-08-04 05:56:44 1,082,368 ------w c:\windows\ServicePackFiles\i386\esent.dll
+ 2004-08-04 05:56:44 247,808 ------w c:\windows\ServicePackFiles\i386\esscli.dll
+ 2004-08-04 03:32:28 137,088 ------w c:\windows\ServicePackFiles\i386\essm2e.sys
+ 2004-08-04 05:56:50 193,024 ------w c:\windows\ServicePackFiles\i386\eudcedit.exe
+ 2004-08-04 05:56:44 55,808 ------w c:\windows\ServicePackFiles\i386\eventlog.dll
+ 2004-08-04 05:56:44 101,888 ------w c:\windows\ServicePackFiles\i386\evntagnt.dll
+ 2004-08-04 05:56:50 24,064 ------w c:\windows\ServicePackFiles\i386\evntcmd.exe
+ 2004-08-04 05:56:44 22,016 ------w c:\windows\ServicePackFiles\i386\evntrprv.dll
+ 2004-08-04 05:56:50 92,160 ------w c:\windows\ServicePackFiles\i386\evntwin.exe
+ 2004-08-04 05:56:50 1,032,192 ------w c:\windows\ServicePackFiles\i386\explorer.exe
+ 2004-08-04 05:56:44 380,957 ------w c:\windows\ServicePackFiles\i386\expsrv.dll
+ 2004-08-04 05:56:44 55,808 ------w c:\windows\ServicePackFiles\i386\extmgr.dll
+ 2004-08-04 05:56:50 45,568 ------w c:\windows\ServicePackFiles\i386\extrac32.exe
+ 2004-08-04 04:14:18 143,360 ------w c:\windows\ServicePackFiles\i386\fastfat.sys
+ 2004-08-04 05:56:44 472,064 ------w c:\windows\ServicePackFiles\i386\fastprox.dll
+ 2004-08-04 05:56:44 80,384 ------w c:\windows\ServicePackFiles\i386\faultrep.dll
+ 2004-08-04 05:56:50 20,992 ------w c:\windows\ServicePackFiles\i386\faxpatch.exe
+ 2004-08-04 03:59:28 27,392 ------w c:\windows\ServicePackFiles\i386\fdc.sys
+ 2004-08-04 05:56:44 21,504 ------w c:\windows\ServicePackFiles\i386\feclient.dll
+ 2004-08-04 05:56:44 337,920 ------w c:\windows\ServicePackFiles\i386\filemgmt.dll
+ 2004-08-04 05:56:50 27,136 ------w c:\windows\ServicePackFiles\i386\findstr.exe
+ 2004-08-04 05:56:44 87,552 ------w c:\windows\ServicePackFiles\i386\fldrclnr.dll
+ 2004-08-04 03:59:28 20,480 ------w c:\windows\ServicePackFiles\i386\flpydisk.sys
+ 2004-08-04 05:56:44 16,896 ------w c:\windows\ServicePackFiles\i386\fltlib.dll
+ 2004-08-04 05:56:50 22,528 ------w c:\windows\ServicePackFiles\i386\fltmc.exe
+ 2004-08-04 04:01:20 124,800 ------w c:\windows\ServicePackFiles\i386\fltmgr.sys
+ 2004-08-04 05:56:44 382,976 ------w c:\windows\ServicePackFiles\i386\fontext.dll
+ 2004-08-04 05:56:50 20,992 ------w c:\windows\ServicePackFiles\i386\fontview.exe
+ 2004-08-04 03:31:24 34,173 ------w c:\windows\ServicePackFiles\i386\forehe.sys
+ 2004-08-04 05:56:44 32,828 ------w c:\windows\ServicePackFiles\i386\fp40ext.dll
+ 2004-08-04 05:56:44 184,435 ------w c:\windows\ServicePackFiles\i386\fp4amsft.dll
+ 2004-08-04 05:56:44 82,035 ------w c:\windows\ServicePackFiles\i386\fp4anscp.dll
+ 2004-08-04 05:56:44 147,513 ------w c:\windows\ServicePackFiles\i386\fp4apws.dll
+ 2004-08-04 05:56:44 49,210 ------w c:\windows\ServicePackFiles\i386\fp4areg.dll
+ 2004-08-04 05:56:44 102,509 ------w c:\windows\ServicePackFiles\i386\fp4atxt.dll
+ 2004-08-04 05:56:44 618,605 ------w c:\windows\ServicePackFiles\i386\fp4autl.dll
+ 2004-08-04 05:56:44 41,020 ------w c:\windows\ServicePackFiles\i386\fp4avnb.dll
+ 2004-08-04 05:56:44 32,826 ------w c:\windows\ServicePackFiles\i386\fp4avss.dll
+ 2004-08-04 05:56:44 49,212 ------w c:\windows\ServicePackFiles\i386\fp4awebs.dll
+ 2004-08-04 05:56:44 876,653 ------w c:\windows\ServicePackFiles\i386\fp4awel.dll
+ 2004-08-04 05:56:50 15,120 ------w c:\windows\ServicePackFiles\i386\fp98sadm.exe
+ 2004-08-04 05:56:50 109,840 ------w c:\windows\ServicePackFiles\i386\fp98swin.exe
+ 2004-08-04 05:56:50 24,632 ------w c:\windows\ServicePackFiles\i386\fpadmcgi.exe
+ 2004-08-04 05:56:44 20,541 ------w c:\windows\ServicePackFiles\i386\fpadmdll.dll
+ 2004-08-04 05:56:50 188,494 ------w c:\windows\ServicePackFiles\i386\fpcount.exe
+ 2004-08-04 05:56:44 94,208 ------w c:\windows\ServicePackFiles\i386\fpencode.dll
+ 2004-08-04 05:56:44 20,541 ------w c:\windows\ServicePackFiles\i386\fpexedll.dll
+ 2004-08-04 05:56:44 598,071 ------w c:\windows\ServicePackFiles\i386\fpmmc.dll
+ 2004-08-04 05:56:08 208,896 ------w c:\windows\ServicePackFiles\i386\fpmmcsat.dll
+ 2004-08-04 05:56:50 20,538 ------w c:\windows\ServicePackFiles\i386\fpremadm.exe
+ 2004-08-04 05:56:50 28,728 ------w c:\windows\ServicePackFiles\i386\fpsrvadm.exe
+ 2004-08-04 05:56:08 9,344 ------w c:\windows\ServicePackFiles\i386\framebuf.dll
+ 2004-08-04 05:56:44 185,856 ------w c:\windows\ServicePackFiles\i386\framedyn.dll
+ 2004-08-04 05:56:50 193,024 ------w c:\windows\ServicePackFiles\i386\fsquirt.exe
+ 2004-08-04 05:56:50 42,496 ------w c:\windows\ServicePackFiles\i386\ftp.exe
+ 2004-08-04 05:56:44 60,416 ------w c:\windows\ServicePackFiles\i386\fwcfg.dll
+ 2004-08-04 05:56:44 452,096 ------w c:\windows\ServicePackFiles\i386\fxsapi.dll
+ 2004-08-04 05:56:50 143,360 ------w c:\windows\ServicePackFiles\i386\fxsclnt.exe
+ 2004-08-04 05:56:44 72,192 ------w c:\windows\ServicePackFiles\i386\fxscom.dll
+ 2004-08-04 05:56:44 285,184 ------w c:\windows\ServicePackFiles\i386\fxscomex.dll
+ 2004-08-04 05:56:50 229,376 ------w c:\windows\ServicePackFiles\i386\fxscover.exe
+ 2004-08-04 05:56:44 27,136 ------w c:\windows\ServicePackFiles\i386\fxsdrv.dll
+ 2004-08-04 05:56:44 55,296 ------w c:\windows\ServicePackFiles\i386\fxsevent.dll
+ 2004-08-04 05:56:44 23,552 ------w c:\windows\ServicePackFiles\i386\fxsext32.dll
+ 2004-08-04 05:56:44 23,552 ------w c:\windows\ServicePackFiles\i386\fxsmon.dll
+ 2004-08-04 05:56:44 132,608 ------w c:\windows\ServicePackFiles\i386\fxsocm.dll
+ 2004-08-04 05:56:44 8,704 ------w c:\windows\ServicePackFiles\i386\fxsperf.dll
+ 2004-08-04 05:56:08 6,656 ------w c:\windows\ServicePackFiles\i386\fxsres.dll
+ 2004-08-04 05:56:44 562,176 ------w c:\windows\ServicePackFiles\i386\fxsst.dll
+ 2004-08-04 05:56:50 267,776 ------w c:\windows\ServicePackFiles\i386\fxssvc.exe
+ 2004-08-04 05:56:44 246,272 ------w c:\windows\ServicePackFiles\i386\fxst30.dll
+ 2004-08-04 05:56:44 397,312 ------w c:\windows\ServicePackFiles\i386\fxstiff.dll
+ 2004-08-04 05:56:44 154,112 ------w c:\windows\ServicePackFiles\i386\fxsui.dll
+ 2004-08-04 05:56:44 192,512 ------w c:\windows\ServicePackFiles\i386\fxswzrd.dll
+ 2004-08-04 05:56:44 400,384 ------w c:\windows\ServicePackFiles\i386\fxsxp32.dll
+ 2004-08-04 04:07:44 46,464 ------w c:\windows\ServicePackFiles\i386\gagp30kx.sys
+ 2004-08-04 04:08:22 10,624 ------w c:\windows\ServicePackFiles\i386\gameenum.sys
+ 2004-08-04 04:08:30 59,136 ------w c:\windows\ServicePackFiles\i386\gckernel.sys
+ 2004-08-04 05:56:44 278,016 ------w c:\windows\ServicePackFiles\i386\gdi32.dll
+ 2004-08-04 05:56:44 122,880 ------w c:\windows\ServicePackFiles\i386\glu32.dll
+ 2004-08-04 03:31:44 101,888 ------w c:\windows\ServicePackFiles\i386\gpkcsp.dll
+ 2004-08-04 05:56:08 9,728 ------w c:\windows\ServicePackFiles\i386\gpkrsrc.dll
+ 2004-08-04 05:56:50 39,424 ------w c:\windows\ServicePackFiles\i386\grpconv.exe
+ 2004-08-04 03:59:20 28,288 ------w c:\windows\ServicePackFiles\i386\grserial.sys
+ 2004-08-04 05:56:44 123,904 ------w c:\windows\ServicePackFiles\i386\guitrn.dll
+ 2004-08-04 05:56:44 108,544 ------w c:\windows\ServicePackFiles\i386\guitrn_a.dll
+ 2004-08-04 05:56:44 57,344 ------w c:\windows\ServicePackFiles\i386\h323cc.dll
+ 2004-08-04 05:56:44 614,912 ------w c:\windows\ServicePackFiles\i386\h323msp.dll
+ 2004-08-04 03:59:20 105,472 ------w c:\windows\ServicePackFiles\i386\hal.dll
+ 2004-08-04 03:59:10 131,968 ------w c:\windows\ServicePackFiles\i386\halaacpi.dll
+ 2004-08-04 03:59:08 81,280 ------w c:\windows\ServicePackFiles\i386\halacpi.dll
+ 2004-08-04 03:59:14 150,656 ------w c:\windows\ServicePackFiles\i386\halapic.dll
+ 2004-08-04 03:59:14 134,400 ------w c:\windows\ServicePackFiles\i386\halmacpi.dll
+ 2004-08-04 03:59:20 152,704 ------w c:\windows\ServicePackFiles\i386\halmps.dll
+ 2004-08-04 03:59:20 77,696 ------w c:\windows\ServicePackFiles\i386\halsp.dll
+ 2004-08-04 05:56:44 7,168 ------w c:\windows\ServicePackFiles\i386\hccoin.dll
+ 2004-08-04 05:56:50 768,512 ------w c:\windows\ServicePackFiles\i386\helpctr.exe
+ 2004-08-04 05:56:52 743,936 ------w c:\windows\ServicePackFiles\i386\helpsvc.exe
+ 2004-08-04 05:56:52 10,752 ------w c:\windows\ServicePackFiles\i386\hh.exe
+ 2004-08-04 05:56:44 38,912 ------w c:\windows\ServicePackFiles\i386\hhsetup.dll
+ 2004-08-04 05:56:44 20,992 ------w c:\windows\ServicePackFiles\i386\hid.dll
+ 2004-08-04 04:10:38 25,600 ------w c:\windows\ServicePackFiles\i386\hidbth.sys
+ 2004-08-04 04:08:20 36,224 ------w c:\windows\ServicePackFiles\i386\hidclass.sys
+ 2004-08-04 04:08:20 15,104 ------w c:\windows\ServicePackFiles\i386\hidir.sys
+ 2004-08-04 04:08:18 24,960 ------w c:\windows\ServicePackFiles\i386\hidparse.sys
+ 2004-08-04 05:56:44 21,504 ------w c:\windows\ServicePackFiles\i386\hidserv.dll
+ 2004-08-04 05:56:44 38,912 ------w c:\windows\ServicePackFiles\i386\hmmapi.dll
+ 2004-08-04 05:56:44 344,064 ------w c:\windows\ServicePackFiles\i386\hnetcfg.dll
+ 2004-08-04 05:56:44 330,752 ------w c:\windows\ServicePackFiles\i386\hnetwiz.dll
+ 2004-08-04 05:56:44 39,936 ------w c:\windows\ServicePackFiles\i386\hostmib.dll
+ 2004-08-04 05:56:44 144,896 ------w c:\windows\ServicePackFiles\i386\hotplug.dll
+ 2004-08-04 05:56:44 10,752 ------w c:\windows\ServicePackFiles\i386\hpcjrr.dll
+ 2004-08-04 05:56:44 10,240 ------w c:\windows\ServicePackFiles\i386\hpcjrrps.dll
+ 2004-08-04 05:56:44 87,552 ------w c:\windows\ServicePackFiles\i386\hpfud50.dll
+ 2004-08-04 05:56:52 18,944 ------w c:\windows\ServicePackFiles\i386\hscupd.exe
+ 2004-08-04 03:41:48 220,032 ------w c:\windows\ServicePackFiles\i386\hsfbs2s2.sys
+ 2004-08-04 05:56:44 32,285 ------w c:\windows\ServicePackFiles\i386\hsfcisp2.dll
+ 2004-08-04 03:41:50 685,056 ------w c:\windows\ServicePackFiles\i386\hsfcxts2.sys
+ 2004-08-04 03:41:56 1,041,536 ------w c:\windows\ServicePackFiles\i386\hsfdpsp2.sys
+ 2004-08-04 04:00:14 263,040 ------w c:\windows\ServicePackFiles\i386\http.sys
+ 2004-08-04 05:56:44 24,576 ------w c:\windows\ServicePackFiles\i386\httpapi.dll
+ 2004-08-04 05:56:44 41,984 ------w c:\windows\ServicePackFiles\i386\htui.dll
+ 2004-08-04 05:56:44 345,088 ------w c:\windows\ServicePackFiles\i386\hypertrm.dll
+ 2004-08-04 04:00:52 8,192 ------w c:\windows\ServicePackFiles\i386\i2omgmt.sys
+ 2004-08-04 04:00:52 18,560 ------w c:\windows\ServicePackFiles\i386\i2omp.sys
+ 2004-08-04 04:14:38 52,736 ------w c:\windows\ServicePackFiles\i386\i8042prt.sys
+ 2004-08-04 05:56:44 702,845 ------w c:\windows\ServicePackFiles\i386\i81xdnt5.dll
+ 2004-08-04 03:29:38 161,020 ------w c:\windows\ServicePackFiles\i386\i81xnt5.sys
+ 2004-08-04 05:56:44 119,808 ------w c:\windows\ServicePackFiles\i386\iasrad.dll
+ 2004-08-04 05:56:44 11,264 ------w c:\windows\ServicePackFiles\i386\icaapi.dll
+ 2004-08-04 05:56:44 80,384 ------w c:\windows\ServicePackFiles\i386\iccvid.dll
+ 2004-08-04 05:56:44 253,952 ------w c:\windows\ServicePackFiles\i386\icm32.dll
+ 2004-08-04 05:56:08 3,584 ------w c:\windows\ServicePackFiles\i386\icmp.dll
+ 2004-08-04 05:56:44 4,096 ------w c:\windows\ServicePackFiles\i386\iconlib.dll
+ 2004-08-04 05:56:44 61,440 ------w c:\windows\ServicePackFiles\i386\icwconn.dll
+ 2004-08-04 05:56:52 214,528 ------w c:\windows\ServicePackFiles\i386\icwconn1.exe
+ 2004-08-04 05:56:52 86,016 ------w c:\windows\ServicePackFiles\i386\icwconn2.exe
+ 2004-08-04 05:56:44 73,728 ------w c:\windows\ServicePackFiles\i386\icwdial.dll
+ 2004-08-04 05:56:44 32,768 ------w c:\windows\ServicePackFiles\i386\icwdl.dll
+ 2004-08-04 05:56:44 172,032 ------w c:\windows\ServicePackFiles\i386\icwhelp.dll
+ 2004-08-04 05:56:44 65,536 ------w c:\windows\ServicePackFiles\i386\icwphbk.dll
+ 2004-08-04 05:56:52 24,576 ------w c:\windows\ServicePackFiles\i386\icwrmind.exe
+ 2004-08-04 05:56:44 49,152 ------w c:\windows\ServicePackFiles\i386\icwutil.dll
+ 2004-08-04 05:56:44 120,832 ------w c:\windows\ServicePackFiles\i386\idq.dll
+ 2004-08-04 05:56:52 34,304 ------w c:\windows\ServicePackFiles\i386\ie4uinit.exe
+ 2004-08-04 05:56:44 139,264 ------w c:\windows\ServicePackFiles\i386\ieakeng.dll
+ 2004-08-04 05:56:44 216,576 ------w c:\windows\ServicePackFiles\i386\ieaksie.dll
+ 2004-08-04 05:56:44 323,584 ------w c:\windows\ServicePackFiles\i386\iedkcs32.dll
+ 2004-08-04 05:56:52 18,432 ------w c:\windows\ServicePackFiles\i386\iedw.exe
+ 2004-08-04 05:56:44 81,920 ------w c:\windows\ServicePackFiles\i386\ieencode.dll
+ 2004-08-04 05:56:44 249,344 ------w c:\windows\ServicePackFiles\i386\iepeers.dll
+ 2004-08-04 05:56:44 48,640 ------w c:\windows\ServicePackFiles\i386\iernonce.dll
+ 2004-08-04 05:56:44 62,976 ------w c:\windows\ServicePackFiles\i386\iesetup.dll
+ 2004-08-04 05:56:52 93,184 ------w c:\windows\ServicePackFiles\i386\iexplore.exe
+ 2004-08-04 05:56:52 114,688 ------w c:\windows\ServicePackFiles\i386\iexpress.exe
+ 2004-08-04 05:56:44 135,680 ------w c:\windows\ServicePackFiles\i386\ifmon.dll
+ 2004-08-04 05:56:44 8,192 ------w c:\windows\ServicePackFiles\i386\igmpagnt.dll
+ 2004-08-04 05:56:44 505,344 ------w c:\windows\ServicePackFiles\i386\iis.dll
+ 2004-08-04 05:56:44 81,920 ------w c:\windows\ServicePackFiles\i386\ils.dll
+ 2004-08-04 05:56:44 144,384 ------w c:\windows\ServicePackFiles\i386\imagehlp.dll
+ 2004-08-04 05:56:52 150,016 ------w c:\windows\ServicePackFiles\i386\imapi.exe
+ 2004-08-04 04:00:16 41,856 ------w c:\windows\ServicePackFiles\i386\imapi.sys
+ 2004-08-04 05:56:44 36,921 ------w c:\windows\ServicePackFiles\i386\imeshare.dll
+ 2004-08-04 05:56:44 35,840 ------w c:\windows\ServicePackFiles\i386\imgutil.dll
+ 2004-08-04 05:56:44 110,080 ------w c:\windows\ServicePackFiles\i386\imm32.dll
+ 2004-08-04 05:56:44 274,432 ------w c:\windows\ServicePackFiles\i386\inetcfg.dll
+ 2004-08-04 05:56:44 678,400 ------w c:\windows\ServicePackFiles\i386\inetcomm.dll
+ 2004-08-04 05:56:44 33,280 ------w c:\windows\ServicePackFiles\i386\inetmib1.dll
+ 2004-08-04 05:56:44 75,264 ------w c:\windows\ServicePackFiles\i386\inetpp.dll
+ 2004-08-04 05:56:44 15,872 ------w c:\windows\ServicePackFiles\i386\inetppui.dll
+ 2004-08-04 05:56:10 48,128 ------w c:\windows\ServicePackFiles\i386\inetres.dll
+ 2004-08-04 05:56:52 20,480 ------w c:\windows\ServicePackFiles\i386\inetwiz.exe
+ 2004-08-04 05:56:44 147,456 ------w c:\windows\ServicePackFiles\i386\initpki.dll
+ 2004-08-04 05:56:44 123,392 ------w c:\windows\ServicePackFiles\i386\input.dll
+ 2004-08-04 05:56:44 96,256 ------w c:\windows\ServicePackFiles\i386\inseng.dll
+ 2004-08-04 03:59:42 5,504 ------w c:\windows\ServicePackFiles\i386\intelide.sys
+ 2004-08-04 03:59:20 36,096 ------w c:\windows\ServicePackFiles\i386\intelppm.sys
+ 2004-08-04 04:00:08 29,056 ------w c:\windows\ServicePackFiles\i386\ip6fw.sys
+ 2004-08-04 05:56:52 55,808 ------w c:\windows\ServicePackFiles\i386\ipconfig.exe
+ 2004-08-04 05:56:06 97,280 ------w c:\windows\ServicePackFiles\i386\ipevldpc.dll
+ 2004-08-04 05:56:06 24,064 ------w c:\windows\ServicePackFiles\i386\ipevlpid.dll
+ 2004-08-04 05:56:44 94,720 ------w c:\windows\ServicePackFiles\i386\iphlpapi.dll
+ 2004-08-04 04:04:46 20,992 ------w c:\windows\ServicePackFiles\i386\ipinip.sys
+ 2004-08-04 05:56:12 96,768 ------w c:\windows\ServicePackFiles\i386\ipmntdpc.dll
+ 2004-08-04 04:04:52 134,912 ------w c:\windows\ServicePackFiles\i386\ipnat.sys
+ 2004-08-04 05:56:44 331,264 ------w c:\windows\ServicePackFiles\i386\ipnathlp.dll
+ 2004-08-04 05:56:44 330,752 ------w c:\windows\ServicePackFiles\i386\ippromon.dll
+ 2004-08-04 05:56:44 35,328 ------w c:\windows\ServicePackFiles\i386\iprip.dll
+ 2004-08-04 04:14:30 74,752 ------w c:\windows\ServicePackFiles\i386\ipsec.sys
+ 2004-08-04 05:56:44 349,696 ------w c:\windows\ServicePackFiles\i386\ipsecsnp.dll
+ 2004-08-04 05:56:44 182,784 ------w c:\windows\ServicePackFiles\i386\ipsecsvc.dll
+ 2004-08-04 05:56:28 96,768 ------w c:\windows\ServicePackFiles\i386\ipseldpc.dll
+ 2004-08-04 05:56:06 24,064 ------w c:\windows\ServicePackFiles\i386\ipselpid.dll
+ 2004-08-04 05:56:44 384,000 ------w c:\windows\ServicePackFiles\i386\ipsmsnap.dll
+ 2004-08-04 05:56:52 53,248 ------w c:\windows\ServicePackFiles\i386\ipv6.exe
+ 2004-08-04 05:56:44 59,904 ------w c:\windows\ServicePackFiles\i386\ipv6mon.dll
+ 2004-08-04 05:56:52 23,552 ------w c:\windows\ServicePackFiles\i386\ipxroute.exe
+ 2004-08-04 05:56:44 120,320 ------w c:\windows\ServicePackFiles\i386\ir41_qc.dll
+ 2004-08-04 05:56:44 338,432 ------w c:\windows\ServicePackFiles\i386\ir41_qcx.dll
+ 2004-08-04 05:56:44 755,200 ------w c:\windows\ServicePackFiles\i386\ir50_32.dll
+ 2004-08-04 05:56:44 200,192 ------w c:\windows\ServicePackFiles\i386\ir50_qc.dll
+ 2004-08-04 05:56:44 183,808 ------w c:\windows\ServicePackFiles\i386\ir50_qcx.dll
+ 2004-08-04 04:00:54 87,424 ------w c:\windows\ServicePackFiles\i386\irda.sys
+ 2004-08-04 04:00:48 11,264 ------w c:\windows\ServicePackFiles\i386\irenum.sys
+ 2004-08-04 05:56:52 152,576 ------w c:\windows\ServicePackFiles\i386\irftp.exe
+ 2004-08-04 05:56:44 27,136 ------w c:\windows\ServicePackFiles\i386\irmon.dll
+ 2004-08-04 05:56:44 81,920 ------w c:\windows\ServicePackFiles\i386\isign32.dll
+ 2004-08-04 05:56:44 32,768 ------w c:\windows\ServicePackFiles\i386\isrdbg32.dll
+ 2004-08-04 05:56:44 143,872 ------w c:\windows\ServicePackFiles\i386\itircl.dll
+ 2004-08-04 05:56:44 134,144 ------w c:\windows\ServicePackFiles\i386\itss.dll
+ 2004-08-04 05:56:44 192,000 ------w c:\windows\ServicePackFiles\i386\iuengine.dll
+ 2004-08-04 05:56:44 54,272 ------w c:\windows\ServicePackFiles\i386\ixsso.dll
+ 2004-08-04 05:56:44 47,616 ------w c:\windows\ServicePackFiles\i386\iyuv_32.dll
+ 2004-08-04 05:56:44 450,560 ------w c:\windows\ServicePackFiles\i386\jscript.dll
+ 2004-08-04 05:56:44 15,872 ------w c:\windows\ServicePackFiles\i386\jsproxy.dll
+ 2004-08-04 03:58:34 24,576 ------w c:\windows\ServicePackFiles\i386\kbdclass.sys
+ 2004-08-04 05:56:12 7,168 ------w c:\windows\ServicePackFiles\i386\kbdfi1.dll
+ 2004-08-04 03:58:36 14,848 ------w c:\windows\ServicePackFiles\i386\kbdhid.sys
+ 2004-08-04 05:56:12 6,144 ------w c:\windows\ServicePackFiles\i386\kbdinbe1.dll
+ 2004-08-04 05:56:12 6,656 ------w c:\windows\ServicePackFiles\i386\kbdinben.dll
+ 2004-08-04 05:56:12 6,656 ------w c:\windows\ServicePackFiles\i386\kbdinmal.dll
+ 2004-08-04 05:56:12 5,632 ------w c:\windows\ServicePackFiles\i386\kbdmaori.dll
+ 2004-08-04 05:56:12 6,144 ------w c:\windows\ServicePackFiles\i386\kbdmlt47.dll
+ 2004-08-04 05:56:12 6,144 ------w c:\windows\ServicePackFiles\i386\kbdmlt48.dll
+ 2004-08-04 05:56:12 7,168 ------w c:\windows\ServicePackFiles\i386\kbdno1.dll
+ 2004-08-04 05:56:12 7,680 ------w c:\windows\ServicePackFiles\i386\kbdsmsfi.dll
+ 2004-08-04 05:56:12 7,680 ------w c:\windows\ServicePackFiles\i386\kbdsmsno.dll
+ 2004-08-04 05:56:12 7,168 ------w c:\windows\ServicePackFiles\i386\kbdukx.dll
+ 2004-08-04 03:59:24 7,424 ------w c:\windows\ServicePackFiles\i386\kd1394.dll
+ 2004-08-04 05:56:44 294,400 ------w c:\windows\ServicePackFiles\i386\kerberos.dll
+ 2004-08-04 05:56:44 983,552 ------w c:\windows\ServicePackFiles\i386\kernel32.dll
+ 2004-08-04 03:46:56 42,537 ------w c:\windows\ServicePackFiles\i386\keyboard.sys
+ 2004-08-04 05:56:44 150,528 ------w c:\windows\ServicePackFiles\i386\keymgr.dll
+ 2004-08-04 04:07:50 171,776 ------w c:\windows\ServicePackFiles\i386\kmixer.sys
+ 2004-08-04 03:49:34 92,224 ------w c:\windows\ServicePackFiles\i386\krnl386.exe
+ 2004-08-04 05:56:44 24,576 ------w c:\windows\ServicePackFiles\i386\krnlprov.dll
+ 2004-08-04 04:15:22 140,928 ------w c:\windows\ServicePackFiles\i386\ks.sys
+ 2004-08-04 03:59:48 92,032 ------w c:\windows\ServicePackFiles\i386\ksecdd.sys
+ 2004-08-04 05:56:44 4,096 ------w c:\windows\ServicePackFiles\i386\ksuser.dll
+ 2004-08-04 03:31:52 97,792 ------w c:\windows\ServicePackFiles\i386\lang\chtmbx.dll
+ 2004-08-04 03:31:54 56,320 ------w c:\windows\ServicePackFiles\i386\lang\chtskdic.dll
+ 2004-08-04 03:31:54 173,568 ------w c:\windows\ServicePackFiles\i386\lang\chtskf.dll
+ 2004-08-04 03:31:54 198,656 ------w c:\windows\ServicePackFiles\i386\lang\cintime.dll
+ 2004-08-04 03:31:56 480,256 ------w c:\windows\ServicePackFiles\i386\lang\cintsetp.exe
+ 2004-08-04 03:31:40 57,399 ------w c:\windows\ServicePackFiles\i386\lang\cplexe.exe
+ 2004-08-04 04:04:38 106,496 ------w c:\windows\ServicePackFiles\i386\lang\imekrcic.dll
+ 2004-08-04 04:04:34 86,016 ------w c:\windows\ServicePackFiles\i386\lang\imekrmbx.dll
+ 2004-08-04 03:31:50 811,064 ------w c:\windows\ServicePackFiles\i386\lang\imjp81k.dll
+ 2004-08-04 03:31:52 368,696 ------w c:\windows\ServicePackFiles\i386\lang\imjpcic.dll
+ 2004-08-04 03:31:52 716,856 ------w c:\windows\ServicePackFiles\i386\lang\imjpcus.dll
+ 2004-08-04 03:31:54 81,976 ------w c:\windows\ServicePackFiles\i386\lang\imjpdct.dll
+ 2004-08-04 03:31:54 307,257 ------w c:\windows\ServicePackFiles\i386\lang\imjpdct.exe
+ 2004-08-04 03:31:56 155,705 ------w c:\windows\ServicePackFiles\i386\lang\imjpdsvr.exe
+ 2004-08-04 03:31:58 196,665 ------w c:\windows\ServicePackFiles\i386\lang\imjpinst.exe
+ 2004-08-04 03:32:00 208,952 ------w c:\windows\ServicePackFiles\i386\lang\imjpmig.exe
+ 2004-08-04 03:32:12 233,527 ------w c:\windows\ServicePackFiles\i386\lang\imjprw.exe
+ 2004-08-04 03:32:16 262,200 ------w c:\windows\ServicePackFiles\i386\lang\imjputy.exe
+ 2004-08-04 03:32:16 274,489 ------w c:\windows\ServicePackFiles\i386\lang\imjputyc.dll
+ 2004-08-04 03:32:28 102,456 ------w c:\windows\ServicePackFiles\i386\lang\imlang.dll
+ 2004-08-04 03:31:50 59,392 ------w c:\windows\ServicePackFiles\i386\lang\imscinst.exe
+ 2004-08-04 03:32:12 15,872 ------w c:\windows\ServicePackFiles\i386\lang\padrs404.dll
+ 2004-08-04 03:31:50 15,360 ------w c:\windows\ServicePackFiles\i386\lang\padrs804.dll
+ 2004-08-04 03:31:50 175,104 ------w c:\windows\ServicePackFiles\i386\lang\pintlcsa.dll
+ 2004-08-04 03:31:50 53,760 ------w c:\windows\ServicePackFiles\i386\lang\pintlcsd.dll
+ 2004-08-04 03:31:50 70,144 ------w c:\windows\ServicePackFiles\i386\lang\pintlphr.exe
+ 2004-08-04 03:31:50 67,584 ------w c:\windows\ServicePackFiles\i386\lang\pmigrate.dll
+ 2004-08-04 03:32:16 44,032 ------w c:\windows\ServicePackFiles\i386\lang\tintlphr.exe
+ 2004-08-04 03:32:16 455,168 ------w c:\windows\ServicePackFiles\i386\lang\tintsetp.exe
+ 2004-08-04 03:32:14 10,240 ------w c:\windows\ServicePackFiles\i386\lang\tmigrate.dll
+ 2004-08-04 04:04:12 76,288 ------w c:\windows\ServicePackFiles\i386\lang\uniime.dll
+ 2004-08-04 03:32:36 426,041 ------w c:\windows\ServicePackFiles\i386\lang\voicepad.dll
+ 2004-08-04 03:32:36 86,073 ------w c:\windows\ServicePackFiles\i386\lang\voicesub.dll
+ 2004-08-04 05:56:44 6,656 ------w c:\windows\ServicePackFiles\i386\laprxy.dll
+ 2004-08-04 03:59:34 34,688 ------w c:\windows\ServicePackFiles\i386\lbrtfdc.sys
+ 2004-08-04 05:56:44 423,936 ------w c:\windows\ServicePackFiles\i386\licdll.dll
+ 2004-08-04 05:56:44 22,016 ------w c:\windows\ServicePackFiles\i386\licmgr10.dll
+ 2004-08-04 05:56:44 58,880 ------w c:\windows\ServicePackFiles\i386\licwmi.dll
+ 2004-08-04 05:56:44 18,944 ------w c:\windows\ServicePackFiles\i386\linkinfo.dll
+ 2004-08-04 05:56:44 13,824 ------w c:\windows\ServicePackFiles\i386\lmhsvc.dll
+ 2004-08-04 05:56:44 33,792 ------w c:\windows\ServicePackFiles\i386\lmmib2.dll
+ 2004-08-04 05:56:44 399,872 ------w c:\windows\ServicePackFiles\i386\lmrt.dll
+ 2004-08-04 05:56:44 97,280 ------w c:\windows\ServicePackFiles\i386\loadperf.dll
+ 2004-08-04 05:56:44 221,696 ------w c:\windows\ServicePackFiles\i386\localsec.dll
+ 2004-08-04 05:56:44 341,504 ------w c:\windows\ServicePackFiles\i386\localspl.dll
+ 2004-08-04 05:56:44 11,776 ------w c:\windows\ServicePackFiles\i386\localui.dll
+ 2004-08-04 05:56:52 75,264 ------w c:\windows\ServicePackFiles\i386\locator.exe
+ 2004-08-04 05:56:44 19,968 ------w c:\windows\ServicePackFiles\i386\log.dll
+ 2004-08-04 05:56:52 103,936 ------w c:\windows\ServicePackFiles\i386\logagent.exe
+ 2004-08-04 05:56:52 59,392 ------w c:\windows\ServicePackFiles\i386\logman.exe
+ 2004-08-04 05:56:58 220,672 ------w c:\windows\ServicePackFiles\i386\logon.scr
+ 2004-08-04 05:56:52 514,560 ------w c:\windows\ServicePackFiles\i386\logonui.exe
+ 2004-08-04 05:56:44 22,528 ------w c:\windows\ServicePackFiles\i386\lpdsvc.dll
+ 2004-08-04 05:56:44 22,016 ------w c:\windows\ServicePackFiles\i386\lpk.dll
+ 2004-08-04 05:56:44 10,240 ------w c:\windows\ServicePackFiles\i386\lprhelp.dll
+ 2004-08-04 05:56:44 18,944 ------w c:\windows\ServicePackFiles\i386\lprmon.dll
+ 2004-08-04 05:56:44 721,920 ------w c:\windows\ServicePackFiles\i386\lsasrv.dll
+ 2004-08-04 05:56:52 13,312 ------w c:\windows\ServicePackFiles\i386\lsass.exe
+ 2004-08-04 03:41:36 606,684 ------w c:\windows\ServicePackFiles\i386\ltmdmnt.sys
+ 2004-08-04 03:41:38 420,992 ------w c:\windows\ServicePackFiles\i386\ltmdmntt.sys
+ 2004-08-04 04:00:08 7,040 ------w c:\windows\ServicePackFiles\i386\ltotape.sys
+ 2004-08-04 03:39:32 20,864 ------w c:\windows\ServicePackFiles\i386\lwadihid.sys
+ 2004-08-04 05:56:52 72,704 ------w c:\windows\ServicePackFiles\i386\magnify.exe
+ 2004-08-04 05:56:52 85,504 ------w c:\windows\ServicePackFiles\i386\makecab.exe
+ 2004-08-04 05:56:44 14,848 ------w c:\windows\ServicePackFiles\i386\mcastmib.dll
+ 2004-08-04 05:56:44 84,480 ------w c:\windows\ServicePackFiles\i386\mciavi32.dll
+ 2004-08-04 05:56:44 35,328 ------w c:\windows\ServicePackFiles\i386\mciqtz32.dll
+ 2004-08-04 05:56:44 23,040 ------w c:\windows\ServicePackFiles\i386\mciseq.dll
+ 2004-08-04 05:56:44 23,552 ------w c:\windows\ServicePackFiles\i386\mciwave.dll
+ 2004-08-04 05:56:44 118,272 ------w c:\windows\ServicePackFiles\i386\mdminst.dll
+ 2004-08-04 05:56:44 86,016 ------w c:\windows\ServicePackFiles\i386\mdmxsdk.dll
+ 2004-08-04 03:41:56 11,868 ------w c:\windows\ServicePackFiles\i386\mdmxsdk.sys
+ 2004-08-04 04:00:50 26,112 ------w c:\windows\ServicePackFiles\i386\memstpci.sys
+ 2004-08-04 04:07:46 63,744 ------w c:\windows\ServicePackFiles\i386\mf.sys
+ 2004-08-04 05:56:44 39,936 ------w c:\windows\ServicePackFiles\i386\mf3216.dll
+ 2004-08-04 05:56:44 1,028,096 ------w c:\windows\ServicePackFiles\i386\mfc42.dll
+ 2004-08-04 05:56:44 1,024,000 ------w c:\windows\ServicePackFiles\i386\mfc42u.dll
+ 2004-08-04 05:56:44 22,528 ------w c:\windows\ServicePackFiles\i386\mfcsubs.dll
+ 2004-08-04 05:56:44 14,848 ------w c:\windows\ServicePackFiles\i386\mgmtapi.dll
+ 2004-08-04 05:56:44 18,944 ------w c:\windows\ServicePackFiles\i386\midimap.dll
+ 2004-08-04 05:56:44 201,216 ------w c:\windows\ServicePackFiles\i386\migism.dll
+ 2004-08-04 05:56:44 192,512 ------w c:\windows\ServicePackFiles\i386\migism_a.dll
+ 2004-08-04 05:56:44 60,928 ------w c:\windows\ServicePackFiles\i386\miglibnt.dll
+ 2004-08-04 05:56:52 103,424 ------w c:\windows\ServicePackFiles\i386\migload.exe
+ 2004-08-04 05:56:52 786,432 ------w c:\windows\ServicePackFiles\i386\migrate.exe
+ 2004-08-04 05:56:52 7,680 ------w c:\windows\ServicePackFiles\i386\migregdb.exe
+ 2004-08-04 05:56:52 240,128 ------w c:\windows\ServicePackFiles\i386\migwiz.exe
+ 2004-08-04 05:56:52 236,032 ------w c:\windows\ServicePackFiles\i386\migwiz_a.exe
+ 2004-08-04 05:56:44 586,240 ------w c:\windows\ServicePackFiles\i386\mlang.dll
+ 2004-08-04 05:56:52 815,104 ------w c:\windows\ServicePackFiles\i386\mmc.exe
+ 2004-08-04 05:56:44 70,656 ------w c:\windows\ServicePackFiles\i386\mmcbase.dll
+ 2004-08-04 05:56:44 1,192,960 ------w c:\windows\ServicePackFiles\i386\mmcndmgr.dll
+ 2004-08-04 05:56:44 50,688 ------w c:\windows\ServicePackFiles\i386\mmcshext.dll
+ 2004-08-04 05:56:44 17,408 ------w c:\windows\ServicePackFiles\i386\mmfutil.dll
+ 2004-08-04 03:51:12 68,768 ------w c:\windows\ServicePackFiles\i386\mmsystem.dll
+ 2004-08-04 05:56:44 34,560 ------w c:\windows\ServicePackFiles\i386\mnmdd.dll
+ 2004-08-04 05:56:52 32,768 ------w c:\windows\ServicePackFiles\i386\mnmsrvc.exe
+ 2004-08-04 05:56:44 207,360 ------w c:\windows\ServicePackFiles\i386\mobsync.dll
+ 2004-08-04 05:56:52 143,360 ------w c:\windows\ServicePackFiles\i386\mobsync.exe
+ 2004-08-04 04:08:06 30,080 ------w c:\windows\ServicePackFiles\i386\modem.sys
+ 2004-08-04 05:56:44 153,600 ------w c:\windows\ServicePackFiles\i386\modemui.dll
+ 2004-08-04 05:56:52 16,384 ------w c:\windows\ServicePackFiles\i386\mofcomp.exe
+ 2004-08-04 05:56:44 123,904 ------w c:\windows\ServicePackFiles\i386\mofd.dll
+ 2004-08-04 05:56:12 216,064 ------w c:\windows\ServicePackFiles\i386\moricons.dll
+ 2004-08-04 03:58:34 23,040 ------w c:\windows\ServicePackFiles\i386\mouclass.sys
+ 2004-08-04 03:58:32 42,240 ------w c:\windows\ServicePackFiles\i386\mountmgr.sys
+ 2004-08-04 05:56:54 3,555,328 ------w c:\windows\ServicePackFiles\i386\moviemk.exe
+ 2004-08-04 05:56:44 310,272 ------w c:\windows\ServicePackFiles\i386\mp43dmod.dll
+ 2004-08-04 05:56:44 384,512 ------w c:\windows\ServicePackFiles\i386\mp4sdmod.dll
+ 2004-08-04 04:10:14 15,360 ------w c:\windows\ServicePackFiles\i386\mpe.sys
+ 2004-08-04 05:56:44 240,640 ------w c:\windows\ServicePackFiles\i386\mpg4dmod.dll
+ 2004-08-04 05:56:54 123,392 ------w c:\windows\ServicePackFiles\i386\mplay32.exe
+ 2004-08-04 05:56:54 4,639 ------w c:\windows\ServicePackFiles\i386\mplayer2.exe
+ 2004-08-04 05:56:44 59,904 ------w c:\windows\ServicePackFiles\i386\mpr.dll
+ 2004-08-04 05:56:44 87,040 ------w c:\windows\ServicePackFiles\i386\mprapi.dll
+ 2004-08-04 05:56:44 368,640 ------w c:\windows\ServicePackFiles\i386\mpvis.dll
+ 2004-08-04 04:00:58 181,248 ------w c:\windows\ServicePackFiles\i386\mrxdav.sys
+ 2004-08-04 04:15:18 451,456 ------w c:\windows\ServicePackFiles\i386\mrxsmb.sys
+ 2004-08-04 05:56:44 71,680 ------w c:\windows\ServicePackFiles\i386\msacm32.dll
+ 2004-08-04 05:56:44 331,776 ------w c:\windows\ServicePackFiles\i386\msadce.dll
+ 2004-08-04 05:56:14 20,480 ------w c:\windows\ServicePackFiles\i386\msadcer.dll
+ 2004-08-04 05:56:44 61,440 ------w c:\windows\ServicePackFiles\i386\msadcf.dll
+ 2004-08-04 05:56:14 16,384 ------w c:\windows\ServicePackFiles\i386\msadcfr.dll
+ 2004-08-04 05:56:44 143,360 ------w c:\windows\ServicePackFiles\i386\msadco.dll
+ 2004-08-04 05:56:14 16,384 ------w c:\windows\ServicePackFiles\i386\msadcor.dll
+ 2004-08-04 05:56:44 53,248 ------w c:\windows\ServicePackFiles\i386\msadcs.dll
+ 2004-08-04 05:56:44 155,648 ------w c:\windows\ServicePackFiles\i386\msadds.dll
+ 2004-08-04 05:56:14 24,576 ------w c:\windows\ServicePackFiles\i386\msaddsr.dll
+ 2004-08-04 05:56:14 24,576 ------w c:\windows\ServicePackFiles\i386\msader15.dll
+ 2004-08-04 05:56:44 536,576 ------w c:\windows\ServicePackFiles\i386\msado15.dll
+ 2004-08-04 05:56:44 180,224 ------w c:\windows\ServicePackFiles\i386\msadomd.dll
+ 2004-08-04 05:56:44 57,344 ------w c:\windows\ServicePackFiles\i386\msador15.dll
+ 2004-08-04 05:56:44 200,704 ------w c:\windows\ServicePackFiles\i386\msadox.dll
+ 2004-08-04 05:56:44 57,344 ------w c:\windows\ServicePackFiles\i386\msadrh15.dll
+ 2004-08-04 05:56:14 3,584 ------w c:\windows\ServicePackFiles\i386\msafd.dll
+ 2004-08-04 05:56:44 86,016 ------w c:\windows\ServicePackFiles\i386\msapsspc.dll
+ 2004-08-04 05:56:44 57,344 ------w c:\windows\ServicePackFiles\i386\msasn1.dll
+ 2004-08-04 05:56:44 220,160 ------w c:\windows\ServicePackFiles\i386\mscandui.dll
+ 2004-08-04 05:56:44 73,728 ------w c:\windows\ServicePackFiles\i386\mscms.dll
+ 2004-08-04 05:56:44 69,632 ------w c:\windows\ServicePackFiles\i386\msconf.dll
+ 2004-08-04 05:56:54 158,208 ------w c:\windows\ServicePackFiles\i386\msconfig.exe
+ 2004-07-17 16:42:20 116,288 ------w c:\windows\ServicePackFiles\i386\msconv97.dll
+ 2004-08-04 05:56:14 12,288 ------w c:\windows\ServicePackFiles\i386\mscpx32r.dll
+ 2004-08-04 05:56:44 36,864 ------w c:\windows\ServicePackFiles\i386\mscpxl32.dll
+ 2004-08-04 05:56:44 294,400 ------w c:\windows\ServicePackFiles\i386\msctf.dll
+ 2004-08-04 05:56:44 69,120 ------w c:\windows\ServicePackFiles\i386\msctfp.dll
+ 2004-08-04 05:56:44 4,096 ------w c:\windows\ServicePackFiles\i386\msdadc.dll
+ 2004-08-04 05:56:44 118,784 ------w c:\windows\ServicePackFiles\i386\msdadiag.dll
+ 2004-08-04 05:56:44 4,096 ------w c:\windows\ServicePackFiles\i386\msdaenum.dll
+ 2004-08-04 05:56:44 4,096 ------w c:\windows\ServicePackFiles\i386\msdaer.dll
+ 2004-08-04 05:56:44 532,480 ------w c:\windows\ServicePackFiles\i386\msdaipp.dll
+ 2004-08-04 05:56:44 233,472 ------w c:\windows\ServicePackFiles\i386\msdaora.dll
+ 2004-08-04 05:56:14 16,384 ------w c:\windows\ServicePackFiles\i386\msdaorar.dll
+ 2004-08-04 05:56:44 77,824 ------w c:\windows\ServicePackFiles\i386\msdaosp.dll
+ 2004-08-04 05:56:14 16,384 ------w c:\windows\ServicePackFiles\i386\msdaprsr.dll
+ 2004-08-04 05:56:44 200,704 ------w c:\windows\ServicePackFiles\i386\msdaprst.dll
+ 2004-08-04 05:56:44 204,800 ------w c:\windows\ServicePackFiles\i386\msdaps.dll
+ 2004-08-04 05:56:44 118,784 ------w c:\windows\ServicePackFiles\i386\msdarem.dll
+ 2004-08-04 05:56:14 16,384 ------w c:\windows\ServicePackFiles\i386\msdaremr.dll
+ 2004-08-04 05:56:44 151,552 ------w c:\windows\ServicePackFiles\i386\msdart.dll
+ 2004-08-04 05:56:44 4,096 ------w c:\windows\ServicePackFiles\i386\msdasc.dll
+ 2004-08-04 05:56:44 315,392 ------w c:\windows\ServicePackFiles\i386\msdasql.dll
+ 2004-08-04 05:56:14 16,384 ------w c:\windows\ServicePackFiles\i386\msdasqlr.dll
+ 2004-08-04 05:56:44 94,208 ------w c:\windows\ServicePackFiles\i386\msdatl3.dll
+ 2004-08-04 05:56:44 20,480 ------w c:\windows\ServicePackFiles\i386\msdatt.dll
+ 2004-08-04 05:56:44 4,096 ------w c:\windows\ServicePackFiles\i386\msdaurl.dll
+ 2004-08-04 05:56:44 36,864 ------w c:\windows\ServicePackFiles\i386\msdfmap.dll
+ 2004-08-04 05:56:44 14,336 ------w c:\windows\ServicePackFiles\i386\msdmo.dll
+ 2004-08-04 05:56:54 6,144 ------w c:\windows\ServicePackFiles\i386\msdtc.exe
+ 2004-08-04 05:56:44 58,880 ------w c:\windows\ServicePackFiles\i386\msdtclog.dll
+ 2004-08-04 05:56:44 425,472 ------w c:\windows\ServicePackFiles\i386\msdtcprx.dll
+ 2004-08-04 05:56:44 949,248 ------w c:\windows\ServicePackFiles\i386\msdtctm.dll
+ 2004-08-04 05:56:44 161,280 ------w c:\windows\ServicePackFiles\i386\msdtcuiu.dll
+ 2004-08-04 04:10:00 51,328 ------w c:\windows\ServicePackFiles\i386\msdv.sys
+ 2004-08-04 05:56:14 4,126 ------w c:\windows\ServicePackFiles\i386\msdxmlc.dll
+ 2004-08-04 05:56:44 512,029 ------w c:\windows\ServicePackFiles\i386\msexch40.dll
+ 2004-08-04 05:56:44 319,517 ------w c:\windows\ServicePackFiles\i386\msexcl40.dll
+ 2004-08-04 04:00:42 19,072 ------w c:\windows\ServicePackFiles\i386\msfs.sys
+ 2004-08-04 05:56:44 537,088 ------w c:\windows\ServicePackFiles\i386\msftedit.dll
+ 2004-08-04 05:56:44 994,304 ------w c:\windows\ServicePackFiles\i386\msgina.dll
+ 2004-08-04 04:04:14 35,072 ------w c:\windows\ServicePackFiles\i386\msgpc.sys
+ 2004-08-04 05:56:44 3,166,208 ------w c:\windows\ServicePackFiles\i386\msgr3en.dll
+ 2004-08-04 05:56:44 15,360 ------w c:\windows\ServicePackFiles\i386\msgrocm.dll
+ 2004-08-04 05:56:44 82,944 ------w c:\windows\ServicePackFiles\i386\msgsc.dll
+ 2004-08-04 05:56:14 180,224 ------w c:\windows\ServicePackFiles\i386\msgslang.dll
+ 2004-08-04 05:56:44 33,792 ------w c:\windows\ServicePackFiles\i386\msgsvc.dll
+ 2004-08-04 05:56:58 188,416 ------w c:\windows\ServicePackFiles\i386\msh261.drv
+ 2004-08-04 05:56:58 294,912 ------w c:\windows\ServicePackFiles\i386\msh263.drv
+ 2004-08-04 05:56:54 29,184 ------w c:\windows\ServicePackFiles\i386\mshta.exe
+ 2004-08-04 05:56:44 3,003,392 ------w c:\windows\ServicePackFiles\i386\mshtml.dll
+ 2004-08-04 05:56:44 448,512 ------w c:\windows\ServicePackFiles\i386\mshtmled.dll
+ 2004-08-04 05:56:16 56,832 ------w c:\windows\ServicePackFiles\i386\mshtmler.dll
+ 2004-08-04 05:56:44 2,804,224 ------w c:\windows\ServicePackFiles\i386\msi.dll
+ 2004-08-04 05:56:44 51,712 ------w c:\windows\ServicePackFiles\i386\msident.dll
+ 2004-08-04 05:56:44 6,656 ------w c:\windows\ServicePackFiles\i386\msidle.dll
+ 2004-08-04 05:56:44 248,832 ------w c:\windows\ServicePackFiles\i386\msieftp.dll
+ 2004-08-04 05:56:54 77,312 ------w c:\windows\ServicePackFiles\i386\msiexec.exe
+ 2004-08-04 05:56:44 331,264 ------w c:\windows\ServicePackFiles\i386\msihnd.dll
+ 2004-08-04 05:56:44 4,608 ------w c:\windows\ServicePackFiles\i386\msimg32.dll
+ 2004-08-04 05:56:54 60,416 ------w c:\windows\ServicePackFiles\i386\msimn.exe
+ 2004-08-04 05:56:18 884,736 ------w c:\windows\ServicePackFiles\i386\msimsg.dll
+ 2004-08-04 05:56:44 159,232 ------w c:\windows\ServicePackFiles\i386\msimtf.dll
+ 2004-08-04 05:56:44 376,320 ------w c:\windows\ServicePackFiles\i386\msinfo.dll
+ 2004-08-04 04:00:48 22,016 ------w c:\windows\ServicePackFiles\i386\msircomm.sys
+ 2004-08-04 05:56:54 40,960 ------w c:\windows\ServicePackFiles\i386\msiregmv.exe
+ 2004-08-04 05:56:44 44,032 ------w c:\windows\ServicePackFiles\i386\msisip.dll
+ 2004-08-04 05:56:44 1,507,356 ------w c:\windows\ServicePackFiles\i386\msjet40.dll
+ 2004-07-17 16:34:48 358,976 ------w c:\windows\ServicePackFiles\i386\msjetol1.dll
+ 2004-08-04 05:56:44 151,583 ------w c:\windows\ServicePackFiles\i386\msjint40.dll
+ 2004-08-04 05:56:44 102,400 ------w c:\windows\ServicePackFiles\i386\msjro.dll
+ 2004-08-04 05:56:44 53,279 ------w c:\windows\ServicePackFiles\i386\msjter40.dll
+ 2004-08-04 05:56:44 241,693 ------w c:\windows\ServicePackFiles\i386\msjtes40.dll
+ 2004-08-04 03:58:42 7,552 ------w c:\windows\ServicePackFiles\i386\mskssrv.sys
+ 2004-08-04 05:56:44 25,088 ------w c:\windows\ServicePackFiles\i386\mslbui.dll
+ 2004-08-04 05:56:44 213,023 ------w c:\windows\ServicePackFiles\i386\msltus40.dll
+ 2004-08-04 05:56:44 39,936 ------w c:\windows\ServicePackFiles\i386\mslwvtts.dll
+ 2004-08-04 05:56:54 1,667,584 ------w c:\windows\ServicePackFiles\i386\msmsgs.exe
+ 2004-08-04 05:57:02 259,072 ------w c:\windows\ServicePackFiles\i386\msnetobj.dll
+ 2004-08-04 05:56:44 290,816 ------w c:\windows\ServicePackFiles\i386\msnsspc.dll
+ 2004-08-04 05:56:44 122,368 ------w c:\windows\ServicePackFiles\i386\msobcomm.dll
+ 2004-08-04 05:56:44 16,384 ------w c:\windows\ServicePackFiles\i386\msobdl.dll
+ 2004-08-04 05:56:44 561,664 ------w c:\windows\ServicePackFiles\i386\msobmain.dll
+ 2004-08-04 05:56:44 30,720 ------w c:\windows\ServicePackFiles\i386\msobshel.dll
+ 2004-08-04 05:56:44 18,944 ------w c:\windows\ServicePackFiles\i386\msobweb.dll
+ 2004-08-04 05:56:44 1,311,232 ------w c:\windows\ServicePackFiles\i386\msoe.dll
+ 2004-08-04 05:56:44 252,928 ------w c:\windows\ServicePackFiles\i386\msoeacct.dll
+ 2004-08-04 05:56:20 2,479,616 ------w c:\windows\ServicePackFiles\i386\msoeres.dll
+ 2004-08-04 05:56:44 105,984 ------w c:\windows\ServicePackFiles\i386\msoert2.dll
+ 2004-08-04 05:56:20 20,480 ------w c:\windows\ServicePackFiles\i386\msorc32r.dll
+ 2004-08-04 05:56:44 143,360 ------w c:\windows\ServicePackFiles\i386\msorcl32.dll
+ 2004-08-04 05:56:54 343,040 ------w c:\windows\ServicePackFiles\i386\mspaint.exe
+ 2004-08-04 05:56:44 30,208 ------w c:\windows\ServicePackFiles\i386\mspatcha.dll
+ 2004-08-04 05:56:44 348,189 ------w c:\windows\ServicePackFiles\i386\mspbde40.dll
+ 2004-08-04 03:58:40 5,376 ------w c:\windows\ServicePackFiles\i386\mspclock.sys
+ 2004-08-04 05:56:44 52,224 ------w c:\windows\ServicePackFiles\i386\mspmsnsv.dll
+ 2004-08-04 05:56:44 201,728 ------w c:\windows\ServicePackFiles\i386\mspmsp.dll
+ 2004-08-04 03:58:42 4,992 ------w c:\windows\ServicePackFiles\i386\mspqm.sys
+ 2004-08-04 05:56:20 48,128 ------w c:\windows\ServicePackFiles\i386\msprivs.dll
+ 2004-08-04 05:56:44 146,432 ------w c:\windows\ServicePackFiles\i386\msrating.dll
+ 2004-08-04 05:56:44 421,919 ------w c:\windows\ServicePackFiles\i386\msrd2x40.dll
+ 2004-08-04 05:56:44 315,423 ------w c:\windows\ServicePackFiles\i386\msrd3x40.dll
+ 2004-08-04 05:56:44 552,989 ------w c:\windows\ServicePackFiles\i386\msrepl40.dll
+ 2004-08-04 05:56:44 11,264 ------w c:\windows\ServicePackFiles\i386\msrle32.dll
+ 2004-08-04 05:56:44 134,656 ------w c:\windows\ServicePackFiles\i386\mssap.dll
+ 2004-08-04 05:57:02 356,352 ------w c:\windows\ServicePackFiles\i386\msscp.dll
+ 2004-08-04 04:07:48 15,488 ------w c:\windows\ServicePackFiles\i386\mssmbios.sys
+ 2004-08-04 05:56:44 274,432 ------w c:\windows\ServicePackFiles\i386\mst120.dll
+ 2004-08-04 05:56:44 57,344 ------w c:\windows\ServicePackFiles\i386\mst123.dll
+ 2004-08-04 04:10:00 49,024 ------w c:\windows\ServicePackFiles\i386\mstape.sys
+ 2004-08-04 05:56:44 274,944 ------w c:\windows\ServicePackFiles\i386\mstask.dll
+ 2004-08-04 03:58:40 5,504 ------w c:\windows\ServicePackFiles\i386\mstee.sys
+ 2004-08-04 05:56:44 258,077 ------w c:\windows\ServicePackFiles\i386\mstext40.dll
+ 2004-08-04 05:56:44 530,432 ------w c:\windows\ServicePackFiles\i386\mstime.dll
+ 2004-08-04 05:56:54 12,288 ------w c:\windows\ServicePackFiles\i386\mstinit.exe
+ 2004-08-04 05:56:44 115,712 ------w c:\windows\ServicePackFiles\i386\mstlsapi.dll
+ 2004-08-04 03:59:42 407,552 ------w c:\windows\ServicePackFiles\i386\mstsc.exe
+ 2004-08-04 03:59:44 655,360 ------w c:\windows\ServicePackFiles\i386\mstscax.dll
+ 2004-08-04 05:56:44 195,072 ------w c:\windows\ServicePackFiles\i386\msutb.dll
+ 2004-08-04 05:56:44 129,536 ------w c:\windows\ServicePackFiles\i386\msv1_0.dll
+ 2004-08-04 05:56:44 1,392,671 ------w c:\windows\ServicePackFiles\i386\msvbvm60.dll
+ 2004-08-04 05:56:44 54,784 ------w c:\windows\ServicePackFiles\i386\msvcirt.dll
+ 2004-08-04 05:56:44 413,696 ------w c:\windows\ServicePackFiles\i386\msvcp60.dll
+ 2004-08-04 05:56:44 343,040 ------w c:\windows\ServicePackFiles\i386\msvcrt.dll
+ 2004-08-04 03:58:26 61,440 ------w c:\windows\ServicePackFiles\i386\msvcrt40.dll
+ 2004-08-04 05:56:44 120,832 ------w c:\windows\ServicePackFiles\i386\msvfw32.dll
+ 2004-08-04 05:56:44 1,428,480 ------w c:\windows\ServicePackFiles\i386\msvidctl.dll
+ 2004-08-04 05:56:44 72,704 ------w c:\windows\ServicePackFiles\i386\msw3prt.dll
+ 2004-08-04 05:56:46 831,519 ------w c:\windows\ServicePackFiles\i386\mswdat10.dll
+ 2004-08-04 05:56:46 204,288 ------w c:\windows\ServicePackFiles\i386\mswebdvd.dll
+ 2004-08-04 05:56:46 245,760 ------w c:\windows\ServicePackFiles\i386\mswmdm.dll
+ 2004-08-04 05:56:46 245,248 ------w c:\windows\ServicePackFiles\i386\mswsock.dll
+ 2004-08-04 05:56:46 614,429 ------w c:\windows\ServicePackFiles\i386\mswstr10.dll
+ 2004-08-04 05:56:46 24,576 ------w c:\windows\ServicePackFiles\i386\msxactps.dll
+ 2004-08-04 05:56:46 348,189 ------w c:\windows\ServicePackFiles\i386\msxbde40.dll
+ 2004-08-04 05:56:46 506,368 ------w c:\windows\ServicePackFiles\i386\msxml.dll
+ 2004-08-04 05:56:46 701,440 ------w c:\windows\ServicePackFiles\i386\msxml2.dll
+ 2004-08-04 05:56:46 1,236,480 ------w c:\windows\ServicePackFiles\i386\msxml3.dll
+ 2004-08-04 05:56:46 17,408 ------w c:\windows\ServicePackFiles\i386\msyuv.dll
+ 2004-08-04 03:41:40 126,686 ------w c:\windows\ServicePackFiles\i386\mtlmnt5.sys
+ 2004-08-04 03:41:38 1,309,184 ------w c:\windows\ServicePackFiles\i386\mtlstrm.sys
+ 2004-08-04 05:56:46 66,560 ------w c:\windows\ServicePackFiles\i386\mtxclu.dll
+ 2004-08-04 05:56:46 90,112 ------w c:\windows\ServicePackFiles\i386\mtxoci.dll
+ 2004-08-04 05:56:46 1,737,856 ------w c:\windows\ServicePackFiles\i386\mtxparhd.dll
+ 2004-08-04 03:29:38 452,736 ------w c:\windows\ServicePackFiles\i386\mtxparhm.sys
+ 2004-08-04 05:56:54 90,624 ------w c:\windows\ServicePackFiles\i386\muisetup.exe
+ 2004-08-04 04:15:22 107,904 ------w c:\windows\ServicePackFiles\i386\mup.sys
+ 2004-08-04 04:04:52 12,672 ------w c:\windows\ServicePackFiles\i386\mutohpen.sys
+ 2004-08-04 05:56:46 90,624 ------w c:\windows\ServicePackFiles\i386\mydocs.dll
+ 2004-08-04 04:10:30 85,376 ------w c:\windows\ServicePackFiles\i386\nabtsfec.sys
+ 2004-08-04 05:56:46 221,184 ------w c:\windows\ServicePackFiles\i386\nac.dll
+ 2004-08-04 05:56:56 53,760 ------w c:\windows\ServicePackFiles\i386\narrator.exe
+ 2004-08-04 05:56:46 36,352 ------w c:\windows\ServicePackFiles\i386\ncobjapi.dll
+ 2004-08-04 05:56:46 47,104 ------w c:\windows\ServicePackFiles\i386\ncprov.dll
+ 2004-08-04 05:56:46 9,728 ------w c:\windows\ServicePackFiles\i386\ncpsres.dll
+ 2004-08-04 05:56:46 17,920 ------w c:\windows\ServicePackFiles\i386\nddeapi.dll
+ 2004-08-04 05:56:56 4,096 ------w c:\windows\ServicePackFiles\i386\nddeapir.exe
+ 2004-08-04 05:56:46 18,944 ------w c:\windows\ServicePackFiles\i386\nddenb32.dll
+ 2004-08-04 04:14:30 182,912 ------w c:\windows\ServicePackFiles\i386\ndis.sys
+ 2004-08-04 04:10:14 10,880 ------w c:\windows\ServicePackFiles\i386\ndisip.sys
+ 2004-08-04 05:56:46 57,344 ------w c:\windows\ServicePackFiles\i386\ndisnpp.dll
+ 2004-08-04 04:03:14 12,928 ------w c:\windows\ServicePackFiles\i386\ndisuio.sys
+ 2004-08-04 04:14:32 91,776 ------w c:\windows\ServicePackFiles\i386\ndiswan.sys
+ 2004-08-04 05:56:56 42,496 ------w c:\windows\ServicePackFiles\i386\net.exe
+ 2004-08-04 05:56:56 124,928 ------w c:\windows\ServicePackFiles\i386\net1.exe
+ 2004-08-04 05:56:46 332,288 ------w c:\windows\ServicePackFiles\i386\netapi32.dll
+ 2004-08-04 04:03:22 34,560 ------w c:\windows\ServicePackFiles\i386\netbios.sys
+ 2004-08-04 04:14:38 162,816 ------w c:\windows\ServicePackFiles\i386\netbt.sys
+ 2004-08-04 05:56:46 622,080 ------w c:\windows\ServicePackFiles\i386\netcfgx.dll
+ 2004-08-04 05:56:56 111,104 ------w c:\windows\ServicePackFiles\i386\netdde.exe
+ 2004-08-04 05:56:46 139,264 ------w c:\windows\ServicePackFiles\i386\netid.dll
+ 2004-08-04 05:56:46 407,040 ------w c:\windows\ServicePackFiles\i386\netlogon.dll
+ 2004-08-04 05:56:46 198,144 ------w c:\windows\ServicePackFiles\i386\netman.dll
+ 2004-08-04 05:56:46 77,312 ------w c:\windows\ServicePackFiles\i386\netoc.dll
+ 2004-08-04 05:56:46 875,008 ------w c:\windows\ServicePackFiles\i386\netplwiz.dll
+ 2004-08-04 05:56:46 12,288 ------w c:\windows\ServicePackFiles\i386\netrap.dll
+ 2004-08-04 06:02:46 329,728 ------w c:\windows\ServicePackFiles\i386\netsetup.exe
+ 2004-08-04 05:56:56 86,016 ------w c:\windows\ServicePackFiles\i386\netsh.exe
+ 2004-08-04 05:56:46 1,708,032 ------w c:\windows\ServicePackFiles\i386\netshell.dll
+ 2004-08-04 05:56:56 36,864 ------w c:\windows\ServicePackFiles\i386\netstat.exe
+ 2004-08-04 05:56:46 80,896 ------w c:\windows\ServicePackFiles\i386\netui0.dll
+ 2004-08-04 05:56:46 245,760 ------w c:\windows\ServicePackFiles\i386\netui1.dll
+ 2004-08-04 03:31:42 132,695 ------w c:\windows\ServicePackFiles\i386\netwlan5.sys
+ 2004-08-04 05:56:46 248,832 ------w c:\windows\ServicePackFiles\i386\newdev.dll
+ 2004-08-04 03:58:30 61,824 ------w c:\windows\ServicePackFiles\i386\nic1394.sys
+ 2004-08-04 05:56:46 103,936 ------w c:\windows\ServicePackFiles\i386\nlhtml.dll
+ 2004-08-04 05:56:46 229,376 ------w c:\windows\ServicePackFiles\i386\nmas.dll
+ 2004-08-04 05:56:46 28,672 ------w c:\windows\ServicePackFiles\i386\nmasnt.dll
+ 2004-08-04 05:56:46 81,920 ------w c:\windows\ServicePackFiles\i386\nmchat.dll
+ 2004-08-04 05:56:46 77,824 ------w c:\windows\ServicePackFiles\i386\nmcom.dll
+ 2004-08-04 05:56:46 151,552 ------w c:\windows\ServicePackFiles\i386\nmft.dll
+ 2004-08-04 05:56:46 28,672 ------w c:\windows\ServicePackFiles\i386\nmmkcert.dll
+ 2004-08-04 03:59:52 40,320 ------w c:\windows\ServicePackFiles\i386\nmnt.sys
+ 2004-08-04 05:56:46 172,032 ------w c:\windows\ServicePackFiles\i386\nmoldwb.dll
+ 2004-08-04 05:56:46 188,416 ------w c:\windows\ServicePackFiles\i386\nmwb.dll
+ 2004-08-04 05:56:56 69,120 ------w c:\windows\ServicePackFiles\i386\notepad.exe
+ 2004-08-04 05:57:02 226,816 ------w c:\windows\ServicePackFiles\i386\npdrmv2.dll
+ 2004-08-04 05:56:46 364,544 ------w c:\windows\ServicePackFiles\i386\npdsplay.dll
+ 2004-08-04 04:00:44 30,848 ------w c:\windows\ServicePackFiles\i386\npfs.sys
+ 2004-08-04 05:56:56 15,360 ------w c:\windows\ServicePackFiles\i386\nppagent.exe
+ 2004-08-04 05:56:46 54,784 ------w c:\windows\ServicePackFiles\i386\npptools.dll
+ 2004-08-04 05:56:46 10,240 ------w c:\windows\ServicePackFiles\i386\npwmsdrm.dll
+ 2004-08-04 04:00:52 28,672 ------w c:\windows\ServicePackFiles\i386\nscirda.sys
+ 2004-08-04 05:56:56 76,800 ------w c:\windows\ServicePackFiles\i386\nslookup.exe
+ 2004-08-04 03:38:34 47,564 ------w c:\windows\ServicePackFiles\i386\ntdetect.com
+ 2004-08-04 05:56:38 708,096 ------w c:\windows\ServicePackFiles\i386\ntdll.dll
+ 2004-08-04 05:56:46 67,072 ------w c:\windows\ServicePackFiles\i386\ntdsapi.dll
+ 2004-08-04 05:56:46 212,992 ------w c:\windows\ServicePackFiles\i386\ntevt.dll
+ 2004-08-04 04:15:10 574,592 ------w c:\windows\ServicePackFiles\i386\ntfs.sys
+ 2004-08-04 03:45:10 33,840 ------w c:\windows\ServicePackFiles\i386\ntio.sys
+ 2004-08-04 03:45:16 34,560 ------w c:\windows\ServicePackFiles\i386\ntio404.sys
+ 2004-08-04 03:45:12 35,648 ------w c:\windows\ServicePackFiles\i386\ntio411.sys
+ 2004-08-04 03:45:16 35,424 ------w c:\windows\ServicePackFiles\i386\ntio412.sys
+ 2004-08-04 03:45:14 34,560 ------w c:\windows\ServicePackFiles\i386\ntio804.sys
+ 2004-08-04 04:18:32 2,148,352 ------w c:\windows\ServicePackFiles\i386\ntkrnlmp.exe
+ 2004-08-04 03:59:00 2,056,832 ------w c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
+ 2004-08-04 03:59:02 2,015,232 ------w c:\windows\ServicePackFiles\i386\ntkrpamp.exe
+ 2004-08-04 05:56:46 43,520 ------w c:\windows\ServicePackFiles\i386\ntlanman.dll
+ 2004-08-04 05:56:46 8,192 ------w c:\windows\ServicePackFiles\i386\ntlsapi.dll
+ 2004-08-04 05:56:46 118,784 ------w c:\windows\ServicePackFiles\i386\ntmarta.dll
+ 2004-08-04 05:56:46 40,960 ------w c:\windows\ServicePackFiles\i386\ntmsapi.dll
+ 2004-08-04 05:56:46 179,712 ------w c:\windows\ServicePackFiles\i386\ntmsdba.dll
+ 2004-08-04 05:56:46 488,448 ------w c:\windows\ServicePackFiles\i386\ntmsmgr.dll
+ 2004-08-04 05:56:46 435,200 ------w c:\windows\ServicePackFiles\i386\ntmssvc.dll
+ 2004-08-04 03:41:40 180,360 ------w c:\windows\ServicePackFiles\i386\ntmtlfax.sys
+ 2004-08-04 05:56:46 62,976 ------w c:\windows\ServicePackFiles\i386\ntoc.dll
+ 2004-08-04 04:20:00 2,180,992 ------w c:\windows\ServicePackFiles\i386\ntoskrnl.exe
+ 2004-08-04 05:56:46 91,136 ------w c:\windows\ServicePackFiles\i386\ntprint.dll
+ 2004-08-04 05:56:46 143,872 ------w c:\windows\ServicePackFiles\i386\ntshrui.dll
+ 2004-08-04 05:56:56 419,840 ------w c:\windows\ServicePackFiles\i386\ntvdm.exe
+ 2004-08-04 05:56:46 4,274,816 ------w c:\windows\ServicePackFiles\i386\nv4_disp.dll
+ 2004-08-04 03:29:56 1,897,408 ------w c:\windows\ServicePackFiles\i386\nv4_mini.sys
+ 2004-08-04 04:03:36 88,448 ------w c:\windows\ServicePackFiles\i386\nwlnkipx.sys
+ 2004-08-04 05:56:46 144,384 ------w c:\windows\ServicePackFiles\i386\nwprovau.dll
+ 2004-08-04 05:56:46 266,752 ------w c:\windows\ServicePackFiles\i386\oakley.dll
+ 2004-08-04 05:56:46 285,696 ------w c:\windows\ServicePackFiles\i386\objsel.dll
+ 2004-08-04 05:56:24 405,504 ------w c:\windows\ServicePackFiles\i386\obrb041b.dll
+ 2004-08-04 05:56:24 408,576 ------w c:\windows\ServicePackFiles\i386\obrb0424.dll
+ 2004-08-04 05:56:46 96,256 ------w c:\windows\ServicePackFiles\i386\occache.dll
+ 2004-08-04 05:56:46 15,872 ------w c:\windows\ServicePackFiles\i386\ocgen.dll
+ 2004-08-04 05:56:46 17,408 ------w c:\windows\ServicePackFiles\i386\ocmsn.dll
+ 2004-07-17 16:36:44 26,224 ------w c:\windows\ServicePackFiles\i386\odbc16gt.dll
+ 2004-08-04 05:56:46 249,856 ------w c:\windows\ServicePackFiles\i386\odbc32.dll
+ 2004-08-04 05:56:46 16,384 ------w c:\windows\ServicePackFiles\i386\odbc32gt.dll
+ 2004-08-04 05:56:56 32,768 ------w c:\windows\ServicePackFiles\i386\odbcad32.exe
+ 2004-08-04 05:56:46 24,576 ------w c:\windows\ServicePackFiles\i386\odbcbcp.dll
+ 2004-08-04 05:56:46 135,168 ------w c:\windows\ServicePackFiles\i386\odbcconf.dll
+ 2004-08-04 05:56:56 69,632 ------w c:\windows\ServicePackFiles\i386\odbcconf.exe
+ 2004-08-04 05:56:46 106,496 ------w c:\windows\ServicePackFiles\i386\odbccp32.dll
+ 2004-08-04 05:56:46 65,536 ------w c:\windows\ServicePackFiles\i386\odbccr32.dll
+ 2004-08-04 05:56:46 65,536 ------w c:\windows\ServicePackFiles\i386\odbccu32.dll
+ 2004-08-04 05:56:24 94,208 ------w c:\windows\ServicePackFiles\i386\odbcint.dll
+ 2004-08-04 05:56:24 53,279 ------w c:\windows\ServicePackFiles\i386\odbcji32.dll
+ 2004-08-04 05:56:46 278,559 ------w c:\windows\ServicePackFiles\i386\odbcjt32.dll
+ 2004-08-04 05:56:24 12,288 ------w c:\windows\ServicePackFiles\i386\odbcp32r.dll
+ 2004-08-04 05:56:46 147,456 ------w c:\windows\ServicePackFiles\i386\odbctrac.dll
+ 2004-08-04 05:56:46 20,511 ------w c:\windows\ServicePackFiles\i386\oddbse32.dll
+ 2004-08-04 05:56:46 20,510 ------w c:\windows\ServicePackFiles\i386\odexl32.dll
+ 2004-08-04 05:56:46 20,510 ------w c:\windows\ServicePackFiles\i386\odfox32.dll
+ 2004-08-04 05:56:46 20,510 ------w c:\windows\ServicePackFiles\i386\odpdx32.dll
+ 2004-08-04 05:56:46 20,511 ------w c:\windows\ServicePackFiles\i386\odtext32.dll
+ 2004-08-04 05:56:46 104,448 ------w c:\windows\ServicePackFiles\i386\oeimport.dll
+ 2004-08-04 05:56:56 60,416 ------w c:\windows\ServicePackFiles\i386\oemig50.exe
+ 2004-08-04 05:56:46 35,328 ------w c:\windows\ServicePackFiles\i386\oemiglib.dll
+ 2004-08-04 05:56:46 120,832 ------w c:\windows\ServicePackFiles\i386\offfilt.dll
+ 2004-08-04 04:10:10 61,056 ------w c:\windows\ServicePackFiles\i386\ohci1394.sys
+ 2004-08-04 05:56:46 1,281,536 ------w c:\windows\ServicePackFiles\i386\ole32.dll
+ 2004-08-04 05:56:46 553,472 ------w c:\windows\ServicePackFiles\i386\oleaut32.dll
+ 2004-08-04 05:56:46 487,424 ------w c:\windows\ServicePackFiles\i386\oledb32.dll
+ 2004-08-04 05:56:46 65,536 ------w c:\windows\ServicePackFiles\i386\oledb32r.dll
+ 2004-08-04 05:56:46 107,008 ------w c:\windows\ServicePackFiles\i386\oleprn.dll
+ 2004-08-04 05:56:46 83,456 ------w c:\windows\ServicePackFiles\i386\olepro32.dll
+ 2004-08-04 05:56:56 51,200 ------w c:\windows\ServicePackFiles\i386\oobebaln.exe
+ 2004-08-04 05:56:46 713,728 ------w c:\windows\ServicePackFiles\i386\opengl32.dll
+ 2004-08-04 04:00:22 166,400 ------w c:\windows\ServicePackFiles\i386\oschoice.exe
+ 2004-08-04 05:56:56 215,552 ------w c:\windows\ServicePackFiles\i386\osk.exe
+ 2004-08-04 03:59:34 230,400 ------w c:\windows\ServicePackFiles\i386\osloader.exe
+ 2004-08-04 05:56:46 67,584 ------w c:\windows\ServicePackFiles\i386\osuninst.dll
+ 2004-08-04 05:56:46 116,224 ------w c:\windows\ServicePackFiles\i386\p2p.dll
+ 2004-08-04 05:56:46 86,016 ------w c:\windows\ServicePackFiles\i386\p2pgasvc.dll
+ 2004-08-04 05:56:46 312,320 ------w c:\windows\ServicePackFiles\i386\p2pgraph.dll
+ 2004-08-04 05:56:46 88,064 ------w c:\windows\ServicePackFiles\i386\p2pnetsh.dll
+ 2004-08-04 05:56:46 526,848 ------w c:\windows\ServicePackFiles\i386\p2psvc.dll
+ 2004-08-04 03:59:20 42,496 ------w c:\windows\ServicePackFiles\i386\p3.sys
+ 2004-08-04 05:56:56 58,368 ------w c:\windows\ServicePackFiles\i386\packager.exe
+ 2004-08-04 03:59:08 80,128 ------w c:\windows\ServicePackFiles\i386\parport.sys
+ 2004-08-04 05:56:46 62,976 ------w c:\windows\ServicePackFiles\i386\pautoenr.dll
+ 2004-08-04 03:31:24 29,502 ------w c:\windows\ServicePackFiles\i386\pca200e.sys
+ 2004-08-04 05:56:46 102,400 ------w c:\windows\ServicePackFiles\i386\pchshell.dll
+ 2004-08-04 05:56:46 38,912 ------w c:\windows\ServicePackFiles\i386\pchsvc.dll
+ 2004-08-04 04:07:48 68,224 ------w c:\windows\ServicePackFiles\i386\pci.sys
+ 2004-08-04 03:59:42 25,088 ------w c:\windows\ServicePackFiles\i386\pciidex.sys
+ 2004-08-04 05:56:24 676,864 ------w c:\windows\ServicePackFiles\i386\pcl5eres.dll
+ 2004-08-04 05:56:24 169,472 ------w c:\windows\ServicePackFiles\i386\pclxl.dll
+ 2004-08-04 04:07:48 119,936 ------w c:\windows\ServicePackFiles\i386\pcmcia.sys
+ 2004-08-04 03:06:18 169,984 ------w c:\windows\ServicePackFiles\i386\pcx500.sys
+ 2004-08-04 05:56:46 283,648 ------w c:\windows\ServicePackFiles\i386\pdh.dll
+ 2004-08-04 05:56:46 39,936 ------w c:\windows\ServicePackFiles\i386\perfctrs.dll
+ 2004-08-04 05:56:46 26,624 ------w c:\windows\ServicePackFiles\i386\perfdisk.dll
+ 2004-08-04 05:56:56 15,872 ------w c:\windows\ServicePackFiles\i386\perfmon.exe
+ 2004-08-04 05:56:46 25,088 ------w c:\windows\ServicePackFiles\i386\perfos.dll
+ 2004-08-04 05:56:46 34,816 ------w c:\windows\ServicePackFiles\i386\perfproc.dll
+ 2004-08-04 04:06:56 27,904 ------w c:\windows\ServicePackFiles\i386\perm2.sys
+ 2004-08-04 05:56:24 211,712 ------w c:\windows\ServicePackFiles\i386\perm2dll.dll
+ 2004-08-04 04:06:58 28,032 ------w c:\windows\ServicePackFiles\i386\perm3.sys
+ 2004-08-04 05:56:24 259,328 ------w c:\windows\ServicePackFiles\i386\perm3dd.dll
+ 2004-08-04 05:56:46 176,128 ------w c:\windows\ServicePackFiles\i386\photowiz.dll
+ 2004-08-04 05:56:46 35,328 ------w c:\windows\ServicePackFiles\i386\pid.dll
+ 2004-08-04 04:04:42 24,064 ------w c:\windows\ServicePackFiles\i386\pidgen.dll
+ 2004-08-04 05:56:56 281,088 ------w c:\windows\ServicePackFiles\i386\pinball.exe
+ 2004-08-04 05:56:56 17,920 ------w c:\windows\ServicePackFiles\i386\ping.exe
+ 2004-08-04 05:56:46 15,360 ------w c:\windows\ServicePackFiles\i386\pjlmon.dll
+ 2004-08-04 05:56:46 44,544 ------w c:\windows\ServicePackFiles\i386\plotter.dll
+ 2004-08-04 05:56:46 52,736 ------w c:\windows\ServicePackFiles\i386\plotui.dll
+ 2004-08-04 05:56:46 39,424 ------w c:\windows\ServicePackFiles\i386\pngfilt.dll
+ 2004-08-04 05:56:46 48,640 ------w c:\windows\ServicePackFiles\i386\pnrpnsp.dll
+ 2004-08-04 05:56:46 105,472 ------w c:\windows\ServicePackFiles\i386\polstore.dll
+ 2004-08-04 04:15:50 145,792 ------w c:\windows\ServicePackFiles\i386\portcls.sys
+ 2004-08-04 05:56:56 49,152 ------w c:\windows\ServicePackFiles\i386\powercfg.exe
+ 2004-08-04 05:56:46 17,408 ------w c:\windows\ServicePackFiles\i386\powrprof.dll
+ 2004-08-04 04:00:18 17,664 ------w c:\windows\ServicePackFiles\i386\ppa3.sys
+ 2004-08-04 05:56:46 560,640 ------w c:\windows\ServicePackFiles\i386\printui.dll
+ 2004-08-04 03:59:18 35,328 ------w c:\windows\ServicePackFiles\i386\processr.sys
+ 2004-08-04 05:56:46 27,648 ------w c:\windows\ServicePackFiles\i386\profmap.dll
+ 2004-08-04 05:56:56 109,568 ------w c:\windows\ServicePackFiles\i386\progman.exe
+ 2004-08-04 05:56:56 50,176 ------w c:\windows\ServicePackFiles\i386\proquota.exe
+ 2004-08-04 05:56:46 237,056 ------w c:\windows\ServicePackFiles\i386\provthrd.dll
+ 2004-08-04 05:56:56 9,216 ------w c:\windows\ServicePackFiles\i386\proxycfg.exe
+ 2004-08-04 05:56:46 132,608 ------w c:\windows\ServicePackFiles\i386\ps5ui.dll
+ 2004-08-04 05:56:46 23,040 ------w c:\windows\ServicePackFiles\i386\psapi.dll
+ 2004-08-04 05:56:46 96,768 ------w c:\windows\ServicePackFiles\i386\psbase.dll
+ 2004-08-04 04:04:20 69,120 ------w c:\windows\ServicePackFiles\i386\psched.sys
+ 2004-08-04 05:56:46 464,384 ------w c:\windows\ServicePackFiles\i386\pscript5.dll
+ 2004-08-04 05:56:46 363,520 ------w c:\windows\ServicePackFiles\i386\psisdecd.dll
+ 2004-08-04 05:56:46 43,520 ------w c:\windows\ServicePackFiles\i386\pstorec.dll
+ 2004-08-04 05:56:46 34,304 ------w c:\windows\ServicePackFiles\i386\pstorsvc.dll
+ 2004-08-04 05:56:46 159,232 ------w c:\windows\ServicePackFiles\i386\ptpusd.dll
+ 2004-08-04 05:56:46 237,568 ------w c:\windows\ServicePackFiles\i386\qasf.dll
+ 2004-08-04 05:56:46 192,512 ------w c:\windows\ServicePackFiles\i386\qcap.dll
+ 2004-08-04 05:56:46 279,040 ------w c:\windows\ServicePackFiles\i386\qdv.dll
+ 2004-08-04 05:56:46 385,024 ------w c:\windows\ServicePackFiles\i386\qdvd.dll
+ 2004-08-04 05:56:46 562,176 ------w c:\windows\ServicePackFiles\i386\qedit.dll
+ 2004-08-04 05:56:26 733,696 ------w c:\windows\ServicePackFiles\i386\qedwipes.dll
+ 2004-08-04 04:00:06 6,016 ------w c:\windows\ServicePackFiles\i386\qic157.sys
+ 2004-08-04 05:56:46 382,464 ------w c:\windows\ServicePackFiles\i386\qmgr.dll
+ 2004-08-04 05:56:46 18,944 ------w c:\windows\ServicePackFiles\i386\qmgrprxy.dll
+ 2004-08-04 05:56:56 20,480 ------w c:\windows\ServicePackFiles\i386\qprocess.exe
+ 2004-08-04 05:56:46 1,287,680 ------w c:\windows\ServicePackFiles\i386\quartz.dll
+ 2004-08-04 05:56:46 1,435,648 ------w c:\windows\ServicePackFiles\i386\query.dll
+ 2004-08-04 05:56:46 43,520 ------w c:\windows\ServicePackFiles\i386\racpldlg.dll
+ 2004-08-04 04:00:52 20,736 ------w c:\windows\ServicePackFiles\i386\ramdisk.sys
+ 2004-08-04 05:56:46 8,192 ------w c:\windows\ServicePackFiles\i386\rasadhlp.dll
+ 2004-08-04 05:56:46 236,544 ------w c:\windows\ServicePackFiles\i386\rasapi32.dll
+ 2004-08-04 05:56:46 89,088 ------w c:\windows\ServicePackFiles\i386\rasauto.dll
+ 2004-08-04 05:56:46 69,632 ------w c:\windows\ServicePackFiles\i386\raschap.dll
+ 2004-08-04 05:56:46 657,920 ------w c:\windows\ServicePackFiles\i386\rasdlg.dll
+ 2004-08-04 04:14:24 51,328 ------w c:\windows\ServicePackFiles\i386\rasl2tp.sys
+ 2004-08-04 05:56:46 61,440 ------w c:\windows\ServicePackFiles\i386\rasman.dll
+ 2004-08-04 05:56:46 174,080 ------w c:\windows\ServicePackFiles\i386\rasmans.dll
+ 2004-08-04 05:56:56 56,832 ------w c:\windows\ServicePackFiles\i386\rasphone.exe
+ 2004-08-04 05:56:46 206,336 ------w c:\windows\ServicePackFiles\i386\rasppp.dll
+ 2004-08-04 04:05:08 41,472 ------w c:\windows\ServicePackFiles\i386\raspppoe.sys
+ 2004-08-04 04:14:28 48,384 ------w c:\windows\ServicePackFiles\i386\raspptp.sys
+ 2004-08-04 05:56:46 16,896 ------w c:\windows\ServicePackFiles\i386\rassapi.dll
+ 2004-08-04 05:56:46 58,880 ------w c:\windows\ServicePackFiles\i386\rastapi.dll
+ 2004-08-04 05:56:46 112,128 ------w c:\windows\ServicePackFiles\i386\rastls.dll
+ 2004-08-04 05:56:46 102,400 ------w c:\windows\ServicePackFiles\i386\rcbdyctl.dll
+ 2004-08-04 05:56:56 35,840 ------w c:\windows\ServicePackFiles\i386\rcimlby.exe
+ 2004-08-04 05:56:56 21,504 ------w c:\windows\ServicePackFiles\i386\rcp.exe
+ 2004-08-04 04:20:08 176,512 ------w c:\windows\ServicePackFiles\i386\rdbss.sys
+ 2004-08-04 05:56:46 147,968 ------w c:\windows\ServicePackFiles\i386\rdchost.dll
+ 2004-08-04 05:56:56 62,464 ------w c:\windows\ServicePackFiles\i386\rdpclip.exe
+ 2004-08-04 06:01:08 92,168 ------w c:\windows\ServicePackFiles\i386\rdpdd.dll
+ 2004-08-04 04:01:16 196,864 ------w c:\windows\ServicePackFiles\i386\rdpdr.sys
+ 2004-08-04 05:56:46 19,968 ------w c:\windows\ServicePackFiles\i386\rdpsnd.dll
+ 2004-08-04 06:01:10 139,400 ------w c:\windows\ServicePackFiles\i386\rdpwd.sys
+ 2004-08-04 06:01:10 87,176 ------w c:\windows\ServicePackFiles\i386\rdpwsx.dll
+ 2004-08-04 05:56:56 13,824 ------w c:\windows\ServicePackFiles\i386\rdsaddin.exe
+ 2004-08-04 05:56:56 67,072 ------w c:\windows\ServicePackFiles\i386\rdshost.exe
+ 2004-08-04 03:41:40 13,776 ------w c:\windows\ServicePackFiles\i386\recagent.sys
+ 2004-08-04 03:59:38 57,472 ------w c:\windows\ServicePackFiles\i386\redbook.sys
+ 2004-08-04 03:48:46 3,338 ------w c:\windows\ServicePackFiles\i386\redir.exe
+ 2004-08-04 05:56:56 50,176 ------w c:\windows\ServicePackFiles\i386\reg.exe
+ 2004-08-04 05:56:46 49,664 ------w c:\windows\ServicePackFiles\i386\regapi.dll
+ 2004-08-04 05:56:56 146,432 ------w c:\windows\ServicePackFiles\i386\regedit.exe
+ 2004-08-04 05:56:46 59,904 ------w c:\windows\ServicePackFiles\i386\regsvc.dll
+ 2004-08-04 05:56:56 11,776 ------w c:\windows\ServicePackFiles\i386\regsvr32.exe
+ 2004-08-04 05:56:46 397,824 ------w c:\windows\ServicePackFiles\i386\regwizc.dll
+ 2004-08-04 05:56:46 60,416 ------w c:\windows\ServicePackFiles\i386\remotepg.dll
+ 2004-08-04 05:56:46 177,152 ------w c:\windows\ServicePackFiles\i386\repdrvfs.dll
+ 2004-08-04 05:56:46 58,880 ------w c:\windows\ServicePackFiles\i386\resutils.dll
+ 2004-08-04 05:56:56 13,824 ------w c:\windows\ServicePackFiles\i386\rexec.exe
+ 2004-08-04 04:10:40 59,648 ------w c:\windows\ServicePackFiles\i386\rfcomm.sys
+ 2004-08-04 05:56:46 123,392 ------w c:\windows\ServicePackFiles\i386\riafres.dll
+ 2004-08-04 05:56:46 11,776 ------w c:\windows\ServicePackFiles\i386\riafui1.dll
+ 2004-08-04 05:56:46 11,776 ------w c:\windows\ServicePackFiles\i386\riafui2.dll
+ 2004-08-04 05:56:46 431,616 ------w c:\windows\ServicePackFiles\i386\riched20.dll
+ 2004-08-04 04:04:32 30,080 ------w c:\windows\ServicePackFiles\i386\rndismp.sys
+ 2004-08-04 04:04:32 30,080 ------w c:\windows\ServicePackFiles\i386\rndismpx.sys
+ 2004-08-04 03:59:12 79,104 ------w c:\windows\ServicePackFiles\i386\rocket.sys
+ 2004-08-04 05:56:46 581,120 ------w c:\windows\ServicePackFiles\i386\rpcrt4.dll
+ 2004-08-04 05:56:46 395,776 ------w c:\windows\ServicePackFiles\i386\rpcss.dll
+ 2004-08-04 05:56:46 61,440 ------w c:\windows\ServicePackFiles\i386\rrcm.dll
+ 2004-08-04 03:31:44 152,576 ------w c:\windows\ServicePackFiles\i386\rsaenh.dll
+ 2004-08-04 05:56:56 14,848 ------w c:\windows\ServicePackFiles\i386\rsh.exe
+ 2004-08-04 05:56:46 39,936 ------w c:\windows\ServicePackFiles\i386\rshx32.dll
+ 2004-08-04 05:56:46 18,944 ------w c:\windows\ServicePackFiles\i386\rsmps.dll
+ 2004-08-04 05:56:56 380,416 ------w c:\windows\ServicePackFiles\i386\rstrui.exe
+ 2004-08-04 05:56:56 77,312 ------w c:\windows\ServicePackFiles\i386\rtcshare.exe
+ 2004-08-04 05:56:46 31,744 ------w c:\windows\ServicePackFiles\i386\rtipxmib.dll
+ 2004-08-04 03:31:34 20,992 ------w c:\windows\ServicePackFiles\i386\rtl8139.sys
+ 2004-08-04 05:56:46 44,032 ------w c:\windows\ServicePackFiles\i386\rtutils.dll
+ 2004-08-04 05:56:56 33,280 ------w c:\windows\ServicePackFiles\i386\rundll32.exe
+ 2004-08-04 05:56:56 14,336 ------w c:\windows\ServicePackFiles\i386\runonce.exe
+ 2004-08-04 05:56:46 397,056 ------w c:\windows\ServicePackFiles\i386\s3gnb.dll
+ 2004-08-04 03:29:52 166,912 ------w c:\windows\ServicePackFiles\i386\s3gnbm.sys
+ 2004-08-04 05:56:46 43,520 ------w c:\windows\ServicePackFiles\i386\safrcdlg.dll
+ 2004-08-04 05:56:46 29,696 ------w c:\windows\ServicePackFiles\i386\safrdm.dll
+ 2004-08-04 05:56:46 45,568 ------w c:\windows\ServicePackFiles\i386\safrslv.dll
+ 2004-08-04 05:56:46 64,000 ------w c:\windows\ServicePackFiles\i386\samlib.dll
+ 2004-08-04 05:56:46 415,744 ------w c:\windows\ServicePackFiles\i386\samsrv.dll
+ 2004-08-04 05:56:46 741,376 ------w c:\windows\ServicePackFiles\i386\sapi.dll
+ 2004-08-04 05:56:56 13,312 ------w c:\windows\ServicePackFiles\i386\savedump.exe
+ 2004-08-04 05:56:46 270,848 ------w c:\windows\ServicePackFiles\i386\sbe.dll
+ 2004-08-04 05:56:46 159,232 ------w c:\windows\ServicePackFiles\i386\sbeio.dll
+ 2004-08-04 03:59:58 43,136 ------w c:\windows\ServicePackFiles\i386\sbp2port.sys
+ 2004-08-04 05:56:46 69,632 ------w c:\windows\ServicePackFiles\i386\scarddlg.dll
+ 2004-08-04 05:56:56 95,744 ------w c:\windows\ServicePackFiles\i386\scardsvr.exe
+ 2004-08-04 03:31:44 169,984 ------w c:\windows\ServicePackFiles\i386\sccbase.dll
+ 2004-08-04 05:56:46 171,008 ------w c:\windows\ServicePackFiles\i386\sccsccp.dll
+ 2004-08-04 05:56:46 180,224 ------w c:\windows\ServicePackFiles\i386\scecli.dll
+ 2004-08-04 05:56:46 313,856 ------w c:\windows\ServicePackFiles\i386\scesrv.dll
+ 2004-08-04 05:56:46 144,896 ------w c:\windows\ServicePackFiles\i386\schannel.dll
+ 2004-08-04 05:56:46 190,976 ------w c:\windows\ServicePackFiles\i386\schedsvc.dll
+ 2004-08-04 05:56:46 20,992 ------w c:\windows\ServicePackFiles\i386\sclgntfy.dll
+ 2004-08-04 05:56:56 36,864 ------w c:\windows\ServicePackFiles\i386\scrcons.exe
+ 2004-08-04 05:56:46 202,752 ------w c:\windows\ServicePackFiles\i386\script.dll
+ 2004-08-04 05:56:46 188,416 ------w c:\windows\ServicePackFiles\i386\script_a.dll
+ 2004-08-04 05:56:58 9,216 ------w c:\windows\ServicePackFiles\i386\scrnsave.scr
+ 2004-08-04 05:56:46 159,744 ------w c:\windows\ServicePackFiles\i386\scrobj.dll
+ 2004-08-04 05:56:46 151,552 ------w c:\windows\ServicePackFiles\i386\scrrun.dll
+ 2004-08-04 03:59:42 96,256 ------w c:\windows\ServicePackFiles\i386\scsiport.sys
+ 2004-08-04 05:56:56 77,312 ------w c:\windows\ServicePackFiles\i386\sdbinst.exe
+ 2004-08-04 04:07:48 67,584 ------w c:\windows\ServicePackFiles\i386\sdbus.sys
+ 2004-08-04 05:56:46 29,184 ------w c:\windows\ServicePackFiles\i386\sdhcinst.dll
+ 2004-07-17 16:36:38 27,440 ------w c:\windows\ServicePackFiles\i386\secdrv.sys
+ 2004-08-04 05:56:46 18,944 ------w c:\windows\ServicePackFiles\i386\seclogon.dll
+ 2004-08-02 19:20:40 4,569 ------w c:\windows\ServicePackFiles\i386\secupd.dat
+ 2004-08-04 05:56:46 55,808 ------w c:\windows\ServicePackFiles\i386\secur32.dll
+ 2004-08-04 05:56:46 5,632 ------w c:\windows\ServicePackFiles\i386\security.dll
+ 2004-08-04 05:56:46 29,184 ------w c:\windows\ServicePackFiles\i386\sendcmsg.dll
+ 2004-08-04 05:56:46 55,296 ------w c:\windows\ServicePackFiles\i386\sendmail.dll
+ 2004-08-04 05:56:46 38,912 ------w c:\windows\ServicePackFiles\i386\sens.dll
+ 2004-08-04 05:56:46 6,656 ------w c:\windows\ServicePackFiles\i386\sensapi.dll
+ 2004-08-04 03:59:08 15,488 ------w c:\windows\ServicePackFiles\i386\serenum.sys
+ 2004-08-04 04:15:54 64,896 ------w c:\windows\ServicePackFiles\i386\serial.sys
+ 2004-08-04 05:56:46 56,320 ------w c:\windows\ServicePackFiles\i386\servdeps.dll
+ 2004-08-04 05:56:56 108,032 ------w c:\windows\ServicePackFiles\i386\services.exe
+ 2004-08-04 05:56:58 140,800 ------w c:\windows\ServicePackFiles\i386\sessmgr.exe
+ 2004-08-04 05:56:58 31,232 ------w c:\windows\ServicePackFiles\i386\sethc.exe
+ 2004-08-04 05:56:58 23,040 ------w c:\windows\ServicePackFiles\i386\setup.exe
+ 2004-08-04 05:56:58 774,144 ------w c:\windows\ServicePackFiles\i386\setup_wm.exe
+ 2004-08-04 05:56:58 73,216 ------w c:\windows\ServicePackFiles\i386\setup50.exe
+ 2004-08-04 05:56:46 983,552 ------w c:\windows\ServicePackFiles\i386\setupapi.dll
+ 2004-08-04 05:56:46 101,376 ------w c:\windows\ServicePackFiles\i386\setupqry.dll
+ 2004-08-04 05:56:46 5,120 ------w c:\windows\ServicePackFiles\i386\sfc.dll
+ 2004-08-04 05:56:46 140,288 ------w c:\windows\ServicePackFiles\i386\sfc_os.dll
+ 2004-08-04 05:56:46 1,580,544 ------w c:\windows\ServicePackFiles\i386\sfcfiles.dll
+ 2004-08-04 03:59:56 11,136 ------w c:\windows\ServicePackFiles\i386\sffdisk.sys
+ 2004-08-04 03:59:56 10,240 ------w c:\windows\ServicePackFiles\i386\sffp_sd.sys
+ 2004-08-04 03:59:56 11,392 ------w c:\windows\ServicePackFiles\i386\sfloppy.sys
+ 2004-08-04 05:56:28 549,376 ------w c:\windows\ServicePackFiles\i386\shdoclc.dll
+ 2004-08-04 05:56:46 1,483,264 ------w c:\windows\ServicePackFiles\i386\shdocvw.dll
+ 2004-08-04 05:56:46 8,384,000 ------w c:\windows\ServicePackFiles\i386\shell32.dll
+ 2004-08-04 05:56:46 25,088 ------w c:\windows\ServicePackFiles\i386\shfolder.dll
+ 2004-08-04 05:56:46 68,096 ------w c:\windows\ServicePackFiles\i386\shgina.dll
+ 2004-08-04 05:56:46 65,536 ------w c:\windows\ServicePackFiles\i386\shimeng.dll
+ 2004-08-04 05:56:46 438,272 ------w c:\windows\ServicePackFiles\i386\shimgvw.dll
+ 2004-08-04 05:56:46 473,600 ------w c:\windows\ServicePackFiles\i386\shlwapi.dll
+ 2004-08-04 05:56:46 151,552 ------w c:\windows\ServicePackFiles\i386\shmedia.dll
+ 2004-08-04 05:56:58 42,496 ------w c:\windows\ServicePackFiles\i386\shmgrate.exe
+ 2004-08-04 05:56:58 77,824 ------w c:\windows\ServicePackFiles\i386\shrpubw.exe
+ 2004-08-04 05:56:46 27,648 ------w c:\windows\ServicePackFiles\i386\shscrap.dll
+ 2004-08-04 05:56:46 134,656 ------w c:\windows\ServicePackFiles\i386\shsvcs.dll
+ 2004-08-04 05:56:46 20,536 ------w c:\windows\ServicePackFiles\i386\shtml.dll
+ 2004-08-04 05:56:58 16,437 ------w c:\windows\ServicePackFiles\i386\shtml.exe
+ 2004-08-04 05:56:58 19,456 ------w c:\windows\ServicePackFiles\i386\shutdown.exe
+ 2004-08-04 05:56:46 13,312 ------w c:\windows\ServicePackFiles\i386\sigtab.dll
+ 2004-08-04 05:56:58 70,144 ------w c:\windows\ServicePackFiles\i386\sigverif.exe
+ 2004-08-04 05:56:46 3,901 ------w c:\windows\ServicePackFiles\i386\siint5.dll
+ 2004-08-04 04:07:44 41,088 ------w c:\windows\ServicePackFiles\i386\sisagp.sys
+ 2004-08-04 03:31:36 32,768 ------w c:\windows\ServicePackFiles\i386\sisnic.sys
+ 2004-08-04 05:56:58 26,112 ------w c:\windows\ServicePackFiles\i386\skeys.exe
+ 2004-08-04 03:31:42 63,547 ------w c:\windows\ServicePackFiles\i386\sla30nd5.sys
+ 2004-08-04 05:56:46 25,088 ------w c:\windows\ServicePackFiles\i386\slayerxp.dll
+ 2004-08-04 03:31:44 306,176 ------w c:\windows\ServicePackFiles\i386\slbcsp.dll
+ 2004-08-04 05:56:46 98,304 ------w c:\windows\ServicePackFiles\i386\slbiop.dll
+ 2004-08-04 05:56:46 73,832 ------w c:\windows\ServicePackFiles\i386\slcoinst.dll
+ 2004-08-04 05:56:46 286,792 ------w c:\windows\ServicePackFiles\i386\slextspk.dll
+ 2004-08-04 05:56:46 188,508 ------w c:\windows\ServicePackFiles\i386\slgen.dll
+ 2004-08-04 04:10:18 11,136 ------w c:\windows\ServicePackFiles\i386\slip.sys
+ 2004-08-04 03:41:42 129,535 ------w c:\windows\ServicePackFiles\i386\slnt7554.sys
+ 2004-08-04 03:41:44 404,990 ------w c:\windows\ServicePackFiles\i386\slntamr.sys
+ 2004-08-04 03:41:46 95,424 ------w c:\windows\ServicePackFiles\i386\slnthal.sys
+ 2004-08-04 05:56:58 32,866 ------w c:\windows\ServicePackFiles\i386\slrundll.exe
+ 2004-08-04 05:56:58 73,796 ------w c:\windows\ServicePackFiles\i386\slserv.exe
+ 2004-08-04 03:41:46 13,240 ------w c:\windows\ServicePackFiles\i386\slwdmsup.sys
+ 2004-08-04 04:07:38 6,016 ------w c:\windows\ServicePackFiles\i386\smbali.sys
+ 2004-08-04 04:07:36 16,128 ------w c:\windows\ServicePackFiles\i386\smbbatt.sys
+ 2004-08-04 04:07:36 6,912 ------w c:\windows\ServicePackFiles\i386\smbclass.sys
+ 2004-08-04 05:56:58 8,192 ------w c:\windows\ServicePackFiles\i386\smbinst.exe
+ 2004-08-04 05:56:58 236,544 ------w c:\windows\ServicePackFiles\i386\smi2smir.exe
+ 2004-08-04 05:56:46 363,008 ------w c:\windows\ServicePackFiles\i386\smlogcfg.dll
+ 2004-08-04 05:56:58 89,600 ------w c:\windows\ServicePackFiles\i386\smlogsvc.exe
+ 2004-08-04 05:56:58 50,688 ------w c:\windows\ServicePackFiles\i386\smss.exe
+ 2004-08-04 05:56:46 456,704 ------w c:\windows\ServicePackFiles\i386\smtpsvc.dll
+ 2004-08-04 05:56:58 131,584 ------w c:\windows\ServicePackFiles\i386\sndrec32.exe
+ 2004-08-04 05:56:46 34,816 ------w c:\windows\ServicePackFiles\i386\sniffpol.dll
+ 2004-08-04 05:56:58 32,768 ------w c:\windows\ServicePackFiles\i386\snmp.exe
+ 2004-08-04 05:56:46 18,944 ------w c:\windows\ServicePackFiles\i386\snmpapi.dll
+ 2004-08-04 05:56:46 259,072 ------w c:\windows\ServicePackFiles\i386\snmpcl.dll
+ 2004-08-04 05:56:46 358,400 ------w c:\windows\ServicePackFiles\i386\snmpincl.dll
+ 2004-08-04 05:56:46 6,144 ------w c:\windows\ServicePackFiles\i386\snmpmib.dll
+ 2004-08-04 05:56:46 188,416 ------w c:\windows\ServicePackFiles\i386\snmpsmir.dll
+ 2004-08-04 05:56:46 182,272 ------w c:\windows\ServicePackFiles\i386\snmpsnap.dll
+ 2004-08-04 05:56:46 40,448 ------w c:\windows\ServicePackFiles\i386\snmpthrd.dll
+ 2004-08-04 05:56:58 8,704 ------w c:\windows\ServicePackFiles\i386\snmptrap.exe
+ 2004-08-04 05:56:46 130,048 ------w c:\windows\ServicePackFiles\i386\softkbd.dll
+ 2004-08-04 04:00:06 7,552 ------w c:\windows\ServicePackFiles\i386\sonyait.sys
+ 2004-08-04 04:09:56 25,472 ------w c:\windows\ServicePackFiles\i386\sonydcam.sys
+ 2004-08-04 05:56:58 8,192 ------w c:\windows\ServicePackFiles\i386\spdwnwxp.exe
+ 2004-08-04 05:56:30 62,976 ------w c:\windows\ServicePackFiles\i386\spgrmr.dll
+ 2004-08-04 05:56:58 538,624 ------w c:\windows\ServicePackFiles\i386\spider.exe
+ 2004-08-04 04:07:48 6,400 ------w c:\windows\ServicePackFiles\i386\splitter.sys
+ 2004-08-04 05:56:58 11,776 ------w c:\windows\ServicePackFiles\i386\spnpinst.exe
+ 2004-08-04 05:56:46 74,752 ------w c:\windows\ServicePackFiles\i386\spoolss.dll
+ 2004-08-04 05:56:58 57,856 ------w c:\windows\ServicePackFiles\i386\spoolsv.exe
+ 2004-08-04 05:56:30 193,024 ------w c:\windows\ServicePackFiles\i386\spra041b.dll
+ 2004-08-04 05:56:30 192,512 ------w c:\windows\ServicePackFiles\i386\spra0424.dll
+ 2004-08-04 05:56:30 757,248 ------w c:\windows\ServicePackFiles\i386\sprb041b.dll
+ 2004-08-04 05:56:32 732,160 ------w c:\windows\ServicePackFiles\i386\sprb0424.dll
+ 2004-08-04 05:56:46 250,880 ------w c:\windows\ServicePackFiles\i386\sptip.dll
+ 2004-08-04 05:56:58 21,504 ------w c:\windows\ServicePackFiles\i386\spupdwxp.exe
+ 2004-08-04 05:56:46 151,552 ------w c:\windows\ServicePackFiles\i386\sqldb20.dll
+ 2004-08-04 05:56:46 528,384 ------w c:\windows\ServicePackFiles\i386\sqloledb.dll
+ 2004-08-04 05:56:46 462,848 ------w c:\windows\ServicePackFiles\i386\sqlqp20.dll
+ 2004-08-04 05:56:46 110,592 ------w c:\windows\ServicePackFiles\i386\sqlse20.dll
+ 2004-08-04 05:56:46 442,368 ------w c:\windows\ServicePackFiles\i386\sqlsrv32.dll
+ 2004-08-04 05:56:46 180,800 ------w c:\windows\ServicePackFiles\i386\sqlunirl.dll
+ 2004-08-04 05:56:46 217,088 ------w c:\windows\ServicePackFiles\i386\sqlxmlx.dll
+ 2004-08-04 04:06:26 73,472 ------w c:\windows\ServicePackFiles\i386\sr.sys
+ 2004-08-04 05:56:46 58,434 ------w c:\windows\ServicePackFiles\i386\srchctls.dll
+ 2004-08-04 05:56:46 725,566 ------w c:\windows\ServicePackFiles\i386\srchui.dll
+ 2004-08-04 05:56:46 67,584 ------w c:\windows\ServicePackFiles\i386\srclient.dll
+ 2004-08-04 05:56:46 239,104 ------w c:\windows\ServicePackFiles\i386\srrstr.dll
+ 2004-08-04 05:56:46 170,496 ------w c:\windows\ServicePackFiles\i386\srsvc.dll
+ 2004-08-04 04:14:46 336,256 ------w c:\windows\ServicePackFiles\i386\srv.sys
+ 2004-08-04 05:56:46 96,768 ------w c:\windows\ServicePackFiles\i386\srvsvc.dll
+ 2004-08-04 05:56:58 704,512 ------w c:\windows\ServicePackFiles\i386\ss3dfo.scr
+ 2004-08-04 05:56:58 19,968 ------w c:\windows\ServicePackFiles\i386\ssbezier.scr
+ 2004-08-04 05:56:46 34,816 ------w c:\windows\ServicePackFiles\i386\ssdpapi.dll
+ 2004-08-04 05:56:46 71,680 ------w c:\windows\ServicePackFiles\i386\ssdpsrv.dll
+ 2004-08-04 05:56:58 393,216 ------w c:\windows\ServicePackFiles\i386\ssflwbox.scr
+ 2004-08-04 05:56:58 20,992 ------w c:\windows\ServicePackFiles\i386\ssmarque.scr
+ 2004-08-04 05:56:58 47,104 ------w c:\windows\ServicePackFiles\i386\ssmypics.scr
+ 2004-08-04 05:56:58 18,944 ------w c:\windows\ServicePackFiles\i386\ssmyst.scr
+ 2004-08-04 05:56:58 610,304 ------w c:\windows\ServicePackFiles\i386\sspipes.scr
+ 2004-08-04 05:56:58 14,336 ------w c:\windows\ServicePackFiles\i386\ssstars.scr
+ 2004-08-04 05:56:58 679,936 ------w c:\windows\ServicePackFiles\i386\sstext3d.scr
+ 2004-08-04 05:56:46 33,280 ------w c:\windows\ServicePackFiles\i386\sstub.dll
+ 2004-08-04 05:56:46 22,016 ------w c:\windows\ServicePackFiles\i386\startoc.dll
+ 2004-08-04 05:56:46 86,528 ------w c:\windows\ServicePackFiles\i386\stdprov.dll
+ 2004-08-04 05:56:46 67,584 ------w c:\windows\ServicePackFiles\i386\sti.dll
+ 2004-08-04 05:56:46 136,704 ------w c:\windows\ServicePackFiles\i386\sti_ci.dll
+ 2004-08-04 05:56:58 14,848 ------w c:\windows\ServicePackFiles\i386\stimon.exe
+ 2004-08-04 05:56:46 121,856 ------w c:\windows\ServicePackFiles\i386\stobject.dll
+ 2004-08-04 05:56:46 74,752 ------w c:\windows\ServicePackFiles\i386\storprop.dll
+ 2004-08-04 04:08:04 48,640 ------w c:\windows\ServicePackFiles\i386\stream.sys
+ 2004-08-04 04:10:14 15,360 ------w c:\windows\ServicePackFiles\i386\streamip.sys
+ 2004-08-04 05:56:46 246,302 ------w c:\windows\ServicePackFiles\i386\strmdll.dll
+ 2004-08-04 05:56:46 75,776 ------w c:\windows\ServicePackFiles\i386\strmfilt.dll
+ 2004-08-04 05:56:58 16,449 ------w c:\windows\ServicePackFiles\i386\stub_fpsrvadm.exe
+ 2004-08-04 05:56:58 65,601 ------w c:\windows\ServicePackFiles\i386\stub_fpsrvwin.exe
+ 2004-08-04 05:56:58 14,336 ------w c:\windows\ServicePackFiles\i386\svchost.exe
+ 2004-08-04 03:58:42 4,352 ------w c:\windows\ServicePackFiles\i386\swenum.sys
+ 2004-08-04 05:56:48 713,216 ------w c:\windows\ServicePackFiles\i386\sxs.dll
+ 2004-08-04 05:56:48 57,856 ------w c:\windows\ServicePackFiles\i386\synceng.dll
+ 2004-08-04 05:56:48 191,488 ------w c:\windows\ServicePackFiles\i386\syncui.dll
+ 2004-08-04 04:15:56 60,800 ------w c:\windows\ServicePackFiles\i386\sysaudio.sys
+ 2004-08-04 05:56:48 168,960 ------w c:\windows\ServicePackFiles\i386\sysmod.dll
+ 2004-08-04 05:56:48 155,648 ------w c:\windows\ServicePackFiles\i386\sysmod_a.dll
+ 2004-08-04 05:56:58 105,984 ------w c:\windows\ServicePackFiles\i386\sysocmgr.exe
+ 2004-08-04 05:56:48 984,576 ------w c:\windows\ServicePackFiles\i386\syssetup.dll
+ 2004-08-04 05:56:48 210,432 ------w c:\windows\ServicePackFiles\i386\t2embed.dll
+ 2004-08-04 04:00:00 14,976 ------w c:\windows\ServicePackFiles\i386\tape.sys
+ 2004-08-04 05:56:48 858,624 ------w c:\windows\ServicePackFiles\i386\tapi3.dll
+ 2004-08-04 05:56:48 181,760 ------w c:\windows\ServicePackFiles\i386\tapi32.dll
+ 2004-08-04 05:56:48 246,272 ------w c:\windows\ServicePackFiles\i386\tapisrv.dll
+ 2004-08-04 05:56:58 135,680 ------w c:\windows\ServicePackFiles\i386\taskmgr.exe
+ 2004-08-04 04:14:42 359,040 ------w c:\windows\ServicePackFiles\i386\tcpip.sys
+ 2004-08-04 04:07:46 223,616 ------w c:\windows\ServicePackFiles\i386\tcpip6.sys
+ 2004-08-04 05:56:48 14,848 ------w c:\windows\ServicePackFiles\i386\tcpmib.dll
+ 2004-08-04 05:56:48 45,568 ------w c:\windows\ServicePackFiles\i386\tcpmon.dll
+ 2004-08-04 05:56:48 45,568 ------w c:\windows\ServicePackFiles\i386\tcpmonui.dll
+ 2004-08-04 05:56:58 32,827 ------w c:\windows\ServicePackFiles\i386\tcptest.exe
+ 2004-08-04 05:56:36 16,384 ------w c:\windows\ServicePackFiles\i386\tcptsat.dll
+ 2004-08-04 04:07:50 18,560 ------w c:\windows\ServicePackFiles\i386\tdi.sys
+ 2004-08-04 06:01:08 12,040 ------w c:\windows\ServicePackFiles\i386\tdpipe.sys
+ 2004-08-04 06:01:08 21,896 ------w c:\windows\ServicePackFiles\i386\tdtcp.sys
+ 2004-08-04 05:56:58 75,264 ------w c:\windows\ServicePackFiles\i386\telnet.exe
+ 2004-08-04 06:01:08 40,840 ------w c:\windows\ServicePackFiles\i386\termdd.sys
+ 2004-08-04 05:56:48 358,400 ------w c:\windows\ServicePackFiles\i386\termmgr.dll
+ 2004-08-04 05:56:48 295,424 ------w c:\windows\ServicePackFiles\i386\termsrv.dll
+ 2004-08-04 04:00:06 149,376 ------w c:\windows\ServicePackFiles\i386\tffsport.sys
+ 2004-08-04 05:56:48 385,536 ------w c:\windows\ServicePackFiles\i386\themeui.dll
+ 2004-08-04 05:56:58 347,136 ------w c:\windows\ServicePackFiles\i386\tourstrt.exe
+ 2004-08-04 05:56:58 82,432 ------w c:\windows\ServicePackFiles\i386\tp4mon.exe
+ 2004-08-04 05:56:58 12,288 ------w c:\windows\ServicePackFiles\i386\tracert.exe
+ 2004-08-04 05:56:48 153,088 ------w c:\windows\ServicePackFiles\i386\triedit.dll
+ 2004-08-04 05:56:48 90,624 ------w c:\windows\ServicePackFiles\i386\trkwks.dll
+ 2004-08-04 05:56:48 93,696 ------w c:\windows\ServicePackFiles\i386\tscfgwmi.dll
+ 2004-08-04 03:59:28 44,544 ------w c:\windows\ServicePackFiles\i386\tscupgrd.exe
+ 2004-08-04 06:01:08 12,168 ------w c:\windows\ServicePackFiles\i386\tsddd.dll
+ 2004-08-04 05:56:48 279,040 ------w c:\windows\ServicePackFiles\i386\tshoot.dll
+ 2004-08-04 05:56:48 121,856 ------w c:\windows\ServicePackFiles\i386\tsoc.dll
+ 2004-08-04 05:56:48 8,704 ------w c:\windows\ServicePackFiles\i386\tty.dll
+ 2004-08-04 05:56:36 39,936 ------w c:\windows\ServicePackFiles\i386\ttyres.dll
+ 2004-08-04 05:56:48 16,384 ------w c:\windows\ServicePackFiles\i386\ttyui.dll
+ 2004-08-04 04:03:18 12,416 ------w c:\windows\ServicePackFiles\i386\tunmp.sys
+ 2004-08-04 05:56:48 50,688 ------w c:\windows\ServicePackFiles\i386\twain_32.dll
+ 2004-08-04 05:56:48 44,032 ------w c:\windows\ServicePackFiles\i386\twext.dll
+ 2004-08-04 05:56:48 101,376 ------w c:\windows\ServicePackFiles\i386\txflog.dll
+ 2004-08-04 04:07:44 44,672 ------w c:\windows\ServicePackFiles\i386\uagp35.sys
+ 2004-08-04 04:00:32 66,176 ------w c:\windows\ServicePackFiles\i386\udfs.sys
+ 2004-08-04 05:56:48 25,600 ------w c:\windows\ServicePackFiles\i386\udhisapi.dll
+ 2004-08-04 05:56:48 275,456 ------w c:\windows\ServicePackFiles\i386\ulib.dll
+ 2004-08-04 05:56:48 35,840 ------w c:\windows\ServicePackFiles\i386\umandlg.dll
+ 2004-08-04 05:56:48 118,272 ------w c:\windows\ServicePackFiles\i386\umpnpmgr.dll
+ 2004-08-04 05:56:48 264,704 ------w c:\windows\ServicePackFiles\i386\unidrv.dll
+ 2004-08-04 05:56:48 197,120 ------w c:\windows\ServicePackFiles\i386\unidrvui.dll
+ 2004-08-04 05:56:48 74,240 ------w c:\windows\ServicePackFiles\i386\unimdmat.dll
+ 2004-08-04 05:56:48 13,824 ------w c:\windows\ServicePackFiles\i386\uniplat.dll
+ 2004-08-04 05:56:36 619,520 ------w c:\windows\ServicePackFiles\i386\unires.dll
+ 2004-08-04 05:56:58 208,896 ------w c:\windows\ServicePackFiles\i386\unregmp2.exe
+ 2004-08-04 05:56:48 316,416 ------w c:\windows\ServicePackFiles\i386\untfs.dll
+ 2004-08-04 03:58:34 209,408 ------w c:\windows\ServicePackFiles\i386\update.sys
+ 2004-08-04 05:56:58 150,528 ------w c:\windows\ServicePackFiles\i386\uploadm.exe
+ 2004-08-04 05:56:48 132,608 ------w c:\windows\ServicePackFiles\i386\upnp.dll
+ 2004-08-04 05:56:58 16,896 ------w c:\windows\ServicePackFiles\i386\upnpcont.exe
+ 2004-08-04 05:56:48 185,344 ------w c:\windows\ServicePackFiles\i386\upnphost.dll
+ 2004-08-04 05:56:48 239,616 ------w c:\windows\ServicePackFiles\i386\upnpui.dll
+ 2004-08-04 05:56:58 18,432 ------w c:\windows\ServicePackFiles\i386\ups.exe
+ 2004-08-04 05:56:48 37,888 ------w c:\windows\ServicePackFiles\i386\url.dll
+ 2004-08-04 05:56:48 601,088 ------w c:\windows\ServicePackFiles\i386\urlmon.dll
+ 2004-08-04 03:31:26 32,384 ------w c:\windows\ServicePackFiles\i386\usb101et.sys
+ 2004-08-04 04:04:34 12,672 ------w c:\windows\ServicePackFiles\i386\usb8023.sys
+ 2004-08-04 04:04:34 12,672 ------w c:\windows\ServicePackFiles\i386\usb8023x.sys
+ 2004-08-04 04:07:56 59,264 ------w c:\windows\ServicePackFiles\i386\usbaudio.sys
+ 2004-08-04 04:08:48 31,616 ------w c:\windows\ServicePackFiles\i386\usbccgp.sys
+ 2004-08-04 04:08:38 26,624 ------w c:\windows\ServicePackFiles\i386\usbehci.sys
+ 2004-08-04 04:08:44 57,600 ------w c:\windows\ServicePackFiles\i386\usbhub.sys
+ 2004-08-04 04:08:58 16,000 ------w c:\windows\ServicePackFiles\i386\usbintel.sys
+ 2004-08-04 05:56:48 16,896 ------w c:\windows\ServicePackFiles\i386\usbmon.dll
+ 2004-08-04 04:08:38 17,024 ------w c:\windows\ServicePackFiles\i386\usbohci.sys
+ 2004-08-04 04:08:44 142,976 ------w c:\windows\ServicePackFiles\i386\usbport.sys
+ 2004-08-04 04:01:26 25,856 ------w c:\windows\ServicePackFiles\i386\usbprint.sys
+ 2004-08-04 03:58:46 15,104 ------w c:\windows\ServicePackFiles\i386\usbscan.sys
+ 2004-08-04 04:08:44 25,600 ------w c:\windows\ServicePackFiles\i386\usbser.sys
+ 2004-08-04 04:08:48 26,496 ------w c:\windows\ServicePackFiles\i386\usbstor.sys
+ 2004-08-04 04:08:38 20,480 ------w c:\windows\ServicePackFiles\i386\usbuhci.sys
+ 2004-08-04 05:56:48 74,240 ------w c:\windows\ServicePackFiles\i386\usbui.dll
+ 2004-08-04 04:10:12 78,464 ------w c:\windows\ServicePackFiles\i386\usbvideo.sys
+ 2004-08-04 05:56:48 577,024 ------w c:\windows\ServicePackFiles\i386\user32.dll
+ 2004-08-04 05:56:48 723,456 ------w c:\windows\ServicePackFiles\i386\userenv.dll
+ 2004-08-04 05:56:58 24,576 ------w c:\windows\ServicePackFiles\i386\userinit.exe
+ 2004-08-04 05:56:48 406,528 ------w c:\windows\ServicePackFiles\i386\usp10.dll
+ 2004-08-04 05:56:58 50,176 ------w c:\windows\ServicePackFiles\i386\utilman.exe
+ 2004-08-04 05:56:48 218,624 ------w c:\windows\ServicePackFiles\i386\uxtheme.dll
+ 2004-08-04 05:56:48 30,749 ------w c:\windows\ServicePackFiles\i386\vbajet32.dll
+ 2004-08-04 05:56:48 417,792 ------w c:\windows\ServicePackFiles\i386\vbscript.dll
+ 2004-08-04 05:56:48 11,325 ------w c:\windows\ServicePackFiles\i386\vchnt5.dll
+ 2004-08-04 05:56:48 26,112 ------w c:\windows\ServicePackFiles\i386\vdmdbg.dll
+ 2004-08-04 05:56:48 51,712 ------w c:\windows\ServicePackFiles\i386\vdmredir.dll
+ 2004-08-04 05:56:48 18,944 ------w c:\windows\ServicePackFiles\i386\version.dll
+ 2004-08-04 05:56:48 53,760 ------w c:\windows\ServicePackFiles\i386\vfwwdm32.dll
+ 2004-08-04 04:07:08 20,992 ------w c:\windows\ServicePackFiles\i386\vga.sys
+ 2004-08-04 05:56:48 848,384 ------w c:\windows\ServicePackFiles\i386\vgx.dll
+ 2004-08-04 04:07:44 42,240 ------w c:\windows\ServicePackFiles\i386\viaagp.sys
+ 2004-08-04 03:59:44 5,376 ------w c:\windows\ServicePackFiles\i386\viaide.sys
+ 2004-08-04 04:07:06 79,744 ------w c:\windows\ServicePackFiles\i386\videoprt.sys
+ 2004-08-04 05:56:48 131,584 ------w c:\windows\ServicePackFiles\i386\viewprov.dll
+ 2004-08-04 04:00:18 52,352 ------w c:\windows\ServicePackFiles\i386\volsnap.sys
+ 2004-08-04 05:56:48 430,592 ------w c:\windows\ServicePackFiles\i386\vssapi.dll
+ 2004-08-04 05:56:58 289,792 ------w c:\windows\ServicePackFiles\i386\vssvc.exe
+ 2004-08-04 05:56:48 174,592 ------w c:\windows\ServicePackFiles\i386\w32time.dll
+ 2004-08-04 05:56:48 15,872 ------w c:\windows\ServicePackFiles\i386\w3ssl.dll
+ 2004-08-04 05:56:48 483,840 ------w c:\windows\ServicePackFiles\i386\w95upgnt.dll
+ 2004-08-04 05:56:58 46,080 ------w c:\windows\ServicePackFiles\i386\wab.exe
+ 2004-08-04 05:56:48 504,832 ------w c:\windows\ServicePackFiles\i386\wab32.dll
+ 2004-08-04 05:56:36 249,856 ------w c:\windows\ServicePackFiles\i386\wab32res.dll
+ 2004-08-04 05:56:48 32,768 ------w c:\windows\ServicePackFiles\i386\wabfind.dll
+ 2004-08-04 05:56:48 84,992 ------w c:\windows\ServicePackFiles\i386\wabimp.dll
+ 2004-08-04 05:56:58 30,208 ------w c:\windows\ServicePackFiles\i386\wabmig.exe
+ 2004-08-04 04:04:54 13,568 ------w c:\windows\ServicePackFiles\i386\wacompen.sys
+ 2004-08-04 03:29:38 12,415 ------w c:\windows\ServicePackFiles\i386\wadv01nt.sys
+ 2004-08-04 03:29:38 12,127 ------w c:\windows\ServicePackFiles\i386\wadv02nt.sys
+ 2004-08-04 03:29:38 11,775 ------w c:\windows\ServicePackFiles\i386\wadv05nt.sys
+ 2004-08-04 03:29:40 11,807 ------w c:\windows\ServicePackFiles\i386\wadv07nt.sys
+ 2004-08-04 03:29:40 11,295 ------w c:\windows\ServicePackFiles\i386\wadv08nt.sys
+ 2004-08-04 03:29:42 11,871 ------w c:\windows\ServicePackFiles\i386\wadv09nt.sys
+ 2004-08-04 03:29:42 11,935 ------w c:\windows\ServicePackFiles\i386\wadv11nt.sys
+ 2004-08-04 04:04:58 34,560 ------w c:\windows\ServicePackFiles\i386\wanarp.sys
+ 2004-08-04 04:07:34 17,664 ------w c:\windows\ServicePackFiles\i386\watchdog.sys
+ 2004-08-04 03:29:42 29,311 ------w c:\windows\ServicePackFiles\i386\watv01nt.sys
+ 2004-08-04 03:29:44 19,551 ------w c:\windows\ServicePackFiles\i386\watv02nt.sys
+ 2004-08-04 03:29:44 33,599 ------w c:\windows\ServicePackFiles\i386\watv04nt.sys
+ 2004-08-04 03:29:46 22,271 ------w c:\windows\ServicePackFiles\i386\watv06nt.sys
+ 2004-08-04 03:29:46 25,471 ------w c:\windows\ServicePackFiles\i386\watv10nt.sys
+ 2004-08-04 05:56:48 196,608 ------w c:\windows\ServicePackFiles\i386\wbemcntl.dll
+ 2004-08-04 05:56:48 214,528 ------w c:\windows\ServicePackFiles\i386\wbemcomn.dll
+ 2004-08-04 05:56:48 71,680 ------w c:\windows\ServicePackFiles\i386\wbemcons.dll
+ 2004-08-04 05:56:48 530,944 ------w c:\windows\ServicePackFiles\i386\wbemcore.dll
+ 2004-08-04 05:56:48 178,176 ------w c:\windows\ServicePackFiles\i386\wbemdisp.dll
+ 2004-08-04 05:56:48 273,920 ------w c:\windows\ServicePackFiles\i386\wbemess.dll
+ 2004-08-04 05:56:48 43,008 ------w c:\windows\ServicePackFiles\i386\wbemperf.dll
+ 2004-08-04 05:56:48 18,944 ------w c:\windows\ServicePackFiles\i386\wbemprox.dll
+ 2004-08-04 05:56:48 43,520 ------w c:\windows\ServicePackFiles\i386\wbemsvc.dll
+ 2004-08-04 05:56:58 116,224 ------w c:\windows\ServicePackFiles\i386\wbemtest.exe
+ 2004-08-04 05:56:48 197,120 ------w c:\windows\ServicePackFiles\i386\wbemupgd.dll
+ 2004-08-04 04:08:48 31,744 ------w c:\windows\ServicePackFiles\i386\wceusbsh.sys
+ 2004-08-04 03:29:46 23,615 ------w c:\windows\ServicePackFiles\i386\wch7xxnt.sys
+ 2004-08-04 05:56:48 49,152 ------w c:\windows\ServicePackFiles\i386\wdigest.dll
+ 2004-08-04 05:56:58 23,552 ------w c:\windows\ServicePackFiles\i386\wdmaud.drv
+ 2004-08-04 04:15:06 82,944 ------w c:\windows\ServicePackFiles\i386\wdmaud.sys
+ 2004-08-04 05:56:48 276,480 ------w c:\windows\ServicePackFiles\i386\webcheck.dll
+ 2004-08-04 05:56:48 67,584 ------w c:\windows\ServicePackFiles\i386\webclnt.dll
+ 2004-08-04 05:56:48 135,680 ------w c:\windows\ServicePackFiles\i386\webvw.dll
+ 2004-08-04 05:56:58 65,536 ------w c:\windows\ServicePackFiles\i386\wextract.exe
+ 2004-08-04 05:56:58 433,664 ------w c:\windows\ServicePackFiles\i386\wiaacmgr.exe
+ 2004-08-04 05:56:48 463,360 ------w c:\windows\ServicePackFiles\i386\wiadefui.dll
+ 2004-08-04 05:56:48 124,416 ------w c:\windows\ServicePackFiles\i386\wiadss.dll
+ 2004-08-04 05:56:48 75,776 ------w c:\windows\ServicePackFiles\i386\wiascr.dll
+ 2004-08-04 05:56:48 333,312 ------w c:\windows\ServicePackFiles\i386\wiaservc.dll
+ 2004-08-04 05:56:48 589,312 ------w c:\windows\ServicePackFiles\i386\wiashext.dll
+ 2004-08-04 05:56:48 111,104 ------w c:\windows\ServicePackFiles\i386\wiavideo.dll
+ 2004-08-04 04:17:42 1,835,904 ------w c:\windows\ServicePackFiles\i386\win32k.sys
+ 2004-08-04 05:56:48 101,888 ------w c:\windows\ServicePackFiles\i386\win32spl.dll
+ 2004-08-04 05:56:36 937,984 ------w c:\windows\ServicePackFiles\i386\winbrand.dll
+ 2004-08-04 05:56:58 283,648 ------w c:\windows\ServicePackFiles\i386\winhlp32.exe
+ 2004-08-04 05:56:48 351,232 ------w c:\windows\ServicePackFiles\i386\winhttp.dll
+ 2004-08-04 05:56:48 656,384 ------w c:\windows\ServicePackFiles\i386\wininet.dll
+ 2004-08-04 05:56:48 32,768 ------w c:\windows\ServicePackFiles\i386\winipsec.dll
+ 2004-08-04 05:56:58 502,272 ------w c:\windows\ServicePackFiles\i386\winlogon.exe
+ 2004-08-04 05:56:48 176,128 ------w c:\windows\ServicePackFiles\i386\winmm.dll
+ 2004-08-04 03:51:20 5,120 ------w c:\windows\ServicePackFiles\i386\winnls.dll
+ 2004-08-04 05:56:36 764,928 ------w c:\windows\ServicePackFiles\i386\winntbbu.dll
+ 2004-08-04 05:56:48 16,896 ------w c:\windows\ServicePackFiles\i386\winrnr.dll
+ 2004-08-04 05:56:48 99,328 ------w c:\windows\ServicePackFiles\i386\winscard.dll
+ 2004-08-04 05:56:48 17,408 ------w c:\windows\ServicePackFiles\i386\winshfhc.dll
+ 2004-08-04 05:56:58 146,432 ------w c:\windows\ServicePackFiles\i386\winspool.drv
+ 2004-08-04 05:56:48 290,816 ------w c:\windows\ServicePackFiles\i386\winsrv.dll
+ 2004-08-04 05:56:48 53,760 ------w c:\windows\ServicePackFiles\i386\winsta.dll
+ 2004-08-04 05:56:48 176,640 ------w c:\windows\ServicePackFiles\i386\wintrust.dll
+ 2004-08-04 05:56:58 5,632 ------w c:\windows\ServicePackFiles\i386\winver.exe
+ 2004-08-04 05:56:48 132,096 ------w c:\windows\ServicePackFiles\i386\wkssvc.dll
+ 2004-08-04 05:56:48 172,032 ------w c:\windows\ServicePackFiles\i386\wldap32.dll
+ 2004-08-04 03:31:28 154,624 ------w c:\windows\ServicePackFiles\i386\wlluc48.sys
+ 2004-08-04 05:56:48 92,672 ------w c:\windows\ServicePackFiles\i386\wlnotify.dll
+ 2004-08-04 05:56:48 408,064 ------w c:\windows\ServicePackFiles\i386\wmadmod.dll
+ 2004-08-04 05:56:48 670,720 ------w c:\windows\ServicePackFiles\i386\wmadmoe.dll
+ 2004-08-04 05:56:48 230,400 ------w c:\windows\ServicePackFiles\i386\wmasf.dll
+ 2004-08-04 05:56:48 27,136 ------w c:\windows\ServicePackFiles\i386\wmdmlog.dll
+ 2004-08-04 05:56:48 23,552 ------w c:\windows\ServicePackFiles\i386\wmdmps.dll
+ 2004-08-04 05:56:36 168,448 ------w c:\windows\ServicePackFiles\i386\wmerror.dll
+ 2004-08-04 05:56:36 5,632 ------w c:\windows\ServicePackFiles\i386\wmi.dll
+ 2004-08-04 04:07:42 8,832 ------w c:\windows\ServicePackFiles\i386\wmiacpi.sys
+ 2004-08-04 05:56:58 196,608 ------w c:\windows\ServicePackFiles\i386\wmiadap.exe
+ 2004-08-04 05:56:36 6,656 ------w c:\windows\ServicePackFiles\i386\wmiapres.dll
+ 2004-08-04 05:56:48 89,088 ------w c:\windows\ServicePackFiles\i386\wmiaprpl.dll
+ 2004-08-04 05:56:58 126,464 ------w c:\windows\ServicePackFiles\i386\wmiapsrv.exe
+ 2004-08-04 05:56:48 60,928 ------w c:\windows\ServicePackFiles\i386\wmicookr.dll
+ 2004-08-04 05:56:48 140,800 ------w c:\windows\ServicePackFiles\i386\wmidcprv.dll
+ 2004-08-04 05:56:48 151,552 ------w c:\windows\ServicePackFiles\i386\wmidx.dll
+ 2004-08-04 05:56:48 156,672 ------w c:\windows\ServicePackFiles\i386\wmipcima.dll
+ 2004-08-04 05:56:48 132,096 ------w c:\windows\ServicePackFiles\i386\wmipdskq.dll
+ 2004-08-04 05:56:48 62,464 ------w c:\windows\ServicePackFiles\i386\wmipiprt.dll
+ 2004-08-04 05:56:48 62,976 ------w c:\windows\ServicePackFiles\i386\wmipjobj.dll
+ 2004-08-04 05:56:48 144,896 ------w c:\windows\ServicePackFiles\i386\wmiprov.dll
+ 2004-08-04 05:56:48 437,248 ------w c:\windows\ServicePackFiles\i386\wmiprvsd.dll
+ 2004-08-04 05:56:58 218,112 ------w c:\windows\ServicePackFiles\i386\wmiprvse.exe
+ 2004-08-04 05:56:48 41,472 ------w c:\windows\ServicePackFiles\i386\wmipsess.dll
+ 2004-08-04 05:56:48 144,896 ------w c:\windows\ServicePackFiles\i386\wmisvc.dll
+ 2004-08-04 05:56:48 95,232 ------w c:\windows\ServicePackFiles\i386\wmiutils.dll
+ 2004-08-04 05:56:48 167,936 ------w c:\windows\ServicePackFiles\i386\wmm2ae.dll
+ 2004-08-04 05:56:48 4,096 ------w c:\windows\ServicePackFiles\i386\wmm2eres.dll
+ 2004-08-04 05:56:48 7,680 ------w c:\windows\ServicePackFiles\i386\wmm2ext.dll
+ 2004-08-04 05:56:48 402,432 ------w c:\windows\ServicePackFiles\i386\wmm2filt.dll
+ 2004-08-04 05:56:48 502,272 ------w c:\windows\ServicePackFiles\i386\wmm2fxa.dll
+ 2004-08-04 05:56:48 325,632 ------w c:\windows\ServicePackFiles\i386\wmm2fxb.dll
+ 2004-08-04 05:56:48 4,256,768 ------w c:\windows\ServicePackFiles\i386\wmm2res.dll
+ 2004-08-04 05:56:48 5,632 ------w c:\windows\ServicePackFiles\i386\wmm2res2.dll
+ 2004-08-04 05:56:48 1,050,624 ------w c:\windows\ServicePackFiles\i386\wmnetmgr.dll
+ 2004-08-04 05:56:48 4,874,240 ------w c:\windows\ServicePackFiles\i386\wmp.dll
+ 2004-08-04 05:56:48 114,688 ------w c:\windows\ServicePackFiles\i386\wmpasf.dll
+ 2004-08-04 05:56:48 98,304 ------w c:\windows\ServicePackFiles\i386\wmpband.dll
+ 2004-08-04 05:56:48 20,480 ------w c:\windows\ServicePackFiles\i386\wmpcd.dll
+ 2004-08-04 05:56:48 20,480 ------w c:\windows\ServicePackFiles\i386\wmpcore.dll
+ 2004-08-04 05:56:48 233,472 ------w c:\windows\ServicePackFiles\i386\wmpdxm.dll
+ 2004-08-04 05:56:58 73,728 ------w c:\windows\ServicePackFiles\i386\wmplayer.exe
+ 2004-08-04 05:56:38 2,940,928 ------w c:\windows\ServicePackFiles\i386\wmploc.dll
+ 2004-08-04 05:56:48 221,184 ------w c:\windows\ServicePackFiles\i386\wmpns.dll
+ 2004-08-04 05:56:48 102,400 ------w c:\windows\ServicePackFiles\i386\wmpshell.dll
+ 2004-08-04 05:56:48 20,480 ------w c:\windows\ServicePackFiles\i386\wmpui.dll
+ 2004-08-04 05:56:48 759,296 ------w c:\windows\ServicePackFiles\i386\wmsdmod.dll
+ 2004-08-04 05:56:48 115,200 ------w c:\windows\ServicePackFiles\i386\wmsdmoe.dll
+ 2004-08-04 05:56:48 1,119,744 ------w c:\windows\ServicePackFiles\i386\wmsdmoe2.dll
+ 2004-08-04 05:56:48 484,864 ------w c:\windows\ServicePackFiles\i386\wmspdmod.dll
+ 2004-08-04 05:56:48 896,512 ------w c:\windows\ServicePackFiles\i386\wmspdmoe.dll
+ 2004-08-04 05:56:48 303,616 ------w c:\windows\ServicePackFiles\i386\wmstream.dll
+ 2004-08-04 05:57:04 2,105,344 ------w c:\windows\ServicePackFiles\i386\wmvcore.dll
+ 2004-08-04 05:56:48 809,984 ------w c:\windows\ServicePackFiles\i386\wmvdmod.dll
+ 2004-08-04 05:56:48 1,001,472 ------w c:\windows\ServicePackFiles\i386\wmvdmoe2.dll
+ 2004-08-04 05:56:58 214,528 ------w c:\windows\ServicePackFiles\i386\wordpad.exe
+ 2004-08-04 05:56:48 264,192 ------w c:\windows\ServicePackFiles\i386\wow32.dll
+ 2004-08-04 05:56:58 32,256 ------w c:\windows\ServicePackFiles\i386\wpabaln.exe
+ 2004-08-04 05:56:58 32,256 ------w c:\windows\ServicePackFiles\i386\wpnpinst.exe
+ 2004-08-04 05:56:48 82,944 ------w c:\windows\ServicePackFiles\i386\ws2_32.dll
+ 2004-08-04 05:56:48 19,968 ------w c:\windows\ServicePackFiles\i386\ws2help.dll
+ 2004-08-04 05:56:58 13,824 ------w c:\windows\ServicePackFiles\i386\wscntfy.exe
+ 2004-08-04 05:56:58 114,688 ------w c:\windows\ServicePackFiles\i386\wscript.exe
+ 2004-08-04 05:56:48 81,408 ------w c:\windows\ServicePackFiles\i386\wscsvc.dll
+ 2004-08-04 05:56:48 108,032 ------w c:\windows\ServicePackFiles\i386\wshbth.dll
+ 2004-08-04 05:56:48 28,672 ------w c:\windows\ServicePackFiles\i386\wshcon.dll
+ 2004-08-04 05:56:48 65,536 ------w c:\windows\ServicePackFiles\i386\wshext.dll
+ 2004-08-04 05:56:48 14,336 ------w c:\windows\ServicePackFiles\i386\wship6.dll
+ 2004-08-04 05:56:48 8,192 ------w c:\windows\ServicePackFiles\i386\wshirda.dll
+ 2004-08-04 05:56:48 11,776 ------w c:\windows\ServicePackFiles\i386\wshrm.dll
+ 2004-08-04 05:56:48 19,968 ------w c:\windows\ServicePackFiles\i386\wshtcpip.dll
+ 2004-08-04 03:29:48 12,063 ------w c:\windows\ServicePackFiles\i386\wsiintxx.sys
+ 2004-08-04 05:56:48 42,496 ------w c:\windows\ServicePackFiles\i386\wsnmp32.dll
+ 2004-08-04 05:56:48 22,528 ------w c:\windows\ServicePackFiles\i386\wsock32.dll
+ 2004-08-04 04:10:22 19,328 ------w c:\windows\ServicePackFiles\i386\wstcodec.sys
+ 2004-08-04 05:56:48 50,688 ------w c:\windows\ServicePackFiles\i386\wstdecod.dll
+ 2004-08-04 05:56:48 18,432 ------w c:\windows\ServicePackFiles\i386\wtsapi32.dll
+ 2004-08-04 05:56:48 430,592 ------w c:\windows\ServicePackFiles\i386\wuapi.dll
+ 2004-08-04 05:56:58 111,104 ------w c:\windows\ServicePackFiles\i386\wuauclt.exe
+ 2004-08-04 05:56:58 165,888 ------w c:\windows\ServicePackFiles\i386\wuauclt1.exe
+ 2004-08-04 05:56:48 1,134,592 ------w c:\windows\ServicePackFiles\i386\wuaueng.dll
+ 2004-08-04 05:56:48 183,296 ------w c:\windows\ServicePackFiles\i386\wuaueng1.dll
+ 2004-08-04 05:56:48 6,656 ------w c:\windows\ServicePackFiles\i386\wuauserv.dll
+ 2004-08-04 05:56:48 112,640 ------w c:\windows\ServicePackFiles\i386\wucltui.dll
+ 2004-08-04 05:56:48 36,864 ------w c:\windows\ServicePackFiles\i386\wups.dll
+ 2004-08-04 05:56:48 120,320 ------w c:\windows\ServicePackFiles\i386\wuweb.dll
+ 2004-08-04 03:29:50 19,455 ------w c:\windows\ServicePackFiles\i386\wvchntxx.sys
+ 2004-08-04 05:56:48 378,368 ------w c:\windows\ServicePackFiles\i386\wzcdlg.dll
+ 2004-08-04 05:56:48 51,712 ------w c:\windows\ServicePackFiles\i386\wzcsapi.dll
+ 2004-08-04 05:56:48 359,936 ------w c:\windows\ServicePackFiles\i386\wzcsvc.dll
+ 2004-08-04 05:56:48 91,648 ------w c:\windows\ServicePackFiles\i386\xactsrv.dll
+ 2004-08-04 05:56:58 30,720 ------w c:\windows\ServicePackFiles\i386\xcopy.exe
+ 2004-07-17 16:39:16 174,200 ------w c:\windows\ServicePackFiles\i386\xenroll.dll
+ 2004-08-04 05:56:48 129,536 ------w c:\windows\ServicePackFiles\i386\xmlprov.dll
+ 2004-08-04 05:56:48 50,176 ------w c:\windows\ServicePackFiles\i386\xmlprovi.dll
+ 2004-08-04 05:56:48 11,776 ------w c:\windows\ServicePackFiles\i386\xolehlp.dll
+ 2004-08-04 05:56:38 438,784 ------w c:\windows\ServicePackFiles\i386\xpob2res.dll
+ 2004-08-04 05:56:38 187,392 ------w c:\windows\ServicePackFiles\i386\xpsp1res.dll
+ 2004-08-04 05:56:38 2,897,920 ------w c:\windows\ServicePackFiles\i386\xpsp2res.dll
+ 2004-08-04 05:56:48 116,224 ------w c:\windows\ServicePackFiles\i386\xrxwiadr.dll
+ 2004-08-04 05:56:48 337,920 ------w c:\windows\ServicePackFiles\i386\zipfldr.dll
+ 2004-08-04 05:56:58 32,866 ------w c:\windows\slrundll.exe
- 2001-08-18 12:00:00 3,346,432 ----a-w c:\windows\srchasst\msgr3en.dll
+ 2004-08-04 05:56:44 3,166,208 ----a-w c:\windows\srchasst\msgr3en.dll
- 2001-08-18 12:00:00 106,562 ----a-w c:\windows\srchasst\srchctls.dll
+ 2004-08-04 05:56:46 58,434 ----a-w c:\windows\srchasst\srchctls.dll
- 2001-08-18 12:00:00 794,686 ----a-w c:\windows\srchasst\srchui.dll
+ 2004-08-04 05:56:46 725,566 ----a-w c:\windows\srchasst\srchui.dll
- 2001-08-18 12:00:00 68,928 ----a-w c:\windows\system\MMSYSTEM.DLL
+ 2004-08-04 03:51:12 68,768 ----a-w c:\windows\system\mmsystem.dll
- 2001-08-18 12:00:00 131,584 ----a-w c:\windows\system\WINSPOOL.DRV
+ 2004-08-04 05:56:58 146,432 ----a-w c:\windows\system\winspool.drv
- 2001-08-18 12:00:00 35,840 ----a-w c:\windows\system32\6to4svc.dll
+ 2004-08-04 05:56:42 100,352 ----a-w c:\windows\system32\6to4svc.dll
- 2001-08-18 12:00:00 179,200 ----a-w c:\windows\system32\accwiz.exe
+ 2004-08-04 05:56:48 183,808 ----a-w c:\windows\system32\accwiz.exe
- 2001-08-18 12:00:00 107,008 ----a-w c:\windows\system32\aclui.dll
+ 2004-08-04 05:56:42 114,688 ----a-w c:\windows\system32\aclui.dll
- 2001-08-18 12:00:00 181,760 ----a-w c:\windows\system32\activeds.dll
+ 2004-08-04 05:56:42 194,048 ----a-w c:\windows\system32\activeds.dll
- 2001-08-18 12:00:00 4,096 ----a-w c:\windows\system32\actmovie.exe
+ 2004-08-04 05:56:48 4,096 ----a-w c:\windows\system32\actmovie.exe
- 2001-08-18 12:00:00 98,304 ----a-w c:\windows\system32\actxprxy.dll
+ 2004-08-04 05:56:42 101,888 ----a-w c:\windows\system32\actxprxy.dll
- 2001-08-18 12:00:00 57,344 ----a-w c:\windows\system32\admparse.dll
+ 2004-08-04 05:56:42 61,440 ----a-w c:\windows\system32\admparse.dll
- 2001-08-18 12:00:00 160,768 ----a-w c:\windows\system32\adsldp.dll
+ 2004-08-04 05:56:42 175,616 ----a-w c:\windows\system32\adsldp.dll
- 2001-08-18 12:00:00 139,264 ----a-w c:\windows\system32\adsldpc.dll
+ 2004-08-04 05:56:42 143,360 ----a-w c:\windows\system32\adsldpc.dll
- 2001-08-18 12:00:00 62,464 ----a-w c:\windows\system32\adsmsext.dll
+ 2004-08-04 05:56:42 68,096 ----a-w c:\windows\system32\adsmsext.dll
- 2001-08-18 12:00:00 239,616 ----a-w c:\windows\system32\adsnt.dll
+ 2004-08-04 05:56:42 263,680 ----a-w c:\windows\system32\adsnt.dll
- 2001-08-18 12:00:00 549,888 ----a-w c:\windows\system32\advapi32.dll
+ 2004-08-04 05:56:42 616,960 ----a-w c:\windows\system32\advapi32.dll
- 2001-08-18 12:00:00 91,136 ----a-w c:\windows\system32\advpack.dll
+ 2004-08-04 05:56:42 99,840 ----a-w c:\windows\system32\advpack.dll
- 2001-08-18 12:00:00 84,992 ----a-w c:\windows\system32\ahui.exe
+ 2004-08-04 05:56:48 98,304 ----a-w c:\windows\system32\ahui.exe
- 2001-08-18 12:00:00 40,960 ----a-w c:\windows\system32\alg.exe
+ 2004-08-04 05:56:48 44,544 ----a-w c:\windows\system32\alg.exe
- 2001-08-18 12:00:00 15,872 ----a-w c:\windows\system32\alrsvc.dll
+ 2004-08-04 05:56:42 17,408 ----a-w c:\windows\system32\alrsvc.dll
- 2002-12-12 04:14:32 64,512 ----a-w c:\windows\system32\amstream.dll
+ 2004-08-04 05:56:42 70,656 ----a-w c:\windows\system32\amstream.dll
- 2001-08-18 12:00:00 104,448 ----a-w c:\windows\system32\apphelp.dll
+ 2004-08-04 05:56:42 126,976 ----a-w c:\windows\system32\apphelp.dll
- 2001-08-18 12:00:00 77,824 ------w c:\windows\system32\asycfilt.dll
+ 2004-08-04 05:56:42 65,024 ------w c:\windows\system32\asycfilt.dll
- 2001-08-18 12:00:00 22,528 ----a-w c:\windows\system32\at.exe
+ 2004-08-04 05:56:48 25,088 ----a-w c:\windows\system32\at.exe
+ 2004-08-04 05:56:42 229,376 ------w c:\windows\system32\ati2cqag.dll
+ 2004-08-04 05:56:42 377,984 ------w c:\windows\system32\ati2dvaa.dll
+ 2004-08-04 05:56:42 201,728 ------w c:\windows\system32\ati2dvag.dll
+ 2004-08-04 05:56:42 870,784 ------w c:\windows\system32\ati3d1ag.dll
+ 2004-08-04 05:56:42 1,888,992 ------w c:\windows\system32\ati3duag.dll
+ 2004-08-04 05:56:42 32,768 ------w c:\windows\system32\ativtmxx.dll
+ 2004-08-04 05:56:42 516,768 ------w c:\windows\system32\ativvaxx.dll
- 2001-08-18 12:00:00 74,802 ----a-w c:\windows\system32\atl.dll
+ 2004-08-04 05:56:42 58,880 ----a-w c:\windows\system32\atl.dll
- 2001-08-18 12:00:00 10,240 ----a-w c:\windows\system32\atmadm.exe
+ 2004-08-04 05:56:48 11,264 ----a-w c:\windows\system32\atmadm.exe
- 2001-08-18 12:00:00 272,768 ----a-w c:\windows\system32\atmfd.dll
+ 2004-08-04 05:56:00 285,696 ----a-w c:\windows\system32\atmfd.dll
- 2001-08-18 12:00:00 27,136 ----a-w c:\windows\system32\atmlib.dll
+ 2004-08-04 05:56:42 30,208 ----a-w c:\windows\system32\atmlib.dll
- 2001-08-18 12:00:00 37,888 ----a-w c:\windows\system32\audiosrv.dll
+ 2004-08-04 05:56:42 42,496 ----a-w c:\windows\system32\audiosrv.dll
+ 2004-08-04 05:56:48 14,336 ------w c:\windows\system32\auditusr.exe
- 2001-08-18 12:00:00 51,200 ----a-w c:\windows\system32\authz.dll
+ 2004-08-04 05:56:42 56,832 ----a-w c:\windows\system32\authz.dll
- 2001-08-18 12:00:00 565,760 ----a-w c:\windows\system32\autochk.exe
+ 2004-08-04 05:56:48 588,800 ----a-w c:\windows\system32\autochk.exe
- 2001-08-18 12:00:00 578,560 ----a-w c:\windows\system32\autoconv.exe
+ 2004-08-04 05:56:48 602,624 ----a-w c:\windows\system32\autoconv.exe
- 2001-08-18 12:00:00 558,592 ----a-w c:\windows\system32\autofmt.exe
+ 2004-08-04 05:56:48 580,608 ----a-w c:\windows\system32\autofmt.exe
- 2001-08-18 12:00:00 8,192 ----a-w c:\windows\system32\autolfn.exe
+ 2004-08-04 05:56:48 11,264 ----a-w c:\windows\system32\autolfn.exe
- 2001-08-18 12:00:00 76,288 ----a-w c:\windows\system32\avifil32.dll
+ 2004-08-04 05:56:42 84,992 ----a-w c:\windows\system32\avifil32.dll
- 2001-08-18 12:00:00 45,056 ----a-w c:\windows\system32\basesrv.dll
+ 2004-08-04 05:56:42 52,736 ----a-w c:\windows\system32\basesrv.dll
- 2001-08-18 12:00:00 27,136 ----a-w c:\windows\system32\batmeter.dll
+ 2004-08-04 05:56:42 28,672 ----a-w c:\windows\system32\batmeter.dll
- 2001-08-18 12:00:00 6,656 ----a-w c:\windows\system32\batt.dll
+ 2004-08-04 05:56:42 8,704 ----a-w c:\windows\system32\batt.dll
- 2001-08-18 12:00:00 14,848 ----a-w c:\windows\system32\bidispl.dll
+ 2004-08-04 05:56:42 17,408 ----a-w c:\windows\system32\bidispl.dll
- 2004-07-01 22:08:18 7,680 ------w c:\windows\system32\bitsprx2.dll
+ 2004-08-04 05:56:42 8,192 ------w c:\windows\system32\bitsprx2.dll
- 2004-07-01 22:08:18 7,168 ------w c:\windows\system32\bitsprx3.dll
+ 2004-08-04 05:56:42 7,168 ------w c:\windows\system32\bitsprx3.dll
+ 2004-08-04 05:56:48 71,680 ------w c:\windows\system32\blastcln.exe
- 2001-08-18 12:00:00 62,976 ----a-w c:\windows\system32\browselc.dll
+ 2004-08-04 05:56:00 63,488 ----a-w c:\windows\system32\browselc.dll
- 2001-08-18 12:00:00 49,152 ----a-w c:\windows\system32\browser.dll
+ 2004-08-04 05:56:42 77,312 ----a-w c:\windows\system32\browser.dll
- 2001-08-18 12:00:00 1,020,416 ----a-w c:\windows\system32\browseui.dll
+ 2004-08-04 05:56:42 1,016,832 ----a-w c:\windows\system32\browseui.dll
- 2001-08-18 12:00:00 71,680 ----a-w c:\windows\system32\browsewm.dll
+ 2004-08-04 05:56:42 78,336 ----a-w c:\windows\system32\browsewm.dll
+ 2004-08-04 05:56:42 20,992 ------w c:\windows\system32\bthci.dll
+ 2004-08-04 05:56:42 30,208 ------w c:\windows\system32\bthserv.dll
+ 2004-08-04 05:56:42 50,688 ------w c:\windows\system32\btpanui.dll
- 2001-08-18 12:00:00 58,880 ----a-w c:\windows\system32\cabinet.dll
+ 2004-08-04 05:56:42 59,904 ----a-w c:\windows\system32\cabinet.dll
- 2001-08-18 12:00:00 80,384 ----a-w c:\windows\system32\cabview.dll
+ 2004-08-04 05:56:42 84,480 ----a-w c:\windows\system32\cabview.dll
- 2001-08-18 12:00:00 45,056 ----a-w c:\windows\system32\camocx.dll
+ 2004-08-04 05:56:42 50,688 ----a-w c:\windows\system32\camocx.dll
- 2001-08-18 12:00:00 215,040 ----a-w c:\windows\system32\catsrv.dll
+ 2004-08-04 05:56:42 229,888 ----a-w c:\windows\system32\catsrv.dll
- 2001-08-18 12:00:00 85,504 ----a-w c:\windows\system32\catsrvps.dll
+ 2004-08-04 05:56:42 85,504 ----a-w c:\windows\system32\catsrvps.dll
- 2001-08-18 12:00:00 583,168 ----a-w c:\windows\system32\catsrvut.dll
+ 2004-08-04 05:56:42 628,224 ----a-w c:\windows\system32\catsrvut.dll
- 2001-08-18 12:00:00 142,336 ----a-w c:\windows\system32\cdfview.dll
+ 2004-08-04 05:56:42 150,528 ----a-w c:\windows\system32\cdfview.dll
- 2001-08-18 12:00:00 2,028,032 ----a-w c:\windows\system32\cdosys.dll
+ 2004-08-04 05:56:42 2,067,968 ----a-w c:\windows\system32\cdosys.dll
- 2001-08-18 12:00:00 184,320 ----a-w c:\windows\system32\certcli.dll
+ 2004-08-04 05:56:42 194,560 ----a-w c:\windows\system32\certcli.dll
- 2001-08-18 12:00:00 436,736 ----a-w c:\windows\system32\certmgr.dll
+ 2004-08-04 05:56:42 457,728 ----a-w c:\windows\system32\certmgr.dll
- 2001-08-18 12:00:00 32,768 ----a-w c:\windows\system32\cfgbkend.dll
+ 2004-08-04 05:56:42 38,912 ----a-w c:\windows\system32\cfgbkend.dll
- 2001-08-18 12:00:00 16,896 ----a-w c:\windows\system32\cfgmgr32.dll
+ 2004-08-04 05:56:02 16,896 ----a-w c:\windows\system32\cfgmgr32.dll
- 2001-08-18 12:00:00 62,976 ----a-w c:\windows\system32\ciodm.dll
+ 2004-08-04 05:56:42 69,120 ----a-w c:\windows\system32\ciodm.dll
- 2001-08-18 12:00:00 5,120 ----a-w c:\windows\system32\cisvc.exe
+ 2004-08-04 05:56:48 5,632 ----a-w c:\windows\system32\cisvc.exe
- 2001-08-18 12:00:00 100,864 ----a-w c:\windows\system32\clbcatex.dll
+ 2004-08-04 05:56:42 110,080 ----a-w c:\windows\system32\clbcatex.dll
- 2001-08-18 12:00:00 468,480 ----a-w c:\windows\system32\clbcatq.dll
+ 2004-08-04 05:56:42 501,248 ----a-w c:\windows\system32\clbcatq.dll
- 2001-08-18 12:00:00 61,440 ----a-w c:\windows\system32\cleanmgr.exe
+ 2004-08-04 05:56:48 64,000 ----a-w c:\windows\system32\cleanmgr.exe
- 2001-08-18 12:00:00 127,552 ----a-w c:\windows\system32\cliconfg.dll
+ 2004-08-04 05:56:42 77,824 ----a-w c:\windows\system32\cliconfg.dll
- 2001-08-18 12:00:00 45,632 ----a-w c:\windows\system32\cliconfg.exe
+ 2004-08-04 05:56:48 20,480 ----a-w c:\windows\system32\cliconfg.exe
- 2001-08-18 12:00:00 98,816 ----a-w c:\windows\system32\clipbrd.exe
+ 2004-08-04 05:56:48 102,912 ----a-w c:\windows\system32\clipbrd.exe
- 2001-08-18 12:00:00 30,720 ----a-w c:\windows\system32\clipsrv.exe
+ 2004-08-04 05:56:48 33,280 ----a-w c:\windows\system32\clipsrv.exe
- 2001-08-18 12:00:00 53,248 ----a-w c:\windows\system32\clusapi.dll
+ 2004-08-04 05:56:42 57,856 ----a-w c:\windows\system32\clusapi.dll
- 2001-08-18 12:00:00 12,288 ----a-w c:\windows\system32\cmcfg32.dll
+ 2004-08-04 05:56:42 15,872 ----a-w c:\windows\system32\cmcfg32.dll
- 2001-08-18 12:00:00 375,808 ----a-w c:\windows\system32\cmd.exe
+ 2004-08-04 05:56:50 388,608 ----a-w c:\windows\system32\cmd.exe
- 2001-08-18 12:00:00 314,880 ----a-w c:\windows\system32\cmdial32.dll
+ 2004-08-04 05:56:42 343,040 ----a-w c:\windows\system32\cmdial32.dll
- 2001-08-18 12:00:00 41,472 ----a-w c:\windows\system32\cmdl32.exe
+ 2004-08-04 05:56:50 47,104 ----a-w c:\windows\system32\cmdl32.exe
- 2001-08-18 12:00:00 35,840 ----a-w c:\windows\system32\cmmon32.exe
+ 2004-08-04 05:56:50 39,936 ----a-w c:\windows\system32\cmmon32.exe
- 2001-08-18 12:00:00 174,592 ----a-w c:\windows\system32\cmprops.dll
+ 2004-08-04 05:56:42 185,344 ----a-w c:\windows\system32\cmprops.dll
+ 2004-08-04 05:56:42 13,824 ------w c:\windows\system32\cmsetacl.dll
- 2001-08-18 12:00:00 54,784 ----a-w c:\windows\system32\cmstp.exe
+ 2004-08-04 05:56:50 63,488 ----a-w c:\windows\system32\cmstp.exe
- 2001-08-18 12:00:00 36,352 ----a-w c:\windows\system32\cmutil.dll
+ 2004-08-04 05:56:42 39,936 ----a-w c:\windows\system32\cmutil.dll
- 2001-08-18 12:00:00 45,568 ----a-w c:\windows\system32\cnbjmon.dll
+ 2004-08-04 05:56:42 47,104 ----a-w c:\windows\system32\cnbjmon.dll
- 2001-08-18 12:00:00 56,832 ----a-w c:\windows\system32\colbact.dll
+ 2004-08-04 05:56:42 62,464 ----a-w c:\windows\system32\colbact.dll
- 2001-08-18 12:00:00 186,880 ----a-w c:\windows\system32\Com\comadmin.dll
+ 2004-08-04 05:56:42 195,584 ----a-w c:\windows\system32\Com\comadmin.dll
- 2001-08-18 12:00:00 8,192 ----a-w c:\windows\system32\Com\comrepl.exe
+ 2004-08-04 05:56:50 9,728 ----a-w c:\windows\system32\Com\comrepl.exe
- 2001-08-18 12:00:00 557,568 ----a-w c:\windows\system32\comctl32.dll
+ 2004-08-04 05:56:42 611,328 ----a-w c:\windows\system32\comctl32.dll
- 2001-08-18 12:00:00 258,048 ----a-w c:\windows\system32\comdlg32.dll
+ 2004-08-04 05:56:42 276,992 ----a-w c:\windows\system32\comdlg32.dll
- 2001-08-18 12:00:00 238,592 ----a-w c:\windows\system32\compatUI.dll
+ 2004-08-04 05:56:42 252,928 ----a-w c:\windows\system32\compatui.dll
- 2001-08-18 12:00:00 222,208 ----a-w c:\windows\system32\compstui.dll
+ 2004-08-04 05:56:42 229,376 ----a-w c:\windows\system32\compstui.dll
- 2001-08-18 12:00:00 792,064 ----a-w c:\windows\system32\comres.dll
+ 2004-08-04 05:56:42 792,064 ----a-w c:\windows\system32\comres.dll
- 2001-08-18 12:00:00 1,139,200 ----a-w c:\windows\system32\comsvcs.dll
+ 2004-08-04 05:56:42 1,251,840 ----a-w c:\windows\system32\comsvcs.dll
- 2001-08-18 12:00:00 495,616 ----a-w c:\windows\system32\comuid.dll
+ 2004-08-04 05:56:42 540,160 ----a-w c:\windows\system32\comuid.dll
- 2009-02-17 16:28:45 16,384 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2009-02-19 17:13:10 16,384 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2009-02-17 16:28:45 16,384 ----a-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2009-02-19 17:13:10 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2009-02-19 17:13:04 32,768 ----a-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012009021920090220\index.dat
- 2001-08-18 12:00:00 24,576 ----a-w c:\windows\system32\conime.exe
+ 2004-08-04 05:56:50 27,648 ----a-w c:\windows\system32\conime.exe
- 2001-08-18 12:00:00 14,877 ----a-w c:\windows\system32\corpol.dll
+ 2004-08-04 05:56:42 35,328 ----a-w c:\windows\system32\corpol.dll
- 2001-08-18 12:00:00 161,792 ----a-w c:\windows\system32\credui.dll
+ 2004-08-04 05:56:42 163,840 ----a-w c:\windows\system32\credui.dll
- 2002-09-23 19:10:26 544,256 ----a-w c:\windows\system32\crypt32.dll
+ 2004-08-04 05:56:42 597,504 ----a-w c:\windows\system32\crypt32.dll
- 2001-08-18 12:00:00 70,144 ----a-w c:\windows\system32\cryptdlg.dll
+ 2004-08-04 05:56:42 74,752 ----a-w c:\windows\system32\cryptdlg.dll
- 2001-08-18 12:00:00 29,184 ----a-w c:\windows\system32\cryptdll.dll
+ 2004-08-04 05:56:42 33,280 ----a-w c:\windows\system32\cryptdll.dll
- 2001-08-18 12:00:00 48,640 ----a-w c:\windows\system32\cryptext.dll
+ 2004-08-04 05:56:42 53,760 ----a-w c:\windows\system32\cryptext.dll
- 2001-08-18 12:00:00 53,248 ----a-w c:\windows\system32\cryptnet.dll
+ 2004-08-04 05:56:42 63,488 ----a-w c:\windows\system32\cryptnet.dll
- 2001-08-18 12:00:00 51,200 ----a-w c:\windows\system32\cryptsvc.dll
+ 2004-08-04 05:56:42 60,416 ----a-w c:\windows\system32\cryptsvc.dll
- 2001-08-18 12:00:00 470,016 ----a-w c:\windows\system32\cryptui.dll
+ 2004-08-04 05:56:42 512,512 ----a-w c:\windows\system32\cryptui.dll
- 2001-08-18 12:00:00 89,600 ----a-w c:\windows\system32\cscdll.dll
+ 2004-08-04 05:56:42 101,888 ----a-w c:\windows\system32\cscdll.dll
- 2001-08-18 12:00:00 102,450 ----a-w c:\windows\system32\cscript.exe
+ 2004-08-04 05:56:50 98,304 ----a-w c:\windows\system32\cscript.exe
- 2001-08-18 12:00:00 305,664 ----a-w c:\windows\system32\cscui.dll
+ 2004-08-04 05:56:42 326,656 ----a-w c:\windows\system32\cscui.dll
- 2001-08-18 12:00:00 29,184 ----a-w c:\windows\system32\csrsrv.dll
+ 2004-08-04 05:56:42 32,768 ----a-w c:\windows\system32\csrsrv.dll
- 2001-08-18 12:00:00 4,096 ----a-w c:\windows\system32\csrss.exe
+ 2004-08-04 05:56:50 6,144 ----a-w c:\windows\system32\csrss.exe
- 2001-08-18 12:00:00 13,312 ----a-w c:\windows\system32\ctfmon.exe
+ 2004-08-04 05:56:50 15,360 ----a-w c:\windows\system32\ctfmon.exe
- 2004-07-09 08:27:28 1,201,152 ----a-w c:\windows\system32\d3d8.dll
+ 2004-08-04 05:56:42 1,179,648 ----a-w c:\windows\system32\d3d8.dll
- 2002-12-12 04:14:32 8,192 ----a-w c:\windows\system32\d3d8thk.dll
+ 2004-08-04 05:56:42 8,192 ----a-w c:\windows\system32\d3d8thk.dll
- 2004-07-09 08:27:28 1,703,936 ----a-w c:\windows\system32\d3d9.dll
+ 2004-08-04 05:56:42 1,689,088 ----a-w c:\windows\system32\d3d9.dll
- 2003-05-30 13:00:02 797,184 ----a-w c:\windows\system32\d3dim700.dll
+ 2004-08-04 05:56:42 825,344 ----a-w c:\windows\system32\d3dim700.dll
- 2001-08-18 12:00:00 986,112 ----a-w c:\windows\system32\danim.dll
+ 2004-08-04 05:56:42 1,053,696 ----a-w c:\windows\system32\danim.dll
- 2001-08-18 12:00:00 51,712 ----a-w c:\windows\system32\dataclen.dll
+ 2004-08-04 05:56:44 54,272 ----a-w c:\windows\system32\dataclen.dll
- 2001-08-18 12:00:00 22,016 ----a-w c:\windows\system32\davclnt.dll
+ 2004-08-04 05:56:44 24,576 ----a-w c:\windows\system32\davclnt.dll
- 2001-08-18 12:00:00 486,400 ----a-w c:\windows\system32\dbghelp.dll
+ 2004-08-04 05:56:44 640,000 ----a-w c:\windows\system32\dbghelp.dll
- 2001-08-18 12:00:00 24,576 ----a-w c:\windows\system32\dbmsrpcn.dll
+ 2004-08-04 05:56:44 24,576 ----a-w c:\windows\system32\dbmsrpcn.dll
- 2001-08-18 12:00:00 65,536 ----a-w c:\windows\system32\dbnetlib.dll
+ 2004-08-04 05:56:44 110,592 ----a-w c:\windows\system32\dbnetlib.dll
- 2001-08-18 12:00:00 28,672 ----a-w c:\windows\system32\dbnmpntw.dll
+ 2004-08-04 05:56:44 28,672 ----a-w c:\windows\system32\dbnmpntw.dll
+ 2004-08-04 06:07:22 1,788 ----a-w c:\windows\system32\dcache.bin
- 2001-08-18 12:00:00 7,680 ----a-w c:\windows\system32\dciman32.dll
+ 2004-08-04 05:56:44 8,704 ----a-w c:\windows\system32\dciman32.dll
- 2001-08-18 12:00:00 27,136 ----a-w c:\windows\system32\ddeshare.exe
+ 2004-08-04 05:56:50 30,208 ----a-w c:\windows\system32\ddeshare.exe
- 2004-07-09 08:27:28 292,864 ----a-w c:\windows\system32\ddraw.dll
+ 2004-08-04 05:56:44 266,240 ----a-w c:\windows\system32\ddraw.dll
- 2002-12-12 04:14:32 24,064 ----a-w c:\windows\system32\ddrawex.dll
+ 2004-08-04 05:56:44 27,136 ----a-w c:\windows\system32\ddrawex.dll
- 2001-08-18 12:00:00 109,568 ----a-w c:\windows\system32\defrag.exe
+ 2004-08-04 05:56:50 25,088 ----a-w c:\windows\system32\defrag.exe
- 2003-05-30 13:00:02 132,608 ----a-w c:\windows\system32\devenum.dll
+ 2004-08-04 05:56:44 59,904 ----a-w c:\windows\system32\devenum.dll
- 2001-08-18 12:00:00 263,680 ----a-w c:\windows\system32\devmgr.dll
+ 2004-08-04 05:56:44 282,624 ----a-w c:\windows\system32\devmgr.dll
- 2001-08-18 12:00:00 73,216 ----a-w c:\windows\system32\dfrgfat.exe
+ 2004-08-04 05:56:50 82,432 ----a-w c:\windows\system32\dfrgfat.exe
- 2001-08-18 12:00:00 85,504 ----a-w c:\windows\system32\dfrgntfs.exe
+ 2004-08-04 05:56:50 104,960 ----a-w c:\windows\system32\dfrgntfs.exe
- 2001-08-18 12:00:00 41,984 ----a-w c:\windows\system32\dfrgsnap.dll
+ 2004-08-04 05:56:44 38,912 ----a-w c:\windows\system32\dfrgsnap.dll
- 2001-08-18 12:00:00 124,928 ----a-w c:\windows\system32\dfrgui.dll
+ 2004-08-04 05:56:44 123,904 ----a-w c:\windows\system32\dfrgui.dll
- 2001-08-18 12:00:00 25,088 ----a-w c:\windows\system32\dfsshlex.dll
+ 2004-08-04 05:56:44 28,672 ----a-w c:\windows\system32\dfsshlex.dll
- 2001-08-18 12:00:00 103,424 ----a-w c:\windows\system32\dgnet.dll
+ 2004-08-04 05:56:44 111,104 ----a-w c:\windows\system32\dgnet.dll
- 2001-08-18 12:00:00 98,816 ----a-w c:\windows\system32\dhcpcsvc.dll
+ 2004-08-04 05:56:44 111,104 ----a-w c:\windows\system32\dhcpcsvc.dll
- 2001-08-18 12:00:00 79,360 ----a-w c:\windows\system32\diantz.exe
+ 2004-08-04 05:56:50 85,504 ----a-w c:\windows\system32\diantz.exe
- 2001-08-18 12:00:00 55,808 ----a-w c:\windows\system32\digest.dll
+ 2004-08-04 05:56:44 68,608 ----a-w c:\windows\system32\digest.dll
- 2002-08-29 07:40:00 648,704 ----a-w c:\windows\system32\dinput.dll
+ 2004-08-04 05:56:44 159,232 ----a-w c:\windows\system32\dinput.dll
- 2002-08-29 07:40:00 667,648 ----a-w c:\windows\system32\dinput8.dll
+ 2004-08-04 05:56:44 181,760 ----a-w c:\windows\system32\dinput8.dll
- 2001-08-18 12:00:00 145,920 ----a-w c:\windows\system32\diskpart.exe
+ 2004-08-04 05:56:50 163,840 ----a-w c:\windows\system32\diskpart.exe
- 2001-08-18 12:00:00 204,861 -c--a-w c:\windows\system32\dllcache\chtmbx.dll
+ 2004-08-04 03:31:52 97,792 -c--a-w c:\windows\system32\dllcache\chtmbx.dll
- 2001-08-18 12:00:00 131,134 -c--a-w c:\windows\system32\dllcache\chtskdic.dll
+ 2004-08-04 03:31:54 56,320 -c--a-w c:\windows\system32\dllcache\chtskdic.dll
- 2001-08-18 12:00:00 299,069 -c--a-w c:\windows\system32\dllcache\chtskf.dll
+ 2004-08-04 03:31:54 173,568 -c--a-w c:\windows\system32\dllcache\chtskf.dll
- 2001-08-18 12:00:00 344,127 -c--a-w c:\windows\system32\dllcache\cintime.dll
+ 2004-08-04 03:31:54 198,656 -c--a-w c:\windows\system32\dllcache\cintime.dll
- 2001-08-18 12:00:00 540,745 -c--a-w c:\windows\system32\dllcache\cintsetp.exe
+ 2004-08-04 03:31:56 480,256 -c--a-w c:\windows\system32\dllcache\cintsetp.exe
- 2001-08-18 12:00:00 61,492 -c--a-w c:\windows\system32\dllcache\cplexe.exe
+ 2004-08-04 03:31:40 57,399 -c--a-w c:\windows\system32\dllcache\cplexe.exe
- 2001-08-18 12:00:00 86,016 -c--a-w c:\windows\system32\dllcache\imekrcic.dll
+ 2004-08-04 04:04:38 106,496 -c--a-w c:\windows\system32\dllcache\imekrcic.dll
- 2001-08-18 12:00:00 80,384 -c--a-w c:\windows\system32\dllcache\imekrmbx.dll
+ 2004-08-04 04:04:34 86,016 -c--a-w c:\windows\system32\dllcache\imekrmbx.dll
- 2001-08-18 12:00:00 827,438 -c--a-w c:\windows\system32\dllcache\imjp81k.dll
+ 2004-08-04 03:31:50 811,064 -c--a-w c:\windows\system32\dllcache\imjp81k.dll
- 2001-08-18 12:00:00 356,398 -c--a-w c:\windows\system32\dllcache\imjpcic.dll
+ 2004-08-04 03:31:52 368,696 -c--a-w c:\windows\system32\dllcache\imjpcic.dll
- 2001-08-18 12:00:00 716,853 -c--a-w c:\windows\system32\dllcache\imjpcus.dll
+ 2004-08-04 03:31:52 716,856 -c--a-w c:\windows\system32\dllcache\imjpcus.dll
- 2001-08-18 12:00:00 81,973 -c--a-w c:\windows\system32\dllcache\imjpdct.dll
+ 2004-08-04 03:31:54 81,976 -c--a-w c:\windows\system32\dllcache\imjpdct.dll
- 2001-08-18 12:00:00 307,254 -c--a-w c:\windows\system32\dllcache\imjpdct.exe
+ 2004-08-04 03:31:54 307,257 -c--a-w c:\windows\system32\dllcache\imjpdct.exe
- 2001-08-18 12:00:00 155,702 -c--a-w c:\windows\system32\dllcache\imjpdsvr.exe
+ 2004-08-04 03:31:56 155,705 -c--a-w c:\windows\system32\dllcache\imjpdsvr.exe
- 2001-08-18 12:00:00 196,662 -c--a-w c:\windows\system32\dllcache\imjpinst.exe
+ 2004-08-04 03:31:58 196,665 -c--a-w c:\windows\system32\dllcache\imjpinst.exe
- 2001-08-18 12:00:00 208,949 -c--a-w c:\windows\system32\dllcache\imjpmig.exe
+ 2004-08-04 03:32:00 208,952 -c--a-w c:\windows\system32\dllcache\imjpmig.exe
- 2001-08-18 12:00:00 233,524 -c--a-w c:\windows\system32\dllcache\imjprw.exe
+ 2004-08-04 03:32:12 233,527 -c--a-w c:\windows\system32\dllcache\imjprw.exe
- 2001-08-18 12:00:00 262,197 -c--a-w c:\windows\system32\dllcache\imjputy.exe
+ 2004-08-04 03:32:16 262,200 -c--a-w c:\windows\system32\dllcache\imjputy.exe
- 2001-08-18 12:00:00 274,486 -c--a-w c:\windows\system32\dllcache\imjputyc.dll
+ 2004-08-04 03:32:16 274,489 -c--a-w c:\windows\system32\dllcache\imjputyc.dll
- 2001-08-18 12:00:00 102,452 -c--a-w c:\windows\system32\dllcache\imlang.dll
+ 2004-08-04 03:32:28 102,456 -c--a-w c:\windows\system32\dllcache\imlang.dll
- 2001-08-18 12:00:00 77,824 -c--a-w c:\windows\system32\dllcache\imscinst.exe
+ 2004-08-04 03:31:50 59,392 -c--a-w c:\windows\system32\dllcache\imscinst.exe
- 2001-08-18 12:00:00 32,836 -c--a-w c:\windows\system32\dllcache\padrs404.dll
+ 2004-08-04 03:32:12 15,872 -c--a-w c:\windows\system32\dllcache\padrs404.dll
- 2001-08-18 12:00:00 32,836 -c--a-w c:\windows\system32\dllcache\padrs804.dll
+ 2004-08-04 03:31:50 15,360 -c--a-w c:\windows\system32\dllcache\padrs804.dll
- 2001-08-18 12:00:00 294,975 -c--a-w c:\windows\system32\dllcache\pintlcsa.dll
+ 2004-08-04 03:31:50 175,104 -c--a-w c:\windows\system32\dllcache\pintlcsa.dll
- 2001-08-18 12:00:00 90,175 -c--a-w c:\windows\system32\dllcache\pintlcsd.dll
+ 2004-08-04 03:31:50 53,760 -c--a-w c:\windows\system32\dllcache\pintlcsd.dll
- 2001-08-18 12:00:00 131,126 -c--a-w c:\windows\system32\dllcache\pintlphr.exe
+ 2004-08-04 03:31:50 70,144 -c--a-w c:\windows\system32\dllcache\pintlphr.exe
- 2001-08-18 12:00:00 114,762 -c--a-w c:\windows\system32\dllcache\pmigrate.dll
+ 2004-08-04 03:31:50 67,584 -c--a-w c:\windows\system32\dllcache\pmigrate.dll
- 2001-08-18 12:00:00 143,421 -c--a-w c:\windows\system32\dllcache\tintlphr.exe
+ 2004-08-04 03:32:16 44,032 -c--a-w c:\windows\system32\dllcache\tintlphr.exe
- 2001-08-18 12:00:00 737,360 -c--a-w c:\windows\system32\dllcache\tintsetp.exe
+ 2004-08-04 03:32:16 455,168 -c--a-w c:\windows\system32\dllcache\tintsetp.exe
- 2001-08-18 12:00:00 90,172 -c--a-w c:\windows\system32\dllcache\tmigrate.dll
+ 2004-08-04 03:32:14 10,240 -c--a-w c:\windows\system32\dllcache\tmigrate.dll
- 2001-08-18 12:00:00 73,216 -c--a-w c:\windows\system32\dllcache\uniime.dll
+ 2004-08-04 04:04:12 76,288 -c--a-w c:\windows\system32\dllcache\uniime.dll
- 2001-08-18 12:00:00 426,038 -c--a-w c:\windows\system32\dllcache\voicepad.dll
+ 2004-08-04 03:32:36 426,041 -c--a-w c:\windows\system32\dllcache\voicepad.dll
- 2001-08-18 12:00:00 86,070 -c--a-w c:\windows\system32\dllcache\voicesub.dll
+ 2004-08-04 03:32:36 86,073 -c--a-w c:\windows\system32\dllcache\voicesub.dll
- 2001-08-18 12:00:00 4,608 ----a-w c:\windows\system32\dllhost.exe
+ 2004-08-04 05:56:50 5,120 ----a-w c:\windows\system32\dllhost.exe
- 2001-08-18 12:00:00 204,800 ----a-w c:\windows\system32\dmadmin.exe
+ 2004-08-04 05:56:50 224,768 ----a-w c:\windows\system32\dmadmin.exe
- 2002-12-12 04:14:32 27,136 ----a-w c:\windows\system32\dmband.dll
+ 2004-08-04 05:56:44 28,672 ----a-w c:\windows\system32\dmband.dll
- 2002-12-12 04:14:32 58,368 ----a-w c:\windows\system32\dmcompos.dll
+ 2004-08-04 05:56:44 61,440 ----a-w c:\windows\system32\dmcompos.dll
- 2001-08-18 12:00:00 184,320 ----a-w c:\windows\system32\dmdskmgr.dll
+ 2004-08-04 05:56:44 200,704 ----a-w c:\windows\system32\dmdskmgr.dll
- 2004-07-09 08:27:28 181,248 ----a-w c:\windows\system32\dmime.dll
+ 2004-08-04 05:56:44 181,248 ----a-w c:\windows\system32\dmime.dll
- 2002-12-12 04:14:32 33,280 ----a-w c:\windows\system32\dmloader.dll
+ 2004-08-04 05:56:44 35,840 ----a-w c:\windows\system32\dmloader.dll
- 2001-08-18 12:00:00 14,336 ----a-w c:\windows\system32\dmremote.exe
+ 2004-08-04 05:56:50 15,872 ----a-w c:\windows\system32\dmremote.exe
- 2002-12-12 04:14:32 76,800 ----a-w c:\windows\system32\dmscript.dll
+ 2004-08-04 05:56:44 82,432 ----a-w c:\windows\system32\dmscript.dll
- 2001-08-18 12:00:00 21,504 ----a-w c:\windows\system32\dmserver.dll
+ 2004-08-04 05:56:44 23,552 ----a-w c:\windows\system32\dmserver.dll
- 2002-12-12 04:14:32 98,816 ----a-w c:\windows\system32\dmstyle.dll
+ 2004-08-04 05:56:44 105,984 ----a-w c:\windows\system32\dmstyle.dll
- 2002-12-12 04:14:32 100,864 ----a-w c:\windows\system32\dmsynth.dll
+ 2004-08-04 05:56:44 103,424 ----a-w c:\windows\system32\dmsynth.dll
- 2004-07-09 08:27:28 122,880 ----a-w c:\windows\system32\dmusic.dll
+ 2004-08-04 05:56:44 104,448 ----a-w c:\windows\system32\dmusic.dll
- 2001-08-18 12:00:00 50,688 ----a-w c:\windows\system32\dmutil.dll
+ 2004-08-04 05:56:44 52,224 ----a-w c:\windows\system32\dmutil.dll
- 2001-08-18 12:00:00 139,264 ----a-w c:\windows\system32\dnsapi.dll
+ 2004-08-04 05:56:44 148,480 ----a-w c:\windows\system32\dnsapi.dll
- 2001-08-18 12:00:00 44,032 ----a-w c:\windows\system32\dnsrslvr.dll
+ 2004-08-04 05:56:44 45,568 ----a-w c:\windows\system32\dnsrslvr.dll
- 2001-08-18 12:00:00 45,056 ----a-w c:\windows\system32\docprop2.dll
+ 2004-08-04 05:56:44 48,128 ----a-w c:\windows\system32\docprop2.dll
- 2001-08-18 12:00:00 53,840 ----a-w c:\windows\system32\dosx.exe
+ 2004-08-04 03:51:22 53,840 ----a-w c:\windows\system32\dosx.exe
- 2001-08-18 12:00:00 116,736 ----a-w c:\windows\system32\dpcdll.dll
+ 2004-08-04 04:13:54 97,280 ----a-w c:\windows\system32\dpcdll.dll
- 2002-12-12 04:14:32 28,160 ----a-w c:\windows\system32\dplaysvr.exe
+ 2004-08-04 05:56:50 30,208 ----a-w c:\windows\system32\dplaysvr.exe
- 2004-07-09 08:27:28 230,400 ----a-w c:\windows\system32\dplayx.dll
+ 2004-08-04 05:56:44 229,888 ----a-w c:\windows\system32\dplayx.dll
- 2002-12-12 04:14:32 77,824 ----a-w c:\windows\system32\dpmodemx.dll
+ 2004-08-04 05:56:44 23,552 ----a-w c:\windows\system32\dpmodemx.dll
- 2002-12-12 04:14:32 3,072 ----a-w c:\windows\system32\dpnaddr.dll
+ 2004-08-04 05:56:04 3,584 ----a-w c:\windows\system32\dpnaddr.dll
- 2002-12-12 04:14:32 723,968 ----a-w c:\windows\system32\dpnet.dll
+ 2004-08-04 05:56:44 375,296 ----a-w c:\windows\system32\dpnet.dll
- 2003-03-24 13:00:02 32,768 ----a-w c:\windows\system32\dpnhpast.dll
+ 2004-08-04 05:56:44 35,328 ----a-w c:\windows\system32\dpnhpast.dll
- 2003-03-24 13:00:02 68,096 ----a-w c:\windows\system32\dpnhupnp.dll
+ 2004-08-04 05:56:44 60,928 ----a-w c:\windows\system32\dpnhupnp.dll
- 2002-12-12 04:14:32 3,072 ----a-w c:\windows\system32\dpnlobby.dll
+ 2004-08-04 05:56:04 3,584 ----a-w c:\windows\system32\dpnlobby.dll
- 2002-12-12 04:14:32 16,896 ----a-w c:\windows\system32\dpnsvr.exe
+ 2004-08-04 05:56:50 18,432 ----a-w c:\windows\system32\dpnsvr.exe
- 2002-12-12 04:14:32 19,968 ----a-w c:\windows\system32\dpvacm.dll
+ 2004-08-04 05:56:44 21,504 ----a-w c:\windows\system32\dpvacm.dll
- 2002-12-12 04:14:32 381,952 ----a-w c:\windows\system32\dpvoice.dll
+ 2004-08-04 05:56:44 212,480 ----a-w c:\windows\system32\dpvoice.dll
- 2002-12-12 04:14:32 80,896 ----a-w c:\windows\system32\dpvsetup.exe
+ 2004-08-04 05:56:50 83,456 ----a-w c:\windows\system32\dpvsetup.exe
- 2002-12-12 04:14:32 112,128 ----a-w c:\windows\system32\dpvvox.dll
+ 2004-08-04 05:56:44 116,736 ----a-w c:\windows\system32\dpvvox.dll
- 2004-07-09 08:27:28 79,360 ----a-w c:\windows\system32\dpwsockx.dll
+ 2004-08-04 05:56:44 57,344 ----a-w c:\windows\system32\dpwsockx.dll
- 2001-08-18 12:00:00 179,200 ----a-w c:\windows\system32\drivers\acpi.sys
+ 2004-08-04 04:07:38 187,776 ----a-w c:\windows\system32\drivers\acpi.sys
+ 2004-08-04 05:56:42 4,255 ------w c:\windows\system32\drivers\adv01nt5.dll
+ 2004-08-04 05:56:42 3,967 ------w c:\windows\system32\drivers\adv02nt5.dll
+ 2004-08-04 05:56:42 3,615 ------w c:\windows\system32\drivers\adv05nt5.dll
+ 2004-08-04 05:56:42 3,647 ------w c:\windows\system32\drivers\adv07nt5.dll
+ 2004-08-04 05:56:42 3,135 ------w c:\windows\system32\drivers\adv08nt5.dll
+ 2004-08-04 05:56:42 3,711 ------w c:\windows\system32\drivers\adv09nt5.dll
+ 2004-08-04 05:56:42 3,775 ------w c:\windows\system32\drivers\adv11nt5.dll
- 2001-07-23 21:25:14 122,472 ----a-w c:\windows\system32\drivers\aec.sys
+ 2004-08-04 03:39:38 142,464 ----a-w c:\windows\system32\drivers\aec.sys
- 2001-08-18 12:00:00 130,688 ----a-w c:\windows\system32\drivers\afd.sys
+ 2004-08-04 04:14:16 138,496 ----a-w c:\windows\system32\drivers\afd.sys
+ 2004-08-04 04:07:42 42,368 ------w c:\windows\system32\drivers\agp440.sys
+ 2004-08-04 04:07:44 44,928 ------w c:\windows\system32\drivers\agpcpq.sys
+ 2004-08-04 04:07:42 42,752 ------w c:\windows\system32\drivers\alim1541.sys
+ 2004-08-04 04:07:44 43,008 ------w c:\windows\system32\drivers\amdagp.sys
- 2001-08-18 12:00:00 32,000 ----a-w c:\windows\system32\drivers\amdk6.sys
+ 2004-08-04 03:59:20 36,992 ----a-w c:\windows\system32\drivers\amdk6.sys
+ 2004-08-04 03:59:22 37,376 ------w c:\windows\system32\drivers\amdk7.sys
- 2001-08-18 12:00:00 54,016 ----a-w c:\windows\system32\drivers\arp1394.sys
+ 2004-08-04 03:58:30 60,800 ----a-w c:\windows\system32\drivers\arp1394.sys
- 2001-08-18 12:00:00 13,568 ----a-w c:\windows\system32\drivers\asyncmac.sys
+ 2004-08-04 04:05:04 14,336 ----a-w c:\windows\system32\drivers\asyncmac.sys
- 2001-08-17 17:51:56 86,656 ----a-w c:\windows\system32\drivers\atapi.sys
+ 2004-08-04 03:59:44 95,360 ----a-w c:\windows\system32\drivers\atapi.sys
+ 2004-08-04 03:29:30 56,623 ------w c:\windows\system32\drivers\ati1btxx.sys
+ 2004-08-04 03:29:30 11,615 ------w c:\windows\system32\drivers\ati1mdxx.sys
+ 2004-08-04 03:29:30 12,047 ------w c:\windows\system32\drivers\ati1pdxx.sys
+ 2004-08-04 03:29:32 30,671 ------w c:\windows\system32\drivers\ati1raxx.sys
+ 2004-08-04 03:29:32 63,663 ------w c:\windows\system32\drivers\ati1rvxx.sys
+ 2004-08-04 03:29:32 26,367 ------w c:\windows\system32\drivers\ati1snxx.sys
+ 2004-08-04 03:29:32 21,343 ------w c:\windows\system32\drivers\ati1ttxx.sys
+ 2004-08-04 03:29:32 36,463 ------w c:\windows\system32\drivers\ati1tuxx.sys
+ 2004-08-04 03:29:32 29,455 ------w c:\windows\system32\drivers\ati1xbxx.sys
+ 2004-08-04 03:29:32 34,735 ------w c:\windows\system32\drivers\ati1xsxx.sys
+ 2004-08-04 03:29:28 327,040 ------w c:\windows\system32\drivers\ati2mtaa.sys
+ 2004-08-04 03:29:28 701,440 ------w c:\windows\system32\drivers\ati2mtag.sys
+ 2004-08-04 03:29:28 57,856 ------w c:\windows\system32\drivers\atinbtxx.sys
+ 2004-08-04 03:29:30 13,824 ------w c:\windows\system32\drivers\atinmdxx.sys
+ 2004-08-04 03:29:30 14,336 ------w c:\windows\system32\drivers\atinpdxx.sys
+ 2004-08-04 03:29:30 52,224 ------w c:\windows\system32\drivers\atinraxx.sys
+ 2004-08-04 03:29:32 104,960 ------w c:\windows\system32\drivers\atinrvxx.sys
+ 2004-08-04 03:29:32 28,672 ------w c:\windows\system32\drivers\atinsnxx.sys
+ 2004-08-04 03:29:32 13,824 ------w c:\windows\system32\drivers\atinttxx.sys
+ 2004-08-04 03:29:32 73,216 ------w c:\windows\system32\drivers\atintuxx.sys
+ 2004-08-04 03:29:32 31,744 ------w c:\windows\system32\drivers\atinxbxx.sys
+ 2004-08-04 03:29:32 63,488 ------w c:\windows\system32\drivers\atinxsxx.sys
- 2001-08-18 12:00:00 57,216 ----a-w c:\windows\system32\drivers\atmarpc.sys
+ 2004-08-04 03:58:32 59,904 ----a-w c:\windows\system32\drivers\atmarpc.sys
- 2001-08-18 12:00:00 53,888 ----a-w c:\windows\system32\drivers\atmlane.sys
+ 2004-08-04 03:58:36 55,936 ----a-w c:\windows\system32\drivers\atmlane.sys
+ 2004-08-04 05:56:42 21,183 ------w c:\windows\system32\drivers\atv01nt5.dll
+ 2004-08-04 05:56:42 11,359 ------w c:\windows\system32\drivers\atv02nt5.dll
+ 2004-08-04 05:56:42 25,471 ------w c:\windows\system32\drivers\atv04nt5.dll
+ 2004-08-04 05:56:42 14,143 ------w c:\windows\system32\drivers\atv06nt5.dll
+ 2004-08-04 05:56:42 17,279 ------w c:\windows\system32\drivers\atv10nt5.dll
- 2004-07-09 08:26:38 11,392 ----a-w c:\windows\system32\drivers\bdasup.sys
+ 2004-08-04 04:10:14 11,776 ----a-w c:\windows\system32\drivers\bdasup.sys
- 2001-08-18 12:00:00 53,376 ----a-w c:\windows\system32\drivers\bridge.sys
+ 2004-08-04 03:59:58 71,552 ----a-w c:\windows\system32\drivers\bridge.sys
+ 2004-08-04 04:10:40 17,024 ------w c:\windows\system32\drivers\bthenum.sys
+ 2004-08-04 04:10:40 38,016 ------w c:\windows\system32\drivers\bthmodem.sys
+ 2004-08-04 03:58:40 100,992 ------w c:\windows\system32\drivers\bthpan.sys
+ 2004-08-04 04:10:38 274,304 ------w c:\windows\system32\drivers\bthport.sys
+ 2004-08-04 04:10:38 35,456 ------w c:\windows\system32\drivers\bthprint.sys
+ 2004-08-04 04:10:36 18,944 ------w c:\windows\system32\drivers\bthusb.sys
- 2004-07-09 08:26:38 16,384 ----a-w c:\windows\system32\drivers\ccdecode.sys
+ 2004-08-04 04:10:18 17,024 ----a-w c:\windows\system32\drivers\ccdecode.sys
- 2001-08-18 12:00:00 62,208 ----a-w c:\windows\system32\drivers\cdfs.sys
+ 2004-08-04 04:14:12 63,744 ----a-w c:\windows\system32\drivers\cdfs.sys
- 2001-08-18 12:00:00 47,488 ----a-w c:\windows\system32\drivers\cdrom.sys
+ 2004-08-04 03:59:54 49,536 ----a-w c:\windows\system32\drivers\cdrom.sys
+ 2004-08-04 05:56:42 15,423 ------w c:\windows\system32\drivers\ch7xxnt5.dll
- 2001-08-18 12:00:00 44,928 ----a-w c:\windows\system32\drivers\classpnp.sys
+ 2004-08-04 04:14:28 49,664 ----a-w c:\windows\system32\drivers\classpnp.sys
- 2001-08-18 12:00:00 31,360 ----a-w c:\windows\system32\drivers\crusoe.sys
+ 2004-08-04 03:59:22 36,480 ----a-w c:\windows\system32\drivers\crusoe.sys
- 2001-08-18 12:00:00 33,664 ----a-w c:\windows\system32\drivers\disk.sys
+ 2004-08-04 03:59:56 36,352 ----a-w c:\windows\system32\drivers\disk.sys
- 2001-08-18 12:00:00 13,184 ----a-w c:\windows\system32\drivers\diskdump.sys
+ 2004-08-04 03:59:54 14,208 ----a-w c:\windows\system32\drivers\diskdump.sys
- 2001-08-18 12:00:00 780,928 ----a-w c:\windows\system32\drivers\dmboot.sys
+ 2004-08-04 04:07:18 799,744 ----a-w c:\windows\system32\drivers\dmboot.sys
- 2001-08-18 12:00:00 146,304 ----a-w c:\windows\system32\drivers\dmio.sys
+ 2004-08-04 04:07:18 153,344 ----a-w c:\windows\system32\drivers\dmio.sys
- 2001-08-17 17:59:58 50,048 ----a-w c:\windows\system32\drivers\DMusic.sys
+ 2004-08-04 04:07:40 52,864 ----a-w c:\windows\system32\drivers\dmusic.sys
- 2001-08-17 18:01:20 57,344 ----a-w c:\windows\system32\drivers\drmk.sys
+ 2004-08-04 04:08:00 60,288 ----a-w c:\windows\system32\drivers\drmk.sys
- 2001-08-17 18:01:16 2,816 ----a-w c:\windows\system32\drivers\drmkaud.sys
+ 2004-08-04 04:07:58 2,944 ----a-w c:\windows\system32\drivers\drmkaud.sys
- 2001-08-18 12:00:00 68,224 ----a-w c:\windows\system32\drivers\dxg.sys
+ 2004-08-04 04:00:56 71,040 ----a-w c:\windows\system32\drivers\dxg.sys
- 2001-08-18 12:00:00 144,768 ----a-w c:\windows\system32\drivers\fastfat.sys
+ 2004-08-04 04:14:18 143,360 ----a-w c:\windows\system32\drivers\fastfat.sys
- 2001-08-18 12:00:00 26,240 ----a-w c:\windows\system32\drivers\fdc.sys
+ 2004-08-04 03:59:28 27,392 ----a-w c:\windows\system32\drivers\fdc.sys
- 2001-08-18 12:00:00 19,712 ----a-w c:\windows\system32\drivers\flpydisk.sys
+ 2004-08-04 03:59:28 20,480 ----a-w c:\windows\system32\drivers\flpydisk.sys
+ 2004-08-04 04:01:20 124,800 ------w c:\windows\system32\drivers\fltmgr.sys
+ 2004-08-04 04:07:44 46,464 ------w c:\windows\system32\drivers\gagp30kx.sys
+ 2004-08-04 04:10:38 25,600 ------w c:\windows\system32\drivers\hidbth.sys
- 2001-08-18 12:00:00 33,152 ----a-w c:\windows\system32\drivers\hidclass.sys
+ 2004-08-04 04:08:20 36,224 ----a-w c:\windows\system32\drivers\hidclass.sys
+ 2004-08-04 04:08:20 15,104 ------w c:\windows\system32\drivers\hidir.sys
- 2001-08-18 12:00:00 23,680 ----a-w c:\windows\system32\drivers\hidparse.sys
+ 2004-08-04 04:08:18 24,960 ----a-w c:\windows\system32\drivers\hidparse.sys
+ 2004-08-04 03:41:48 220,032 ------w c:\windows\system32\drivers\hsfbs2s2.sys
+ 2004-08-04 03:41:50 685,056 ------w c:\windows\system32\drivers\hsfcxts2.sys
+ 2004-08-04 03:41:56 1,041,536 ------w c:\windows\system32\drivers\hsfdpsp2.sys
+ 2004-08-04 04:00:14 263,040 ------w c:\windows\system32\drivers\http.sys
- 2001-08-18 12:00:00 50,944 ----a-w c:\windows\system32\drivers\i8042prt.sys
+ 2004-08-04 04:14:38 52,736 ----a-w c:\windows\system32\drivers\i8042prt.sys
- 2001-08-18 12:00:00 39,296 ----a-w c:\windows\system32\drivers\imapi.sys
+ 2004-08-04 04:00:16 41,856 ----a-w c:\windows\system32\drivers\imapi.sys
+ 2004-08-04 03:59:20 36,096 ------w c:\windows\system32\drivers\intelppm.sys
+ 2004-08-04 04:00:08 29,056 ------w c:\windows\system32\drivers\ip6fw.sys
- 2001-08-18 12:00:00 19,584 ----a-w c:\windows\system32\drivers\ipinip.sys
+ 2004-08-04 04:04:46 20,992 ----a-w c:\windows\system32\drivers\ipinip.sys
- 2001-08-18 12:00:00 76,288 ----a-w c:\windows\system32\drivers\ipnat.sys
+ 2004-08-04 04:04:52 134,912 ----a-w c:\windows\system32\drivers\ipnat.sys
- 2001-08-18 12:00:00 56,064 ----a-w c:\windows\system32\drivers\ipsec.sys
+ 2004-08-04 04:14:30 74,752 ----a-w c:\windows\system32\drivers\ipsec.sys
- 2001-08-18 12:00:00 10,496 ----a-w c:\windows\system32\drivers\irenum.sys
+ 2004-08-04 04:00:48 11,264 ----a-w c:\windows\system32\drivers\irenum.sys
- 2001-08-18 12:00:00 23,424 ----a-w c:\windows\system32\drivers\kbdclass.sys
+ 2004-08-04 03:58:34 24,576 ----a-w c:\windows\system32\drivers\kbdclass.sys
- 2001-08-17 18:00:54 159,232 ----a-w c:\windows\system32\drivers\kmixer.sys
+ 2004-08-04 04:07:50 171,776 ----a-w c:\windows\system32\drivers\kmixer.sys
- 2002-12-12 04:14:32 130,304 ----a-w c:\windows\system32\drivers\ks.sys
+ 2004-08-04 04:15:22 140,928 ----a-w c:\windows\system32\drivers\ks.sys
- 2001-08-18 12:00:00 79,744 ----a-w c:\windows\system32\drivers\ksecdd.sys
+ 2004-08-04 03:59:48 92,032 ----a-w c:\windows\system32\drivers\ksecdd.sys
+ 2004-08-04 03:41:56 11,868 ------w c:\windows\system32\drivers\mdmxsdk.sys
- 2001-08-18 12:00:00 62,208 ----a-w c:\windows\system32\drivers\mf.sys
+ 2004-08-04 04:07:46 63,744 ----a-w c:\windows\system32\drivers\mf.sys
- 2001-08-18 12:00:00 28,800 ----a-w c:\windows\system32\drivers\modem.sys
+ 2004-08-04 04:08:06 30,080 ----a-w c:\windows\system32\drivers\modem.sys
- 2001-08-18 12:00:00 22,016 ----a-w c:\windows\system32\drivers\mouclass.sys
+ 2004-08-04 03:58:34 23,040 ----a-w c:\windows\system32\drivers\mouclass.sys
- 2001-08-18 12:00:00 37,504 ----a-w c:\windows\system32\drivers\mountmgr.sys
+ 2004-08-04 03:58:32 42,240 ----a-w c:\windows\system32\drivers\mountmgr.sys
- 2004-07-09 08:26:38 15,104 ----a-w c:\windows\system32\drivers\mpe.sys
+ 2004-08-04 04:10:14 15,360 ----a-w c:\windows\system32\drivers\mpe.sys
- 2001-08-18 12:00:00 172,672 ----a-w c:\windows\system32\drivers\mrxdav.sys
+ 2004-08-04 04:00:58 181,248 ----a-w c:\windows\system32\drivers\mrxdav.sys
- 2002-11-18 15:17:00 391,936 ----a-w c:\windows\system32\drivers\mrxsmb.sys
+ 2004-08-04 04:15:18 451,456 ----a-w c:\windows\system32\drivers\mrxsmb.sys
- 2004-07-09 08:26:38 52,096 ----a-w c:\windows\system32\drivers\msdv.sys
+ 2004-08-04 04:10:00 51,328 ----a-w c:\windows\system32\drivers\msdv.sys
- 2001-08-18 12:00:00 18,048 ----a-w c:\windows\system32\drivers\msfs.sys
+ 2004-08-04 04:00:42 19,072 ----a-w c:\windows\system32\drivers\msfs.sys
- 2001-08-18 12:00:00 33,792 ----a-w c:\windows\system32\drivers\msgpc.sys
+ 2004-08-04 04:04:14 35,072 ----a-w c:\windows\system32\drivers\msgpc.sys
- 2002-12-12 04:14:32 7,424 ----a-w c:\windows\system32\drivers\mskssrv.sys
+ 2004-08-04 03:58:42 7,552 ----a-w c:\windows\system32\drivers\mskssrv.sys
- 2002-12-12 04:14:32 5,248 ----a-w c:\windows\system32\drivers\mspclock.sys
+ 2004-08-04 03:58:40 5,376 ----a-w c:\windows\system32\drivers\mspclock.sys
- 2001-08-23 09:00:00 4,608 ----a-w c:\windows\system32\drivers\mspqm.sys
+ 2004-08-04 03:58:42 4,992 ----a-w c:\windows\system32\drivers\mspqm.sys
+ 2004-08-04 04:07:48 15,488 ------w c:\windows\system32\drivers\mssmbios.sys
- 2002-12-12 04:14:32 5,504 ----a-w c:\windows\system32\drivers\mstee.sys
+ 2004-08-04 03:58:40 5,504 ----a-w c:\windows\system32\drivers\mstee.sys
+ 2004-08-04 03:41:40 126,686 ------w c:\windows\system32\drivers\mtlmnt5.sys
+ 2004-08-04 03:41:38 1,309,184 ------w c:\windows\system32\drivers\mtlstrm.sys
+ 2004-08-04 03:29:38 452,736 ------w c:\windows\system32\drivers\mtxparhm.sys
- 2001-08-18 12:00:00 103,936 ----a-w c:\windows\system32\drivers\mup.sys
+ 2004-08-04 04:15:22 107,904 ----a-w c:\windows\system32\drivers\mup.sys
+ 2004-08-04 04:04:52 12,672 ------w c:\windows\system32\drivers\mutohpen.sys
- 2004-07-09 08:26:38 83,968 ----a-w c:\windows\system32\drivers\nabtsfec.sys
+ 2004-08-04 04:10:30 85,376 ----a-w c:\windows\system32\drivers\nabtsfec.sys
- 2001-08-18 12:00:00 161,536 ----a-w c:\windows\system32\drivers\ndis.sys
+ 2004-08-04 04:14:30 182,912 ----a-w c:\windows\system32\drivers\ndis.sys
- 2004-07-09 08:26:38 10,112 ----a-w c:\windows\system32\drivers\ndisip.sys
+ 2004-08-04 04:10:14 10,880 ----a-w c:\windows\system32\drivers\ndisip.sys
- 2001-08-18 12:00:00 12,160 ----a-w c:\windows\system32\drivers\ndisuio.sys
+ 2004-08-04 04:03:14 12,928 ----a-w c:\windows\system32\drivers\ndisuio.sys
- 2001-08-18 12:00:00 88,320 ----a-w c:\windows\system32\drivers\ndiswan.sys
+ 2004-08-04 04:14:32 91,776 ----a-w c:\windows\system32\drivers\ndiswan.sys
- 2001-08-18 12:00:00 33,152 ----a-w c:\windows\system32\drivers\netbios.sys
+ 2004-08-04 04:03:22 34,560 ----a-w c:\windows\system32\drivers\netbios.sys
- 2001-08-18 12:00:00 150,272 ----a-w c:\windows\system32\drivers\netbt.sys
+ 2004-08-04 04:14:38 162,816 ----a-w c:\windows\system32\drivers\netbt.sys
- 2001-08-18 12:00:00 56,960 ----a-w c:\windows\system32\drivers\nic1394.sys
+ 2004-08-04 03:58:30 61,824 ----a-w c:\windows\system32\drivers\nic1394.sys
- 2001-08-18 12:00:00 37,760 ----a-w c:\windows\system32\drivers\nmnt.sys
+ 2004-08-04 03:59:52 40,320 ----a-w c:\windows\system32\drivers\nmnt.sys
- 2001-08-18 12:00:00 29,568 ----a-w c:\windows\system32\drivers\npfs.sys
+ 2004-08-04 04:00:44 30,848 ----a-w c:\windows\system32\drivers\npfs.sys
- 2001-08-18 12:00:00 516,480 ----a-w c:\windows\system32\drivers\ntfs.sys
+ 2004-08-04 04:15:10 574,592 ----a-w c:\windows\system32\drivers\ntfs.sys
+ 2004-08-04 03:41:40 180,360 ------w c:\windows\system32\drivers\ntmtlfax.sys
+ 2004-08-04 03:29:56 1,897,408 ------w c:\windows\system32\drivers\nv4_mini.sys
- 2001-08-18 12:00:00 84,864 ----a-w c:\windows\system32\drivers\nwlnkipx.sys
+ 2004-08-04 04:03:36 88,448 ----a-w c:\windows\system32\drivers\nwlnkipx.sys
- 2001-08-18 12:00:00 34,816 ----a-w c:\windows\system32\drivers\p3.sys
+ 2004-08-04 03:59:20 42,496 ----a-w c:\windows\system32\drivers\p3.sys
- 2001-08-18 12:00:00 76,160 ----a-w c:\windows\system32\drivers\parport.sys
+ 2004-08-04 03:59:08 80,128 ----a-w c:\windows\system32\drivers\parport.sys
- 2001-08-17 17:58:06 62,464 ----a-w c:\windows\system32\drivers\pci.sys
+ 2004-08-04 04:07:48 68,224 ----a-w c:\windows\system32\drivers\pci.sys
- 2001-08-17 17:51:50 23,680 ----a-w c:\windows\system32\drivers\pciidex.sys
+ 2004-08-04 03:59:42 25,088 ----a-w c:\windows\system32\drivers\pciidex.sys
- 2001-08-18 12:00:00 116,352 ----a-w c:\windows\system32\drivers\pcmcia.sys
+ 2004-08-04 04:07:48 119,936 ----a-w c:\windows\system32\drivers\pcmcia.sys
- 2001-08-18 02:24:38 135,040 ----a-w c:\windows\system32\drivers\portcls.sys
+ 2004-08-04 04:15:50 145,792 ----a-w c:\windows\system32\drivers\portcls.sys
- 2001-08-18 12:00:00 30,592 ----a-w c:\windows\system32\drivers\processr.sys
+ 2004-08-04 03:59:18 35,328 ----a-w c:\windows\system32\drivers\processr.sys
- 2001-08-18 12:00:00 65,920 ----a-w c:\windows\system32\drivers\psched.sys
+ 2004-08-04 04:04:20 69,120 ----a-w c:\windows\system32\drivers\psched.sys
- 2001-08-18 12:00:00 48,640 ----a-w c:\windows\system32\drivers\rasl2tp.sys
+ 2004-08-04 04:14:24 51,328 ----a-w c:\windows\system32\drivers\rasl2tp.sys
- 2001-08-18 12:00:00 38,912 ----a-w c:\windows\system32\drivers\raspppoe.sys
+ 2004-08-04 04:05:08 41,472 ----a-w c:\windows\system32\drivers\raspppoe.sys
- 2002-10-01 22:43:52 46,208 ----a-w c:\windows\system32\drivers\raspptp.sys
+ 2004-08-04 04:14:28 48,384 ----a-w c:\windows\system32\drivers\raspptp.sys
- 2001-08-18 12:00:00 163,840 ----a-w c:\windows\system32\drivers\rdbss.sys
+ 2004-08-04 04:20:08 176,512 ----a-w c:\windows\system32\drivers\rdbss.sys
- 2001-08-17 17:50:48 181,632 ----a-w c:\windows\system32\drivers\rdpdr.sys
+ 2004-08-04 04:01:16 196,864 ----a-w c:\windows\system32\drivers\rdpdr.sys
- 2001-08-18 12:00:00 107,912 ----a-w c:\windows\system32\drivers\rdpwd.sys
+ 2004-08-04 06:01:10 139,400 ----a-w c:\windows\system32\drivers\rdpwd.sys
+ 2004-08-04 03:41:40 13,776 ------w c:\windows\system32\drivers\recagent.sys
- 2001-08-17 13:51:42 55,808 ----a-w c:\windows\system32\drivers\redbook.sys
+ 2004-08-04 03:59:38 57,472 ----a-w c:\windows\system32\drivers\redbook.sys
+ 2004-08-04 04:10:40 59,648 ------w c:\windows\system32\drivers\rfcomm.sys
- 2001-08-18 12:00:00 27,648 ----a-w c:\windows\system32\drivers\rndismp.sys
+ 2004-08-04 04:04:32 30,080 ----a-w c:\windows\system32\drivers\rndismp.sys
+ 2004-08-04 04:04:32 30,080 ------w c:\windows\system32\drivers\rndismpx.sys
- 2001-08-17 12:12:42 23,070 ----a-w c:\windows\system32\drivers\RTL8139.sys
+ 2004-08-04 03:31:34 20,992 ----a-w c:\windows\system32\drivers\rtl8139.sys
+ 2004-08-04 03:29:52 166,912 ------w c:\windows\system32\drivers\s3gnbm.sys
- 2001-08-18 12:00:00 89,984 ----a-w c:\windows\system32\drivers\scsiport.sys
+ 2004-08-04 03:59:42 96,256 ----a-w c:\windows\system32\drivers\scsiport.sys
+ 2004-08-04 04:07:48 67,584 ------w c:\windows\system32\drivers\sdbus.sys
- 2001-08-18 12:00:00 14,976 ----a-w c:\windows\system32\drivers\serenum.sys
+ 2004-08-04 03:59:08 15,488 ----a-w c:\windows\system32\drivers\serenum.sys
- 2001-08-18 12:00:00 62,464 ----a-w c:\windows\system32\drivers\serial.sys
+ 2004-08-04 04:15:54 64,896 ----a-w c:\windows\system32\drivers\serial.sys
+ 2004-08-04 03:59:56 11,136 ------w c:\windows\system32\drivers\sffdisk.sys
+ 2004-08-04 03:59:56 10,240 ------w c:\windows\system32\drivers\sffp_sd.sys
- 2001-08-18 12:00:00 10,496 ----a-w c:\windows\system32\drivers\sfloppy.sys
+ 2004-08-04 03:59:56 11,392 ----a-w c:\windows\system32\drivers\sfloppy.sys
+ 2004-08-04 05:56:46 3,901 ------w c:\windows\system32\drivers\siint5.dll
+ 2004-08-04 04:07:44 41,088 ------w c:\windows\system32\drivers\sisagp.sys
- 2004-07-09 08:26:40 10,880 ----a-w c:\windows\system32\drivers\slip.sys
+ 2004-08-04 04:10:18 11,136 ----a-w c:\windows\system32\drivers\slip.sys
+ 2004-08-04 03:41:42 129,535 ------w c:\windows\system32\drivers\slnt7554.sys
+ 2004-08-04 03:41:44 404,990 ------w c:\windows\system32\drivers\slntamr.sys
+ 2004-08-04 03:41:46 95,424 ------w c:\windows\system32\drivers\slnthal.sys
+ 2004-08-04 03:41:46 13,240 ------w c:\windows\system32\drivers\slwdmsup.sys
+ 2004-08-04 04:07:38 6,016 ------w c:\windows\system32\drivers\smbali.sys
- 2001-08-18 12:00:00 24,064 ----a-w c:\windows\system32\drivers\sonydcam.sys
+ 2004-08-04 04:09:56 25,472 ----a-w c:\windows\system32\drivers\sonydcam.sys
- 2001-08-17 18:00:46 5,632 ----a-w c:\windows\system32\drivers\splitter.sys
+ 2004-08-04 04:07:48 6,400 ----a-w c:\windows\system32\drivers\splitter.sys
- 2001-08-18 12:00:00 70,400 ----a-w c:\windows\system32\drivers\sr.sys
+ 2004-08-04 04:06:26 73,472 ----a-w c:\windows\system32\drivers\sr.sys
- 2002-10-31 18:45:16 322,304 ----a-w c:\windows\system32\drivers\srv.sys
+ 2004-08-04 04:14:46 336,256 ----a-w c:\windows\system32\drivers\srv.sys
- 2004-07-09 08:27:28 48,512 ----a-w c:\windows\system32\drivers\stream.sys
+ 2004-08-04 04:08:04 48,640 ----a-w c:\windows\system32\drivers\stream.sys
- 2004-07-09 08:26:40 14,976 ----a-w c:\windows\system32\drivers\streamip.sys
+ 2004-08-04 04:10:14 15,360 ----a-w c:\windows\system32\drivers\streamip.sys
- 2002-12-12 04:14:32 4,096 ----a-w c:\windows\system32\drivers\swenum.sys
+ 2004-08-04 03:58:42 4,352 ----a-w c:\windows\system32\drivers\swenum.sys
- 2001-08-18 02:24:44 57,472 ----a-w c:\windows\system32\drivers\sysaudio.sys
+ 2004-08-04 04:15:56 60,800 ----a-w c:\windows\system32\drivers\sysaudio.sys
- 2001-08-18 12:00:00 13,696 ----a-w c:\windows\system32\drivers\tape.sys
+ 2004-08-04 04:00:00 14,976 ----a-w c:\windows\system32\drivers\tape.sys
- 2001-08-18 12:00:00 327,168 ----a-w c:\windows\system32\drivers\tcpip.sys
+ 2004-08-04 04:14:42 359,040 ----a-w c:\windows\system32\drivers\tcpip.sys
- 2001-08-18 12:00:00 180,032 ----a-w c:\windows\system32\drivers\tcpip6.sys
+ 2004-08-04 04:07:46 223,616 ----a-w c:\windows\system32\drivers\tcpip6.sys
- 2001-08-18 12:00:00 16,256 ----a-w c:\windows\system32\drivers\tdi.sys
+ 2004-08-04 04:07:50 18,560 ----a-w c:\windows\system32\drivers\tdi.sys
- 2001-08-18 12:00:00 11,144 ----a-w c:\windows\system32\drivers\tdpipe.sys
+ 2004-08-04 06:01:08 12,040 ----a-w c:\windows\system32\drivers\tdpipe.sys
- 2001-08-18 12:00:00 20,232 ----a-w c:\windows\system32\drivers\tdtcp.sys
+ 2004-08-04 06:01:08 21,896 ----a-w c:\windows\system32\drivers\tdtcp.sys
- 2001-08-18 02:38:00 37,896 ----a-w c:\windows\system32\drivers\termdd.sys
+ 2004-08-04 06:01:08 40,840 ----a-w c:\windows\system32\drivers\termdd.sys
+ 2004-08-04 04:03:18 12,416 ------w c:\windows\system32\drivers\tunmp.sys
+ 2004-08-04 04:07:44 44,672 ------w c:\windows\system32\drivers\uagp35.sys
- 2001-08-18 12:00:00 63,872 ----a-w c:\windows\system32\drivers\udfs.sys
+ 2004-08-04 04:00:32 66,176 ----a-w c:\windows\system32\drivers\udfs.sys
- 2001-08-18 12:00:00 137,088 ----a-w c:\windows\system32\drivers\update.sys
+ 2004-08-04 03:58:34 209,408 ----a-w c:\windows\system32\drivers\update.sys
- 2001-08-18 12:00:00 11,136 ----a-w c:\windows\system32\drivers\usb8023.sys
+ 2004-08-04 04:04:34 12,672 ----a-w c:\windows\system32\drivers\usb8023.sys
+ 2004-08-04 04:04:34 12,672 ------w c:\windows\system32\drivers\usb8023x.sys
- 2002-04-01 18:42:14 19,072 ----a-w c:\windows\system32\drivers\usbehci.sys
+ 2004-08-04 04:08:38 26,624 ----a-w c:\windows\system32\drivers\usbehci.sys
- 2002-04-01 18:37:36 51,584 ----a-w c:\windows\system32\drivers\usbhub.sys
+ 2004-08-04 04:08:44 57,600 ----a-w c:\windows\system32\drivers\usbhub.sys
- 2001-08-18 12:00:00 15,104 ----a-w c:\windows\system32\drivers\usbintel.sys
+ 2004-08-04 04:08:58 16,000 ----a-w c:\windows\system32\drivers\usbintel.sys
- 2002-04-01 18:36:42 134,016 ----a-w c:\windows\system32\drivers\usbport.sys
+ 2004-08-04 04:08:44 142,976 ----a-w c:\windows\system32\drivers\usbport.sys
- 2001-08-17 19:00:30 24,832 ----a-w c:\windows\system32\drivers\usbprint.sys
+ 2004-08-04 04:01:26 25,856 ----a-w c:\windows\system32\drivers\usbprint.sys
- 2001-08-17 18:03:22 21,760 ----a-w c:\windows\system32\drivers\USBSTOR.SYS
+ 2004-08-04 04:08:48 26,496 ----a-w c:\windows\system32\drivers\usbstor.sys
- 2001-08-17 18:03:08 18,944 ----a-w c:\windows\system32\drivers\usbuhci.sys
+ 2004-08-04 04:08:38 20,480 ----a-w c:\windows\system32\drivers\usbuhci.sys
+ 2004-08-04 04:10:12 78,464 ------w c:\windows\system32\drivers\usbvideo.sys
+ 2004-08-04 05:56:48 11,325 ------w c:\windows\system32\drivers\vchnt5.dll
- 2001-08-18 12:00:00 19,584 ----a-w c:\windows\system32\drivers\vga.sys
+ 2004-08-04 04:07:08 20,992 ----a-w c:\windows\system32\drivers\vga.sys
+ 2004-08-04 04:07:44 42,240 ------w c:\windows\system32\drivers\viaagp.sys
- 2001-08-18 12:00:00 65,024 ----a-w c:\windows\system32\drivers\videoprt.sys
+ 2004-08-04 04:07:06 79,744 ----a-w c:\windows\system32\drivers\videoprt.sys
- 2001-08-18 12:00:00 49,152 ----a-w c:\windows\system32\drivers\volsnap.sys
+ 2004-08-04 04:00:18 52,352 ----a-w c:\windows\system32\drivers\volsnap.sys
+ 2004-08-04 04:04:54 13,568 ------w c:\windows\system32\drivers\wacompen.sys
+ 2004-08-04 03:29:40 11,807 ------w c:\windows\system32\drivers\wadv07nt.sys
+ 2004-08-04 03:29:40 11,295 ------w c:\windows\system32\drivers\wadv08nt.sys
+ 2004-08-04 03:29:42 11,871 ------w c:\windows\system32\drivers\wadv09nt.sys
+ 2004-08-04 03:29:42 11,935 ------w c:\windows\system32\drivers\wadv11nt.sys
- 2001-08-18 12:00:00 33,280 ----a-w c:\windows\system32\drivers\wanarp.sys
+ 2004-08-04 04:04:58 34,560 ----a-w c:\windows\system32\drivers\wanarp.sys
+ 2004-08-04 03:29:46 22,271 ------w c:\windows\system32\drivers\watv06nt.sys
+ 2004-08-04 03:29:46 25,471 ------w c:\windows\system32\drivers\watv10nt.sys
- 2001-08-18 02:24:46 79,616 ----a-w c:\windows\system32\drivers\wdmaud.sys
+ 2004-08-04 04:15:06 82,944 ----a-w c:\windows\system32\drivers\wdmaud.sys
- 2004-07-09 08:26:40 18,688 ----a-w c:\windows\system32\drivers\wstcodec.sys
+ 2004-08-04 04:10:22 19,328 ----a-w c:\windows\system32\drivers\wstcodec.sys
- 2001-08-18 12:00:00 11,776 ----a-w c:\windows\system32\drprov.dll
+ 2004-08-04 05:56:44 14,336 ----a-w c:\windows\system32\drprov.dll
- 2001-08-18 12:00:00 16,384 ----a-w c:\windows\system32\ds32gt.dll
+ 2004-08-04 05:56:44 16,384 ----a-w c:\windows\system32\ds32gt.dll
- 2002-12-12 04:14:32 186,880 ----a-w c:\windows\system32\dsdmo.dll
+ 2004-08-04 05:56:44 181,760 ----a-w c:\windows\system32\dsdmo.dll
- 2002-12-12 04:14:32 491,520 ----a-w c:\windows\system32\dsdmoprp.dll
+ 2004-08-04 05:56:44 71,680 ----a-w c:\windows\system32\dsdmoprp.dll
- 2001-08-18 12:00:00 84,992 ----a-w c:\windows\system32\dskquota.dll
+ 2004-08-04 05:56:44 92,672 ----a-w c:\windows\system32\dskquota.dll
- 2004-07-09 08:27:28 381,952 ----a-w c:\windows\system32\dsound.dll
+ 2004-08-04 05:56:44 367,616 ----a-w c:\windows\system32\dsound.dll
- 2002-12-12 04:14:32 1,294,336 ----a-w c:\windows\system32\dsound3d.dll
+ 2004-08-04 05:56:44 1,294,336 ----a-w c:\windows\system32\dsound3d.dll
- 2001-08-18 12:00:00 131,072 ----a-w c:\windows\system32\dsprop.dll
+ 2004-08-04 05:56:44 142,336 ----a-w c:\windows\system32\dsprop.dll
+ 2004-08-04 05:56:06 4,096 ------w c:\windows\system32\dsprpres.dll
- 2001-08-18 12:00:00 227,840 ----a-w c:\windows\system32\dsquery.dll
+ 2004-08-04 05:56:44 239,104 ----a-w c:\windows\system32\dsquery.dll
- 2001-08-18 12:00:00 47,104 ----a-w c:\windows\system32\dssec.dll
+ 2004-08-04 05:56:44 51,200 ----a-w c:\windows\system32\dssec.dll
- 2001-08-18 12:00:00 122,880 ----a-w c:\windows\system32\dssenh.dll
+ 2004-08-04 03:31:44 137,216 ----a-w c:\windows\system32\dssenh.dll
- 2001-08-18 12:00:00 106,496 ----a-w c:\windows\system32\dsuiext.dll
+ 2004-08-04 05:56:44 113,152 ----a-w c:\windows\system32\dsuiext.dll
- 2002-12-12 04:14:32 18,432 ----a-w c:\windows\system32\dswave.dll
+ 2004-08-04 05:56:44 19,456 ----a-w c:\windows\system32\dswave.dll
- 2001-08-18 12:00:00 30,208 ----a-w c:\windows\system32\dumprep.exe
+ 2004-08-04 05:56:50 10,752 ----a-w c:\windows\system32\dumprep.exe
- 2001-08-18 12:00:00 261,120 ----a-w c:\windows\system32\duser.dll
+ 2004-08-04 05:56:44 304,128 ----a-w c:\windows\system32\duser.dll
- 2001-08-18 12:00:00 15,872 ----a-w c:\windows\system32\dvdupgrd.exe
+ 2004-08-04 05:56:50 17,920 ----a-w c:\windows\system32\dvdupgrd.exe
- 2001-08-18 12:00:00 162,128 ----a-w c:\windows\system32\dwwin.exe
+ 2004-08-04 05:56:50 180,224 ----a-w c:\windows\system32\dwwin.exe
- 2002-12-12 04:14:32 602,624 ----a-w c:\windows\system32\dx7vb.dll
+ 2004-08-04 05:56:44 619,008 ----a-w c:\windows\system32\dx7vb.dll
- 2003-05-30 13:00:02 1,189,888 ----a-w c:\windows\system32\dx8vb.dll
+ 2004-08-04 05:56:44 1,227,264 ----a-w c:\windows\system32\dx8vb.dll
- 2004-07-09 08:27:28 974,848 ----a-w c:\windows\system32\dxdiag.exe
+ 2004-08-04 05:56:50 1,298,432 ----a-w c:\windows\system32\dxdiag.exe
- 2004-07-09 08:27:28 1,769,472 ----a-w c:\windows\system32\dxdiagn.dll
+ 2004-08-04 05:56:44 2,113,536 ----a-w c:\windows\system32\dxdiagn.dll
- 2001-08-18 12:00:00 498,205 ----a-w c:\windows\system32\dxmasf.dll
+ 2004-08-04 05:56:44 498,205 ----a-w c:\windows\system32\dxmasf.dll
- 2001-08-18 12:00:00 337,920 ----a-w c:\windows\system32\dxtmsft.dll
+ 2004-08-04 05:56:44 357,888 ----a-w c:\windows\system32\dxtmsft.dll
- 2001-08-18 12:00:00 194,560 ----a-w c:\windows\system32\dxtrans.dll
+ 2004-08-04 05:56:44 201,728 ----a-w c:\windows\system32\dxtrans.dll
- 2001-08-18 12:00:00 173,568 ----a-w c:\windows\system32\els.dll
+ 2004-08-04 05:56:44 183,296 ----a-w c:\windows\system32\els.dll
- 2002-12-12 04:14:32 18,944 ----a-w c:\windows\system32\encapi.dll
+ 2004-08-04 05:56:44 20,480 ----a-w c:\windows\system32\encapi.dll
+ 2004-08-04 05:56:44 186,368 ------w c:\windows\system32\encdec.dll
- 2001-08-18 12:00:00 17,408 ----a-w c:\windows\system32\ersvc.dll
+ 2004-08-04 05:56:44 23,040 ----a-w c:\windows\system32\ersvc.dll
- 2001-08-18 12:00:00 224,768 ----a-w c:\windows\system32\es.dll
+ 2004-08-04 05:56:44 243,200 ----a-w c:\windows\system32\es.dll
- 2001-08-18 12:00:00 1,018,368 ----a-w c:\windows\system32\esent.dll
+ 2004-08-04 05:56:44 1,082,368 ----a-w c:\windows\system32\esent.dll
- 2001-08-18 12:00:00 178,688 ----a-w c:\windows\system32\eudcedit.exe
+ 2004-08-04 05:56:50 193,024 ----a-w c:\windows\system32\eudcedit.exe
- 2001-08-18 12:00:00 47,616 ----a-w c:\windows\system32\eventlog.dll
+ 2004-08-04 05:56:44 55,808 ----a-w c:\windows\system32\eventlog.dll
- 2001-08-18 12:00:00 379,152 ----a-w c:\windows\system32\expsrv.dll
+ 2004-08-04 05:56:44 380,957 ----a-w c:\windows\system32\expsrv.dll
+ 2004-08-04 05:56:44 55,808 ------w c:\windows\system32\extmgr.dll
- 2001-08-18 12:00:00 40,960 ----a-w c:\windows\system32\extrac32.exe
+ 2004-08-04 05:56:50 45,568 ----a-w c:\windows\system32\extrac32.exe
- 2001-08-18 12:00:00 61,952 ----a-w c:\windows\system32\faultrep.dll
+ 2004-08-04 05:56:44 80,384 ----a-w c:\windows\system32\faultrep.dll
+ 2004-08-04 05:56:50 20,992 ------w c:\windows\system32\faxpatch.exe
- 2001-08-18 12:00:00 18,432 ----a-w c:\windows\system32\feclient.dll
+ 2004-08-04 05:56:44 21,504 ----a-w c:\windows\system32\feclient.dll
- 2001-08-18 12:00:00 323,072 ----a-w c:\windows\system32\filemgmt.dll
+ 2004-08-04 05:56:44 337,920 ----a-w c:\windows\system32\filemgmt.dll
- 2001-08-18 12:00:00 25,088 ----a-w c:\windows\system32\findstr.exe
+ 2004-08-04 05:56:50 27,136 ----a-w c:\windows\system32\findstr.exe
- 2001-08-18 12:00:00 84,992 ----a-w c:\windows\system32\fldrclnr.dll
+ 2004-08-04 05:56:44 87,552 ----a-w c:\windows\system32\fldrclnr.dll
+ 2004-08-04 05:56:44 16,896 ------w c:\windows\system32\fltlib.dll
+ 2004-08-04 05:56:50 22,528 ------w c:\windows\system32\fltmc.exe
- 2004-03-11 20:13:14 1,146,320 ----a-w c:\windows\system32\FM20.DLL
+ 2007-06-06 15:53:34 1,195,888 ----a-w c:\windows\system32\FM20.DLL
- 2003-07-14 22:57:04 32,584 ----a-w c:\windows\system32\FM20ENU.DLL
+ 2007-03-23 00:17:04 35,440 ----a-w c:\windows\system32\FM20ENU.DLL
- 2009-01-27 02:22:39 239,944 ----a-w c:\windows\system32\FNTCACHE.DAT
+ 2009-02-19 17:11:10 241,536 ----a-w c:\windows\system32\FNTCACHE.DAT
- 2001-08-18 12:00:00 361,472 ----a-w c:\windows\system32\fontext.dll
+ 2004-08-04 05:56:44 382,976 ----a-w c:\windows\system32\fontext.dll
- 2001-08-18 12:00:00 18,944 ----a-w c:\windows\system32\fontview.exe
+ 2004-08-04 05:56:50 20,992 ----a-w c:\windows\system32\fontview.exe
- 2001-08-18 12:00:00 8,832 ----a-w c:\windows\system32\framebuf.dll
+ 2004-08-04 05:56:08 9,344 ----a-w c:\windows\system32\framebuf.dll
+ 2004-08-04 05:56:50 193,024 ------w c:\windows\system32\fsquirt.exe
- 2001-08-18 12:00:00 40,448 ----a-w c:\windows\system32\ftp.exe
+ 2004-08-04 05:56:50 42,496 ----a-w c:\windows\system32\ftp.exe
+ 2004-08-04 05:56:44 60,416 ------w c:\windows\system32\fwcfg.dll
- 2001-08-18 12:00:00 250,880 ----a-w c:\windows\system32\gdi32.dll
+ 2004-08-04 05:56:44 278,016 ----a-w c:\windows\system32\gdi32.dll
- 2001-08-18 12:00:00 116,736 ----a-w c:\windows\system32\glu32.dll
+ 2004-08-04 05:56:44 122,880 ----a-w c:\windows\system32\glu32.dll
- 2001-08-18 12:00:00 9,728 ----a-w c:\windows\system32\gpkrsrc.dll
+ 2004-08-04 05:56:08 9,728 ----a-w c:\windows\system32\gpkrsrc.dll
- 2001-08-18 12:00:00 37,888 ----a-w c:\windows\system32\grpconv.exe
+ 2004-08-04 05:56:50 39,424 ----a-w c:\windows\system32\grpconv.exe
- 2001-08-18 12:00:00 592,896 ----a-w c:\windows\system32\h323msp.dll
+ 2004-08-04 05:56:44 614,912 ----a-w c:\windows\system32\h323msp.dll
- 2001-08-18 12:00:00 128,768 ----a-w c:\windows\system32\hal.dll
+ 2004-08-04 03:59:10 131,968 ----a-w c:\windows\system32\HAL.DLL
- 2002-04-04 19:25:42 5,120 ----a-w c:\windows\system32\hccoin.dll
+ 2004-08-04 05:56:44 7,168 ----a-w c:\windows\system32\hccoin.dll
- 2003-01-13 14:27:38 37,888 ----a-w c:\windows\system32\hhsetup.dll
+ 2004-08-04 05:56:44 38,912 ----a-w c:\windows\system32\hhsetup.dll
- 2001-08-18 12:00:00 22,528 ----a-w c:\windows\system32\hid.dll
+ 2004-08-04 05:56:44 20,992 ----a-w c:\windows\system32\hid.dll
- 2001-08-18 12:00:00 240,640 ----a-w c:\windows\system32\hnetcfg.dll
+ 2004-08-04 05:56:44 344,064 ----a-w c:\windows\system32\hnetcfg.dll
- 2001-08-18 12:00:00 315,904 ----a-w c:\windows\system32\hnetwiz.dll
+ 2004-08-04 05:56:44 330,752 ----a-w c:\windows\system32\hnetwiz.dll
- 2001-08-18 12:00:00 137,216 ----a-w c:\windows\system32\hotplug.dll
+ 2004-08-04 05:56:44 144,896 ----a-w c:\windows\system32\hotplug.dll
+ 2004-08-04 05:56:44 32,285 ------w c:\windows\system32\hsfcisp2.dll
+ 2004-08-04 05:56:44 24,576 ------w c:\windows\system32\httpapi.dll
- 2001-08-18 12:00:00 39,936 ----a-w c:\windows\system32\htui.dll
+ 2004-08-04 05:56:44 41,984 ----a-w c:\windows\system32\htui.dll
- 2001-08-18 12:00:00 489,984 ----a-w c:\windows\system32\hypertrm.dll
+ 2004-08-04 05:56:44 345,088 ----a-w c:\windows\system32\hypertrm.dll
- 2001-08-18 12:00:00 116,224 ----a-w c:\windows\system32\iasrad.dll
+ 2004-08-04 05:56:44 119,808 ----a-w c:\windows\system32\iasrad.dll
- 2001-08-18 12:00:00 8,704 ----a-w c:\windows\system32\icaapi.dll
+ 2004-08-04 05:56:44 11,264 ----a-w c:\windows\system32\icaapi.dll
- 2001-08-18 12:00:00 110,592 ----a-w c:\windows\system32\iccvid.dll
+ 2004-08-04 05:56:44 80,384 ----a-w c:\windows\system32\iccvid.dll
- 2001-08-18 12:00:00 236,032 ----a-w c:\windows\system32\icm32.dll
+ 2004-08-04 05:56:44 253,952 ----a-w c:\windows\system32\icm32.dll
- 2001-08-18 12:00:00 3,072 ----a-w c:\windows\system32\icmp.dll
+ 2004-08-04 05:56:08 3,584 ----a-w c:\windows\system32\icmp.dll
- 2001-08-18 12:00:00 69,632 ----a-w c:\windows\system32\icwdial.dll
+ 2004-08-04 05:56:44 73,728 ----a-w c:\windows\system32\icwdial.dll
- 2001-08-18 12:00:00 61,440 ----a-w c:\windows\system32\icwphbk.dll
+ 2004-08-04 05:56:44 65,536 ----a-w c:\windows\system32\icwphbk.dll
- 2001-08-18 12:00:00 110,592 ----a-w c:\windows\system32\idq.dll
+ 2004-08-04 05:56:44 120,832 ----a-w c:\windows\system32\idq.dll
- 2001-08-18 12:00:00 28,160 ----a-w c:\windows\system32\ie4uinit.exe
+ 2004-08-04 05:56:52 34,304 ----a-w c:\windows\system32\ie4uinit.exe
- 2001-08-18 12:00:00 126,976 ----a-w c:\windows\system32\ieakeng.dll
+ 2004-08-04 05:56:44 139,264 ----a-w c:\windows\system32\ieakeng.dll
- 2001-08-18 12:00:00 203,776 ----a-w c:\windows\system32\ieaksie.dll
+ 2004-08-04 05:56:44 216,576 ----a-w c:\windows\system32\ieaksie.dll
- 2001-08-18 12:00:00 294,912 ----a-w c:\windows\system32\iedkcs32.dll
+ 2004-08-04 05:56:44 323,584 ----a-w c:\windows\system32\iedkcs32.dll
+ 2004-08-04 05:56:44 81,920 ------w c:\windows\system32\ieencode.dll
- 2001-08-18 12:00:00 230,400 ----a-w c:\windows\system32\iepeers.dll
+ 2004-08-04 05:56:44 249,344 ----a-w c:\windows\system32\iepeers.dll
- 2001-08-18 12:00:00 23,040 ----a-w c:\windows\system32\iernonce.dll
+ 2004-08-04 05:56:44 48,640 ----a-w c:\windows\system32\iernonce.dll
- 2001-08-18 12:00:00 59,392 ----a-w c:\windows\system32\iesetup.dll
+ 2004-08-04 05:56:44 62,976 ----a-w c:\windows\system32\iesetup.dll
- 2001-08-18 12:00:00 99,840 ----a-w c:\windows\system32\iexpress.exe
+ 2004-08-04 05:56:52 114,688 ----a-w c:\windows\system32\iexpress.exe
- 2001-08-18 12:00:00 125,952 ----a-w c:\windows\system32\ifmon.dll
+ 2004-08-04 05:56:44 135,680 ----a-w c:\windows\system32\ifmon.dll
- 2001-08-18 12:00:00 8,192 ----a-w c:\windows\system32\igmpagnt.dll
+ 2004-08-04 05:56:44 8,192 ----a-w c:\windows\system32\igmpagnt.dll
- 2001-08-18 12:00:00 73,728 ----a-w c:\windows\system32\ils.dll
+ 2004-08-04 05:56:44 81,920 ----a-w c:\windows\system32\ils.dll
- 2001-08-18 12:00:00 126,976 ----a-w c:\windows\system32\imagehlp.dll
+ 2004-08-04 05:56:44 144,384 ----a-w c:\windows\system32\imagehlp.dll
- 2001-08-18 12:00:00 118,784 ----a-w c:\windows\system32\imapi.exe
+ 2004-08-04 05:56:52 150,016 ----a-w c:\windows\system32\imapi.exe
- 2001-08-18 12:00:00 36,921 ----a-w c:\windows\system32\imeshare.dll
+ 2004-08-04 05:56:44 36,921 ----a-w c:\windows\system32\imeshare.dll
- 2001-08-18 12:00:00 30,208 ----a-w c:\windows\system32\imgutil.dll
+ 2004-08-04 05:56:44 35,840 ----a-w c:\windows\system32\imgutil.dll
- 2001-08-18 12:00:00 96,768 ----a-w c:\windows\system32\imm32.dll
+ 2004-08-04 05:56:44 110,080 ----a-w c:\windows\system32\imm32.dll
- 2001-08-18 12:00:00 266,240 ----a-w c:\windows\system32\inetcfg.dll
+ 2004-08-04 05:56:44 274,432 ----a-w c:\windows\system32\inetcfg.dll
- 2001-08-18 12:00:00 593,920 ----a-w c:\windows\system32\inetcomm.dll
+ 2004-08-04 05:56:44 678,400 ----a-w c:\windows\system32\inetcomm.dll
- 2001-08-18 12:00:00 31,232 ----a-w c:\windows\system32\inetmib1.dll
+ 2004-08-04 05:56:44 33,280 ----a-w c:\windows\system32\inetmib1.dll
- 2001-08-18 12:00:00 68,096 ----a-w c:\windows\system32\inetpp.dll
+ 2004-08-04 05:56:44 75,264 ----a-w c:\windows\system32\inetpp.dll
- 2001-08-18 12:00:00 14,336 ----a-w c:\windows\system32\inetppui.dll
+ 2004-08-04 05:56:44 15,872 ----a-w c:\windows\system32\inetppui.dll
- 2001-08-18 12:00:00 47,616 ----a-w c:\windows\system32\inetres.dll
+ 2004-08-04 05:56:10 48,128 ----a-w c:\windows\system32\inetres.dll
- 2001-08-18 12:00:00 144,896 ----a-w c:\windows\system32\initpki.dll
+ 2004-08-04 05:56:44 147,456 ----a-w c:\windows\system32\initpki.dll
- 2001-08-18 12:00:00 104,448 ----a-w c:\windows\system32\input.dll
+ 2004-08-04 05:56:44 123,392 ----a-w c:\windows\system32\input.dll
- 2001-08-18 12:00:00 69,632 ----a-w c:\windows\system32\inseng.dll
+ 2004-08-04 05:56:44 96,256 ----a-w c:\windows\system32\inseng.dll
- 2001-08-18 12:00:00 49,664 ----a-w c:\windows\system32\ipconfig.exe
+ 2004-08-04 05:56:52 55,808 ----a-w c:\windows\system32\ipconfig.exe
- 2001-08-18 12:00:00 77,312 ----a-w c:\windows\system32\iphlpapi.dll
+ 2004-08-04 05:56:44 94,720 ----a-w c:\windows\system32\iphlpapi.dll
- 2001-08-18 12:00:00 453,632 ----a-w c:\windows\system32\ipnathlp.dll
+ 2004-08-04 05:56:44 331,264 ----a-w c:\windows\system32\ipnathlp.dll
- 2001-08-18 12:00:00 318,976 ----a-w c:\windows\system32\ippromon.dll
+ 2004-08-04 05:56:44 330,752 ----a-w c:\windows\system32\ippromon.dll
- 2001-08-18 12:00:00 332,800 ----a-w c:\windows\system32\ipsecsnp.dll
+ 2004-08-04 05:56:44 349,696 ----a-w c:\windows\system32\ipsecsnp.dll
- 2001-08-18 12:00:00 152,576 ----a-w c:\windows\system32\ipsecsvc.dll
+ 2004-08-04 05:56:44 182,784 ----a-w c:\windows\system32\ipsecsvc.dll
- 2001-08-18 12:00:00 364,032 ----a-w c:\windows\system32\ipsmsnap.dll
+ 2004-08-04 05:56:44 384,000 ----a-w c:\windows\system32\ipsmsnap.dll
- 2001-08-18 12:00:00 58,368 ----a-w c:\windows\system32\ipv6.exe
+ 2004-08-04 05:56:52 53,248 ----a-w c:\windows\system32\ipv6.exe
- 2001-08-18 12:00:00 121,344 ----a-w c:\windows\system32\ipv6mon.dll
+ 2004-08-04 05:56:44 59,904 ----a-w c:\windows\system32\ipv6mon.dll
- 2001-08-18 12:00:00 22,016 ----a-w c:\windows\system32\ipxroute.exe
+ 2004-08-04 05:56:52 23,552 ----a-w c:\windows\system32\ipxroute.exe
- 2001-08-18 12:00:00 120,320 ----a-w c:\windows\system32\ir41_qc.dll
+ 2004-08-04 05:56:44 120,320 ----a-w c:\windows\system32\ir41_qc.dll
- 2001-08-18 12:00:00 338,432 ----a-w c:\windows\system32\ir41_qcx.dll
+ 2004-08-04 05:56:44 338,432 ----a-w c:\windows\system32\ir41_qcx.dll
- 2001-08-18 12:00:00 755,200 ----a-w c:\windows\system32\ir50_32.dll
+ 2004-08-04 05:56:44 755,200 ----a-w c:\windows\system32\ir50_32.dll
- 2001-08-18 12:00:00 200,192 ----a-w c:\windows\system32\ir50_qc.dll
+ 2004-08-04 05:56:44 200,192 ----a-w c:\windows\system32\ir50_qc.dll
- 2001-08-18 12:00:00 183,808 ----a-w c:\windows\system32\ir50_qcx.dll
+ 2004-08-04 05:56:44 183,808 ----a-w c:\windows\system32\ir50_qcx.dll
- 2001-08-18 12:00:00 77,824 ----a-w c:\windows\system32\isign32.dll
+ 2004-08-04 05:56:44 81,920 ----a-w c:\windows\system32\isign32.dll
- 2001-08-18 12:00:00 28,672 ----a-w c:\windows\system32\isrdbg32.dll
+ 2004-08-04 05:56:44 32,768 ----a-w c:\windows\system32\isrdbg32.dll
- 2003-01-13 14:27:38 143,872 ----a-w c:\windows\system32\itircl.dll
+ 2004-08-04 05:56:44 143,872 ----a-w c:\windows\system32\itircl.dll
- 2003-01-13 14:27:38 122,368 ----a-w c:\windows\system32\itss.dll
+ 2004-08-04 05:56:44 134,144 ----a-w c:\windows\system32\itss.dll
- 2003-08-25 22:06:50 182,880 ----a-w c:\windows\system32\iuengine.dll
+ 2004-08-04 05:56:44 192,000 ----a-w c:\windows\system32\iuengine.dll
- 2001-08-18 12:00:00 49,152 ----a-w c:\windows\system32\ixsso.dll
+ 2004-08-04 05:56:44 54,272 ----a-w c:\windows\system32\ixsso.dll
- 2001-08-18 12:00:00 45,568 ----a-w c:\windows\system32\iyuv_32.dll
+ 2004-08-04 05:56:44 47,616 ----a-w c:\windows\system32\iyuv_32.dll
- 2003-01-13 18:57:58 589,881 ----a-w c:\windows\system32\jscript.dll
+ 2004-08-04 05:56:44 450,560 ----a-w c:\windows\system32\jscript.dll
- 2001-08-18 12:00:00 12,288 ----a-w c:\windows\system32\jsproxy.dll
+ 2004-08-04 05:56:44 15,872 ----a-w c:\windows\system32\jsproxy.dll
+ 2004-08-04 05:56:12 7,168 ------w c:\windows\system32\kbdfi1.dll
+ 2004-08-04 05:56:12 6,144 ------w c:\windows\system32\kbdinbe1.dll
+ 2004-08-04 05:56:12 6,656 ------w c:\windows\system32\kbdinben.dll
+ 2004-08-04 05:56:12 6,656 ------w c:\windows\system32\kbdinmal.dll
+ 2004-08-04 05:56:12 5,632 ------w c:\windows\system32\kbdmaori.dll
+ 2004-08-04 05:56:12 6,144 ------w c:\windows\system32\kbdmlt47.dll
+ 2004-08-04 05:56:12 6,144 ------w c:\windows\system32\kbdmlt48.dll
+ 2004-08-04 05:56:12 7,168 ------w c:\windows\system32\kbdno1.dll
+ 2004-08-04 05:56:12 7,680 ------w c:\windows\system32\kbdsmsfi.dll
+ 2004-08-04 05:56:12 7,680 ------w c:\windows\system32\kbdsmsno.dll
+ 2004-08-04 05:56:12 7,168 ------w c:\windows\system32\kbdukx.dll
- 2001-08-18 12:00:00 44,160 ----a-w c:\windows\system32\kd1394.dll
+ 2004-08-04 03:59:24 7,424 ----a-w c:\windows\system32\kd1394.dll
- 2001-08-18 12:00:00 265,216 ----a-w c:\windows\system32\kerberos.dll
+ 2004-08-04 05:56:44 294,400 ----a-w c:\windows\system32\kerberos.dll
- 2001-08-18 12:00:00 926,720 ----a-w c:\windows\system32\kernel32.dll
+ 2004-08-04 05:56:44 983,552 ----a-w c:\windows\system32\kernel32.dll
- 2001-08-18 12:00:00 42,537 ----a-w c:\windows\system32\keyboard.sys
+ 2004-08-04 03:46:56 42,537 ----a-w c:\windows\system32\keyboard.sys
- 2001-08-18 12:00:00 146,432 ----a-w c:\windows\system32\keymgr.dll
+ 2004-08-04 05:56:44 150,528 ----a-w c:\windows\system32\keymgr.dll
- 2001-08-18 12:00:00 92,160 ----a-w c:\windows\system32\krnl386.exe
+ 2004-08-04 03:49:34 92,224 ----a-w c:\windows\system32\krnl386.exe
- 2002-12-12 04:14:32 4,096 ----a-w c:\windows\system32\ksuser.dll
+ 2004-08-04 05:56:44 4,096 ----a-w c:\windows\system32\ksuser.dll
- 2001-08-18 12:00:00 308,736 ----a-w c:\windows\system32\licdll.dll
+ 2004-08-04 05:56:44 423,936 ----a-w c:\windows\system32\licdll.dll
- 2001-08-18 12:00:00 19,456 ----a-w c:\windows\system32\licmgr10.dll
+ 2004-08-04 05:56:44 22,016 ----a-w c:\windows\system32\licmgr10.dll
- 2001-08-18 12:00:00 57,344 ----a-w c:\windows\system32\licwmi.dll
+ 2004-08-04 05:56:44 58,880 ----a-w c:\windows\system32\licwmi.dll
- 2001-08-18 12:00:00 15,360 ----a-w c:\windows\system32\linkinfo.dll
+ 2004-08-04 05:56:44 18,944 ----a-w c:\windows\system32\linkinfo.dll
- 2001-08-18 12:00:00 12,288 ----a-w c:\windows\system32\lmhsvc.dll
+ 2004-08-04 05:56:44 13,824 ----a-w c:\windows\system32\lmhsvc.dll
- 2001-08-18 12:00:00 381,440 ----a-w c:\windows\system32\lmrt.dll
+ 2004-08-04 05:56:44 399,872 ----a-w c:\windows\system32\lmrt.dll
- 2001-08-18 12:00:00 91,648 ----a-w c:\windows\system32\loadperf.dll
+ 2004-08-04 05:56:44 97,280 ----a-w c:\windows\system32\loadperf.dll
- 2001-08-18 12:00:00 202,752 ----a-w c:\windows\system32\localsec.dll
+ 2004-08-04 05:56:44 221,696 ----a-w c:\windows\system32\localsec.dll
- 2001-08-18 12:00:00 292,352 ----a-w c:\windows\system32\localspl.dll
+ 2004-08-04 05:56:44 341,504 ----a-w c:\windows\system32\localspl.dll
- 2001-08-18 12:00:00 10,240 ----a-w c:\windows\system32\localui.dll
+ 2004-08-04 05:56:44 11,776 ----a-w c:\windows\system32\localui.dll
- 2002-12-03 22:55:20 68,608 ----a-w c:\windows\system32\locator.exe
+ 2004-08-04 05:56:52 75,264 ----a-w c:\windows\system32\locator.exe
+ 2004-08-04 05:56:52 59,392 ------w c:\windows\system32\logman.exe
- 2001-08-18 12:00:00 321,536 ----a-w c:\windows\system32\logon.scr
+ 2004-08-04 05:56:58 220,672 ----a-w c:\windows\system32\logon.scr
- 2001-08-18 12:00:00 504,320 ----a-w c:\windows\system32\logonui.exe
+ 2004-08-04 05:56:52 514,560 ----a-w c:\windows\system32\logonui.exe
- 2001-08-18 12:00:00 18,944 ----a-w c:\windows\system32\lpk.dll
+ 2004-08-04 05:56:44 22,016 ----a-w c:\windows\system32\lpk.dll
- 2001-08-18 12:00:00 8,704 ----a-w c:\windows\system32\lprhelp.dll
+ 2004-08-04 05:56:44 10,240 ----a-w c:\windows\system32\lprhelp.dll
- 2001-08-18 12:00:00 669,696 ----a-w c:\windows\system32\lsasrv.dll
+ 2004-08-04 05:56:44 721,920 ----a-w c:\windows\system32\lsasrv.dll
- 2001-08-18 12:00:00 11,776 ----a-w c:\windows\system32\lsass.exe
+ 2004-08-04 05:56:52 13,312 ----a-w c:\windows\system32\lsass.exe
- 2001-08-18 12:00:00 67,584 ----a-w c:\windows\system32\magnify.exe
+ 2004-08-04 05:56:52 72,704 ----a-w c:\windows\system32\magnify.exe
- 2001-08-18 12:00:00 79,360 ----a-w c:\windows\system32\makecab.exe
+ 2004-08-04 05:56:52 85,504 ----a-w c:\windows\system32\makecab.exe
- 2001-08-18 12:00:00 12,800 ----a-w c:\windows\system32\mcastmib.dll
+ 2004-08-04 05:56:44 14,848 ----a-w c:\windows\system32\mcastmib.dll
- 2001-08-18 12:00:00 80,384 ----a-w c:\windows\system32\mciavi32.dll
+ 2004-08-04 05:56:44 84,480 ----a-w c:\windows\system32\mciavi32.dll
- 2002-12-12 04:14:32 34,304 ----a-w c:\windows\system32\mciqtz32.dll
+ 2004-08-04 05:56:44 35,328 ----a-w c:\windows\system32\mciqtz32.dll
- 2001-08-18 12:00:00 20,992 ----a-w c:\windows\system32\mciseq.dll
+ 2004-08-04 05:56:44 23,040 ----a-w c:\windows\system32\mciseq.dll
- 2001-08-18 12:00:00 22,016 ----a-w c:\windows\system32\mciwave.dll
+ 2004-08-04 05:56:44 23,552 ----a-w c:\windows\system32\mciwave.dll
- 2004-03-22 20:17:06 24,816 ----a-w c:\windows\system32\mdimon.dll
+ 2007-04-09 18:23:54 28,040 ----a-w c:\windows\system32\mdimon.dll
- 2001-08-18 12:00:00 108,544 ----a-w c:\windows\system32\mdminst.dll
+ 2004-08-04 05:56:44 118,272 ----a-w c:\windows\system32\mdminst.dll
+ 2004-08-04 05:56:44 86,016 ------w c:\windows\system32\mdmxsdk.dll
- 2001-08-18 12:00:00 35,328 ----a-w c:\windows\system32\mf3216.dll
+ 2004-08-04 05:56:44 39,936 ----a-w c:\windows\system32\mf3216.dll
- 2001-08-18 12:00:00 995,383 ----a-w c:\windows\system32\mfc42.dll
+ 2004-08-04 05:56:44 1,028,096 ----a-w c:\windows\system32\mfc42.dll
- 2001-08-18 12:00:00 995,384 ----a-w c:\windows\system32\mfc42u.dll
+ 2004-08-04 05:56:44 1,024,000 ----a-w c:\windows\system32\mfc42u.dll
- 2001-08-18 12:00:00 20,992 ----a-w c:\windows\system32\mfcsubs.dll
+ 2004-08-04 05:56:44 22,528 ----a-w c:\windows\system32\mfcsubs.dll
- 2001-08-18 12:00:00 12,800 ----a-w c:\windows\system32\mgmtapi.dll
+ 2004-08-04 05:56:44 14,848 ----a-w c:\windows\system32\mgmtapi.dll
- 2001-08-18 12:00:00 17,920 ----a-w c:\windows\system32\midimap.dll
+ 2004-08-04 05:56:44 18,944 ----a-w c:\windows\system32\midimap.dll
- 2001-08-18 12:00:00 56,320 ----a-w c:\windows\system32\miglibnt.dll
+ 2004-08-04 05:56:44 60,928 ----a-w c:\windows\system32\miglibnt.dll
- 2001-08-18 12:00:00 577,024 ----a-w c:\windows\system32\mlang.dll
+ 2004-08-04 05:56:44 586,240 ----a-w c:\windows\system32\mlang.dll
- 2001-08-18 12:00:00 774,144 ----a-w c:\windows\system32\mmc.exe
+ 2004-08-04 05:56:52 815,104 ----a-w c:\windows\system32\mmc.exe
- 2001-08-18 12:00:00 66,560 ----a-w c:\windows\system32\mmcbase.dll
+ 2004-08-04 05:56:44 70,656 ----a-w c:\windows\system32\mmcbase.dll
- 2001-08-18 12:00:00 1,136,128 ----a-w c:\windows\system32\mmcndmgr.dll
+ 2004-08-04 05:56:44 1,192,960 ----a-w c:\windows\system32\mmcndmgr.dll
- 2001-08-18 12:00:00 46,592 ----a-w c:\windows\system32\mmcshext.dll
+ 2004-08-04 05:56:44 50,688 ----a-w c:\windows\system32\mmcshext.dll
- 2001-08-18 12:00:00 16,384 ----a-w c:\windows\system32\mmfutil.dll
+ 2004-08-04 05:56:44 17,408 ----a-w c:\windows\system32\mmfutil.dll
- 2001-08-18 12:00:00 68,928 ----a-w c:\windows\system32\mmsystem.dll
+ 2004-08-04 03:51:12 68,768 ----a-w c:\windows\system32\mmsystem.dll
- 2001-08-18 12:00:00 32,384 ----a-w c:\windows\system32\mnmdd.dll
+ 2004-08-04 05:56:44 34,560 ----a-w c:\windows\system32\mnmdd.dll
- 2001-08-18 12:00:00 32,768 ----a-w c:\windows\system32\mnmsrvc.exe
+ 2004-08-04 05:56:52 32,768 ----a-w c:\windows\system32\mnmsrvc.exe
- 2001-08-18 12:00:00 196,096 ----a-w c:\windows\system32\mobsync.dll
+ 2004-08-04 05:56:44 207,360 ----a-w c:\windows\system32\mobsync.dll
- 2001-08-18 12:00:00 135,680 ----a-w c:\windows\system32\mobsync.exe
+ 2004-08-04 05:56:52 143,360 ----a-w c:\windows\system32\mobsync.exe
- 2001-08-18 12:00:00 145,408 ----a-w c:\windows\system32\modemui.dll
+ 2004-08-04 05:56:44 153,600 ----a-w c:\windows\system32\modemui.dll
- 2001-08-18 12:00:00 185,344 ----a-w c:\windows\system32\moricons.dll
+ 2004-08-04 05:56:12 216,064 ----a-w c:\windows\system32\moricons.dll
- 2002-12-11 23:12:02 316,040 ----a-w c:\windows\system32\mp43dmod.dll
+ 2004-08-04 05:56:44 310,272 ----a-w c:\windows\system32\mp43dmod.dll
- 2002-12-11 19:16:58 384,512 ----a-w c:\windows\system32\mp4sdmod.dll
+ 2004-08-04 05:56:44 384,512 ----a-w c:\windows\system32\mp4sdmod.dll
- 2002-12-11 21:34:40 241,664 ----a-w c:\windows\system32\mpg4dmod.dll
+ 2004-08-04 05:56:44 240,640 ----a-w c:\windows\system32\mpg4dmod.dll
- 2001-08-18 12:00:00 116,736 ----a-w c:\windows\system32\mplay32.exe
+ 2004-08-04 05:56:54 123,392 ----a-w c:\windows\system32\mplay32.exe
- 2001-08-18 12:00:00 55,808 ----a-w c:\windows\system32\mpr.dll
+ 2004-08-04 05:56:44 59,904 ----a-w c:\windows\system32\mpr.dll
- 2001-08-18 12:00:00 79,360 ----a-w c:\windows\system32\mprapi.dll
+ 2004-08-04 05:56:44 87,040 ----a-w c:\windows\system32\mprapi.dll
- 2001-08-18 12:00:00 67,072 ----a-w c:\windows\system32\msacm32.dll
+ 2004-08-04 05:56:44 71,680 ----a-w c:\windows\system32\msacm32.dll
- 2001-08-18 12:00:00 3,584 ----a-w c:\windows\system32\msafd.dll
+ 2004-08-04 05:56:14 3,584 ----a-w c:\windows\system32\msafd.dll
- 2001-08-18 12:00:00 80,128 ----a-w c:\windows\system32\msapsspc.dll
+ 2004-08-04 05:56:44 86,016 ----a-w c:\windows\system32\msapsspc.dll
- 2001-08-18 12:00:00 51,200 ----a-w c:\windows\system32\msasn1.dll
+ 2004-08-04 05:56:44 57,344 ----a-w c:\windows\system32\msasn1.dll
- 2001-08-18 12:00:00 68,096 ----a-w c:\windows\system32\mscms.dll
+ 2004-08-04 05:56:44 73,728 ----a-w c:\windows\system32\mscms.dll
- 2001-08-18 12:00:00 65,536 ----a-w c:\windows\system32\msconf.dll
+ 2004-08-04 05:56:44 69,632 ----a-w c:\windows\system32\msconf.dll
- 2001-08-18 12:00:00 12,288 ----a-w c:\windows\system32\mscpx32r.dLL
+ 2004-08-04 05:56:14 12,288 ----a-w c:\windows\system32\mscpx32r.dll
- 2001-08-18 12:00:00 36,864 ----a-w c:\windows\system32\mscpxl32.dLL
+ 2004-08-04 05:56:44 36,864 ----a-w c:\windows\system32\mscpxl32.dll
- 2001-08-18 12:00:00 293,888 ----a-w c:\windows\system32\MSCTF.dll
+ 2004-08-04 05:56:44 294,400 ----a-w c:\windows\system32\msctf.dll
- 2001-08-18 12:00:00 65,536 ----a-w c:\windows\system32\MSCTFP.dll
+ 2004-08-04 05:56:44 69,120 ----a-w c:\windows\system32\msctfp.dll
+ 2004-08-04 05:56:44 118,784 ------w c:\windows\system32\msdadiag.dll
- 2001-08-18 12:00:00 126,976 ----a-w c:\windows\system32\msdart.dll
+ 2004-08-04 05:56:44 151,552 ----a-w c:\windows\system32\msdart.dll
- 2002-12-12 04:14:32 13,312 ----a-w c:\windows\system32\msdmo.dll
+ 2004-08-04 05:56:44 14,336 ----a-w c:\windows\system32\msdmo.dll
- 2001-08-18 12:00:00 6,144 ----a-w c:\windows\system32\msdtc.exe
+ 2004-08-04 05:56:54 6,144 ----a-w c:\windows\system32\msdtc.exe
- 2001-08-18 12:00:00 54,784 ----a-w c:\windows\system32\msdtclog.dll
+ 2004-08-04 05:56:44 58,880 ----a-w c:\windows\system32\msdtclog.dll
- 2001-08-18 12:00:00 360,960 ----a-w c:\windows\system32\msdtcprx.dll
+ 2004-08-04 05:56:44 425,472 ----a-w c:\windows\system32\msdtcprx.dll
- 2001-08-18 12:00:00 869,376 ----a-w c:\windows\system32\msdtctm.dll
+ 2004-08-04 05:56:44 949,248 ----a-w c:\windows\system32\msdtctm.dll
- 2001-08-18 12:00:00 151,040 ----a-w c:\windows\system32\msdtcuiu.dll
+ 2004-08-04 05:56:44 161,280 ----a-w c:\windows\system32\msdtcuiu.dll
- 2001-08-18 12:00:00 4,126 ----a-w c:\windows\system32\msdxmlc.dll
+ 2004-08-04 05:56:14 4,126 ----a-w c:\windows\system32\msdxmlc.dll
- 2001-08-18 12:00:00 512,074 ----a-w c:\windows\system32\msexch40.dll
+ 2004-08-04 05:56:44 512,029 ----a-w c:\windows\system32\msexch40.dll
- 2001-08-18 12:00:00 319,562 ----a-w c:\windows\system32\msexcl40.dll
+ 2004-08-04 05:56:44 319,517 ----a-w c:\windows\system32\msexcl40.dll
+ 2004-08-04 05:56:44 537,088 ------w c:\windows\system32\msftedit.dll
- 2001-08-18 12:00:00 967,680 ----a-w c:\windows\system32\msgina.dll
+ 2004-08-04 05:56:44 994,304 ----a-w c:\windows\system32\msgina.dll
- 2001-08-18 12:00:00 34,304 ----a-w c:\windows\system32\msgsvc.dll
+ 2004-08-04 05:56:44 33,792 ----a-w c:\windows\system32\msgsvc.dll
- 2001-08-18 12:00:00 184,320 ----a-w c:\windows\system32\msh261.drv
+ 2004-08-04 05:56:58 188,416 ----a-w c:\windows\system32\msh261.drv
- 2001-08-18 12:00:00 286,720 ----a-w c:\windows\system32\msh263.drv
+ 2004-08-04 05:56:58 294,912 ----a-w c:\windows\system32\msh263.drv
- 2001-08-18 12:00:00 24,064 ----a-w c:\windows\system32\mshta.exe
+ 2004-08-04 05:56:54 29,184 ----a-w c:\windows\system32\mshta.exe
- 2001-08-18 12:00:00 2,793,984 ----a-w c:\windows\system32\mshtml.dll
+ 2004-08-04 05:56:44 3,003,392 ----a-w c:\windows\system32\mshtml.dll
- 2001-08-18 12:00:00 438,272 ----a-w c:\windows\system32\mshtmled.dll
+ 2004-08-04 05:56:44 448,512 ----a-w c:\windows\system32\mshtmled.dll
- 2001-08-18 12:00:00 56,320 ----a-w c:\windows\system32\mshtmler.dll
+ 2004-08-04 05:56:16 56,832 ----a-w c:\windows\system32\mshtmler.dll
- 2001-08-18 12:00:00 44,032 ----a-w c:\windows\system32\msident.dll
+ 2004-08-04 05:56:44 51,712 ----a-w c:\windows\system32\msident.dll
- 2001-08-18 12:00:00 5,120 ----a-w c:\windows\system32\msidle.dll
+ 2004-08-04 05:56:44 6,656 ----a-w c:\windows\system32\msidle.dll
- 2001-08-18 12:00:00 232,448 ----a-w c:\windows\system32\msieftp.dll
+ 2004-08-04 05:56:44 248,832 ----a-w c:\windows\system32\msieftp.dll
- 2001-08-18 12:00:00 4,608 ----a-w c:\windows\system32\msimg32.dll
+ 2004-08-04 05:56:44 4,608 ----a-w c:\windows\system32\msimg32.dll
- 2001-08-18 12:00:00 156,672 ----a-w c:\windows\system32\MSIMTF.dll
+ 2004-08-04 05:56:44 159,232 ----a-w c:\windows\system32\msimtf.dll
- 2001-08-18 12:00:00 1,503,260 ----a-w c:\windows\system32\msjet40.dll
+ 2004-08-04 05:56:44 1,507,356 ----a-w c:\windows\system32\msjet40.dll
- 2001-08-18 12:00:00 348,238 ----a-w c:\windows\system32\msjetoledb40.dll
+ 2004-07-17 16:34:48 358,976 ----a-w c:\windows\system32\msjetoledb40.dll
- 2001-08-18 12:00:00 151,626 ----a-w c:\windows\system32\msjint40.dll
+ 2004-08-04 05:56:44 151,583 ----a-w c:\windows\system32\msjint40.dll
- 2001-08-18 12:00:00 53,322 ----a-w c:\windows\system32\msjter40.dll
+ 2004-08-04 05:56:44 53,279 ----a-w c:\windows\system32\msjter40.dll
- 2001-08-18 12:00:00 241,695 ----a-w c:\windows\system32\msjtes40.dll
+ 2004-08-04 05:56:44 241,693 ----a-w c:\windows\system32\msjtes40.dll
- 2001-08-18 12:00:00 46,080 ----a-w c:\windows\system32\mslbui.dll
+ 2004-08-04 05:56:44 25,088 ----a-w c:\windows\system32\mslbui.dll
- 2001-08-18 12:00:00 213,066 ----a-w c:\windows\system32\msltus40.dll
+ 2004-08-04 05:56:44 213,023 ----a-w c:\windows\system32\msltus40.dll
- 2001-08-18 12:00:00 116,272 ----a-w c:\windows\system32\msnsspc.dll
+ 2004-08-04 05:56:44 290,816 ----a-w c:\windows\system32\msnsspc.dll
- 2001-08-18 12:00:00 228,864 ----a-w c:\windows\system32\msoeacct.dll
+ 2004-08-04 05:56:44 252,928 ----a-w c:\windows\system32\msoeacct.dll
- 2001-08-18 12:00:00 90,624 ----a-w c:\windows\system32\msoert2.dll
+ 2004-08-04 05:56:44 105,984 ----a-w c:\windows\system32\msoert2.dll
- 2001-08-18 12:00:00 20,480 ----a-w c:\windows\system32\msorc32r.dll
+ 2004-08-04 05:56:20 20,480 ----a-w c:\windows\system32\msorc32r.dll
- 2001-08-18 12:00:00 131,072 ----a-w c:\windows\system32\msorcl32.dll
+ 2004-08-04 05:56:44 143,360 ----a-w c:\windows\system32\msorcl32.dll
- 2001-08-18 12:00:00 339,968 ----a-w c:\windows\system32\mspaint.exe
+ 2004-08-04 05:56:54 343,040 ----a-w c:\windows\system32\mspaint.exe
- 2001-08-18 12:00:00 27,136 ----a-w c:\windows\system32\mspatcha.dll
+ 2004-08-04 05:56:44 30,208 ----a-w c:\windows\system32\mspatcha.dll
- 2001-08-18 12:00:00 348,234 ----a-w c:\windows\system32\mspbde40.dll
+ 2004-08-04 05:56:44 348,189 ----a-w c:\windows\system32\mspbde40.dll
- 2001-08-18 12:00:00 45,056 ----a-w c:\windows\system32\msprivs.dll
+ 2004-08-04 05:56:20 48,128 ----a-w c:\windows\system32\msprivs.dll
- 2001-08-18 12:00:00 132,096 ----a-w c:\windows\system32\msrating.dll
+ 2004-08-04 05:56:44 146,432 ----a-w c:\windows\system32\msrating.dll
- 2001-08-18 12:00:00 421,962 ----a-w c:\windows\system32\msrd2x40.dll
+ 2004-08-04 05:56:44 421,919 ----a-w c:\windows\system32\msrd2x40.dll
- 2001-08-18 12:00:00 315,466 ----a-w c:\windows\system32\msrd3x40.dll
+ 2004-08-04 05:56:44 315,423 ----a-w c:\windows\system32\msrd3x40.dll
- 2001-08-18 12:00:00 553,034 ----a-w c:\windows\system32\msrepl40.dll
+ 2004-08-04 05:56:44 552,989 ----a-w c:\windows\system32\msrepl40.dll
- 2001-08-18 12:00:00 9,728 ----a-w c:\windows\system32\msrle32.dll
+ 2004-08-04 05:56:44 11,264 ----a-w c:\windows\system32\msrle32.dll
+ 2004-08-04 05:56:44 134,656 ------w c:\windows\system32\mssap.dll
- 2001-08-18 12:00:00 250,368 ----a-w c:\windows\system32\mstask.dll
+ 2004-08-04 05:56:44 274,944 ----a-w c:\windows\system32\mstask.dll
- 2001-08-18 12:00:00 254,026 ----a-w c:\windows\system32\mstext40.dll
+ 2004-08-04 05:56:44 258,077 ----a-w c:\windows\system32\mstext40.dll
- 2001-08-18 12:00:00 497,152 ----a-w c:\windows\system32\mstime.dll
+ 2004-08-04 05:56:44 530,432 ----a-w c:\windows\system32\mstime.dll
- 2001-08-18 12:00:00 9,728 ----a-w c:\windows\system32\mstinit.exe
+ 2004-08-04 05:56:54 12,288 ----a-w c:\windows\system32\mstinit.exe
- 2001-08-18 12:00:00 103,936 ----a-w c:\windows\system32\mstlsapi.dll
+ 2004-08-04 05:56:44 115,712 ----a-w c:\windows\system32\mstlsapi.dll
- 2001-08-18 12:00:00 385,536 ----a-w c:\windows\system32\mstsc.exe
+ 2004-08-04 03:59:42 407,552 ----a-w c:\windows\system32\mstsc.exe
- 2001-08-18 12:00:00 503,296 ----a-w c:\windows\system32\mstscax.dll
+ 2004-08-04 03:59:44 655,360 ----a-w c:\windows\system32\mstscax.dll
- 2001-08-18 12:00:00 209,920 ----a-w c:\windows\system32\msutb.dll
+ 2004-08-04 05:56:44 195,072 ----a-w c:\windows\system32\msutb.dll
- 2001-08-18 12:00:00 108,032 ----a-w c:\windows\system32\msv1_0.dll
+ 2004-08-04 05:56:44 129,536 ----a-w c:\windows\system32\msv1_0.dll
- 2001-08-18 12:00:00 50,688 ----a-w c:\windows\system32\msvcirt.dll
+ 2004-08-04 05:56:44 54,784 ----a-w c:\windows\system32\msvcirt.dll
- 2001-08-18 12:00:00 401,462 ----a-w c:\windows\system32\msvcp60.dll
+ 2004-08-04 05:56:44 413,696 ----a-w c:\windows\system32\msvcp60.dll
- 2001-08-18 12:00:00 322,560 ----a-w c:\windows\system32\msvcrt.dll
+ 2004-08-04 05:56:44 343,040 ----a-w c:\windows\system32\msvcrt.dll
- 2001-08-18 12:00:00 65,024 ----a-w c:\windows\system32\msvcrt40.dll
+ 2004-08-04 03:58:26 61,440 ----a-w c:\windows\system32\msvcrt40.dll
- 2001-08-18 12:00:00 113,152 ----a-w c:\windows\system32\msvfw32.dll
+ 2004-08-04 05:56:44 120,832 ----a-w c:\windows\system32\msvfw32.dll
- 2004-07-09 08:26:38 1,230,336 ----a-w c:\windows\system32\msvidctl.dll
+ 2004-08-04 05:56:44 1,428,480 ----a-w c:\windows\system32\msvidctl.dll
- 2001-08-18 12:00:00 66,048 ----a-w c:\windows\system32\msw3prt.dll
+ 2004-08-04 05:56:44 72,704 ----a-w c:\windows\system32\msw3prt.dll
- 2001-08-18 12:00:00 831,562 ----a-w c:\windows\system32\mswdat10.dll
+ 2004-08-04 05:56:46 831,519 ----a-w c:\windows\system32\mswdat10.dll
- 2002-12-12 04:14:32 324,096 ----a-w c:\windows\system32\mswebdvd.dll
+ 2004-08-04 05:56:46 204,288 ----a-w c:\windows\system32\mswebdvd.dll
- 2001-08-18 12:00:00 228,352 ----a-w c:\windows\system32\mswsock.dll
+ 2004-08-04 05:56:46 245,248 ----a-w c:\windows\system32\mswsock.dll
- 2001-08-18 12:00:00 614,474 ----a-w c:\windows\system32\mswstr10.dll
+ 2004-08-04 05:56:46 614,429 ----a-w c:\windows\system32\mswstr10.dll
- 2001-08-18 12:00:00 344,138 ----a-w c:\windows\system32\msxbde40.dll
+ 2004-08-04 05:56:46 348,189 ----a-w c:\windows\system32\msxbde40.dll
- 2001-08-18 12:00:00 495,376 ----a-w c:\windows\system32\msxml.dll
+ 2004-08-04 05:56:46 506,368 ----a-w c:\windows\system32\msxml.dll
- 2001-08-18 12:00:00 688,667 ----a-w c:\windows\system32\msxml2.dll
+ 2004-08-04 05:56:46 701,440 ----a-w c:\windows\system32\msxml2.dll
- 2001-08-18 12:00:00 1,118,720 ----a-w c:\windows\system32\msxml3.dll
+ 2004-08-04 05:56:46 1,236,480 ----a-w c:\windows\system32\msxml3.dll
- 2004-07-09 08:26:38 16,896 ----a-w c:\windows\system32\msyuv.dll
+ 2004-08-04 05:56:46 17,408 ----a-w c:\windows\system32\msyuv.dll
- 2001-08-18 12:00:00 61,440 ----a-w c:\windows\system32\mtxclu.dll
+ 2004-08-04 05:56:46 66,560 ----a-w c:\windows\system32\mtxclu.dll
- 2001-08-18 12:00:00 83,968 ----a-w c:\windows\system32\mtxoci.dll
+ 2004-08-04 05:56:46 90,112 ----a-w c:\windows\system32\mtxoci.dll
+ 2004-08-04 05:56:46 1,737,856 ------w c:\windows\system32\mtxparhd.dll
+ 2004-08-04 05:56:24 405,504 ------w c:\windows\system32\mui\041b\xpob2res.dll
+ 2004-08-04 05:56:30 193,024 ------w c:\windows\system32\mui\041b\xpsp1res.dll
+ 2004-08-04 05:56:30 757,248 ------w c:\windows\system32\mui\041b\xpsp2res.dll
+ 2004-08-04 05:56:38 187,392 ------w c:\windows\system32\mui\041e\xpsp1res.dll
+ 2004-08-04 05:56:38 2,897,920 ------w c:\windows\system32\mui\041e\xpsp2res.dll
+ 2004-08-04 05:56:24 408,576 ------w c:\windows\system32\mui\0424\xpob2res.dll
+ 2004-08-04 05:56:30 192,512 ------w c:\windows\system32\mui\0424\xpsp1res.dll
+ 2004-08-04 05:56:32 732,160 ------w c:\windows\system32\mui\0424\xpsp2res.dll
- 2001-08-18 12:00:00 88,064 ----a-w c:\windows\system32\mydocs.dll
+ 2004-08-04 05:56:46 90,624 ----a-w c:\windows\system32\mydocs.dll
- 2001-08-18 12:00:00 51,200 ----a-w c:\windows\system32\narrator.exe
+ 2004-08-04 05:56:56 53,760 ----a-w c:\windows\system32\narrator.exe
- 2001-08-18 12:00:00 42,496 ----a-w c:\windows\system32\ncobjapi.dll
+ 2004-08-04 05:56:46 36,352 ----a-w c:\windows\system32\ncobjapi.dll
- 2001-08-18 12:00:00 15,360 ----a-w c:\windows\system32\nddeapi.dll
+ 2004-08-04 05:56:46 17,920 ----a-w c:\windows\system32\nddeapi.dll
- 2001-08-18 12:00:00 4,096 ----a-w c:\windows\system32\nddeapir.exe
+ 2004-08-04 05:56:56 4,096 ----a-w c:\windows\system32\nddeapir.exe
- 2001-08-18 12:00:00 16,384 ----a-w c:\windows\system32\nddenb32.dll
+ 2004-08-04 05:56:46 18,944 ----a-w c:\windows\system32\nddenb32.dll
- 2001-08-18 12:00:00 39,424 ----a-w c:\windows\system32\net.exe
+ 2004-08-04 05:56:56 42,496 ----a-w c:\windows\system32\net.exe
- 2001-08-18 12:00:00 115,200 ----a-w c:\windows\system32\net1.exe
+ 2004-08-04 05:56:56 124,928 ----a-w c:\windows\system32\net1.exe
- 2001-08-18 12:00:00 309,760 ----a-w c:\windows\system32\netapi32.dll
+ 2004-08-04 05:56:46 332,288 ----a-w c:\windows\system32\netapi32.dll
- 2001-08-18 12:00:00 584,704 ----a-w c:\windows\system32\netcfgx.dll
+ 2004-08-04 05:56:46 622,080 ----a-w c:\windows\system32\netcfgx.dll
- 2001-08-18 12:00:00 105,984 ----a-w c:\windows\system32\netdde.exe
+ 2004-08-04 05:56:56 111,104 ----a-w c:\windows\system32\netdde.exe
- 2001-08-18 12:00:00 134,656 ----a-w c:\windows\system32\netid.dll
+ 2004-08-04 05:56:46 139,264 ----a-w c:\windows\system32\netid.dll
- 2001-08-18 12:00:00 397,824 ----a-w c:\windows\system32\netlogon.dll
+ 2004-08-04 05:56:46 407,040 ----a-w c:\windows\system32\netlogon.dll
- 2001-08-18 12:00:00 147,968 ----a-w c:\windows\system32\netman.dll
+ 2004-08-04 05:56:46 198,144 ----a-w c:\windows\system32\netman.dll
- 2001-08-18 12:00:00 857,600 ----a-w c:\windows\system32\netplwiz.dll
+ 2004-08-04 05:56:46 875,008 ----a-w c:\windows\system32\netplwiz.dll
- 2001-08-18 12:00:00 10,752 ----a-w c:\windows\system32\netrap.dll
+ 2004-08-04 05:56:46 12,288 ----a-w c:\windows\system32\netrap.dll
- 2001-08-18 12:00:00 324,608 ----a-w c:\windows\system32\netsetup.exe
+ 2004-08-04 06:02:46 329,728 ----a-w c:\windows\system32\netsetup.exe
- 2001-08-18 12:00:00 82,944 ----a-w c:\windows\system32\netsh.exe
+ 2004-08-04 05:56:56 86,016 ----a-w c:\windows\system32\netsh.exe
- 2001-08-18 12:00:00 1,618,944 ----a-w c:\windows\system32\netshell.dll
+ 2004-08-04 05:56:46 1,708,032 ----a-w c:\windows\system32\netshell.dll
- 2001-08-18 12:00:00 30,720 ----a-w c:\windows\system32\netstat.exe
+ 2004-08-04 05:56:56 36,864 ----a-w c:\windows\system32\netstat.exe
- 2001-08-18 12:00:00 74,752 ----a-w c:\windows\system32\netui0.dll
+ 2004-08-04 05:56:46 80,896 ----a-w c:\windows\system32\netui0.dll
- 2001-08-18 12:00:00 230,400 ----a-w c:\windows\system32\netui1.dll
+ 2004-08-04 05:56:46 245,760 ----a-w c:\windows\system32\netui1.dll
- 2001-08-18 12:00:00 238,080 ----a-w c:\windows\system32\newdev.dll
+ 2004-08-04 05:56:46 248,832 ----a-w c:\windows\system32\newdev.dll
- 2001-08-18 12:00:00 91,136 ----a-w c:\windows\system32\nlhtml.dll
+ 2004-08-04 05:56:46 103,936 ----a-w c:\windows\system32\nlhtml.dll
- 2001-08-18 12:00:00 24,576 ----a-w c:\windows\system32\nmmkcert.dll
+ 2004-08-04 05:56:46 28,672 ----a-w c:\windows\system32\nmmkcert.dll
- 2001-08-18 12:00:00 66,048 ----a-w c:\windows\system32\notepad.exe
+ 2004-08-04 05:56:56 69,120 ----a-w c:\windows\system32\notepad.exe
- 2001-08-18 12:00:00 55,808 ----a-w c:\windows\system32\npp\ndisnpp.dll
+ 2004-08-04 05:56:46 57,344 ----a-w c:\windows\system32\npp\ndisnpp.dll
- 2001-08-18 12:00:00 13,824 ----a-w c:\windows\system32\npp\nppagent.exe
+ 2004-08-04 05:56:56 15,360 ----a-w c:\windows\system32\npp\nppagent.exe
- 2001-08-18 12:00:00 49,152 ----a-w c:\windows\system32\npptools.dll
+ 2004-08-04 05:56:46 54,784 ----a-w c:\windows\system32\npptools.dll
- 2001-08-18 12:00:00 71,680 ----a-w c:\windows\system32\nslookup.exe
+ 2004-08-04 05:56:56 76,800 ----a-w c:\windows\system32\nslookup.exe
- 2003-05-02 15:03:02 651,264 ----a-w c:\windows\system32\ntdll.dll
+ 2004-08-04 05:56:38 708,096 ----a-w c:\windows\system32\ntdll.dll
- 2001-08-18 12:00:00 64,512 ----a-w c:\windows\system32\ntdsapi.dll
+ 2004-08-04 05:56:46 67,072 ----a-w c:\windows\system32\ntdsapi.dll
- 2001-08-18 12:00:00 33,808 ----a-w c:\windows\system32\ntio.sys
+ 2004-08-04 03:45:10 33,840 ----a-w c:\windows\system32\ntio.sys
- 2001-08-18 12:00:00 34,528 ----a-w c:\windows\system32\ntio404.sys
+ 2004-08-04 03:45:16 34,560 ----a-w c:\windows\system32\ntio404.sys
- 2001-08-18 12:00:00 35,632 ----a-w c:\windows\system32\ntio411.sys
+ 2004-08-04 03:45:12 35,648 ----a-w c:\windows\system32\ntio411.sys
- 2001-08-18 12:00:00 35,392 ----a-w c:\windows\system32\ntio412.sys
+ 2004-08-04 03:45:16 35,424 ----a-w c:\windows\system32\ntio412.sys
- 2001-08-18 12:00:00 34,528 ----a-w c:\windows\system32\ntio804.sys
+ 2004-08-04 03:45:14 34,560 ----a-w c:\windows\system32\ntio804.sys
- 2001-08-18 12:00:00 1,897,856 ----a-w c:\windows\system32\ntkrnlpa.exe
+ 2004-08-04 03:59:00 2,056,832 ----a-w c:\windows\system32\ntkrnlpa.exe
- 2001-08-18 12:00:00 38,400 ----a-w c:\windows\system32\ntlanman.dll
+ 2004-08-04 05:56:46 43,520 ----a-w c:\windows\system32\ntlanman.dll
- 2001-08-18 12:00:00 6,656 ----a-w c:\windows\system32\ntlsapi.dll
+ 2004-08-04 05:56:46 8,192 ----a-w c:\windows\system32\ntlsapi.dll
- 2001-08-18 12:00:00 110,080 ----a-w c:\windows\system32\ntmarta.dll
+ 2004-08-04 05:56:46 118,784 ----a-w c:\windows\system32\ntmarta.dll
- 2001-08-18 12:00:00 37,376 ----a-w c:\windows\system32\ntmsapi.dll
+ 2004-08-04 05:56:46 40,960 ----a-w c:\windows\system32\ntmsapi.dll
- 2001-08-18 12:00:00 165,888 ----a-w c:\windows\system32\ntmsdba.dll
+ 2004-08-04 05:56:46 179,712 ----a-w c:\windows\system32\ntmsdba.dll
- 2001-08-18 12:00:00 460,288 ----a-w c:\windows\system32\ntmsmgr.dll
+ 2004-08-04 05:56:46 488,448 ----a-w c:\windows\system32\ntmsmgr.dll
- 2001-08-18 12:00:00 392,192 ----a-w c:\windows\system32\ntmssvc.dll
+ 2004-08-04 05:56:46 435,200 ----a-w c:\windows\system32\ntmssvc.dll
- 2001-08-18 12:00:00 1,875,584 ----a-w c:\windows\system32\ntoskrnl.exe
+ 2004-08-04 04:20:00 2,180,992 ----a-w c:\windows\system32\ntoskrnl.exe
- 2001-08-18 12:00:00 80,896 ----a-w c:\windows\system32\ntprint.dll
+ 2004-08-04 05:56:46 91,136 ----a-w c:\windows\system32\ntprint.dll
- 2001-08-18 12:00:00 137,216 ----a-w c:\windows\system32\ntshrui.dll
+ 2004-08-04 05:56:46 143,872 ----a-w c:\windows\system32\ntshrui.dll
- 2001-08-18 12:00:00 395,776 ----a-w c:\windows\system32\ntvdm.exe
+ 2004-08-04 05:56:56 419,840 ----a-w c:\windows\system32\ntvdm.exe
+ 2004-08-04 05:56:46 4,274,816 ------w c:\windows\system32\nv4_disp.dll
- 2001-08-18 12:00:00 133,632 ----a-w c:\windows\system32\nwprovau.dll
+ 2004-08-04 05:56:46 144,384 ----a-w c:\windows\system32\nwprovau.dll
- 2001-08-18 12:00:00 210,432 ----a-w c:\windows\system32\oakley.dll
+ 2004-08-04 05:56:46 266,752 ----a-w c:\windows\system32\oakley.dll
- 2001-08-18 12:00:00 271,360 ----a-w c:\windows\system32\objsel.dll
+ 2004-08-04 05:56:46 285,696 ----a-w c:\windows\system32\objsel.dll
- 2001-08-18 12:00:00 87,552 ----a-w c:\windows\system32\occache.dll
+ 2004-08-04 05:56:46 96,256 ----a-w c:\windows\system32\occache.dll
- 2001-08-18 12:00:00 200,704 ----a-w c:\windows\system32\odbc32.dll
+ 2004-08-04 05:56:46 249,856 ----a-w c:\windows\system32\odbc32.dll
- 2001-08-18 12:00:00 16,384 ----a-w c:\windows\system32\odbc32gt.dll
+ 2004-08-04 05:56:46 16,384 ----a-w c:\windows\system32\odbc32gt.dll
- 2001-08-18 12:00:00 32,768 ----a-w c:\windows\system32\odbcad32.exe
+ 2004-08-04 05:56:56 32,768 ----a-w c:\windows\system32\odbcad32.exe
- 2001-08-18 12:00:00 24,576 ----a-w c:\windows\system32\odbcbcp.dll
+ 2004-08-04 05:56:46 24,576 ----a-w c:\windows\system32\odbcbcp.dll
- 2001-08-18 12:00:00 122,880 ----a-w c:\windows\system32\odbcconf.dll
+ 2004-08-04 05:56:46 135,168 ----a-w c:\windows\system32\odbcconf.dll
- 2001-08-18 12:00:00 53,248 ----a-w c:\windows\system32\odbcconf.exe
+ 2004-08-04 05:56:56 69,632 ----a-w c:\windows\system32\odbcconf.exe
- 2001-08-18 12:00:00 94,208 ----a-w c:\windows\system32\odbccp32.dll
+ 2004-08-04 05:56:46 106,496 ----a-w c:\windows\system32\odbccp32.dll
- 2001-08-18 12:00:00 61,440 ----a-w c:\windows\system32\odbccr32.dll
+ 2004-08-04 05:56:46 65,536 ----a-w c:\windows\system32\odbccr32.dll
- 2001-08-18 12:00:00 61,440 ----a-w c:\windows\system32\odbccu32.dll
+ 2004-08-04 05:56:46 65,536 ----a-w c:\windows\system32\odbccu32.dll
- 2001-08-18 12:00:00 90,112 ----a-w c:\windows\system32\odbcint.dll
+ 2004-08-04 05:56:24 94,208 ----a-w c:\windows\system32\odbcint.dll
- 2001-08-18 12:00:00 53,279 ----a-w c:\windows\system32\odbcji32.dll
+ 2004-08-04 05:56:24 53,279 ----a-w c:\windows\system32\odbcji32.dll
- 2001-08-18 12:00:00 270,365 ----a-w c:\windows\system32\odbcjt32.dll
+ 2004-08-04 05:56:46 278,559 ----a-w c:\windows\system32\odbcjt32.dll
- 2001-08-18 12:00:00 12,288 ----a-w c:\windows\system32\odbcp32r.dll
+ 2004-08-04 05:56:24 12,288 ----a-w c:\windows\system32\odbcp32r.dll
- 2001-08-18 12:00:00 147,456 ----a-w c:\windows\system32\odbctrac.dll
+ 2004-08-04 05:56:46 147,456 ----a-w c:\windows\system32\odbctrac.dll
- 2001-08-18 12:00:00 20,554 ----a-w c:\windows\system32\oddbse32.dll
+ 2004-08-04 05:56:46 20,511 ----a-w c:\windows\system32\oddbse32.dll
- 2001-08-18 12:00:00 20,553 ----a-w c:\windows\system32\odexl32.dll
+ 2004-08-04 05:56:46 20,510 ----a-w c:\windows\system32\odexl32.dll
- 2001-08-18 12:00:00 20,553 ----a-w c:\windows\system32\odfox32.dll
+ 2004-08-04 05:56:46 20,510 ----a-w c:\windows\system32\odfox32.dll
- 2001-08-18 12:00:00 20,553 ----a-w c:\windows\system32\odpdx32.dll
+ 2004-08-04 05:56:46 20,510 ----a-w c:\windows\system32\odpdx32.dll
- 2001-08-18 12:00:00 20,554 ----a-w c:\windows\system32\odtext32.dll
+ 2004-08-04 05:56:46 20,511 ----a-w c:\windows\system32\odtext32.dll
- 2001-08-18 12:00:00 102,400 ----a-w c:\windows\system32\offfilt.dll
+ 2004-08-04 05:56:46 120,832 ----a-w c:\windows\system32\offfilt.dll
- 2001-08-18 12:00:00 1,141,248 ----a-w c:\windows\system32\ole32.dll
+ 2004-08-04 05:56:46 1,281,536 ----a-w c:\windows\system32\ole32.dll
- 2001-08-18 12:00:00 569,344 ------w c:\windows\system32\oleaut32.dll
+ 2004-08-04 05:56:46 553,472 ------w c:\windows\system32\oleaut32.dll
- 2001-08-18 12:00:00 98,304 ----a-w c:\windows\system32\oleprn.dll
+ 2004-08-04 05:56:46 107,008 ----a-w c:\windows\system32\oleprn.dll
- 2001-08-18 12:00:00 106,496 ------w c:\windows\system32\olepro32.dll
+ 2004-08-04 05:56:46 83,456 ----a-w c:\windows\system32\olepro32.dll
- 2001-08-18 12:00:00 107,008 ----a-w c:\windows\system32\oobe\msobcomm.dll
+ 2004-08-04 05:56:44 122,368 ----a-w c:\windows\system32\oobe\msobcomm.dll
- 2001-08-18 12:00:00 14,336 ----a-w c:\windows\system32\oobe\msobdl.dll
+ 2004-08-04 05:56:44 16,384 ----a-w c:\windows\system32\oobe\msobdl.dll
- 2001-08-18 12:00:00 532,480 ----a-w c:\windows\system32\oobe\msobmain.dll
+ 2004-08-04 05:56:44 561,664 ----a-w c:\windows\system32\oobe\msobmain.dll
- 2001-08-18 12:00:00 28,160 ----a-w c:\windows\system32\oobe\msobshel.dll
+ 2004-08-04 05:56:44 30,720 ----a-w c:\windows\system32\oobe\msobshel.dll
- 2001-08-18 12:00:00 16,896 ----a-w c:\windows\system32\oobe\msobweb.dll
+ 2004-08-04 05:56:44 18,944 ----a-w c:\windows\system32\oobe\msobweb.dll
- 2001-08-18 12:00:00 49,664 ----a-w c:\windows\system32\oobe\oobebaln.exe
+ 2004-08-04 05:56:56 51,200 ----a-w c:\windows\system32\oobe\oobebaln.exe
- 2001-08-18 12:00:00 685,568 ----a-w c:\windows\system32\opengl32.dll
+ 2004-08-04 05:56:46 713,728 ----a-w c:\windows\system32\opengl32.dll
- 2001-08-18 12:00:00 212,480 ----a-w c:\windows\system32\osk.exe
+ 2004-08-04 05:56:56 215,552 ----a-w c:\windows\system32\osk.exe
- 2001-08-18 12:00:00 61,952 ----a-w c:\windows\system32\osuninst.dll
+ 2004-08-04 05:56:46 67,584 ----a-w c:\windows\system32\osuninst.dll
+ 2004-08-04 05:56:46 116,224 ------w c:\windows\system32\p2p.dll
+ 2004-08-04 05:56:46 86,016 ------w c:\windows\system32\p2pgasvc.dll
+ 2004-08-04 05:56:46 312,320 ------w c:\windows\system32\p2pgraph.dll
+ 2004-08-04 05:56:46 88,064 ------w c:\windows\system32\p2pnetsh.dll
+ 2004-08-04 05:56:46 526,848 ------w c:\windows\system32\p2psvc.dll
- 2001-08-18 12:00:00 52,224 ----a-w c:\windows\system32\packager.exe
+ 2004-08-04 05:56:56 58,368 ----a-w c:\windows\system32\packager.exe
- 2001-08-18 12:00:00 58,368 ----a-w c:\windows\system32\pautoenr.dll
+ 2004-08-04 05:56:46 62,976 ----a-w c:\windows\system32\pautoenr.dll
- 2001-08-18 12:00:00 250,880 ----a-w c:\windows\system32\pdh.dll
+ 2004-08-04 05:56:46 283,648 ----a-w c:\windows\system32\pdh.dll
- 2008-12-20 15:10:53 40,196 ----a-w c:\windows\system32\perfc009.dat
+ 2009-02-19 17:21:35 40,196 ----a-w c:\windows\system32\perfc009.dat
- 2001-08-18 12:00:00 37,376 ----a-w c:\windows\system32\perfctrs.dll
+ 2004-08-04 05:56:46 39,936 ----a-w c:\windows\system32\perfctrs.dll
- 2001-08-18 12:00:00 23,552 ----a-w c:\windows\system32\perfdisk.dll
+ 2004-08-04 05:56:46 26,624 ----a-w c:\windows\system32\perfdisk.dll
- 2008-12-20 15:10:53 311,934 ----a-w c:\windows\system32\perfh009.dat
+ 2009-02-19 17:21:35 311,934 ----a-w c:\windows\system32\perfh009.dat
- 2001-08-18 12:00:00 14,336 ----a-w c:\windows\system32\perfmon.exe
+ 2004-08-04 05:56:56 15,872 ----a-w c:\windows\system32\perfmon.exe
- 2001-08-18 12:00:00 23,040 ----a-w c:\windows\system32\perfos.dll
+ 2004-08-04 05:56:46 25,088 ----a-w c:\windows\system32\perfos.dll
- 2001-08-18 12:00:00 32,256 ----a-w c:\windows\system32\perfproc.dll
+ 2004-08-04 05:56:46 34,816 ----a-w c:\windows\system32\perfproc.dll
- 2001-08-18 12:00:00 166,912 ----a-w c:\windows\system32\photowiz.dll
+ 2004-08-04 05:56:46 176,128 ----a-w c:\windows\system32\photowiz.dll
- 2002-08-29 07:41:00 31,744 ----a-w c:\windows\system32\pid.dll
+ 2004-08-04 05:56:46 35,328 ----a-w c:\windows\system32\pid.dll
- 2001-08-18 12:00:00 27,136 ----a-w c:\windows\system32\pidgen.dll
+ 2004-08-04 04:04:42 24,064 ----a-w c:\windows\system32\pidgen.dll
- 2001-08-18 12:00:00 14,848 ----a-w c:\windows\system32\ping.exe
+ 2004-08-04 05:56:56 17,920 ----a-w c:\windows\system32\ping.exe
- 2001-08-18 12:00:00 12,800 ----a-w c:\windows\system32\pjlmon.dll
+ 2004-08-04 05:56:46 15,360 ----a-w c:\windows\system32\pjlmon.dll
- 2001-08-18 12:00:00 30,208 ----a-w c:\windows\system32\pngfilt.dll
+ 2004-08-04 05:56:46 39,424 ----a-w c:\windows\system32\pngfilt.dll
+ 2004-08-04 05:56:46 48,640 ------w c:\windows\system32\pnrpnsp.dll
- 2001-08-18 12:00:00 87,552 ----a-w c:\windows\system32\polstore.dll
+ 2004-08-04 05:56:46 105,472 ----a-w c:\windows\system32\polstore.dll
+ 2004-08-04 05:56:56 49,152 ------w c:\windows\system32\powercfg.exe
- 2001-08-18 12:00:00 14,848 ----a-w c:\windows\system32\powrprof.dll
+ 2004-08-04 05:56:46 17,408 ----a-w c:\windows\system32\powrprof.dll
- 2001-08-18 12:00:00 522,240 ----a-w c:\windows\system32\printui.dll
+ 2004-08-04 05:56:46 560,640 ----a-w c:\windows\system32\printui.dll
- 2001-08-18 12:00:00 28,672 ----a-w c:\windows\system32\profmap.dll
+ 2004-08-04 05:56:46 27,648 ----a-w c:\windows\system32\profmap.dll
- 2001-08-18 12:00:00 205,824 ----a-w c:\windows\system32\progman.exe
+ 2004-08-04 05:56:56 109,568 ----a-w c:\windows\system32\progman.exe
- 2001-08-18 12:00:00 45,056 ----a-w c:\windows\system32\proquota.exe
+ 2004-08-04 05:56:56 50,176 ----a-w c:\windows\system32\proquota.exe
+ 2004-08-04 05:56:56 9,216 ------w c:\windows\system32\proxycfg.exe
- 2001-08-18 12:00:00 17,408 ------w c:\windows\system32\psapi.dll
+ 2004-08-04 05:56:46 23,040 ----a-w c:\windows\system32\psapi.dll
- 2001-08-18 12:00:00 82,944 ----a-w c:\windows\system32\psbase.dll
+ 2004-08-04 05:56:46 96,768 ----a-w c:\windows\system32\psbase.dll
- 2004-07-09 08:26:40 354,816 ----a-w c:\windows\system32\psisdecd.dll
+ 2004-08-04 05:56:46 363,520 ----a-w c:\windows\system32\psisdecd.dll
- 2001-08-18 12:00:00 37,888 ----a-w c:\windows\system32\pstorec.dll
+ 2004-08-04 05:56:46 43,520 ----a-w c:\windows\system32\pstorec.dll
- 2001-08-18 12:00:00 25,600 ----a-w c:\windows\system32\pstorsvc.dll
+ 2004-08-04 05:56:46 34,304 ----a-w c:\windows\system32\pstorsvc.dll
- 2002-12-12 04:14:32 257,024 ----a-w c:\windows\system32\qcap.dll
+ 2004-08-04 05:56:46 192,512 ----a-w c:\windows\system32\qcap.dll
- 2004-07-09 08:27:28 316,928 ----a-w c:\windows\system32\qdv.dll
+ 2004-08-04 05:56:46 279,040 ----a-w c:\windows\system32\qdv.dll
- 2004-07-09 08:27:28 470,528 ----a-w c:\windows\system32\qdvd.dll
+ 2004-08-04 05:56:46 385,024 ----a-w c:\windows\system32\qdvd.dll
- 2002-12-12 04:14:32 1,798,144 ----a-w c:\windows\system32\qedit.dll
+ 2004-08-04 05:56:46 562,176 ----a-w c:\windows\system32\qedit.dll
- 2002-12-12 04:14:32 733,184 ----a-w c:\windows\system32\qedwipes.dll
+ 2004-08-04 05:56:26 733,696 ----a-w c:\windows\system32\qedwipes.dll
- 2004-07-01 22:08:18 361,984 ----a-w c:\windows\system32\qmgr.dll
+ 2004-08-04 05:56:46 382,464 ----a-w c:\windows\system32\qmgr.dll
- 2004-07-01 22:08:18 17,408 ----a-w c:\windows\system32\qmgrprxy.dll
+ 2004-08-04 05:56:46 18,944 ----a-w c:\windows\system32\qmgrprxy.dll
- 2001-08-18 12:00:00 18,432 ----a-w c:\windows\system32\qprocess.exe
+ 2004-08-04 05:56:56 20,480 ----a-w c:\windows\system32\qprocess.exe
- 2003-05-30 13:00:02 1,962,496 ----a-w c:\windows\system32\quartz.dll
+ 2004-08-04 05:56:46 1,287,680 ----a-w c:\windows\system32\quartz.dll
- 2001-08-18 12:00:00 1,337,856 ----a-w c:\windows\system32\query.dll
+ 2004-08-04 05:56:46 1,435,648 ----a-w c:\windows\system32\query.dll
- 2001-08-18 12:00:00 33,280 ----a-w c:\windows\system32\racpldlg.dll
+ 2004-08-04 05:56:46 43,520 ----a-w c:\windows\system32\racpldlg.dll
- 2001-08-18 12:00:00 6,144 ----a-w c:\windows\system32\rasadhlp.dll
+ 2004-08-04 05:56:46 8,192 ----a-w c:\windows\system32\rasadhlp.dll
- 2001-08-18 12:00:00 214,528 ----a-w c:\windows\system32\rasapi32.dll
+ 2004-08-04 05:56:46 236,544 ----a-w c:\windows\system32\rasapi32.dll
- 2001-08-18 12:00:00 82,944 ----a-w c:\windows\system32\rasauto.dll
+ 2004-08-04 05:56:46 89,088 ----a-w c:\windows\system32\rasauto.dll
- 2001-08-18 12:00:00 34,304 ----a-w c:\windows\system32\raschap.dll
+ 2004-08-04 05:56:46 69,632 ----a-w c:\windows\system32\raschap.dll
- 2001-08-18 12:00:00 630,784 ----a-w c:\windows\system32\rasdlg.dll
+ 2004-08-04 05:56:46 657,920 ----a-w c:\windows\system32\rasdlg.dll
- 2001-08-18 12:00:00 55,808 ----a-w c:\windows\system32\rasman.dll
+ 2004-08-04 05:56:46 61,440 ----a-w c:\windows\system32\rasman.dll
- 2001-08-18 12:00:00 159,744 ----a-w c:\windows\system32\rasmans.dll
+ 2004-08-04 05:56:46 174,080 ----a-w c:\windows\system32\rasmans.dll
- 2001-08-18 12:00:00 54,272 ----a-w c:\windows\system32\rasphone.exe
+ 2004-08-04 05:56:56 56,832 ----a-w c:\windows\system32\rasphone.exe
- 2001-08-18 12:00:00 193,536 ----a-w c:\windows\system32\rasppp.dll
+ 2004-08-04 05:56:46 206,336 ----a-w c:\windows\system32\rasppp.dll
- 2001-08-18 12:00:00 13,824 ----a-w c:\windows\system32\rassapi.dll
+ 2004-08-04 05:56:46 16,896 ----a-w c:\windows\system32\rassapi.dll
- 2001-08-18 12:00:00 53,760 ----a-w c:\windows\system32\rastapi.dll
+ 2004-08-04 05:56:46 58,880 ----a-w c:\windows\system32\rastapi.dll
- 2001-08-18 12:00:00 52,224 ----a-w c:\windows\system32\rastls.dll
+ 2004-08-04 05:56:46 112,128 ----a-w c:\windows\system32\rastls.dll
- 2001-08-18 12:00:00 96,256 ----a-w c:\windows\system32\rcbdyctl.dll
+ 2004-08-04 05:56:46 102,400 ----a-w c:\windows\system32\rcbdyctl.dll
- 2001-08-18 12:00:00 34,304 ----a-w c:\windows\system32\rcimlby.exe
+ 2004-08-04 05:56:56 35,840 ----a-w c:\windows\system32\rcimlby.exe
- 2001-08-18 12:00:00 19,968 ----a-w c:\windows\system32\rcp.exe
+ 2004-08-04 05:56:56 21,504 ----a-w c:\windows\system32\rcp.exe
- 2001-08-18 12:00:00 134,656 ----a-w c:\windows\system32\rdchost.dll
+ 2004-08-04 05:56:46 147,968 ----a-w c:\windows\system32\rdchost.dll
- 2001-08-18 12:00:00 41,984 ----a-w c:\windows\system32\rdpclip.exe
+ 2004-08-04 05:56:56 62,464 ----a-w c:\windows\system32\rdpclip.exe
- 2001-08-18 12:00:00 87,048 ----a-w c:\windows\system32\rdpdd.dll
+ 2004-08-04 06:01:08 92,168 ----a-w c:\windows\system32\rdpdd.dll
- 2001-08-18 12:00:00 14,848 ----a-w c:\windows\system32\rdpsnd.dll
+ 2004-08-04 05:56:46 19,968 ----a-w c:\windows\system32\rdpsnd.dll
- 2001-08-18 12:00:00 73,864 ----a-w c:\windows\system32\rdpwsx.dll
+ 2004-08-04 06:01:10 87,176 ----a-w c:\windows\system32\rdpwsx.dll
- 2001-08-18 12:00:00 12,288 ----a-w c:\windows\system32\rdsaddin.exe
+ 2004-08-04 05:56:56 13,824 ----a-w c:\windows\system32\rdsaddin.exe
- 2001-08-18 12:00:00 61,952 ----a-w c:\windows\system32\rdshost.exe
+ 2004-08-04 05:56:56 67,072 ----a-w c:\windows\system32\rdshost.exe
- 2001-08-18 12:00:00 3,338 ----a-w c:\windows\system32\redir.exe
+ 2004-08-04 03:48:46 3,338 ----a-w c:\windows\system32\redir.exe
- 2001-08-18 12:00:00 48,128 ----a-w c:\windows\system32\reg.exe
+ 2004-08-04 05:56:56 50,176 ----a-w c:\windows\system32\reg.exe
- 2001-08-18 12:00:00 44,032 ----a-w c:\windows\system32\regapi.dll
+ 2004-08-04 05:56:46 49,664 ----a-w c:\windows\system32\regapi.dll
- 2001-08-18 12:00:00 51,712 ----a-w c:\windows\system32\regsvc.dll
+ 2004-08-04 05:56:46 59,904 ----a-w c:\windows\system32\regsvc.dll
- 2001-08-18 12:00:00 9,728 ----a-w c:\windows\system32\regsvr32.exe
+ 2004-08-04 05:56:56 11,776 ----a-w c:\windows\system32\regsvr32.exe
- 2001-08-18 12:00:00 387,584 ----a-w c:\windows\system32\regwizc.dll
+ 2004-08-04 05:56:46 397,824 ----a-w c:\windows\system32\regwizc.dll
+ 2001-08-17 13:28:04 150,239 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_AMOS.sys
+ 2001-08-17 13:28:04 67,167 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_BSC2.sys
+ 2001-08-17 13:28:06 289,887 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_FALL.sys
+ 2001-08-17 13:28:06 199,711 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_FAXX.sys
+ 2001-08-17 13:28:06 115,807 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_FSKS.sys
+ 2001-08-17 22:36:16 9,759 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_INST.dll
+ 2001-08-17 13:28:08 391,199 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_K56K.sys
+ 2001-08-17 13:28:10 542,879 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_MSFT.sys
+ 2001-08-17 13:28:10 57,471 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_SAMP.sys
+ 2001-08-17 13:28:10 44,863 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_SOAR.sys
+ 2001-08-17 13:28:10 73,279 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_SPKP.sys
+ 2001-08-17 13:28:12 50,751 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_TONE.sys
+ 2001-08-17 13:28:12 488,383 ----a-w c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\HSF_V124.sys
+ 2001-08-18 12:00:00 30,592 ----a-w c:\windows\system32\ReinstallBackups\0012\DriverFiles\i386\processr.sys
- 2001-08-18 12:00:00 56,320 ----a-w c:\windows\system32\remotepg.dll
+ 2004-08-04 05:56:46 60,416 ----a-w c:\windows\system32\remotepg.dll
- 2001-08-18 12:00:00 366,080 ----a-w c:\windows\system32\Restore\rstrui.exe
+ 2004-08-04 05:56:56 380,416 ----a-w c:\windows\system32\Restore\rstrui.exe
- 2001-08-18 12:00:00 54,784 ----a-w c:\windows\system32\resutils.dll
+ 2004-08-04 05:56:46 58,880 ----a-w c:\windows\system32\resutils.dll
- 2001-08-18 12:00:00 11,776 ----a-w c:\windows\system32\rexec.exe
+ 2004-08-04 05:56:56 13,824 ----a-w c:\windows\system32\rexec.exe
- 2001-08-18 12:00:00 426,496 ----a-w c:\windows\system32\riched20.dll
+ 2004-08-04 05:56:46 431,616 ----a-w c:\windows\system32\riched20.dll
- 2001-08-18 12:00:00 463,872 ----a-w c:\windows\system32\rpcrt4.dll
+ 2004-08-04 05:56:46 581,120 ----a-w c:\windows\system32\rpcrt4.dll
- 2001-08-18 12:00:00 259,072 ----a-w c:\windows\system32\rpcss.dll
+ 2004-08-04 05:56:46 395,776 ----a-w c:\windows\system32\rpcss.dll
- 2001-08-18 12:00:00 131,584 ----a-w c:\windows\system32\rsaenh.dll
+ 2004-08-04 03:31:44 152,576 ----a-w c:\windows\system32\rsaenh.dll
- 2001-08-18 12:00:00 13,312 ----a-w c:\windows\system32\rsh.exe
+ 2004-08-04 05:56:56 14,848 ----a-w c:\windows\system32\rsh.exe
- 2001-08-18 12:00:00 35,840 ----a-w c:\windows\system32\rshx32.dll
+ 2004-08-04 05:56:46 39,936 ----a-w c:\windows\system32\rshx32.dll
- 2001-08-18 12:00:00 18,432 ----a-w c:\windows\system32\rsmps.dll
+ 2004-08-04 05:56:46 18,944 ----a-w c:\windows\system32\rsmps.dll
- 2001-08-18 12:00:00 74,240 ----a-w c:\windows\system32\rtcshare.exe
+ 2004-08-04 05:56:56 77,312 ----a-w c:\windows\system32\rtcshare.exe
- 2001-08-18 12:00:00 29,696 ----a-w c:\windows\system32\rtipxmib.dll
+ 2004-08-04 05:56:46 31,744 ----a-w c:\windows\system32\rtipxmib.dll
- 2001-08-18 12:00:00 39,936 ----a-w c:\windows\system32\rtutils.dll
+ 2004-08-04 05:56:46 44,032 ----a-w c:\windows\system32\rtutils.dll
- 2001-08-18 12:00:00 31,744 ----a-w c:\windows\system32\rundll32.exe
+ 2004-08-04 05:56:56 33,280 ----a-w c:\windows\system32\rundll32.exe
- 2001-08-18 12:00:00 12,288 ----a-w c:\windows\system32\runonce.exe
+ 2004-08-04 05:56:56 14,336 ----a-w c:\windows\system32\runonce.exe
+ 2004-08-04 05:56:46 397,056 ------w c:\windows\system32\s3gnb.dll
- 2001-08-18 12:00:00 39,424 ----a-w c:\windows\system32\safrcdlg.dll
+ 2004-08-04 05:56:46 43,520 ----a-w c:\windows\system32\safrcdlg.dll
- 2001-08-18 12:00:00 26,624 ----a-w c:\windows\system32\safrdm.dll
+ 2004-08-04 05:56:46 29,696 ----a-w c:\windows\system32\safrdm.dll
- 2001-08-18 12:00:00 40,960 ----a-w c:\windows\system32\safrslv.dll
+ 2004-08-04 05:56:46 45,568 ----a-w c:\windows\system32\safrslv.dll
- 2001-08-18 12:00:00 54,784 ----a-w c:\windows\system32\samlib.dll
+ 2004-08-04 05:56:46 64,000 ----a-w c:\windows\system32\samlib.dll
- 2001-08-18 12:00:00 411,136 ----a-w c:\windows\system32\samsrv.dll
+ 2004-08-04 05:56:46 415,744 ----a-w c:\windows\system32\samsrv.dll
- 2001-08-18 12:00:00 19,456 ----a-w c:\windows\system32\savedump.exe
+ 2004-08-04 05:56:56 13,312 ----a-w c:\windows\system32\savedump.exe
+ 2004-08-04 05:56:46 270,848 ------w c:\windows\system32\sbe.dll
+ 2004-08-04 05:56:46 159,232 ------w c:\windows\system32\sbeio.dll
- 2001-08-18 12:00:00 66,560 ----a-w c:\windows\system32\scarddlg.dll
+ 2004-08-04 05:56:46 69,632 ----a-w c:\windows\system32\scarddlg.dll
- 2001-08-18 12:00:00 93,184 ----a-w c:\windows\system32\scardsvr.exe
+ 2004-08-04 05:56:56 95,744 ----a-w c:\windows\system32\scardsvr.exe
- 2001-08-18 12:00:00 169,984 ----a-w c:\windows\system32\sccbase.dll
+ 2004-08-04 03:31:44 169,984 ----a-w c:\windows\system32\sccbase.dll
- 2001-08-18 12:00:00 171,008 ----a-w c:\windows\system32\sccsccp.dll
+ 2004-08-04 05:56:46 171,008 ----a-w c:\windows\system32\sccsccp.dll
- 2001-08-18 12:00:00 174,080 ----a-w c:\windows\system32\scecli.dll
+ 2004-08-04 05:56:46 180,224 ----a-w c:\windows\system32\scecli.dll
- 2001-08-18 12:00:00 295,936 ----a-w c:\windows\system32\scesrv.dll
+ 2004-08-04 05:56:46 313,856 ----a-w c:\windows\system32\scesrv.dll
- 2001-08-18 12:00:00 133,632 ----a-w c:\windows\system32\schannel.dll
+ 2004-08-04 05:56:46 144,896 ----a-w c:\windows\system32\schannel.dll
- 2001-08-18 12:00:00 158,720 ----a-w c:\windows\system32\schedsvc.dll
+ 2004-08-04 05:56:46 190,976 ----a-w c:\windows\system32\schedsvc.dll
- 2001-08-18 12:00:00 18,432 ----a-w c:\windows\system32\sclgntfy.dll
+ 2004-08-04 05:56:46 20,992 ----a-w c:\windows\system32\sclgntfy.dll
- 2001-08-18 12:00:00 8,192 ----a-w c:\windows\system32\scrnsave.scr
+ 2004-08-04 05:56:58 9,216 ----a-w c:\windows\system32\scrnsave.scr
- 2001-08-18 12:00:00 155,675 ----a-w c:\windows\system32\scrobj.dll
+ 2004-08-04 05:56:46 159,744 ----a-w c:\windows\system32\scrobj.dll
- 2001-08-18 12:00:00 147,483 ----a-w c:\windows\system32\scrrun.dll
+ 2004-08-04 05:56:46 151,552 ----a-w c:\windows\system32\scrrun.dll
- 2001-08-18 12:00:00 37,888 ----a-w c:\windows\system32\sdbinst.exe
+ 2004-08-04 05:56:56 77,312 ----a-w c:\windows\system32\sdbinst.exe
+ 2004-08-04 05:56:46 29,184 ------w c:\windows\system32\sdhcinst.dll
- 2001-08-18 12:00:00 20,992 ----a-w c:\windows\system32\seclogon.dll
+ 2004-08-04 05:56:46 18,944 ----a-w c:\windows\system32\seclogon.dll
+ 2004-08-02 19:20:40 4,569 ------w c:\windows\system32\secupd.dat
- 2001-08-18 12:00:00 52,224 ----a-w c:\windows\system32\secur32.dll
+ 2004-08-04 05:56:46 55,808 ----a-w c:\windows\system32\secur32.dll
- 2001-08-18 12:00:00 5,632 ----a-w c:\windows\system32\security.dll
+ 2004-08-04 05:56:46 5,632 ----a-w c:\windows\system32\security.dll
- 2001-08-18 12:00:00 27,136 ----a-w c:\windows\system32\sendcmsg.dll
+ 2004-08-04 05:56:46 29,184 ----a-w c:\windows\system32\sendcmsg.dll
- 2001-08-18 12:00:00 53,248 ----a-w c:\windows\system32\sendmail.dll
+ 2004-08-04 05:56:46 55,296 ----a-w c:\windows\system32\sendmail.dll
- 2001-08-18 12:00:00 35,840 ----a-w c:\windows\system32\sens.dll
+ 2004-08-04 05:56:46 38,912 ----a-w c:\windows\system32\sens.dll
- 2001-08-18 12:00:00 6,144 ----a-w c:\windows\system32\sensapi.dll
+ 2004-08-04 05:56:46 6,656 ----a-w c:\windows\system32\sensapi.dll
- 2001-08-18 12:00:00 53,248 ----a-w c:\windows\system32\servdeps.dll
+ 2004-08-04 05:56:46 56,320 ----a-w c:\windows\system32\servdeps.dll
- 2001-08-18 12:00:00 101,376 ----a-w c:\windows\system32\services.exe
+ 2004-08-04 05:56:56 108,032 ----a-w c:\windows\system32\services.exe
- 2001-08-18 12:00:00 130,048 ----a-w c:\windows\system32\sessmgr.exe
+ 2004-08-04 05:56:58 140,800 ----a-w c:\windows\system32\sessmgr.exe
- 2001-08-18 12:00:00 28,672 ----a-w c:\windows\system32\sethc.exe
+ 2004-08-04 05:56:58 31,232 ----a-w c:\windows\system32\sethc.exe
- 2001-08-18 12:00:00 20,992 ----a-w c:\windows\system32\setup.exe
+ 2004-08-04 05:56:58 23,040 ----a-w c:\windows\system32\setup.exe
- 2001-08-18 12:00:00 32,828 ----a-w c:\windows\system32\Setup\fp40ext.dll
+ 2004-08-04 05:56:44 32,828 ----a-w c:\windows\system32\Setup\fp40ext.dll
- 2001-08-18 12:00:00 122,368 ----a-w c:\windows\system32\Setup\fxsocm.dll
+ 2004-08-04 05:56:44 132,608 ----a-w c:\windows\system32\Setup\fxsocm.dll
- 2001-08-18 12:00:00 468,480 ------w c:\windows\system32\Setup\iis.dll
+ 2004-08-04 05:56:44 505,344 ----a-w c:\windows\system32\Setup\iis.dll
- 2001-08-18 12:00:00 24,606 ----a-w c:\windows\system32\Setup\msgrocm.dll
+ 2004-08-04 05:56:44 15,360 ----a-w c:\windows\system32\Setup\msgrocm.dll
- 2001-08-18 12:00:00 71,168 ----a-w c:\windows\system32\Setup\netoc.dll
+ 2004-08-04 05:56:46 77,312 ----a-w c:\windows\system32\Setup\netoc.dll
- 2001-08-18 12:00:00 61,440 ----a-w c:\windows\system32\Setup\ntoc.dll
+ 2004-08-04 05:56:46 62,976 ----a-w c:\windows\system32\Setup\ntoc.dll
- 2001-08-18 12:00:00 11,776 ----a-w c:\windows\system32\Setup\ocgen.dll
+ 2004-08-04 05:56:46 15,872 ----a-w c:\windows\system32\Setup\ocgen.dll
- 2001-08-18 12:00:00 36,864 ----a-w c:\windows\system32\Setup\ocmsn.dll
+ 2004-08-04 05:56:46 17,408 ----a-w c:\windows\system32\Setup\ocmsn.dll
- 2001-08-18 12:00:00 96,768 ----a-w c:\windows\system32\Setup\setupqry.dll
+ 2004-08-04 05:56:46 101,376 ----a-w c:\windows\system32\Setup\setupqry.dll
+ 2004-08-04 05:56:46 22,016 ----a-w c:\windows\system32\Setup\startoc.dll
- 2001-08-18 12:00:00 99,840 ----a-w c:\windows\system32\Setup\tsoc.dll
+ 2004-08-04 05:56:48 121,856 ----a-w c:\windows\system32\Setup\tsoc.dll
- 2001-08-18 12:00:00 922,624 ----a-w c:\windows\system32\setupapi.dll
+ 2004-08-04 05:56:46 983,552 ----a-w c:\windows\system32\setupapi.dll
- 2001-08-18 12:00:00 4,096 ----a-w c:\windows\system32\sfc.dll
+ 2004-08-04 05:56:46 5,120 ----a-w c:\windows\system32\sfc.dll
- 2001-08-18 12:00:00 132,608 ----a-w c:\windows\system32\sfc_os.dll
+ 2004-08-04 05:56:46 140,288 ----a-w c:\windows\system32\sfc_os.dll
- 2001-08-18 12:00:00 1,562,112 ----a-w c:\windows\system32\sfcfiles.dll
+ 2004-08-04 05:56:46 1,580,544 ----a-w c:\windows\system32\sfcfiles.dll
- 2001-08-18 12:00:00 548,864 ----a-w c:\windows\system32\shdoclc.dll
+ 2004-08-04 05:56:28 549,376 ----a-w c:\windows\system32\shdoclc.dll
- 2001-08-18 12:00:00 1,338,880 ----a-w c:\windows\system32\shdocvw.dll
+ 2004-08-04 05:56:46 1,483,264 ----a-w c:\windows\system32\shdocvw.dll
- 2001-08-18 12:00:00 8,222,208 ----a-w c:\windows\system32\shell32.dll
+ 2004-08-04 05:56:46 8,384,000 ----a-w c:\windows\system32\shell32.dll
- 2001-08-18 12:00:00 22,528 ------w c:\windows\system32\shfolder.dll
+ 2004-08-04 05:56:46 25,088 ----a-w c:\windows\system32\shfolder.dll
- 2001-08-18 12:00:00 62,464 ----a-w c:\windows\system32\shgina.dll
+ 2004-08-04 05:56:46 68,096 ----a-w c:\windows\system32\shgina.dll
- 2001-08-18 12:00:00 54,784 ----a-w c:\windows\system32\shimeng.dll
+ 2004-08-04 05:56:46 65,536 ----a-w c:\windows\system32\shimeng.dll
- 2001-08-18 12:00:00 419,840 ----a-w c:\windows\system32\shimgvw.dll
+ 2004-08-04 05:56:46 438,272 ----a-w c:\windows\system32\shimgvw.dll
- 2001-08-18 12:00:00 397,824 ----a-w c:\windows\system32\shlwapi.dll
+ 2004-08-04 05:56:46 473,600 ----a-w c:\windows\system32\shlwapi.dll
- 2002-09-19 15:27:40 126,464 ----a-w c:\windows\system32\shmedia.dll
+ 2004-08-04 05:56:46 151,552 ----a-w c:\windows\system32\shmedia.dll
- 2001-08-18 12:00:00 21,504 ----a-w c:\windows\system32\shmgrate.exe
+ 2004-08-04 05:56:58 42,496 ----a-w c:\windows\system32\shmgrate.exe
- 2001-08-18 12:00:00 69,632 ----a-w c:\windows\system32\shrpubw.exe
+ 2004-08-04 05:56:58 77,824 ----a-w c:\windows\system32\shrpubw.exe
- 2001-08-18 12:00:00 23,040 ----a-w c:\windows\system32\shscrap.dll
+ 2004-08-04 05:56:46 27,648 ----a-w c:\windows\system32\shscrap.dll
- 2001-08-18 12:00:00 114,688 ----a-w c:\windows\system32\shsvcs.dll
+ 2004-08-04 05:56:46 134,656 ----a-w c:\windows\system32\shsvcs.dll
- 2001-08-18 12:00:00 17,920 ----a-w c:\windows\system32\shutdown.exe
+ 2004-08-04 05:56:58 19,456 ----a-w c:\windows\system32\shutdown.exe
- 2001-08-18 12:00:00 11,776 ----a-w c:\windows\system32\sigtab.dll
+ 2004-08-04 05:56:46 13,312 ----a-w c:\windows\system32\sigtab.dll
- 2001-08-18 12:00:00 66,048 ----a-w c:\windows\system32\sigverif.exe
+ 2004-08-04 05:56:58 70,144 ----a-w c:\windows\system32\sigverif.exe
- 2001-08-18 12:00:00 24,064 ----a-w c:\windows\system32\skeys.exe
+ 2004-08-04 05:56:58 26,112 ----a-w c:\windows\system32\skeys.exe
- 2001-08-18 12:00:00 22,016 ----a-w c:\windows\system32\slayerxp.dll
+ 2004-08-04 05:56:46 25,088 ----a-w c:\windows\system32\slayerxp.dll
- 2001-08-18 12:00:00 276,480 ----a-w c:\windows\system32\slbcsp.dll
+ 2004-08-04 03:31:44 306,176 ----a-w c:\windows\system32\slbcsp.dll
- 2001-08-18 12:00:00 89,600 ----a-w c:\windows\system32\slbiop.dll
+ 2004-08-04 05:56:46 98,304 ----a-w c:\windows\system32\slbiop.dll
+ 2004-08-04 05:56:46 73,832 ------w c:\windows\system32\slcoinst.dll
+ 2004-08-04 05:56:46 286,792 ------w c:\windows\system32\slextspk.dll
+ 2004-08-04 05:56:46 188,508 ------w c:\windows\system32\slgen.dll
+ 2004-08-04 05:56:58 32,866 ------w c:\windows\system32\slrundll.exe
+ 2004-08-04 05:56:58 73,796 ------w c:\windows\system32\slserv.exe
+ 2004-08-04 05:56:58 8,192 ------w c:\windows\system32\smbinst.exe
- 2001-08-18 12:00:00 332,288 ----a-w c:\windows\system32\smlogcfg.dll
+ 2004-08-04 05:56:46 363,008 ----a-w c:\windows\system32\smlogcfg.dll
- 2001-08-18 12:00:00 86,016 ----a-w c:\windows\system32\smlogsvc.exe
+ 2004-08-04 05:56:58 89,600 ----a-w c:\windows\system32\smlogsvc.exe
- 2001-08-18 12:00:00 45,568 ----a-w c:\windows\system32\smss.exe
+ 2004-08-04 05:56:58 50,688 ----a-w c:\windows\system32\smss.exe
- 2001-08-18 12:00:00 124,416 ----a-w c:\windows\system32\sndrec32.exe
+ 2004-08-04 05:56:58 131,584 ----a-w c:\windows\system32\sndrec32.exe
- 2001-08-18 12:00:00 16,896 ----a-w c:\windows\system32\snmpapi.dll
+ 2004-08-04 05:56:46 18,944 ----a-w c:\windows\system32\snmpapi.dll
- 2001-08-18 12:00:00 172,032 ----a-w c:\windows\system32\snmpsnap.dll
+ 2004-08-04 05:56:46 182,272 ----a-w c:\windows\system32\snmpsnap.dll
+ 2004-08-04 05:56:58 8,192 ----a-w c:\windows\system32\spdwnwxp.exe
- 2001-08-18 12:00:00 534,016 ----a-w c:\windows\system32\spider.exe
+ 2004-08-04 05:56:58 538,624 ----a-w c:\windows\system32\spider.exe
+ 2004-08-04 05:56:58 11,776 ------w c:\windows\system32\spnpinst.exe
- 2004-03-22 20:17:04 765,680 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mdigraph.dll
+ 2007-04-09 18:24:04 758,664 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mdigraph.dll
- 2004-03-22 20:17:10 42,224 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mdiui.dll
+ 2007-04-09 18:23:58 46,472 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mdiui.dll
- 2004-03-22 20:17:04 765,680 ----a-w c:\windows\system32\spool\drivers\w32x86\mdigraph.dll
+ 2007-04-09 18:24:04 758,664 ----a-w c:\windows\system32\spool\drivers\w32x86\mdigraph.dll
- 2004-03-22 20:17:10 42,224 ----a-w c:\windows\system32\spool\drivers\w32x86\mdiui.dll
+ 2007-04-09 18:23:58 46,472 ----a-w c:\windows\system32\spool\drivers\w32x86\mdiui.dll
- 2004-03-22 20:17:08 25,840 ----a-w c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll
+ 2007-04-09 18:23:54 28,552 ----a-w c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll
- 2001-08-18 12:00:00 66,560 ----a-w c:\windows\system32\spoolss.dll
+ 2004-08-04 05:56:46 74,752 ----a-w c:\windows\system32\spoolss.dll
- 2001-08-18 12:00:00 51,200 ----a-w c:\windows\system32\spoolsv.exe
+ 2004-08-04 05:56:58 57,856 ----a-w c:\windows\system32\spoolsv.exe
+ 2004-08-04 05:56:58 21,504 ------w c:\windows\system32\spupdwxp.exe
- 2001-08-18 12:00:00 356,352 ----a-w c:\windows\system32\sqlsrv32.dll
+ 2004-08-04 05:56:46 442,368 ----a-w c:\windows\system32\sqlsrv32.dll
- 2001-08-18 12:00:00 180,800 ----a-w c:\windows\system32\sqlunirl.dll
+ 2004-08-04 05:56:46 180,800 ----a-w c:\windows\system32\sqlunirl.dll
- 2001-08-18 12:00:00 61,952 ----a-w c:\windows\system32\srclient.dll
+ 2004-08-04 05:56:46 67,584 ----a-w c:\windows\system32\srclient.dll
- 2002-11-14 19:42:34 218,624 ----a-w c:\windows\system32\srrstr.dll
+ 2004-08-04 05:56:46 239,104 ----a-w c:\windows\system32\srrstr.dll
- 2001-08-18 12:00:00 155,136 ----a-w c:\windows\system32\srsvc.dll
+ 2004-08-04 05:56:46 170,496 ----a-w c:\windows\system32\srsvc.dll
- 2001-08-18 12:00:00 87,040 ----a-w c:\windows\system32\srvsvc.dll
+ 2004-08-04 05:56:46 96,768 ----a-w c:\windows\system32\srvsvc.dll
- 2001-08-18 12:00:00 667,648 ----a-w c:\windows\system32\ss3dfo.scr
+ 2004-08-04 05:56:58 704,512 ----a-w c:\windows\system32\ss3dfo.scr
- 2001-08-18 12:00:00 18,944 ----a-w c:\windows\system32\ssbezier.scr
+ 2004-08-04 05:56:58 19,968 ----a-w c:\windows\system32\ssbezier.scr
- 2001-08-18 12:00:00 26,624 ----a-w c:\windows\system32\ssdpapi.dll
+ 2004-08-04 05:56:46 34,816 ----a-w c:\windows\system32\ssdpapi.dll
- 2001-08-18 12:00:00 41,472 ----a-w c:\windows\system32\ssdpsrv.dll
+ 2004-08-04 05:56:46 71,680 ----a-w c:\windows\system32\ssdpsrv.dll
- 2001-08-18 12:00:00 364,544 ----a-w c:\windows\system32\ssflwbox.scr
+ 2004-08-04 05:56:58 393,216 ----a-w c:\windows\system32\ssflwbox.scr
- 2001-08-18 12:00:00 19,456 ----a-w c:\windows\system32\ssmarque.scr
+ 2004-08-04 05:56:58 20,992 ----a-w c:\windows\system32\ssmarque.scr
- 2001-08-18 12:00:00 43,008 ----a-w c:\windows\system32\ssmypics.scr
+ 2004-08-04 05:56:58 47,104 ----a-w c:\windows\system32\ssmypics.scr
- 2001-08-18 12:00:00 17,408 ----a-w c:\windows\system32\ssmyst.scr
+ 2004-08-04 05:56:58 18,944 ----a-w c:\windows\system32\ssmyst.scr
- 2001-08-18 12:00:00 569,344 ----a-w c:\windows\system32\sspipes.scr
+ 2004-08-04 05:56:58 610,304 ----a-w c:\windows\system32\sspipes.scr
- 2001-08-18 12:00:00 13,312 ----a-w c:\windows\system32\ssstars.scr
+ 2004-08-04 05:56:58 14,336 ----a-w c:\windows\system32\ssstars.scr
- 2001-08-18 12:00:00 638,976 ----a-w c:\windows\system32\sstext3d.scr
+ 2004-08-04 05:56:58 679,936 ----a-w c:\windows\system32\sstext3d.scr
- 2001-08-18 12:00:00 60,928 ----a-w c:\windows\system32\sti.dll
+ 2004-08-04 05:56:46 67,584 ----a-w c:\windows\system32\sti.dll
- 2001-08-18 12:00:00 132,096 ----a-w c:\windows\system32\sti_ci.dll
+ 2004-08-04 05:56:46 136,704 ----a-w c:\windows\system32\sti_ci.dll
- 2001-08-18 12:00:00 20,480 ----a-w c:\windows\system32\stimon.exe
+ 2004-08-04 05:56:58 14,848 ----a-w c:\windows\system32\stimon.exe
- 2001-08-18 12:00:00 117,760 ----a-w c:\windows\system32\stobject.dll
+ 2004-08-04 05:56:46 121,856 ----a-w c:\windows\system32\stobject.dll
- 2001-08-17 22:36:32 70,656 ----a-w c:\windows\system32\storprop.dll
+ 2004-08-04 05:56:46 74,752 ----a-w c:\windows\system32\storprop.dll
- 2001-08-18 12:00:00 246,302 ----a-w c:\windows\system32\strmdll.dll
+ 2004-08-04 05:56:46 246,302 ----a-w c:\windows\system32\strmdll.dll
+ 2004-08-04 05:56:46 75,776 ------w c:\windows\system32\strmfilt.dll
- 2001-08-18 12:00:00 12,800 ----a-w c:\windows\system32\svchost.exe
+ 2004-08-04 05:56:58 14,336 ----a-w c:\windows\system32\svchost.exe
- 2001-08-18 12:00:00 647,680 ----a-w c:\windows\system32\sxs.dll
+ 2004-08-04 05:56:48 713,216 ----a-w c:\windows\system32\sxs.dll
- 2001-08-18 12:00:00 51,712 ----a-w c:\windows\system32\synceng.dll
+ 2004-08-04 05:56:48 57,856 ----a-w c:\windows\system32\synceng.dll
- 2001-08-18 12:00:00 183,296 ----a-w c:\windows\system32\syncui.dll
+ 2004-08-04 05:56:48 191,488 ----a-w c:\windows\system32\syncui.dll
- 2001-08-18 12:00:00 103,936 ----a-w c:\windows\system32\sysocmgr.exe
+ 2004-08-04 05:56:58 105,984 ----a-w c:\windows\system32\sysocmgr.exe
- 2001-08-18 12:00:00 927,232 ----a-w c:\windows\system32\syssetup.dll
+ 2004-08-04 05:56:48 984,576 ----a-w c:\windows\system32\syssetup.dll
- 2001-08-18 12:00:00 198,656 ----a-w c:\windows\system32\t2embed.dll
+ 2004-08-04 05:56:48 210,432 ----a-w c:\windows\system32\t2embed.dll
- 2001-08-18 12:00:00 829,952 ----a-w c:\windows\system32\tapi3.dll
+ 2004-08-04 05:56:48 858,624 ----a-w c:\windows\system32\tapi3.dll
- 2001-08-18 12:00:00 163,328 ----a-w c:\windows\system32\tapi32.dll
+ 2004-08-04 05:56:48 181,760 ----a-w c:\windows\system32\tapi32.dll
- 2001-08-18 12:00:00 233,984 ----a-w c:\windows\system32\tapisrv.dll
+ 2004-08-04 05:56:48 246,272 ----a-w c:\windows\system32\tapisrv.dll
- 2001-08-18 12:00:00 128,512 ----a-w c:\windows\system32\taskmgr.exe
+ 2004-08-04 05:56:58 135,680 ----a-w c:\windows\system32\taskmgr.exe
- 2001-08-18 12:00:00 13,312 ----a-w c:\windows\system32\tcpmib.dll
+ 2004-08-04 05:56:48 14,848 ----a-w c:\windows\system32\tcpmib.dll
- 2001-08-18 12:00:00 40,448 ----a-w c:\windows\system32\tcpmon.dll
+ 2004-08-04 05:56:48 45,568 ----a-w c:\windows\system32\tcpmon.dll
- 2001-08-18 12:00:00 40,960 ----a-w c:\windows\system32\tcpmonui.dll
+ 2004-08-04 05:56:48 45,568 ----a-w c:\windows\system32\tcpmonui.dll
- 2001-08-18 12:00:00 70,144 ----a-w c:\windows\system32\telnet.exe
+ 2004-08-04 05:56:58 75,264 ----a-w c:\windows\system32\telnet.exe
- 2001-08-18 12:00:00 343,552 ----a-w c:\windows\system32\termmgr.dll
+ 2004-08-04 05:56:48 358,400 ----a-w c:\windows\system32\termmgr.dll
- 2001-08-18 12:00:00 197,632 ----a-r c:\windows\system32\termsrv.dll
+ 2004-08-04 05:56:48 295,424 ----a-r c:\windows\system32\termsrv.dll
- 2001-08-18 12:00:00 383,488 ----a-w c:\windows\system32\themeui.dll
+ 2004-08-04 05:56:48 385,536 ----a-w c:\windows\system32\themeui.dll
- 2001-08-18 12:00:00 346,624 ----a-w c:\windows\system32\tourstart.exe
+ 2004-08-04 05:56:58 347,136 ----a-w c:\windows\system32\tourstart.exe
- 2001-08-18 12:00:00 9,728 ----a-w c:\windows\system32\tracert.exe
+ 2004-08-04 05:56:58 12,288 ----a-w c:\windows\system32\tracert.exe
- 2001-08-18 12:00:00 80,384 ----a-w c:\windows\system32\trkwks.dll
+ 2004-08-04 05:56:48 90,624 ----a-w c:\windows\system32\trkwks.dll
- 2001-08-18 12:00:00 88,576 ----a-w c:\windows\system32\tscfgwmi.dll
+ 2004-08-04 05:56:48 93,696 ----a-w c:\windows\system32\tscfgwmi.dll
- 2001-08-18 12:00:00 40,448 ----a-w c:\windows\system32\tscupgrd.exe
+ 2004-08-04 03:59:28 44,544 ----a-w c:\windows\system32\tscupgrd.exe
- 2001-08-18 12:00:00 8,456 ----a-w c:\windows\system32\tsddd.dll
+ 2004-08-04 06:01:08 12,168 ----a-w c:\windows\system32\tsddd.dll
+ 2004-08-04 05:56:48 44,032 ------w c:\windows\system32\twext.dll
- 2001-08-18 12:00:00 90,624 ----a-w c:\windows\system32\txflog.dll
+ 2004-08-04 05:56:48 101,376 ----a-w c:\windows\system32\txflog.dll
- 2001-08-18 12:00:00 21,504 ----a-w c:\windows\system32\udhisapi.dll
+ 2004-08-04 05:56:48 25,600 ----a-w c:\windows\system32\udhisapi.dll
- 2001-08-18 12:00:00 268,800 ----a-w c:\windows\system32\ulib.dll
+ 2004-08-04 05:56:48 275,456 ----a-w c:\windows\system32\ulib.dll
- 2001-08-18 12:00:00 31,744 ----a-w c:\windows\system32\umandlg.dll
+ 2004-08-04 05:56:48 35,840 ----a-w c:\windows\system32\umandlg.dll
- 2001-08-18 12:00:00 105,472 ----a-w c:\windows\system32\umpnpmgr.dll
+ 2004-08-04 05:56:48 118,272 ----a-w c:\windows\system32\umpnpmgr.dll
- 2001-08-18 12:00:00 69,120 ----a-w c:\windows\system32\unimdmat.dll
+ 2004-08-04 05:56:48 74,240 ----a-w c:\windows\system32\unimdmat.dll
- 2001-08-18 12:00:00 13,824 ----a-w c:\windows\system32\uniplat.dll
+ 2004-08-04 05:56:48 13,824 ----a-w c:\windows\system32\uniplat.dll
- 2001-08-18 12:00:00 302,080 ----a-w c:\windows\system32\untfs.dll
+ 2004-08-04 05:56:48 316,416 ----a-w c:\windows\system32\untfs.dll
- 2001-08-18 12:00:00 119,808 ----a-w c:\windows\system32\upnp.dll
+ 2004-08-04 05:56:48 132,608 ----a-w c:\windows\system32\upnp.dll
- 2001-08-18 12:00:00 14,848 ----a-w c:\windows\system32\upnpcont.exe
+ 2004-08-04 05:56:58 16,896 ----a-w c:\windows\system32\upnpcont.exe
- 2001-08-18 12:00:00 162,816 ----a-w c:\windows\system32\upnphost.dll
+ 2004-08-04 05:56:48 185,344 ----a-w c:\windows\system32\upnphost.dll
- 2001-08-18 12:00:00 231,424 ----a-w c:\windows\system32\upnpui.dll
+ 2004-08-04 05:56:48 239,616 ----a-w c:\windows\system32\upnpui.dll
- 2001-08-18 12:00:00 16,384 ----a-w c:\windows\system32\ups.exe
+ 2004-08-04 05:56:58 18,432 ----a-w c:\windows\system32\ups.exe
- 2001-08-18 12:00:00 109,568 ----a-w c:\windows\system32\url.dll
+ 2004-08-04 05:56:48 37,888 ----a-w c:\windows\system32\url.dll
- 2001-08-18 12:00:00 452,096 ----a-w c:\windows\system32\urlmon.dll
+ 2004-08-04 05:56:48 601,088 ----a-w c:\windows\system32\urlmon.dll
- 2001-08-18 12:00:00 14,848 ----a-w c:\windows\system32\usbmon.dll
+ 2004-08-04 05:56:48 16,896 ----a-w c:\windows\system32\usbmon.dll
- 2001-08-18 02:36:34 67,072 ----a-w c:\windows\system32\usbui.dll
+ 2004-08-04 05:56:48 74,240 ----a-w c:\windows\system32\usbui.dll
- 2001-08-18 12:00:00 561,152 ----a-w c:\windows\system32\user32.dll
+ 2004-08-04 05:56:48 577,024 ----a-w c:\windows\system32\user32.dll
- 2001-08-18 12:00:00 656,896 ----a-w c:\windows\system32\userenv.dll
+ 2004-08-04 05:56:48 723,456 ----a-w c:\windows\system32\userenv.dll
- 2001-08-18 12:00:00 21,504 ----a-w c:\windows\system32\userinit.exe
+ 2004-08-04 05:56:58 24,576 ----a-w c:\windows\system32\userinit.exe
- 2001-08-18 12:00:00 113,664 ----a-w c:\windows\system32\usmt\guitrn.dll
+ 2004-08-04 05:56:44 123,904 ----a-w c:\windows\system32\usmt\guitrn.dll
- 2001-08-18 12:00:00 100,864 ----a-w c:\windows\system32\usmt\guitrn_a.dll
+ 2004-08-04 05:56:44 108,544 ----a-w c:\windows\system32\usmt\guitrn_a.dll
- 2001-08-18 12:00:00 3,584 ----a-w c:\windows\system32\usmt\iconlib.dll
+ 2004-08-04 05:56:44 4,096 ----a-w c:\windows\system32\usmt\iconlib.dll
- 2001-08-18 12:00:00 16,896 ----a-w c:\windows\system32\usmt\log.dll
+ 2004-08-04 05:56:44 19,968 ----a-w c:\windows\system32\usmt\log.dll
- 2001-08-18 12:00:00 185,344 ----a-w c:\windows\system32\usmt\migism.dll
+ 2004-08-04 05:56:44 201,216 ----a-w c:\windows\system32\usmt\migism.dll
- 2001-08-18 12:00:00 179,200 ----a-w c:\windows\system32\usmt\migism_a.dll
+ 2004-08-04 05:56:44 192,512 ----a-w c:\windows\system32\usmt\migism_a.dll
- 2001-08-18 12:00:00 98,816 ----a-w c:\windows\system32\usmt\migload.exe
+ 2004-08-04 05:56:52 103,424 ----a-w c:\windows\system32\usmt\migload.exe
- 2001-08-18 12:00:00 230,400 ----a-w c:\windows\system32\usmt\migwiz.exe
+ 2004-08-04 05:56:52 240,128 ----a-w c:\windows\system32\usmt\migwiz.exe
- 2001-08-18 12:00:00 226,816 ----a-w c:\windows\system32\usmt\migwiz_a.exe
+ 2004-08-04 05:56:52 236,032 ----a-w c:\windows\system32\usmt\migwiz_a.exe
- 2001-08-18 12:00:00 186,368 ----a-w c:\windows\system32\usmt\script.dll
+ 2004-08-04 05:56:46 202,752 ----a-w c:\windows\system32\usmt\script.dll
- 2001-08-18 12:00:00 167,424 ----a-w c:\windows\system32\usmt\script_a.dll
+ 2004-08-04 05:56:46 188,416 ----a-w c:\windows\system32\usmt\script_a.dll
- 2001-08-18 12:00:00 141,312 ----a-w c:\windows\system32\usmt\sysmod.dll
+ 2004-08-04 05:56:48 168,960 ----a-w c:\windows\system32\usmt\sysmod.dll
- 2001-08-18 12:00:00 130,560 ----a-w c:\windows\system32\usmt\sysmod_a.dll
+ 2004-08-04 05:56:48 155,648 ----a-w c:\windows\system32\usmt\sysmod_a.dll
- 2001-08-18 12:00:00 339,456 ----a-w c:\windows\system32\usp10.dll
+ 2004-08-04 05:56:48 406,528 ----a-w c:\windows\system32\usp10.dll
- 2001-08-18 12:00:00 46,592 ----a-w c:\windows\system32\utilman.exe
+ 2004-08-04 05:56:58 50,176 ----a-w c:\windows\system32\utilman.exe
- 2001-08-18 12:00:00 202,752 ----a-w c:\windows\system32\uxtheme.dll
+ 2004-08-04 05:56:48 218,624 ----a-w c:\windows\system32\uxtheme.dll
- 2001-08-18 12:00:00 30,992 ----a-w c:\windows\system32\vbajet32.dll
+ 2004-08-04 05:56:48 30,749 ----a-w c:\windows\system32\vbajet32.dll
- 2001-08-18 12:00:00 479,261 ----a-w c:\windows\system32\vbscript.dll
+ 2004-08-04 05:56:48 417,792 ----a-w c:\windows\system32\vbscript.dll
- 2001-08-18 12:00:00 24,064 ----a-w c:\windows\system32\vdmdbg.dll
+ 2004-08-04 05:56:48 26,112 ----a-w c:\windows\system32\vdmdbg.dll
- 2001-08-18 12:00:00 48,640 ----a-w c:\windows\system32\vdmredir.dll
+ 2004-08-04 05:56:48 51,712 ----a-w c:\windows\system32\vdmredir.dll
- 2001-08-18 12:00:00 16,384 ----a-w c:\windows\system32\version.dll
+ 2004-08-04 05:56:48 18,944 ----a-w c:\windows\system32\version.dll
- 2001-08-18 12:00:00 409,088 ----a-w c:\windows\system32\vssapi.dll
+ 2004-08-04 05:56:48 430,592 ----a-w c:\windows\system32\vssapi.dll
- 2001-08-18 12:00:00 275,456 ----a-w c:\windows\system32\vssvc.exe
+ 2004-08-04 05:56:58 289,792 ----a-w c:\windows\system32\vssvc.exe
- 2001-08-18 12:00:00 165,376 ----a-w c:\windows\system32\w32time.dll
+ 2004-08-04 05:56:48 174,592 ----a-w c:\windows\system32\w32time.dll
+ 2004-08-04 05:56:48 15,872 ------w c:\windows\system32\w3ssl.dll
- 2001-08-18 12:00:00 14,592 ----a-w c:\windows\system32\watchdog.sys
+ 2004-08-04 04:07:34 17,664 ----a-w c:\windows\system32\watchdog.sys
- 2001-08-18 12:00:00 1,266,688 ----a-w c:\windows\system32\wbem\cimwin32.dll
+ 2004-08-04 05:56:42 1,352,192 ----a-w c:\windows\system32\wbem\cimwin32.dll
- 2001-08-18 12:00:00 235,520 ----a-w c:\windows\system32\wbem\esscli.dll
+ 2004-08-04 05:56:44 247,808 ----a-w c:\windows\system32\wbem\esscli.dll
- 2001-08-18 12:00:00 19,456 ----a-w c:\windows\system32\wbem\evntrprv.dll
+ 2004-08-04 05:56:44 22,016 ----a-w c:\windows\system32\wbem\evntrprv.dll
- 2001-08-18 12:00:00 585,216 ----a-w c:\windows\system32\wbem\fastprox.dll
+ 2004-08-04 05:56:44 472,064 ----a-w c:\windows\system32\wbem\fastprox.dll
- 2001-08-18 12:00:00 174,592 ----a-w c:\windows\system32\wbem\framedyn.dll
+ 2004-08-04 05:56:44 185,856 ----a-w c:\windows\system32\wbem\framedyn.dll
- 2001-08-18 12:00:00 23,552 ----a-w c:\windows\system32\wbem\krnlprov.dll
+ 2004-08-04 05:56:44 24,576 ----a-w c:\windows\system32\wbem\krnlprov.dll
- 2001-08-18 12:00:00 14,336 ----a-w c:\windows\system32\wbem\mofcomp.exe
+ 2004-08-04 05:56:52 16,384 ----a-w c:\windows\system32\wbem\mofcomp.exe
- 2001-08-18 12:00:00 104,960 ----a-w c:\windows\system32\wbem\mofd.dll
+ 2004-08-04 05:56:44 123,904 ----a-w c:\windows\system32\wbem\mofd.dll
- 2001-08-18 12:00:00 60,928 ----a-w c:\windows\system32\wbem\ncprov.dll
+ 2004-08-04 05:56:46 47,104 ----a-w c:\windows\system32\wbem\ncprov.dll
- 2001-08-18 12:00:00 203,264 ----a-w c:\windows\system32\wbem\ntevt.dll
+ 2004-08-04 05:56:46 212,992 ----a-w c:\windows\system32\wbem\ntevt.dll
- 2001-08-18 12:00:00 226,304 ----a-w c:\windows\system32\wbem\provthrd.dll
+ 2004-08-04 05:56:46 237,056 ----a-w c:\windows\system32\wbem\provthrd.dll
- 2001-08-18 12:00:00 137,216 ----a-w c:\windows\system32\wbem\repdrvfs.dll
+ 2004-08-04 05:56:46 177,152 ----a-w c:\windows\system32\wbem\repdrvfs.dll
- 2001-08-18 12:00:00 33,792 ----a-w c:\windows\system32\wbem\scrcons.exe
+ 2004-08-04 05:56:56 36,864 ----a-w c:\windows\system32\wbem\scrcons.exe
- 2001-08-18 12:00:00 80,896 ----a-w c:\windows\system32\wbem\stdprov.dll
+ 2004-08-04 05:56:46 86,528 ----a-w c:\windows\system32\wbem\stdprov.dll
- 2001-08-18 12:00:00 125,952 ----a-w c:\windows\system32\wbem\viewprov.dll
+ 2004-08-04 05:56:48 131,584 ----a-w c:\windows\system32\wbem\viewprov.dll
- 2001-08-18 12:00:00 183,808 ----a-w c:\windows\system32\wbem\wbemcntl.dll
+ 2004-08-04 05:56:48 196,608 ----a-w c:\windows\system32\wbem\wbemcntl.dll
- 2001-08-18 12:00:00 214,528 ----a-w c:\windows\system32\wbem\wbemcomn.dll
+ 2004-08-04 05:56:48 214,528 ----a-w c:\windows\system32\wbem\wbemcomn.dll
- 2001-08-18 12:00:00 66,048 ----a-w c:\windows\system32\wbem\wbemcons.dll
+ 2004-08-04 05:56:48 71,680 ----a-w c:\windows\system32\wbem\wbemcons.dll
- 2001-08-18 12:00:00 477,184 ----a-w c:\windows\system32\wbem\wbemcore.dll
+ 2004-08-04 05:56:48 530,944 ----a-w c:\windows\system32\wbem\wbemcore.dll
- 2001-08-18 12:00:00 167,936 ----a-w c:\windows\system32\wbem\wbemdisp.dll
+ 2004-08-04 05:56:48 178,176 ----a-w c:\windows\system32\wbem\wbemdisp.dll
- 2001-08-18 12:00:00 259,072 ----a-w c:\windows\system32\wbem\wbemess.dll
+ 2004-08-04 05:56:48 273,920 ----a-w c:\windows\system32\wbem\wbemess.dll
- 2001-08-18 12:00:00 38,400 ----a-w c:\windows\system32\wbem\wbemperf.dll
+ 2004-08-04 05:56:48 43,008 ----a-w c:\windows\system32\wbem\wbemperf.dll
- 2001-08-18 12:00:00 28,160 ----a-w c:\windows\system32\wbem\wbemprox.dll
+ 2004-08-04 05:56:48 18,944 ----a-w c:\windows\system32\wbem\wbemprox.dll
- 2001-08-18 12:00:00 48,128 ----a-w c:\windows\system32\wbem\wbemsvc.dll
+ 2004-08-04 05:56:48 43,520 ----a-w c:\windows\system32\wbem\wbemsvc.dll
- 2001-08-18 12:00:00 157,696 ----a-w c:\windows\system32\wbem\wbemtest.exe
+ 2004-08-04 05:56:58 116,224 ----a-w c:\windows\system32\wbem\wbemtest.exe
- 2001-08-18 12:00:00 106,496 ----a-w c:\windows\system32\wbem\wbemupgd.dll
+ 2004-08-04 05:56:48 197,120 ----a-w c:\windows\system32\wbem\wbemupgd.dll
- 2001-08-18 12:00:00 183,808 ----a-w c:\windows\system32\wbem\wmiadap.exe
+ 2004-08-04 05:56:58 196,608 ----a-w c:\windows\system32\wbem\wmiadap.exe
- 2001-08-18 12:00:00 6,144 ----a-w c:\windows\system32\wbem\wmiapres.dll
+ 2004-08-04 05:56:36 6,656 ----a-w c:\windows\system32\wbem\wmiapres.dll
- 2001-08-18 12:00:00 82,432 ----a-w c:\windows\system32\wbem\wmiaprpl.dll
+ 2004-08-04 05:56:48 89,088 ----a-w c:\windows\system32\wbem\wmiaprpl.dll
- 2001-08-18 12:00:00 117,248 ----a-w c:\windows\system32\wbem\wmiapsrv.exe
+ 2004-08-04 05:56:58 126,464 ----a-w c:\windows\system32\wbem\wmiapsrv.exe
- 2001-08-18 12:00:00 55,808 ----a-w c:\windows\system32\wbem\wmicookr.dll
+ 2004-08-04 05:56:48 60,928 ----a-w c:\windows\system32\wbem\wmicookr.dll
- 2001-08-18 12:00:00 138,752 ----a-w c:\windows\system32\wbem\wmidcprv.dll
+ 2004-08-04 05:56:48 140,800 ----a-w c:\windows\system32\wbem\wmidcprv.dll
- 2001-08-18 12:00:00 149,504 ----a-w c:\windows\system32\wbem\wmipcima.dll
+ 2004-08-04 05:56:48 156,672 ----a-w c:\windows\system32\wbem\wmipcima.dll
- 2001-08-18 12:00:00 124,928 ----a-w c:\windows\system32\wbem\wmipdskq.dll
+ 2004-08-04 05:56:48 132,096 ----a-w c:\windows\system32\wbem\wmipdskq.dll
- 2001-08-18 12:00:00 58,880 ----a-w c:\windows\system32\wbem\wmipiprt.dll
+ 2004-08-04 05:56:48 62,464 ----a-w c:\windows\system32\wbem\wmipiprt.dll
- 2001-08-18 12:00:00 59,904 ----a-w c:\windows\system32\wbem\wmipjobj.dll
+ 2004-08-04 05:56:48 62,976 ----a-w c:\windows\system32\wbem\wmipjobj.dll
- 2001-08-18 12:00:00 122,368 ----a-w c:\windows\system32\wbem\wmiprov.dll
+ 2004-08-04 05:56:48 144,896 ----a-w c:\windows\system32\wbem\wmiprov.dll
- 2001-08-18 12:00:00 407,040 ----a-w c:\windows\system32\wbem\wmiprvsd.dll
+ 2004-08-04 05:56:48 437,248 ----a-w c:\windows\system32\wbem\wmiprvsd.dll
- 2001-08-18 12:00:00 203,264 ----a-w c:\windows\system32\wbem\wmiprvse.exe
+ 2004-08-04 05:56:58 218,112 ----a-w c:\windows\system32\wbem\wmiprvse.exe
- 2001-08-18 12:00:00 38,912 ----a-w c:\windows\system32\wbem\wmipsess.dll
+ 2004-08-04 05:56:48 41,472 ----a-w c:\windows\system32\wbem\wmipsess.dll
- 2001-08-18 12:00:00 100,864 ----a-w c:\windows\system32\wbem\wmisvc.dll
+ 2004-08-04 05:56:48 144,896 ----a-w c:\windows\system32\wbem\wmisvc.dll
- 2001-08-18 12:00:00 95,744 ----a-w c:\windows\system32\wbem\wmiutils.dll
+ 2004-08-04 05:56:48 95,232 ----a-w c:\windows\system32\wbem\wmiutils.dll
- 2001-08-18 12:00:00 46,592 ----a-w c:\windows\system32\wdigest.dll
+ 2004-08-04 05:56:48 49,152 ----a-w c:\windows\system32\wdigest.dll
- 2001-08-18 02:37:04 22,016 ----a-w c:\windows\system32\wdmaud.drv
+ 2004-08-04 05:56:58 23,552 ----a-w c:\windows\system32\wdmaud.drv
- 2001-08-18 12:00:00 258,560 ----a-w c:\windows\system32\webcheck.dll
+ 2004-08-04 05:56:48 276,480 ----a-w c:\windows\system32\webcheck.dll
- 2001-08-18 12:00:00 61,440 ----a-w c:\windows\system32\webclnt.dll
+ 2004-08-04 05:56:48 67,584 ----a-w c:\windows\system32\webclnt.dll
- 2001-08-18 12:00:00 124,928 ----a-w c:\windows\system32\webvw.dll
+ 2004-08-04 05:56:48 135,680 ----a-w c:\windows\system32\webvw.dll
- 2001-08-18 12:00:00 60,416 ----a-w c:\windows\system32\wextract.exe
+ 2004-08-04 05:56:58 65,536 ----a-w c:\windows\system32\wextract.exe
- 2001-08-18 12:00:00 414,720 ----a-w c:\windows\system32\wiaacmgr.exe
+ 2004-08-04 05:56:58 433,664 ----a-w c:\windows\system32\wiaacmgr.exe
- 2001-08-18 12:00:00 449,536 ----a-w c:\windows\system32\wiadefui.dll
+ 2004-08-04 05:56:48 463,360 ----a-w c:\windows\system32\wiadefui.dll
- 2001-08-18 12:00:00 118,272 ----a-w c:\windows\system32\wiadss.dll
+ 2004-08-04 05:56:48 124,416 ----a-w c:\windows\system32\wiadss.dll
- 2001-08-18 12:00:00 70,656 ----a-w c:\windows\system32\wiascr.dll
+ 2004-08-04 05:56:48 75,776 ----a-w c:\windows\system32\wiascr.dll
- 2001-08-18 12:00:00 314,368 ----a-w c:\windows\system32\wiaservc.dll
+ 2004-08-04 05:56:48 333,312 ----a-w c:\windows\system32\wiaservc.dll
- 2001-08-18 12:00:00 568,832 ----a-w c:\windows\system32\wiashext.dll
+ 2004-08-04 05:56:48 589,312 ----a-w c:\windows\system32\wiashext.dll
- 2001-08-18 12:00:00 104,448 ----a-w c:\windows\system32\wiavideo.dll
+ 2004-08-04 05:56:48 111,104 ----a-w c:\windows\system32\wiavideo.dll
- 2001-08-18 12:00:00 1,670,912 ----a-w c:\windows\system32\win32k.sys
+ 2004-08-04 04:17:42 1,835,904 ----a-w c:\windows\system32\win32k.sys
- 2001-08-18 12:00:00 95,232 ----a-w c:\windows\system32\win32spl.dll
+ 2004-08-04 05:56:48 101,888 ----a-w c:\windows\system32\win32spl.dll
+ 2004-08-04 05:56:36 937,984 ------w c:\windows\system32\winbrand.dll
- 2004-07-01 22:08:18 331,776 ----a-w c:\windows\system32\winhttp.dll
+ 2004-08-04 05:56:48 351,232 ----a-w c:\windows\system32\winhttp.dll
- 2001-08-18 12:00:00 593,920 ----a-w c:\windows\system32\wininet.dll
+ 2004-08-04 05:56:48 656,384 ----a-w c:\windows\system32\wininet.dll
- 2001-08-18 12:00:00 25,600 ----a-w c:\windows\system32\winipsec.dll
+ 2004-08-04 05:56:48 32,768 ----a-w c:\windows\system32\winipsec.dll
- 2001-08-18 12:00:00 429,056 ----a-w c:\windows\system32\winlogon.exe
+ 2004-08-04 05:56:58 502,272 ----a-w c:\windows\system32\winlogon.exe
- 2001-08-18 12:00:00 170,496 ----a-w c:\windows\system32\winmm.dll
+ 2004-08-04 05:56:48 176,128 ----a-w c:\windows\system32\winmm.dll
- 2001-08-18 12:00:00 762,368 ----a-w c:\windows\system32\winntbbu.dll
+ 2004-08-04 05:56:36 764,928 ----a-w c:\windows\system32\winntbbu.dll
- 2001-08-18 12:00:00 14,848 ----a-w c:\windows\system32\winrnr.dll
+ 2004-08-04 05:56:48 16,896 ----a-w c:\windows\system32\winrnr.dll
- 2001-08-18 12:00:00 93,184 ----a-w c:\windows\system32\winscard.dll
+ 2004-08-04 05:56:48 99,328 ----a-w c:\windows\system32\winscard.dll
+ 2004-08-04 05:56:48 17,408 ------w c:\windows\system32\winshfhc.dll
- 2001-08-18 12:00:00 131,584 ----a-w c:\windows\system32\winspool.drv
+ 2004-08-04 05:56:58 146,432 ----a-w c:\windows\system32\winspool.drv
- 2001-08-18 12:00:00 275,968 ----a-w c:\windows\system32\winsrv.dll
+ 2004-08-04 05:56:48 290,816 ----a-w c:\windows\system32\winsrv.dll
- 2001-08-18 12:00:00 47,104 ----a-w c:\windows\system32\winsta.dll
+ 2004-08-04 05:56:48 53,760 ----a-w c:\windows\system32\winsta.dll
- 2001-08-18 12:00:00 166,912 ----a-w c:\windows\system32\wintrust.dll
+ 2004-08-04 05:56:48 176,640 ----a-w c:\windows\system32\wintrust.dll
- 2001-08-18 12:00:00 4,096 ----a-w c:\windows\system32\winver.exe
+ 2004-08-04 05:56:58 5,632 ----a-w c:\windows\system32\winver.exe
- 2001-08-18 12:00:00 120,832 ----a-w c:\windows\system32\wkssvc.dll
+ 2004-08-04 05:56:48 132,096 ----a-w c:\windows\system32\wkssvc.dll
- 2001-08-18 12:00:00 167,936 ----a-w c:\windows\system32\wldap32.dll
+ 2004-08-04 05:56:48 172,032 ----a-w c:\windows\system32\wldap32.dll
- 2001-08-18 12:00:00 86,016 ----a-w c:\windows\system32\wlnotify.dll
+ 2004-08-04 05:56:48 92,672 ----a-w c:\windows\system32\wlnotify.dll
- 2001-08-18 12:00:00 5,632 ----a-w c:\windows\system32\wmi.dll
+ 2004-08-04 05:56:36 5,632 ----a-w c:\windows\system32\wmi.dll
- 2001-08-18 12:00:00 118,784 ----a-w c:\windows\system32\wmsdmoe.dll
+ 2004-08-04 05:56:48 115,200 ----a-w c:\windows\system32\wmsdmoe.dll
- 2001-08-18 12:00:00 298,496 ----a-w c:\windows\system32\wmstream.dll
+ 2004-08-04 05:56:48 303,616 ----a-w c:\windows\system32\wmstream.dll
- 2001-08-18 12:00:00 247,808 ----a-w c:\windows\system32\wow32.dll
+ 2004-08-04 05:56:48 264,192 ----a-w c:\windows\system32\wow32.dll
- 2001-08-18 12:00:00 31,232 ----a-w c:\windows\system32\wpabaln.exe
+ 2004-08-04 05:56:58 32,256 ----a-w c:\windows\system32\wpabaln.exe
- 2001-08-18 12:00:00 29,184 ----a-w c:\windows\system32\wpnpinst.exe
+ 2004-08-04 05:56:58 32,256 ----a-w c:\windows\system32\wpnpinst.exe
- 2001-08-18 12:00:00 75,264 ----a-w c:\windows\system32\ws2_32.dll
+ 2004-08-04 05:56:48 82,944 ----a-w c:\windows\system32\ws2_32.dll
- 2001-08-18 12:00:00 18,944 ----a-w c:\windows\system32\ws2help.dll
+ 2004-08-04 05:56:48 19,968 ----a-w c:\windows\system32\ws2help.dll
+ 2004-08-04 05:56:58 13,824 ------w c:\windows\system32\wscntfy.exe
- 2001-08-18 12:00:00 118,834 ----a-w c:\windows\system32\wscript.exe
+ 2004-08-04 05:56:58 114,688 ----a-w c:\windows\system32\wscript.exe
+ 2004-08-04 05:56:48 81,408 ------w c:\windows\system32\wscsvc.dll
+ 2004-08-04 05:56:48 108,032 ------w c:\windows\system32\wshbth.dll
- 2001-08-18 12:00:00 28,721 ----a-w c:\windows\system32\wshcon.dll
+ 2004-08-04 05:56:48 28,672 ----a-w c:\windows\system32\wshcon.dll
- 2001-08-18 12:00:00 65,585 ----a-w c:\windows\system32\wshext.dll
+ 2004-08-04 05:56:48 65,536 ----a-w c:\windows\system32\wshext.dll
- 2001-08-18 12:00:00 13,824 ----a-w c:\windows\system32\wship6.dll
+ 2004-08-04 05:56:48 14,336 ----a-w c:\windows\system32\wship6.dll
- 2001-08-18 12:00:00 10,240 ----a-w c:\windows\system32\WshRm.dll
+ 2004-08-04 05:56:48 11,776 ----a-w c:\windows\system32\wshrm.dll
- 2001-08-18 12:00:00 17,408 ----a-w c:\windows\system32\wshtcpip.dll
+ 2004-08-04 05:56:48 19,968 ----a-w c:\windows\system32\wshtcpip.dll
- 2001-08-18 12:00:00 38,912 ----a-w c:\windows\system32\wsnmp32.dll
+ 2004-08-04 05:56:48 42,496 ----a-w c:\windows\system32\wsnmp32.dll
- 2001-08-18 12:00:00 21,504 ----a-w c:\windows\system32\wsock32.dll
+ 2004-08-04 05:56:48 22,528 ----a-w c:\windows\system32\wsock32.dll
- 2004-07-09 08:26:40 47,104 ----a-w c:\windows\system32\wstdecod.dll
+ 2004-08-04 05:56:48 50,688 ----a-w c:\windows\system32\wstdecod.dll
- 2001-08-18 12:00:00 16,896 ----a-w c:\windows\system32\wtsapi32.dll
+ 2004-08-04 05:56:48 18,432 ----a-w c:\windows\system32\wtsapi32.dll
+ 2004-08-04 05:56:58 165,888 ------w c:\windows\system32\wuauclt1.exe
+ 2004-08-04 05:56:48 183,296 ------w c:\windows\system32\wuaueng1.dll
- 2001-08-18 12:00:00 4,096 ----a-w c:\windows\system32\wuauserv.dll
+ 2004-08-04 05:56:48 6,656 ----a-w c:\windows\system32\wuauserv.dll
- 2001-08-18 12:00:00 47,616 ----a-w c:\windows\system32\wzcdlg.dll
+ 2004-08-04 05:56:48 378,368 ----a-w c:\windows\system32\wzcdlg.dll
- 2001-08-18 12:00:00 18,944 ----a-w c:\windows\system32\wzcsapi.dll
+ 2004-08-04 05:56:48 51,712 ----a-w c:\windows\system32\wzcsapi.dll
- 2001-08-18 12:00:00 184,320 ----a-w c:\windows\system32\wzcsvc.dll
+ 2004-08-04 05:56:48 359,936 ----a-w c:\windows\system32\wzcsvc.dll
- 2001-08-18 12:00:00 85,504 ----a-w c:\windows\system32\xactsrv.dll
+ 2004-08-04 05:56:48 91,648 ----a-w c:\windows\system32\xactsrv.dll
- 2001-08-18 12:00:00 28,160 ----a-w c:\windows\system32\xcopy.exe
+ 2004-08-04 05:56:58 30,720 ----a-w c:\windows\system32\xcopy.exe
- 2001-08-18 12:00:00 165,744 ----a-w c:\windows\system32\xenroll.dll
+ 2004-07-17 16:39:16 174,200 ----a-w c:\windows\system32\xenroll.dll
+ 2004-08-04 05:56:48 129,536 ------w c:\windows\system32\xmlprov.dll
+ 2004-08-04 05:56:48 50,176 ------w c:\windows\system32\xmlprovi.dll
- 2001-08-18 12:00:00 9,728 ----a-w c:\windows\system32\xolehlp.dll
+ 2004-08-04 05:56:48 11,776 ----a-w c:\windows\system32\xolehlp.dll
- 2004-06-30 23:59:25 158,720 ------w c:\windows\system32\xpob2res.dll
+ 2004-08-04 05:56:38 438,784 ------w c:\windows\system32\xpob2res.dll
+ 2004-08-04 05:56:38 187,392 ------w c:\windows\system32\xpsp1res.dll
- 2002-09-25 16:21:56 316,928 ----a-w c:\windows\system32\zipfldr.dll
+ 2004-08-04 05:56:48 337,920 ----a-w c:\windows\system32\zipfldr.dll
+ 2009-02-20 23:33:31 16,384 ----atw c:\windows\temp\Perflib_Perfdata_5b0.dat
- 2001-08-18 12:00:00 46,592 ----a-w c:\windows\twain_32.dll
+ 2004-08-04 05:56:48 50,688 ----a-w c:\windows\twain_32.dll
- 2001-08-18 12:00:00 266,752 ----a-w c:\windows\winhlp32.exe
+ 2004-08-04 05:56:58 283,648 ----a-w c:\windows\winhlp32.exe
+ 2004-08-04 05:57:02 1,050,624 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
+ 2004-08-04 05:57:02 54,784 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.2180_x-ww_b2505ed9\msvcirt.dll
+ 2004-08-04 05:57:02 343,040 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.2180_x-ww_b2505ed9\msvcrt.dll
+ 2004-08-04 05:57:00 1,712,128 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\GdiPlus.dll
+ 2004-08-04 05:57:00 853,504 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.Networking.Dxmrtp_6595b64144ccf1df_5.2.2.3_x-ww_468466a7\dxmrtp.dll
+ 2004-08-04 05:57:00 991,232 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.Networking.RtcDll_6595b64144ccf1df_5.2.2.3_x-ww_d6bd8b95\rtcdll.dll
+ 2004-08-04 05:55:58 132,096 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.Networking.RtcRes_6595b64144ccf1df_5.2.2.3_en_16a24bc
0\rtcres.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-08-04 1667584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MMTray"="c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" [2006-01-19 110592]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-25 136600]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-06-17 98304]
"IgfxTray"="c:\windows\System32\igfxtray.exe" [2002-06-19 155648]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2002-06-19 114688]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-07-11 180269]
"MimBoot"="c:\progra~1\MUSICM~1\MUSICM~1\mimboot.exe" [2006-01-19 11776]
"D-Link AirPlus G"="c:\program files\D-Link\AirPlus G\AirGCFG.exe" [2007-04-14 1556480]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-06-16 221184]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"ANIWZCS2Service"="c:\program files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2007-01-19 49152]
"1331176861"="c:\documents and settings\All Users\Application Data\1447988137\1331176861.exe" [2009-01-25 2096677]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
--- Other Services/Drivers In Memory ---
*NewlyCreated* - KRNCHTJU
.
Contents of the 'Scheduled Tasks' folder
2009-02-20 c:\windows\Tasks\RegTool Scan.job
- c:\program files\RegTool\RegTool.exe []
2009-02-20 c:\windows\Tasks\RegTool Scan.job
- c:\program files\RegTool []
.
- - - - ORPHANS REMOVED - - - -
BHO-{DCFBA5E4-23ED-49F9-A5C2-99607670DA51} - c:\windows\System32\avica.dll
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com
mStart Page = about:blank
mWindow Title = Microsoft Internet Explorer
uInternet Connection Wizard,ShellNext = hxxp://adserving.cpxinteractive.com/iframe3?0j4EAPLyAwDp-AYASnkCAAIBAAAAAP8AAAD..wICAAJWxwQA.-IDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAM3MzMzMzPA.zczMzMzM8D8BAAAAAAD8PwEAAAAAAPw.AA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA-Zc2EhmSoAR3CUCiFLJku-nURFVowed0ylzM3wAAAAA=,,http://www3.evilshare.com/accd7d46-5618-102b-a5a4-000b6aa2a5f8
IE: &AOL Toolbar search - c:\program files\AOL Toolbar\toolbar.dll/SEARCH.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: musicmatch.com\online
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\
FF - plugin: c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aw4dysyr.default\extensions\[email protected]\platform\WINNT_x86-msvc\plugins\npmnqmp071101000055.dll
FF - plugin: c:\program files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-20 18:34:14
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
c:\progra~1\MUSICM~1\MUSICM~1\MMDiag.exe
c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
.
**************************************************************************
.
Completion time: 2009-02-20 18:39:23 - machine was rebooted
ComboFix-quarantined-files.txt 2009-02-20 23:37:55
ComboFix2.txt 2009-02-17 16:37:16
Pre-Run: 25,922,072,576 bytes free
Post-Run: 25,836,834,816 bytes free
4308 --- E O F --- 2009-02-20 23:00:43
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:35:03 PM, on 19/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mim.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://adserving.cpxinteractive.com/iframe...a4-000b6aa2a5f8
O2 - BHO: (no name) - {DCFBA5E4-23ED-49F9-A5C2-99607670DA51} - C:\WINDOWS\System32\avica.dll
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe
O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [1331176861] "C:\Documents and Settings\All Users\Application Data\1447988137\1331176861.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {21BB8360-F943-447E-98F3-3C22345375A7} (CPlayFirstChocolatieControl Object) - http://zone.msn.com/bingame/choc/default/C...eb.1.0.0.15.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213917412731
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1213962550419
O16 - DPF: {E9B80D94-D8BC-43DE-9138-75605A8D9666} (CPlayFirstWeddingDasControl Object) - http://zone.msn.com/bingame/wedd/default/W...sh.1.0.0.50.cab
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 5293 bytes
-
yes, restarted computer ready for the next step
Hijackthislog
in Malware Removal
Posted
wasn't sure if you got it just resending
i completed this in internet explorer but here is the url
http://www.pcpitstop.com/betapit/sec.asp?conid=22245145